projects / platform / upstream / curl.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 1f47a77)
OpenSSL: Fix forcing SSLv3 connections
authorBarry Abrahamson <barry@automattic.com>
Wed, 1 Jan 2014 04:28:35 +0000 (05:28 +0100)
committerDaniel Stenberg <daniel@haxx.se>
Wed, 1 Jan 2014 20:36:47 +0000 (21:36 +0100)
Since ad34a2d5c87c7f4b14e8dded3 (present in 7.34.0 release) forcing
SSLv3 will always return the error "curl: (35) Unsupported SSL protocol
version" Can be replicated with `curl -I -3 https://www.google.com/`.
This fix simply allows for v3 to be forced.

lib/vtls/openssl.c patch | blob | history

diff --git a/lib/vtls/openssl.c b/lib/vtls/openssl.c
index 7a21c737a06cda2f12733360f77836d1b022e308..bc22bb888bf860c79a37feb9d8fddc0e53599cdf 100644 (file)
--- a/lib/vtls/openssl.c
+++ b/lib/vtls/openssl.c
@@ -1551,6 +1551,7 @@ ossl_connect_step1(struct connectdata *conn,
 
   switch(data->set.ssl.version) {
   case CURL_SSLVERSION_DEFAULT:
+  case CURL_SSLVERSION_SSLv3:
     ctx_options |= SSL_OP_NO_SSLv2;
 #ifdef USE_TLS_SRP
     if(data->set.ssl.authtype == CURL_TLSAUTH_SRP) {
Domain: Network & Connectivity / Data Network;