moparisthebest/curl
1
0
Fork 0
mirror of https://github.com/moparisthebest/curl synced 2024-12-22 08:08:50 -05:00
Code Issues Releases Wiki Activity

work-around SSL implementation flaws better, pointed out in bug report

Browse Source 
#745122.
This commit is contained in:
Daniel Stenberg 2003-06-02 13:27:03 +00:00
parent 4eb2a6c9a3
commit d288222e80
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
lib/ssluse.c
View File

@ -786,6 +786,16 @@ Curl_SSLConnect(struct connectdata *conn)
return CURLE_OUT_OF_MEMORY; return CURLE_OUT_OF_MEMORY;
} }
/* OpenSSL contains code to work-around lots of bugs and flaws in various
SSL-implementations. SSL_CTX_set_options() is used to enabled those
work-arounds. The man page for this option states that SSL_OP_ALL enables
ll the work-arounds and that "It is usually safe to use SSL_OP_ALL to
enable the bug workaround options if compatibility with somewhat broken
implementations is desired."
*/
SSL_CTX_set_options(conn->ssl.ctx, SSL_OP_ALL);
if(data->set.cert) { if(data->set.cert) {
if (!cert_stuff(conn, if (!cert_stuff(conn,
data->set.cert, data->set.cert,