]> git.ipfire.org Git - thirdparty/curl.git/commit
projects / thirdparty / curl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cf65d42) | patch
vtls: refuse setting any SSL version
authorDaniel Stenberg <daniel@haxx.se>
Mon, 22 Mar 2021 12:39:37 +0000 (13:39 +0100)
committerDaniel Stenberg <daniel@haxx.se>
Mon, 19 Apr 2021 06:16:02 +0000 (08:16 +0200)
commiteff614fb0242cb37d33f89e2e74a93cef5203aed
tree0b17f5b8bd993f9b9140499bddd76dde9b9750b0tree | snapshot
parentcf65d4237e097ace65e17580407ce56487823a47commit | diff
vtls: refuse setting any SSL version

... previously they were supported if a TLS library would (unexpectedly)
still support them, but from this change they will be refused already in
curl_easy_setopt(). SSLv2 and SSLv3 have been known to be insecure for
many years now.

Closes #6773
docs/libcurl/opts/CURLOPT_SSLVERSION.3 diff | blob | blame | history
lib/setopt.c diff | blob | blame | history
lib/vtls/mbedtls.c diff | blob | blame | history
lib/vtls/nss.c diff | blob | blame | history
lib/vtls/openssl.c diff | blob | blame | history
lib/vtls/schannel.c diff | blob | blame | history
lib/vtls/sectransp.c diff | blob | blame | history
lib/vtls/wolfssl.c diff | blob | blame | history
Mirror of https://github.com/curl/curl.git