From 4b3fa3d2ecee6824dfdfee9eb302f1a0db2b7cc3 Mon Sep 17 00:00:00 2001 From: Daniel Stenberg Date: Fri, 26 Oct 2018 13:34:37 +0200 Subject: openssl: output the correct cipher list on TLS 1.3 error When failing to set the 1.3 cipher suite, the wrong string pointer would be used in the error message. Most often saying "(nil)". Reported-by: Ricky-Tigg on github Fixes #3178 --- lib/vtls/openssl.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/lib/vtls/openssl.c b/lib/vtls/openssl.c index 4d1a95ed4..077b1e642 100644 --- a/lib/vtls/openssl.c +++ b/lib/vtls/openssl.c @@ -2466,7 +2466,7 @@ static CURLcode ossl_connect_step1(struct connectdata *conn, int sockindex) char *ciphers13 = SSL_CONN_CONFIG(cipher_list13); if(ciphers13) { if(!SSL_CTX_set_ciphersuites(BACKEND->ctx, ciphers13)) { - failf(data, "failed setting TLS 1.3 cipher suite: %s", ciphers); + failf(data, "failed setting TLS 1.3 cipher suite: %s", ciphers13); return CURLE_SSL_CIPHER; } infof(data, "TLS 1.3 cipher selection: %s\n", ciphers13); -- cgit v1.2.1