Correct ssl_conf logic for "legacy_server_connect"

This option is only useful for the client, but it was previously marked as only being applicable for servers. Correct the entry to properly mark it as client-only, and update the s_server/s_client manuals accordingly. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/15127)
author: Benjamin Kaduk <bkaduk@akamai.com> 2021-05-03 22:43:55 +0200
committer: Benjamin Kaduk <kaduk@mit.edu> 2021-05-05 17:13:51 +0200
commit: cbbbc8fce41cc162c75d1e5bd1053b6085cb3b47 (patch)
tree: 79d459e98274b378e9ec1c5999fa639ecc18dac0 /ssl/ssl_conf.c
parent: Enforce secure renegotiation support by default (diff)
download: openssl-cbbbc8fce41cc162c75d1e5bd1053b6085cb3b47.tar.xz
openssl-cbbbc8fce41cc162c75d1e5bd1053b6085cb3b47.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/ssl_conf.c b/ssl/ssl_conf.c
index 4e71a9cf64..1f288b5e06 100644
--- a/ssl/ssl_conf.c
+++ b/ssl/ssl_conf.c
@@ -684,7 +684,7 @@ static const ssl_conf_cmd_tbl ssl_conf_cmds[] = {
     SSL_CONF_CMD_SWITCH("no_ticket", 0),
     SSL_CONF_CMD_SWITCH("serverpref", SSL_CONF_FLAG_SERVER),
     SSL_CONF_CMD_SWITCH("legacy_renegotiation", 0),
-    SSL_CONF_CMD_SWITCH("legacy_server_connect", SSL_CONF_FLAG_SERVER),
+    SSL_CONF_CMD_SWITCH("legacy_server_connect", SSL_CONF_FLAG_CLIENT),
     SSL_CONF_CMD_SWITCH("no_renegotiation", 0),
     SSL_CONF_CMD_SWITCH("no_resumption_on_reneg", SSL_CONF_FLAG_SERVER),
     SSL_CONF_CMD_SWITCH("no_legacy_server_connect", SSL_CONF_FLAG_SERVER),
author	Benjamin Kaduk <bkaduk@akamai.com>	2021-05-03 22:43:55 +0200
committer	Benjamin Kaduk <kaduk@mit.edu>	2021-05-05 17:13:51 +0200
commit	cbbbc8fce41cc162c75d1e5bd1053b6085cb3b47 (patch)
tree	79d459e98274b378e9ec1c5999fa639ecc18dac0 /ssl/ssl_conf.c
parent	Enforce secure renegotiation support by default (diff)
download	openssl-cbbbc8fce41cc162c75d1e5bd1053b6085cb3b47.tar.xz openssl-cbbbc8fce41cc162c75d1e5bd1053b6085cb3b47.zip