nihilist/tor
1
0
Fork 0
mirror of https://gitlab.torproject.org/tpo/core/tor.git synced 2024-11-27 22:03:31 +01:00
Code Issues Packages Projects Releases Wiki Activity

Detect the correct versions of openssl for tls negotiation fix

Browse Source 
Since it doesn't seem to hurt, we should use _both_ fixes whenever
we see OpenSSL 0.9.7L .. 0.9.8, or OpenSSL 0.9.8L..
This commit is contained in:
Nick Mathewson 2010-01-29 17:11:20 -05:00
parent 8d68e5c748
commit 4905eaa38c
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
src/common/tortls.c
View File

@ -358,13 +358,13 @@ tor_tls_init(void)
version = SSLeay();
if (version >= 0x009070c0L && version < 0x00908000L) {
log_notice(LD_GENERAL, "OpenSSL %s looks like version 0.9.7l or later; "
"I will use SSL3_FLAGS to enable renegotation",
"I will try SSL3_FLAGS and SSL3_OP to enable renegotation",
SSLeay_version(SSLEAY_VERSION));
use_unsafe_renegotiation_flag = 1;
use_unsafe_renegotiation_op = 1;
} else if (version >= 0x009080d0L) {
log_notice(LD_GENERAL, "OpenSSL %s looks like version 0.9.8m or later; "
"I will use SSL_OP to enable renegotiation",
} else if (version >= 0x009080c0L) {
log_notice(LD_GENERAL, "OpenSSL %s looks like version 0.9.8l or later; "
"I will try SSL3_FLAGS and SSL_OP to enable renegotiation",
SSLeay_version(SSLEAY_VERSION));
use_unsafe_renegotiation_flag = 1;
use_unsafe_renegotiation_op = 1;