search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
libsoup3: update to 3.6.0; fix GTK2/3 app startup
[oi-userland.git] / components / web / links / patches / init-openssl.patch
blobcee5f9d05eb93714df204fc9d15e95a9e7f5ca1d
1 Disable SSLv2 and SSLv3 in links to "mitigate POODLE vulnerability".
2
3 This change will be passed upstream.
4
5 --- a/https.c.orig 2017-03-01 16:33:15.504062101 +0000
6 +++ b/https.c 2017-03-01 16:33:47.467654008 +0000
7 @@ -114,7 +114,7 @@
8 #ifndef SSL_OP_NO_COMPRESSION
9 #define SSL_OP_NO_COMPRESSION 0
10 #endif
11 - SSL_CTX_set_options(ctx, SSL_OP_ALL | SSL_OP_NO_COMPRESSION);
12 + SSL_CTX_set_options(ctx, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3 | SSL_OP_NO_COMPRESSION);
13 #ifdef SSL_MODE_ENABLE_PARTIAL_WRITE
14 SSL_CTX_set_mode(ctx, SSL_MODE_ENABLE_PARTIAL_WRITE);
15 #endif