curl/vtls at 4bb74005298bb0c517360582b90efafd540bf8f1 - curl - code.moparisthebest.com

moparisthebest/curl

mirror of https://github.com/moparisthebest/curl synced 2025-03-11 07:39:50 -04:00

History

Barry Abrahamson 4bb7400529 OpenSSL: Fix forcing SSLv3 connections

Some feedback provided by byte_bucket on IRC pointed out that commit
db11750cfa5b1 wasn’t really correct because it allows for “upgrading” to a
newer protocol when it should be only allowing for SSLv3.

This change fixes that.

When SSLv3 connection is forced, don't allow SSL negotiations for newer
versions.  Feedback provided by byte_bucket in #curl.  This behavior is
also consistent with the other force flags like --tlsv1.1 which doesn't
allow for TLSv1.2 negotiation, etc

Feedback-by: byte_bucket
Bug: http://curl.haxx.se/bug/view.cgi?id=1319

2014-01-02 23:41:33 +01:00

..

axtls.c

vtls: Updated comments referencing sslgen.c and ssluse.c

2013-12-26 21:42:22 +00:00

axtls.h

vtls: moved all TLS/SSL source and header files into subdir

2013-12-20 17:12:42 +01:00

curl_darwinssl.c

vtls: Updated comments referencing sslgen.c and ssluse.c

2013-12-26 21:42:22 +00:00

curl_darwinssl.h

vtls: moved all TLS/SSL source and header files into subdir

2013-12-20 17:12:42 +01:00

curl_schannel.c

vtls: Updated comments referencing sslgen.c and ssluse.c

2013-12-26 21:42:22 +00:00

curl_schannel.h

vtls: moved all TLS/SSL source and header files into subdir

2013-12-20 17:12:42 +01:00

cyassl.c

vtls: Updated comments referencing sslgen.c and ssluse.c

2013-12-26 21:42:22 +00:00

cyassl.h

vtls: moved all TLS/SSL source and header files into subdir

2013-12-20 17:12:42 +01:00

gskit.c

vtls: Fixed up include of vtls.h

2013-12-26 21:25:51 +00:00

gskit.h

vtls: Updated comments referencing sslgen.c and ssluse.c

2013-12-26 21:42:22 +00:00

gtls.c

vtls: Updated comments referencing sslgen.c and ssluse.c

2013-12-26 21:42:22 +00:00

gtls.h

vtls: moved all TLS/SSL source and header files into subdir

2013-12-20 17:12:42 +01:00

nss.c

vtls: Updated comments referencing sslgen.c and ssluse.c

2013-12-26 21:42:22 +00:00

nssg.h

vtls: Updated comments referencing sslgen.c and ssluse.c

2013-12-26 21:42:22 +00:00

openssl.c

OpenSSL: Fix forcing SSLv3 connections

2014-01-02 23:41:33 +01:00

openssl.h

vtls: Updated comments referencing sslgen.c and ssluse.c

2013-12-26 21:42:22 +00:00

polarssl_threadlock.c

vtls: moved all TLS/SSL source and header files into subdir

2013-12-20 17:12:42 +01:00

polarssl_threadlock.h

vtls: moved all TLS/SSL source and header files into subdir

2013-12-20 17:12:42 +01:00

polarssl.c

vtls: Updated comments referencing sslgen.c and ssluse.c

2013-12-26 21:42:22 +00:00

polarssl.h

vtls: moved all TLS/SSL source and header files into subdir

2013-12-20 17:12:42 +01:00

qssl.c

vtls: Fixed up include of vtls.h

2013-12-26 21:25:51 +00:00

qssl.h

vtls: Updated comments referencing sslgen.c and ssluse.c

2013-12-26 21:42:22 +00:00

vtls.c

vtls: renamed sslgen.[ch] to vtls.[ch]

2013-12-20 17:12:42 +01:00

vtls.h

vtls: renamed sslgen.[ch] to vtls.[ch]

2013-12-20 17:12:42 +01:00