rpms/openssl
3
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4b20642107
openssl/openssl-1.0.1h-disable-sslv2v3.patch
Tomas Mraz 4fcc430a48 Revert "disable SSLv3 by default again" on released branch. 
This reverts commit 80b5477597.

Conflicts:
	openssl.spec
2015-01-09 11:34:43 +01:00

14 lines
510 B
Diff
Raw Blame History

diff -up openssl-1.0.1h/ssl/ssl_lib.c.v2v3 openssl-1.0.1h/ssl/ssl_lib.c
--- openssl-1.0.1h/ssl/ssl_lib.c.v2v3 2014-06-11 16:02:52.000000000 +0200
+++ openssl-1.0.1h/ssl/ssl_lib.c 2014-06-30 14:18:04.290248080 +0200
@@ -1875,6 +1875,9 @@ SSL_CTX *SSL_CTX_new(const SSL_METHOD *m
*/
ret->options |= SSL_OP_LEGACY_SERVER_CONNECT;
+ /* Disable SSLv2 by default (affects the SSLv23_method() only) */
+ ret->options |= SSL_OP_NO_SSLv2;
+
return(ret);
err:
SSLerr(SSL_F_SSL_CTX_NEW,ERR_R_MALLOC_FAILURE);
Reference in New Issue View Git Blame Copy Permalink