artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 327f63d) | patch
Fix nsd and unbound's error checking with SSL_CTX_set_options().
authordoug <doug@openbsd.org>
Tue, 27 Oct 2015 07:58:00 +0000 (07:58 +0000)
committerdoug <doug@openbsd.org>
Tue, 27 Oct 2015 07:58:00 +0000 (07:58 +0000)
commit3c6675262610637e41a8e20bb0d7c9b1c25b5a43
tree6ec2dfac2ee7e1bf67afa54592cfb926767d5f97tree | snapshot
parent327f63daf5ab9748f732e103ba6b5c5c0f7c8c26commit | diff
Fix nsd and unbound's error checking with SSL_CTX_set_options().

LibreSSL, BoringSSL and OpenSSL have all been redefining SSL_OP_* flags to
be 0 when support is removed.  This breaks the error checking that nsd and
unbound were doing.  It should check against the flag value itself to allow
for 0.

input deraadt@, jsing@
tweak + ok miod@, guenther@
usr.sbin/nsd/nsd-control.c diff | blob | history
usr.sbin/nsd/remote.c diff | blob | history
usr.sbin/unbound/daemon/remote.c diff | blob | history
usr.sbin/unbound/smallapp/unbound-control.c diff | blob | history
usr.sbin/unbound/util/net_help.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim