Unverified Commit 44a9e9f8 authored by Daniel Stenberg's avatar Daniel Stenberg
Browse files

openssl: output the correct cipher list on TLS 1.3 error 

When failing to set the 1.3 cipher suite, the wrong string pointer would
be used in the error message. Most often saying "(nil)".

Reported-by: Ricky-Tigg on github
Fixes #3178
Closes #3180
parent 067992ba

lib/vtls/openssl.c

+1 −1
Original line number Diff line number Diff line
@@ -2466,7 +2466,7 @@ static CURLcode ossl_connect_step1(struct connectdata *conn, int sockindex) 
    char *ciphers13 = SSL_CONN_CONFIG(cipher_list13);

    if(ciphers13) {

      if(!SSL_CTX_set_ciphersuites(BACKEND->ctx, ciphers13)) {

        failf(data, "failed setting TLS 1.3 cipher suite: %s", ciphers);

        failf(data, "failed setting TLS 1.3 cipher suite: %s", ciphers13);

        return CURLE_SSL_CIPHER;

      }

      infof(data, "TLS 1.3 cipher selection: %s\n", ciphers13);