From: Dr. Stephen Henson <steve@openssl.org>
Date: Tue, 15 Jul 2014 11:22:49 +0000 (+0100)
Subject: Don't allow -www etc options with DTLS.
X-Git-Tag: OpenSSL_1_0_1i~33
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=cd63f94d4df04d2a15e8386658448c93f39b63d2;p=openssl

Don't allow -www etc options with DTLS.

The options which emulate a web server don't make sense when doing DTLS.
Exit with an error if an attempt is made to use them.

PR#3453
(cherry picked from commit 58a2aaeade8bdecd0f9f0df41927f7cff3012547)
---

diff --git a/apps/s_server.c b/apps/s_server.c
index a399d57a05..fe7ad88232 100644
--- a/apps/s_server.c
+++ b/apps/s_server.c
@@ -1362,6 +1362,14 @@ bad:
 		sv_usage();
 		goto end;
 		}
+#ifndef OPENSSL_NO_DTLS1
+	if (www && socket_type == SOCK_DGRAM)
+		{
+		BIO_printf(bio_err,
+				"Can't use -HTTP, -www or -WWW with DTLS\n");
+		goto end;
+		}
+#endif
 
 #if !defined(OPENSSL_NO_JPAKE) && !defined(OPENSSL_NO_PSK)
 	if (jpake_secret)