author | Stefan Teleman <stefan.teleman@oracle.com> |
Thu, 07 May 2015 10:31:56 -0700 | |
branch | s11-update |
changeset 4259 | 03635257972b |
parent 3751 | f7b7c259669f |
child 5559 | a6efae0791c0 |
permissions | -rw-r--r-- |
3751
f7b7c259669f
20341749 Backport 20318849 to 11.3 - Update links to version 2.9
Rich Burridge <rich.burridge@oracle.com>
parents:
3599
diff
changeset
|
1 |
Disable SSLv2 and SSLv3 in links to "mitigate POODLE vulnerability". |
3599
937319736f5c
20231094 problem in UTILITY/LINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
2 |
|
937319736f5c
20231094 problem in UTILITY/LINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
3 |
This change will be passed upstream. |
937319736f5c
20231094 problem in UTILITY/LINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
4 |
|
3751
f7b7c259669f
20341749 Backport 20318849 to 11.3 - Update links to version 2.9
Rich Burridge <rich.burridge@oracle.com>
parents:
3599
diff
changeset
|
5 |
--- https.c.orig 2015-01-13 06:51:50.062449801 -0800 |
f7b7c259669f
20341749 Backport 20318849 to 11.3 - Update links to version 2.9
Rich Burridge <rich.burridge@oracle.com>
parents:
3599
diff
changeset
|
6 |
+++ https.c 2015-01-13 06:52:03.963799972 -0800 |
f7b7c259669f
20341749 Backport 20318849 to 11.3 - Update links to version 2.9
Rich Burridge <rich.burridge@oracle.com>
parents:
3599
diff
changeset
|
7 |
@@ -63,6 +63,7 @@ |
f7b7c259669f
20341749 Backport 20318849 to 11.3 - Update links to version 2.9
Rich Burridge <rich.burridge@oracle.com>
parents:
3599
diff
changeset
|
8 |
context = SSL_CTX_new((void *)m); |
f7b7c259669f
20341749 Backport 20318849 to 11.3 - Update links to version 2.9
Rich Burridge <rich.burridge@oracle.com>
parents:
3599
diff
changeset
|
9 |
if (!context) return NULL; |
3599
937319736f5c
20231094 problem in UTILITY/LINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
10 |
SSL_CTX_set_options(context, SSL_OP_ALL); |
937319736f5c
20231094 problem in UTILITY/LINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
11 |
+ SSL_CTX_set_options(context, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3); |
937319736f5c
20231094 problem in UTILITY/LINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
12 |
SSL_CTX_set_default_verify_paths(context); |
3751
f7b7c259669f
20341749 Backport 20318849 to 11.3 - Update links to version 2.9
Rich Burridge <rich.burridge@oracle.com>
parents:
3599
diff
changeset
|
13 |
|
f7b7c259669f
20341749 Backport 20318849 to 11.3 - Update links to version 2.9
Rich Burridge <rich.burridge@oracle.com>
parents:
3599
diff
changeset
|
14 |
} |