Skip to content

M
MariaDB
Commit 1a0c9c41 authored by Georg Richter's avatar Georg Richter
Browse files
Options

MDEV-14101: post fix for Yassl - yassl even doesn't not support disabling TLSv1.1

parent d4ac525c
Hide whitespace changes
Inline Side-by-side
Showing with 4 additions and 0 deletions
vio/viosslfactories.c
View file @ 1a0c9c41
...@@ -176,7 +176,9 @@ static long vio_tls_protocol_options(long tls_version) ...@@ -176,7 +176,9 @@ static long vio_tls_protocol_options(long tls_version)
#ifdef TLS1_2_VERSION #ifdef TLS1_2_VERSION
SSL_OP_NO_TLSv1_2 | SSL_OP_NO_TLSv1_2 |
#endif #endif
#ifdef TLS1_1_VERSION
SSL_OP_NO_TLSv1_1 | SSL_OP_NO_TLSv1_1 |
#endif
SSL_OP_NO_TLSv1; SSL_OP_NO_TLSv1;
long disabled_tls_protocols= tls_protocol_flags, long disabled_tls_protocols= tls_protocol_flags,
disabled_ssl_protocols= SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3; disabled_ssl_protocols= SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3;
...@@ -186,8 +188,10 @@ static long vio_tls_protocol_options(long tls_version) ...@@ -186,8 +188,10 @@ static long vio_tls_protocol_options(long tls_version)
if (tls_version & VIO_TLSv1_0) if (tls_version & VIO_TLSv1_0)
disabled_tls_protocols&= ~SSL_OP_NO_TLSv1; disabled_tls_protocols&= ~SSL_OP_NO_TLSv1;
#ifdef TLS1_1_VERSION
if (tls_version & VIO_TLSv1_1) if (tls_version & VIO_TLSv1_1)
disabled_tls_protocols&= ~SSL_OP_NO_TLSv1_1; disabled_tls_protocols&= ~SSL_OP_NO_TLSv1_1;
#endif
#ifdef TLS1_2_VERSION #ifdef TLS1_2_VERSION
if (tls_version & VIO_TLSv1_2) if (tls_version & VIO_TLSv1_2)
disabled_tls_protocols&= ~SSL_OP_NO_TLSv1_2; disabled_tls_protocols&= ~SSL_OP_NO_TLSv1_2;
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7