yuzu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2025-02-03 06:11:13 +00:00
Code Issues Packages Projects Releases Wiki Activity

Disable the enforce flag by default

Browse source
This commit is contained in:
Jarno Lamsa 2019-06-10 15:23:29 +03:00
parent 842be16800
commit 18b9a491e1
2 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
include/mbedtls/ssl.h
View file

@ -2829,7 +2829,7 @@ void mbedtls_ssl_conf_extended_master_secret( mbedtls_ssl_config *conf, char ems
/** /**
* \brief Enable or disable Extended Master Secret enforcing. * \brief Enable or disable Extended Master Secret enforcing.
* (Default: MBEDTLS_SSL_EXTENDED_MS_ENFORCE_ENABLED) * (Default: MBEDTLS_SSL_EXTENDED_MS_ENFORCE_DISABLED)
* *
* \note This enforces the peer to use the Extended Master Secret * \note This enforces the peer to use the Extended Master Secret
* extension, if the option is enabled and the peer doesn't * extension, if the option is enabled and the peer doesn't

2
library/ssl_tls.c
View file

@ -10302,7 +10302,7 @@ int mbedtls_ssl_config_defaults( mbedtls_ssl_config *conf,
#if defined(MBEDTLS_SSL_EXTENDED_MASTER_SECRET) #if defined(MBEDTLS_SSL_EXTENDED_MASTER_SECRET)
conf->extended_ms = MBEDTLS_SSL_EXTENDED_MS_ENABLED; conf->extended_ms = MBEDTLS_SSL_EXTENDED_MS_ENABLED;
conf->enforce_extended_master_secret = conf->enforce_extended_master_secret =
MBEDTLS_SSL_EXTENDED_MS_ENFORCE_ENABLED; MBEDTLS_SSL_EXTENDED_MS_ENFORCE_DISABLED;
#endif #endif
#if defined(MBEDTLS_SSL_CBC_RECORD_SPLITTING) #if defined(MBEDTLS_SSL_CBC_RECORD_SPLITTING)