summaryrefslogtreecommitdiff
path: root/src/lib/emile
diff options
context:
space:
mode:
authorCedric BAIL <cedric@osg.samsung.com>2015-11-02 14:11:09 -0800
committerCedric BAIL <cedric@osg.samsung.com>2015-11-02 14:22:42 -0800
commitae5e2c82843a5dea2474b79f5426207495b465a8 (patch)
tree76d1e6145c2bcaf60d458fabd28e46b131b7bd73 /src/lib/emile
parent99d0f03c6fa966ac95930d076dc2bb70472029b6 (diff)
emile/ecore_con: drop SSLv3 support due to security issue.
SSLv3 has been compromised a year ago by what is known as POODLE (https://en.wikipedia.org/wiki/POODLE). Every major browser have now dropped support for SSLv3 and distribution are starting to do so also. It is a good timing for us to do so, especially as it breaks build on some distribution.
Diffstat (limited to 'src/lib/emile')
-rw-r--r--src/lib/emile/emile_cipher.h1
-rw-r--r--src/lib/emile/emile_cipher_openssl.c6
2 files changed, 0 insertions, 7 deletions
diff --git a/src/lib/emile/emile_cipher.h b/src/lib/emile/emile_cipher.h
index 74a1b51b9d..9d82d168bd 100644
--- a/src/lib/emile/emile_cipher.h
+++ b/src/lib/emile/emile_cipher.h
@@ -92,7 +92,6 @@ typedef struct _Emile_SSL Emile_SSL;
92typedef enum 92typedef enum
93{ 93{
94 EMILE_SSLv23, 94 EMILE_SSLv23,
95 EMILE_SSLv3,
96 EMILE_TLSv1 95 EMILE_TLSv1
97} Emile_Cipher_Type; 96} Emile_Cipher_Type;
98 97
diff --git a/src/lib/emile/emile_cipher_openssl.c b/src/lib/emile/emile_cipher_openssl.c
index b7f03c2a15..2bbe83fb50 100644
--- a/src/lib/emile/emile_cipher_openssl.c
+++ b/src/lib/emile/emile_cipher_openssl.c
@@ -294,9 +294,6 @@ emile_cipher_server_listen(Emile_Cipher_Type t)
294 SSL_CTX_set_options(r->ssl_ctx, 294 SSL_CTX_set_options(r->ssl_ctx,
295 options | SSL_OP_NO_SSLv2 | SSL_OP_SINGLE_DH_USE); 295 options | SSL_OP_NO_SSLv2 | SSL_OP_SINGLE_DH_USE);
296 break; 296 break;
297 case EMILE_SSLv3:
298 r->ssl_ctx = SSL_CTX_new(SSLv3_server_method());
299 break;
300 case EMILE_TLSv1: 297 case EMILE_TLSv1:
301 r->ssl_ctx = SSL_CTX_new(TLSv1_server_method()); 298 r->ssl_ctx = SSL_CTX_new(TLSv1_server_method());
302 break; 299 break;
@@ -742,9 +739,6 @@ emile_cipher_server_connect(Emile_Cipher_Type t)
742 SSL_CTX_set_options(r->ssl_ctx, 739 SSL_CTX_set_options(r->ssl_ctx,
743 options | SSL_OP_NO_SSLv2 | SSL_OP_SINGLE_DH_USE); 740 options | SSL_OP_NO_SSLv2 | SSL_OP_SINGLE_DH_USE);
744 break; 741 break;
745 case EMILE_SSLv3:
746 r->ssl_ctx = SSL_CTX_new(SSLv3_client_method());
747 break;
748 case EMILE_TLSv1: 742 case EMILE_TLSv1:
749 r->ssl_ctx = SSL_CTX_new(TLSv1_client_method()); 743 r->ssl_ctx = SSL_CTX_new(TLSv1_client_method());
750 break; 744 break;