Mercurial > hg > nginx
comparison src/event/ngx_event_openssl.c @ 7901:dda421871bc2
SSL: removed use of the SSL_OP_MSIE_SSLV2_RSA_PADDING option.
It has no effect since OpenSSL 0.9.7h and 0.9.8a.
| author | Sergey Kandaurov <pluknet@nginx.com> |
|---|---|
| date | Tue, 10 Aug 2021 23:43:17 +0300 |
| parents | 509b663a789c |
| children | eb6c77e6d55d fac88e160653 |
comparison
equal
deleted
inserted
replaced
| 7900:509b663a789c | 7901:dda421871bc2 |
|---|---|
| 295 SSL_CTX_set_options(ssl->ctx, SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG); | 295 SSL_CTX_set_options(ssl->ctx, SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG); |
| 296 #endif | 296 #endif |
| 297 | 297 |
| 298 #ifdef SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER | 298 #ifdef SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER |
| 299 SSL_CTX_set_options(ssl->ctx, SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER); | 299 SSL_CTX_set_options(ssl->ctx, SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER); |
| 300 #endif | |
| 301 | |
| 302 #ifdef SSL_OP_MSIE_SSLV2_RSA_PADDING | |
| 303 /* this option allow a potential SSL 2.0 rollback (CAN-2005-2969) */ | |
| 304 SSL_CTX_set_options(ssl->ctx, SSL_OP_MSIE_SSLV2_RSA_PADDING); | |
| 305 #endif | 300 #endif |
| 306 | 301 |
| 307 #ifdef SSL_OP_SSLEAY_080_CLIENT_DH_BUG | 302 #ifdef SSL_OP_SSLEAY_080_CLIENT_DH_BUG |
| 308 SSL_CTX_set_options(ssl->ctx, SSL_OP_SSLEAY_080_CLIENT_DH_BUG); | 303 SSL_CTX_set_options(ssl->ctx, SSL_OP_SSLEAY_080_CLIENT_DH_BUG); |
| 309 #endif | 304 #endif |