diff options
Diffstat (limited to '')
| -rw-r--r-- | src/lib/libressl/ressl.c | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/src/lib/libressl/ressl.c b/src/lib/libressl/ressl.c index b85fe04415..b500c83063 100644 --- a/src/lib/libressl/ressl.c +++ b/src/lib/libressl/ressl.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ressl.c,v 1.16 2014/09/29 15:31:38 jsing Exp $ */ | 1 | /* $OpenBSD: ressl.c,v 1.17 2014/10/15 14:11:47 jsing Exp $ */ |
| 2 | /* | 2 | /* |
| 3 | * Copyright (c) 2014 Joel Sing <jsing@openbsd.org> | 3 | * Copyright (c) 2014 Joel Sing <jsing@openbsd.org> |
| 4 | * | 4 | * |
| @@ -173,6 +173,11 @@ ressl_configure_ssl(struct ressl *ctx) | |||
| 173 | { | 173 | { |
| 174 | SSL_CTX_set_options(ctx->ssl_ctx, SSL_OP_NO_SSLv2); | 174 | SSL_CTX_set_options(ctx->ssl_ctx, SSL_OP_NO_SSLv2); |
| 175 | 175 | ||
| 176 | SSL_CTX_clear_options(ctx->ssl_ctx, SSL_OP_NO_SSLv3); | ||
| 177 | SSL_CTX_clear_options(ctx->ssl_ctx, SSL_OP_NO_TLSv1); | ||
| 178 | SSL_CTX_clear_options(ctx->ssl_ctx, SSL_OP_NO_TLSv1_1); | ||
| 179 | SSL_CTX_clear_options(ctx->ssl_ctx, SSL_OP_NO_TLSv1_2); | ||
| 180 | |||
| 176 | if ((ctx->config->protocols & RESSL_PROTOCOL_SSLv3) == 0) | 181 | if ((ctx->config->protocols & RESSL_PROTOCOL_SSLv3) == 0) |
| 177 | SSL_CTX_set_options(ctx->ssl_ctx, SSL_OP_NO_SSLv3); | 182 | SSL_CTX_set_options(ctx->ssl_ctx, SSL_OP_NO_SSLv3); |
| 178 | if ((ctx->config->protocols & RESSL_PROTOCOL_TLSv1_0) == 0) | 183 | if ((ctx->config->protocols & RESSL_PROTOCOL_TLSv1_0) == 0) |