Keep old method in case of an unsupported protocol
authorKurt Roeckx <kurt@roeckx.be>
Tue, 21 Oct 2014 18:45:15 +0000 (20:45 +0200)
committerKurt Roeckx <kurt@roeckx.be>
Tue, 21 Oct 2014 19:15:58 +0000 (21:15 +0200)
commit69c163ac811ab593e5ace4d409601fef9f8258b5
tree383af445a7497ef022c99aa1302e2eb76a408501
parentb7eaea7397f7ab67cd3246034f50df71db15c26f
Keep old method in case of an unsupported protocol

When we're configured with no-ssl3 and we receive an SSL v3 Client Hello, we set
the method to NULL.  We didn't used to do that, and it breaks things.  This is a
regression introduced in 62f45cc27d07187b59551e4fad3db4e52ea73f2c.  Keep the old
method since the code is not able to deal with a NULL method at this time.

CVE-2014-3569, PR#3571

Reviewed-by: Emilia Käsper <emilia@openssl.org>
(cherry picked from commit 392fa7a952e97d82eac6958c81ed1e256e6b8ca5)
ssl/s23_srvr.c