openssl/patches/openssl-1.0.1e-ssl2-no-ec.patch

   1 diff -up openssl-1.0.1e/ssl/s23_lib.c.ssl2noec openssl-1.0.1e/ssl/s23_lib.c
   2 --- openssl-1.0.1e/ssl/s23_lib.c.ssl2noec       2013-02-11 16:26:04.000000000 +0100
   3 +++ openssl-1.0.1e/ssl/s23_lib.c        2014-05-06 15:51:54.053293674 +0200
   4 @@ -107,6 +107,13 @@ int ssl23_put_cipher_by_char(const SSL_C
   5         long l;
   6
   7         /* We can write SSLv2 and SSLv3 ciphers */
   8 +       /* but no ECC ciphers */
   9 +       if (c->algorithm_mkey == SSL_kECDHr ||
  10 +               c->algorithm_mkey == SSL_kECDHe ||
  11 +               c->algorithm_mkey == SSL_kEECDH ||
  12 +               c->algorithm_auth == SSL_aECDH ||
  13 +               c->algorithm_auth == SSL_aECDSA)
  14 +               return 0;
  15         if (p != NULL)
  16                 {
  17                 l=c->id;