Mercurial Mercurial > upstream > oracle > userland-gate / file revision
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
components/links/patches/init-openssl.patch
author Rich Burridge <rich.burridge@oracle.com>
Mon, 09 Feb 2015 12:38:38 -0800
branchs11-update
changeset 3751 f7b7c259669f
parent 3599 937319736f5c
child 5559 a6efae0791c0
permissions -rw-r--r--
20341749 Backport 20318849 to 11.3 - Update links to version 2.9 20352128 links should be delivered 64-bit.

Disable SSLv2 and SSLv3 in links to "mitigate POODLE vulnerability".

This change will be passed upstream.

--- https.c.orig	2015-01-13 06:51:50.062449801 -0800
+++ https.c	2015-01-13 06:52:03.963799972 -0800
@@ -63,6 +63,7 @@
 		context = SSL_CTX_new((void *)m);
 		if (!context) return NULL;
 		SSL_CTX_set_options(context, SSL_OP_ALL);
+		SSL_CTX_set_options(context, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3);
 		SSL_CTX_set_default_verify_paths(context);
 
 	}
upstream/oracle/userland-gate