CyberLeo.Net >> Repos - FreeBSD/stable/10.git/commit

Re-enable SSLv2 support to restore ABI.

Excerpt from CHANGES:

    Even if "enable-ssl2" is used, users who want to negotiate SSLv2 via
    the version-flexible SSLv23_method() will need to explicitly call
    either of:

SSL_CTX_clear_options(ctx, SSL_OP_NO_SSLv2);
    or
SSL_clear_options(ssl, SSL_OP_NO_SSLv2);

    as appropriate.  Even if either of those is used, or the application
    explicitly uses the version-specific SSLv2_method() or its client and
    server variants, SSLv2 ciphers vulnerable to exhaustive search key
    recovery have been removed.  Specifically, the SSLv2 40-bit EXPORT
    ciphers, and SSLv2 56-bit DES are no longer available.

Approved by: re (marius, gjb), so (delphij)

git-svn-id: svn://svn.freebsd.org/base/stable/10@296371 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

author	jkim <jkim@ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f>
	Fri, 4 Mar 2016 00:40:15 +0000 (00:40 +0000)
committer	jkim <jkim@ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f>
	Fri, 4 Mar 2016 00:40:15 +0000 (00:40 +0000)
commit	bea07ad95e0f5dde8d8af56e9759fe6afed0b2ad
tree	6b303f77e9e0621af7fd9d7fb9def646ff4264ad	tree \| snapshot
parent	25398c345199a2001b8ee0dc8dbf0511737c6588	commit \| diff

secure/lib/libcrypto/opensslconf-arm.h		diff \| blob \| history
secure/lib/libcrypto/opensslconf-ia64.h		diff \| blob \| history
secure/lib/libcrypto/opensslconf-mips.h		diff \| blob \| history
secure/lib/libcrypto/opensslconf-powerpc.h		diff \| blob \| history
secure/lib/libcrypto/opensslconf-sparc64.h		diff \| blob \| history
secure/lib/libcrypto/opensslconf-x86.h		diff \| blob \| history