OpenSSL: More info on accept "version too low"
authorJeremy Harris <jgh146exb@wizmail.org>
Sun, 19 Apr 2020 10:32:57 +0000 (11:32 +0100)
committerJeremy Harris <jgh146exb@wizmail.org>
Sun, 19 Apr 2020 10:36:53 +0000 (11:36 +0100)
src/src/tls-openssl.c

index 3f3fd8aa82502d8ea33d6b7cd6598031c849a7d0..26cc986c5d32583e25978ee0c65a35a20de241af 100644 (file)
@@ -2765,7 +2765,7 @@ if (rc <= 0)
       {
       uschar * s = US"SSL_accept";
       int r = ERR_GET_REASON(ERR_peek_error());
       {
       uschar * s = US"SSL_accept";
       int r = ERR_GET_REASON(ERR_peek_error());
-      if (  r == SSL_R_WRONG_VERSION_NUMBER
+      if (  r == SSL_R_WRONG_VERSION_NUMBER || r == SSL_R_VERSION_TOO_LOW
          || r == SSL_R_UNKNOWN_PROTOCOL || r == SSL_R_UNSUPPORTED_PROTOCOL)
        s = string_sprintf("%s (%s)", s, SSL_get_version(server_ssl));
       (void) tls_error(s, NULL, sigalrm_seen ? US"timed out" : NULL, errstr);
          || r == SSL_R_UNKNOWN_PROTOCOL || r == SSL_R_UNSUPPORTED_PROTOCOL)
        s = string_sprintf("%s (%s)", s, SSL_get_version(server_ssl));
       (void) tls_error(s, NULL, sigalrm_seen ? US"timed out" : NULL, errstr);