--- a/components/links/patches/init-openssl.patch Tue Mar 14 11:44:22 2017 -0700
+++ b/components/links/patches/init-openssl.patch Tue Mar 14 13:18:47 2017 -0700
@@ -2,14 +2,14 @@
This change will be passed upstream.
---- https.c.orig 2016-03-02 16:24:33.763060204 -0800
-+++ https.c 2016-03-02 16:25:14.036046032 -0800
-@@ -100,7 +100,7 @@
- if (!m) return NULL;
- context = SSL_CTX_new((void *)m);
- if (!context) return NULL;
-- SSL_CTX_set_options(context, SSL_OP_ALL);
-+ SSL_CTX_set_options(context, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3);
- if (ssl_set_private_paths())
- SSL_CTX_set_default_verify_paths(context);
- SSL_CTX_set_default_passwd_cb(context, ssl_password_callback);
+--- https.c.orig 2017-03-01 16:33:15.504062101 +0000
++++ https.c 2017-03-01 16:33:47.467654008 +0000
+@@ -114,7 +114,7 @@
+ #ifndef SSL_OP_NO_COMPRESSION
+ #define SSL_OP_NO_COMPRESSION 0
+ #endif
+- SSL_CTX_set_options(context, SSL_OP_ALL | SSL_OP_NO_COMPRESSION);
++ SSL_CTX_set_options(context, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3 | SSL_OP_NO_COMPRESSION);
+ #ifdef SSL_MODE_ENABLE_PARTIAL_WRITE
+ SSL_CTX_set_mode(context, SSL_MODE_ENABLE_PARTIAL_WRITE);
+ #endif