curl - cURL mirror with patches applied

diff options

author	Barry Abrahamson <barry@automattic.com>	2014-01-01 23:50:45 +0100
committer	Daniel Stenberg <daniel@haxx.se>	2014-01-02 23:41:33 +0100
commit	4bb74005298bb0c517360582b90efafd540bf8f1 (patch)
tree	80e7101eee33ca56a5495adca9622c45fdab037f /lib/curl_sasl.c
parent	303172d220669774c53cc8ffd244ce82a72b737d (diff)

OpenSSL: Fix forcing SSLv3 connections

Some feedback provided by byte_bucket on IRC pointed out that commit db11750cfa5b1 wasn’t really correct because it allows for “upgrading” to a newer protocol when it should be only allowing for SSLv3. This change fixes that. When SSLv3 connection is forced, don't allow SSL negotiations for newer versions. Feedback provided by byte_bucket in #curl. This behavior is also consistent with the other force flags like --tlsv1.1 which doesn't allow for TLSv1.2 negotiation, etc Feedback-by: byte_bucket Bug: http://curl.haxx.se/bug/view.cgi?id=1319

Diffstat (limited to 'lib/curl_sasl.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: