Commit 3c6c139a authored by Dr. Stephen Henson's avatar Dr. Stephen Henson
Browse files

Restore SSL_OP_MSIE_SSLV2_RSA_PADDING 

The flag SSL_OP_MSIE_SSLV2_RSA_PADDING hasn't done anything since OpenSSL
0.9.7h but deleting it will break source compatibility with any software
that references it. Restore it but #define to zero.
(cherry picked from commit b17d6b8d1d49fa4732deff17cfd1833616af0d9c)
parent f3a39032

ssl/ssl.h

+3 −0
Original line number Diff line number Diff line
@@ -669,6 +669,9 @@ struct ssl_session_st 
#define SSL_OP_TLS_D5_BUG				0x00000100L

#define SSL_OP_TLS_BLOCK_PADDING_BUG			0x00000200L



/* Hasn't done anything since OpenSSL 0.9.7h, retained for compatibility */

#define SSL_OP_MSIE_SSLV2_RSA_PADDING			0x0



/* Disable SSL 3.0/TLS 1.0 CBC vulnerability workaround that was added

 * in OpenSSL 0.9.6d.  Usually (depending on the application protocol)

 * the workaround is not needed.  Unfortunately some broken SSL/TLS