Enable PSK in FIPS mode.

author Dr. Stephen Henson <steve@openssl.org>

Wed, 6 Nov 2013 14:38:28 +0000 (14:38 +0000)

committer Dr. Stephen Henson <steve@openssl.org>

Wed, 6 Nov 2013 14:40:01 +0000 (14:40 +0000)
author Dr. Stephen Henson <steve@openssl.org>
Wed, 6 Nov 2013 14:38:28 +0000 (14:38 +0000)
committer Dr. Stephen Henson <steve@openssl.org>
Wed, 6 Nov 2013 14:40:01 +0000 (14:40 +0000)
diff --git a/ssl/s3_lib.c b/ssl/s3_lib.c

index 86a8bc56a76640aa93606c036b324b8a4de21f0c..bf832bb6cc89a83cf22f6020014d53531882f7f9 100644 (file)
--- a/ssl/s3_lib.c
+++ b/ssl/s3_lib.c
@@ -1683,7 +1683,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[]={
         SSL_3DES,
         SSL_SHA1,
         SSL_TLSV1,
-       SSL_NOT_EXP|SSL_HIGH,
+       SSL_NOT_EXP|SSL_HIGH|SSL_FIPS,
         SSL_HANDSHAKE_MAC_DEFAULT|TLS1_PRF,
         168,
         168,
@@ -1699,7 +1699,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[]={
         SSL_AES128,
         SSL_SHA1,
         SSL_TLSV1,
-       SSL_NOT_EXP|SSL_HIGH,
+       SSL_NOT_EXP|SSL_HIGH|SSL_FIPS,
         SSL_HANDSHAKE_MAC_DEFAULT|TLS1_PRF,
         128,
         128,
@@ -1715,7 +1715,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[]={
         SSL_AES256,
         SSL_SHA1,
         SSL_TLSV1,
-       SSL_NOT_EXP|SSL_HIGH,
+       SSL_NOT_EXP|SSL_HIGH|SSL_FIPS,
         SSL_HANDSHAKE_MAC_DEFAULT|TLS1_PRF,
         256,
         256,
author	Dr. Stephen Henson <steve@openssl.org>
	Wed, 6 Nov 2013 14:38:28 +0000 (14:38 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Wed, 6 Nov 2013 14:40:01 +0000 (14:40 +0000)