author | Norm Jacobs <Norm.Jacobs@Oracle.COM> |
Wed, 19 Oct 2016 09:53:08 -0500 | |
changeset 7133 | cabdc0719c92 |
parent 3589 | bdfbf7f178a7 |
permissions | -rw-r--r-- |
3589
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
1 |
Disable SSLv2 and SSLv3 in elinks to "mitigate POODLE vulnerability". |
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
2 |
|
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
3 |
This change will be passed upstream. |
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
4 |
|
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
5 |
--- elinks-0.11.7/src/network/ssl/ssl.c.orig 2014-12-17 12:23:16.239844159 -0800 |
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
6 |
+++ elinks-0.11.7/src/network/ssl/ssl.c 2015-01-06 05:41:07.668610655 -0800 |
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
7 |
@@ -58,6 +58,7 @@ |
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
8 |
SSLeay_add_ssl_algorithms(); |
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
9 |
context = SSL_CTX_new(SSLv23_client_method()); |
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
10 |
SSL_CTX_set_options(context, SSL_OP_ALL); |
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
11 |
+ SSL_CTX_set_options(context, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3); |
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
12 |
SSL_CTX_set_default_verify_paths(context); |
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
13 |
} |
bdfbf7f178a7
20230898 problem in UTILITY/ELINKS
Rich Burridge <rich.burridge@oracle.com>
parents:
diff
changeset
|
14 |