add back SRP. i was being too greedy.

author: tedu <tedu@openbsd.org> 2014-04-16 20:39:09 +0000
committer: tedu <tedu@openbsd.org> 2014-04-16 20:39:09 +0000
commit: f6b1586d31f749c2562d0274e25099bb35fc2537 (patch)
tree: 12ff1c4614d51287b44c1c37574c72018b174a4d /lib/libssl/ssl_ciph.c
parent: Clean up dangerous strncpy use. This included a use where the resulting (diff)
download: wireguard-openbsd-f6b1586d31f749c2562d0274e25099bb35fc2537.tar.xz
wireguard-openbsd-f6b1586d31f749c2562d0274e25099bb35fc2537.zip
1 files changed, 2 insertions, 0 deletions
diff --git a/lib/libssl/ssl_ciph.c b/lib/libssl/ssl_ciph.c
index 1a87cc255d8..4bd3be0d41f 100644
--- a/lib/libssl/ssl_ciph.c
+++ b/lib/libssl/ssl_ciph.c
@@ -724,7 +724,9 @@ ssl_cipher_get_disabled(unsigned long *mkey, unsigned long *auth, unsigned long
 	*mkey |= SSL_kPSK;
 	*auth |= SSL_aPSK;
 #endif
+#ifdef OPENSSL_NO_SRP
 	*mkey |= SSL_kSRP;
+#endif
 	/* Check for presence of GOST 34.10 algorithms, and if they
 	 * do not present, disable  appropriate auth and key exchange */
 	if (!get_optional_pkey_id("gost94")) {
author	tedu <tedu@openbsd.org>	2014-04-16 20:39:09 +0000
committer	tedu <tedu@openbsd.org>	2014-04-16 20:39:09 +0000
commit	f6b1586d31f749c2562d0274e25099bb35fc2537 (patch)
tree	12ff1c4614d51287b44c1c37574c72018b174a4d /lib/libssl/ssl_ciph.c
parent	Clean up dangerous strncpy use. This included a use where the resulting (diff)
download	wireguard-openbsd-f6b1586d31f749c2562d0274e25099bb35fc2537.tar.xz wireguard-openbsd-f6b1586d31f749c2562d0274e25099bb35fc2537.zip