storm/w3m
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

New option ssl_min_version for OpenSSL 1.1

Browse Source
This commit is contained in:
Tatsuya Kinoshita
2021-02-10 20:15:54 +09:00
parent c01675d342
commit 4f4d692321
4 changed files with 56 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
rc.c
View File

@@ -205,6 +205,9 @@ static int OptionEncode = FALSE;
#define CMT_SSL_CA_FILE N_("File consisting of PEM encoded certificates of CAs")
#endif /* USE_SSL_VERIFY */
#define CMT_SSL_FORBID_METHOD N_("List of forbidden SSL methods (2: SSLv2, 3: SSLv3, t: TLSv1.0, 5: TLSv1.1, 6: TLSv1.2, 7: TLSv1.3)")
#ifdef SSL_CTX_set_min_proto_version
#define CMT_SSL_MIN_VERSION N_("Minimum SSL version (TLSv1.0, TLSv1.1, TLSv1.2, or TLSv1.3)")
#endif
#define CMT_SSL_CIPHER N_("SSL ciphers for TLSv1.2 and below (e.g. DEFAULT:@SECLEVEL=2)")
#endif /* USE_SSL */
#ifdef USE_COOKIE
@@ -613,6 +616,10 @@ struct param_ptr params6[] = {
struct param_ptr params7[] = {
{"ssl_forbid_method", P_STRING, PI_TEXT, (void *)&ssl_forbid_method,
CMT_SSL_FORBID_METHOD, NULL},
#ifdef SSL_CTX_set_min_proto_version
{"ssl_min_version", P_STRING, PI_TEXT, (void *)&ssl_min_version,
CMT_SSL_MIN_VERSION, NULL},
#endif
{"ssl_cipher", P_STRING, PI_TEXT, (void *)&ssl_cipher, CMT_SSL_CIPHER,
NULL},
#ifdef USE_SSL_VERIFY