diff options
Diffstat (limited to 'src/lib')
| -rw-r--r-- | src/lib/libssl/src/ssl/ssl.h | 9 | ||||
| -rw-r--r-- | src/lib/libssl/ssl.h | 9 |
2 files changed, 8 insertions, 10 deletions
diff --git a/src/lib/libssl/src/ssl/ssl.h b/src/lib/libssl/src/ssl/ssl.h index 7c815df8e1..6a03da5c0b 100644 --- a/src/lib/libssl/src/ssl/ssl.h +++ b/src/lib/libssl/src/ssl/ssl.h | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ssl.h,v 1.94 2015/09/10 17:57:50 jsing Exp $ */ | 1 | /* $OpenBSD: ssl.h,v 1.95 2015/10/25 15:58:57 doug Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -537,8 +537,6 @@ struct ssl_session_st { | |||
| 537 | 537 | ||
| 538 | /* As server, disallow session resumption on renegotiation */ | 538 | /* As server, disallow session resumption on renegotiation */ |
| 539 | #define SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION 0x00010000L | 539 | #define SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION 0x00010000L |
| 540 | /* Don't use compression even if supported */ | ||
| 541 | #define SSL_OP_NO_COMPRESSION 0x00020000L | ||
| 542 | /* If set, always create a new key when using tmp_ecdh parameters */ | 540 | /* If set, always create a new key when using tmp_ecdh parameters */ |
| 543 | #define SSL_OP_SINGLE_ECDH_USE 0x00080000L | 541 | #define SSL_OP_SINGLE_ECDH_USE 0x00080000L |
| 544 | /* If set, always create a new key when using tmp_dh parameters */ | 542 | /* If set, always create a new key when using tmp_dh parameters */ |
| @@ -552,8 +550,6 @@ struct ssl_session_st { | |||
| 552 | * forbidden to prevent version rollback attacks. */ | 550 | * forbidden to prevent version rollback attacks. */ |
| 553 | #define SSL_OP_TLS_ROLLBACK_BUG 0x00800000L | 551 | #define SSL_OP_TLS_ROLLBACK_BUG 0x00800000L |
| 554 | 552 | ||
| 555 | #define SSL_OP_NO_SSLv2 0x01000000L | ||
| 556 | #define SSL_OP_NO_SSLv3 0x02000000L | ||
| 557 | #define SSL_OP_NO_TLSv1 0x04000000L | 553 | #define SSL_OP_NO_TLSv1 0x04000000L |
| 558 | #define SSL_OP_NO_TLSv1_2 0x08000000L | 554 | #define SSL_OP_NO_TLSv1_2 0x08000000L |
| 559 | #define SSL_OP_NO_TLSv1_1 0x10000000L | 555 | #define SSL_OP_NO_TLSv1_1 0x10000000L |
| @@ -588,6 +584,9 @@ struct ssl_session_st { | |||
| 588 | #define SSL_OP_TLS_D5_BUG 0x0 | 584 | #define SSL_OP_TLS_D5_BUG 0x0 |
| 589 | #define SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER 0x0 | 585 | #define SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER 0x0 |
| 590 | #define SSL_OP_CISCO_ANYCONNECT 0x0 | 586 | #define SSL_OP_CISCO_ANYCONNECT 0x0 |
| 587 | #define SSL_OP_NO_COMPRESSION 0x0 | ||
| 588 | #define SSL_OP_NO_SSLv2 0x0 | ||
| 589 | #define SSL_OP_NO_SSLv3 0x0 | ||
| 591 | 590 | ||
| 592 | /* Allow SSL_write(..., n) to return r with 0 < r < n (i.e. report success | 591 | /* Allow SSL_write(..., n) to return r with 0 < r < n (i.e. report success |
| 593 | * when just a single record has been written): */ | 592 | * when just a single record has been written): */ |
diff --git a/src/lib/libssl/ssl.h b/src/lib/libssl/ssl.h index 7c815df8e1..6a03da5c0b 100644 --- a/src/lib/libssl/ssl.h +++ b/src/lib/libssl/ssl.h | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ssl.h,v 1.94 2015/09/10 17:57:50 jsing Exp $ */ | 1 | /* $OpenBSD: ssl.h,v 1.95 2015/10/25 15:58:57 doug Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -537,8 +537,6 @@ struct ssl_session_st { | |||
| 537 | 537 | ||
| 538 | /* As server, disallow session resumption on renegotiation */ | 538 | /* As server, disallow session resumption on renegotiation */ |
| 539 | #define SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION 0x00010000L | 539 | #define SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION 0x00010000L |
| 540 | /* Don't use compression even if supported */ | ||
| 541 | #define SSL_OP_NO_COMPRESSION 0x00020000L | ||
| 542 | /* If set, always create a new key when using tmp_ecdh parameters */ | 540 | /* If set, always create a new key when using tmp_ecdh parameters */ |
| 543 | #define SSL_OP_SINGLE_ECDH_USE 0x00080000L | 541 | #define SSL_OP_SINGLE_ECDH_USE 0x00080000L |
| 544 | /* If set, always create a new key when using tmp_dh parameters */ | 542 | /* If set, always create a new key when using tmp_dh parameters */ |
| @@ -552,8 +550,6 @@ struct ssl_session_st { | |||
| 552 | * forbidden to prevent version rollback attacks. */ | 550 | * forbidden to prevent version rollback attacks. */ |
| 553 | #define SSL_OP_TLS_ROLLBACK_BUG 0x00800000L | 551 | #define SSL_OP_TLS_ROLLBACK_BUG 0x00800000L |
| 554 | 552 | ||
| 555 | #define SSL_OP_NO_SSLv2 0x01000000L | ||
| 556 | #define SSL_OP_NO_SSLv3 0x02000000L | ||
| 557 | #define SSL_OP_NO_TLSv1 0x04000000L | 553 | #define SSL_OP_NO_TLSv1 0x04000000L |
| 558 | #define SSL_OP_NO_TLSv1_2 0x08000000L | 554 | #define SSL_OP_NO_TLSv1_2 0x08000000L |
| 559 | #define SSL_OP_NO_TLSv1_1 0x10000000L | 555 | #define SSL_OP_NO_TLSv1_1 0x10000000L |
| @@ -588,6 +584,9 @@ struct ssl_session_st { | |||
| 588 | #define SSL_OP_TLS_D5_BUG 0x0 | 584 | #define SSL_OP_TLS_D5_BUG 0x0 |
| 589 | #define SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER 0x0 | 585 | #define SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER 0x0 |
| 590 | #define SSL_OP_CISCO_ANYCONNECT 0x0 | 586 | #define SSL_OP_CISCO_ANYCONNECT 0x0 |
| 587 | #define SSL_OP_NO_COMPRESSION 0x0 | ||
| 588 | #define SSL_OP_NO_SSLv2 0x0 | ||
| 589 | #define SSL_OP_NO_SSLv3 0x0 | ||
| 591 | 590 | ||
| 592 | /* Allow SSL_write(..., n) to return r with 0 < r < n (i.e. report success | 591 | /* Allow SSL_write(..., n) to return r with 0 < r < n (i.e. report success |
| 593 | * when just a single record has been written): */ | 592 | * when just a single record has been written): */ |