Blame 00195-enable-sslv23-in-ssl.patch
|
Robert Kuska |
e0419e8 |
diff -up Python-2.7.8/Modules/_ssl.c.orig Python-2.7.8/Modules/_ssl.c
|
|
Robert Kuska |
e0419e8 |
--- Python-2.7.8/Modules/_ssl.c.orig 2014-07-17 14:17:32.584362667 +0200
|
|
Robert Kuska |
e0419e8 |
+++ Python-2.7.8/Modules/_ssl.c 2014-07-17 14:17:38.215405930 +0200
|
|
Robert Kuska |
e0419e8 |
@@ -312,8 +312,10 @@ newPySSLObject(PySocketSockObject *Sock,
|
|
Robert Kuska |
e0419e8 |
else if (proto_version == PY_SSL_VERSION_SSL2)
|
|
Robert Kuska |
e0419e8 |
self->ctx = SSL_CTX_new(SSLv2_method()); /* Set up context */
|
|
Robert Kuska |
e0419e8 |
#endif
|
|
Robert Kuska |
e0419e8 |
- else if (proto_version == PY_SSL_VERSION_SSL23)
|
|
Robert Kuska |
e0419e8 |
+ else if (proto_version == PY_SSL_VERSION_SSL23) {
|
|
Robert Kuska |
e0419e8 |
self->ctx = SSL_CTX_new(SSLv23_method()); /* Set up context */
|
|
Robert Kuska |
e0419e8 |
+ self->ctx->options &= ~(SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3);
|
|
Robert Kuska |
e0419e8 |
+ }
|
|
Robert Kuska |
e0419e8 |
PySSL_END_ALLOW_THREADS
|
|
Robert Kuska |
e0419e8 |
|
|
Robert Kuska |
e0419e8 |
if (self->ctx == NULL) {
|