Fallback SCSV. This patch adds server-side support for TLS_FALLBACK_SCSV (see http://tools.ietf.org/html/draft-bmoeller-tls-downgrade-scsv-01).

commit: 2970779684c6f164a0e261e96a3d59f331123320 [log] [tgz]
author: Adam Langley <agl@chromium.org> Fri Jun 20 12:00:00 2014 -0700
committer: Adam Langley <agl@chromium.org> Fri Jun 20 13:17:36 2014 -0700
tree: 8a37efd8aa916a193f1fea12f1dd7880d9b04a0d
parent: 735107652b0df9941d60f4259e15150962ca34bb [diff] [blame]
diff --git a/ssl/t1_enc.c b/ssl/t1_enc.c
index 7c73e35..72dbee3 100644
--- a/ssl/t1_enc.c
+++ b/ssl/t1_enc.c

@@ -1497,6 +1497,7 @@
 	case SSL_AD_BAD_CERTIFICATE_STATUS_RESPONSE: return(TLS1_AD_BAD_CERTIFICATE_STATUS_RESPONSE);
 	case SSL_AD_BAD_CERTIFICATE_HASH_VALUE: return(TLS1_AD_BAD_CERTIFICATE_HASH_VALUE);
 	case SSL_AD_UNKNOWN_PSK_IDENTITY:return(TLS1_AD_UNKNOWN_PSK_IDENTITY);
+	case SSL_AD_INAPPROPRIATE_FALLBACK:return(SSL3_AD_INAPPROPRIATE_FALLBACK);
 #if 0 /* not appropriate for TLS, not used for DTLS */
 	case DTLS1_AD_MISSING_HANDSHAKE_MESSAGE: return 
 					  (DTLS1_AD_MISSING_HANDSHAKE_MESSAGE);
commit	2970779684c6f164a0e261e96a3d59f331123320	[log] [tgz]
author	Adam Langley <agl@chromium.org>	Fri Jun 20 12:00:00 2014 -0700
committer	Adam Langley <agl@chromium.org>	Fri Jun 20 13:17:36 2014 -0700
tree	8a37efd8aa916a193f1fea12f1dd7880d9b04a0d
parent	735107652b0df9941d60f4259e15150962ca34bb [diff] [blame]