From: Lukas Tribus <luky-37@hotmail.com>
Date: Thu, 26 Nov 2015 00:48:08 +0000 (+0100)
Subject: BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket
X-Git-Tag: v1.7-dev1~39
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=d334a2c843c493c0bbd1bf12efa9f263b7f6cbea;p=thirdparty%2Fhaproxy.git

BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket

Sander Klein reported an error messages about SSLv3 not
being supported on Debian 8, although he didn't force-sslv3.

Vincent Bernat tracked this down to the LUA initialization, which
actually does force-sslv3.

This patch removes force-sslv3 from the LUA initialization, so
the LUA SSL socket can actually use TLS and doesn't trigger
warnings when SSLv3 is not supported by libssl (such as in
Debian 8).

This should be backported to 1.6.
---

diff --git a/src/hlua.c b/src/hlua.c
index 5ee233727e..17e9b54e02 100644
--- a/src/hlua.c
+++ b/src/hlua.c
@@ -6475,7 +6475,6 @@ void hlua_init(void)
 		"ssl",
 		"verify",
 		"none",
-		"force-sslv3",
 		NULL
 	};
 #endif