storm/w3m
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Extend ssl_forbid_method for TLSv1.2 and TLSv1.3

Browse Source
This commit is contained in:
Tatsuya Kinoshita
2020-03-11 19:33:34 +09:00
parent 74efea9997
commit 91953baf07
1 changed files with 10 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
url.c
+10
View File
@@ -344,8 +344,18 @@ openSSLHandle(int sock, char *hostname, char **p_cert)
option |= SSL_OP_NO_TLSv1; option |= SSL_OP_NO_TLSv1;
if (strchr(ssl_forbid_method, '4')) if (strchr(ssl_forbid_method, '4'))
option |= SSL_OP_NO_TLSv1; option |= SSL_OP_NO_TLSv1;
#ifdef SSL_OP_NO_TLSv1_1
if (strchr(ssl_forbid_method, '5')) if (strchr(ssl_forbid_method, '5'))
option |= SSL_OP_NO_TLSv1_1; option |= SSL_OP_NO_TLSv1_1;
#endif
#ifdef SSL_OP_NO_TLSv1_2
if (strchr(ssl_forbid_method, '6'))
option |= SSL_OP_NO_TLSv1_2;
#endif
#ifdef SSL_OP_NO_TLSv1_3
if (strchr(ssl_forbid_method, '7'))
option |= SSL_OP_NO_TLSv1_3;
#endif
} }
#ifdef SSL_OP_NO_COMPRESSION #ifdef SSL_OP_NO_COMPRESSION
option |= SSL_OP_NO_COMPRESSION; option |= SSL_OP_NO_COMPRESSION;