no-ssl3

author Debian Qt/KDE Maintainers <debian-qt-kde@lists.debian.org>

Sat, 5 May 2018 01:53:17 +0000 (02:53 +0100)

committer Lisandro Damián Nicanor Pérez Meyer <lisandro@debian.org>

Sat, 5 May 2018 01:53:17 +0000 (02:53 +0100)
author Debian Qt/KDE Maintainers <debian-qt-kde@lists.debian.org>
Sat, 5 May 2018 01:53:17 +0000 (02:53 +0100)
committer Lisandro Damián Nicanor Pérez Meyer <lisandro@debian.org>
Sat, 5 May 2018 01:53:17 +0000 (02:53 +0100)
diff --git a/src/network/ssl/qsslsocket_openssl.cpp b/src/network/ssl/qsslsocket_openssl.cpp

index ce98494521b7e245e5aacf5693cbc5b4872d65f8..e55ec18deb62c33445ad05d160f98818979f94a9 100644 (file)
--- a/src/network/ssl/qsslsocket_openssl.cpp
+++ b/src/network/ssl/qsslsocket_openssl.cpp
@@ -267,7 +267,11 @@ init_context:
  #endif
          break;
      case QSsl::SslV3:
+#ifndef OPENSSL_NO_SSL3_METHOD
          ctx = q_SSL_CTX_new(client ? q_SSLv3_client_method() : q_SSLv3_server_method());
+#else
+        ctx = 0; // SSL 3 not supported by the system, but chosen deliberately -> error
+#endif
          break;
      case QSsl::SecureProtocols: // SslV2 will be disabled below
      case QSsl::TlsV1SslV3: // SslV2 will be disabled below
diff --git a/src/network/ssl/qsslsocket_openssl_symbols.cpp b/src/network/ssl/qsslsocket_openssl_symbols.cpp

index 3ee710605ce48103d78adbebda7ca888cc57ce61..02adf5f1a5f5d281ff2a08c182c3a43284739745 100644 (file)
--- a/src/network/ssl/qsslsocket_openssl_symbols.cpp
+++ b/src/network/ssl/qsslsocket_openssl_symbols.cpp
@@ -228,13 +228,17 @@ DEFINEFUNC(int, SSL_shutdown, SSL *a, a, return -1, return)
  #ifndef OPENSSL_NO_SSL2
  DEFINEFUNC(const SSL_METHOD *, SSLv2_client_method, DUMMYARG, DUMMYARG, return 0, return)
  #endif
+#ifndef OPENSSL_NO_SSL3_METHOD
  DEFINEFUNC(const SSL_METHOD *, SSLv3_client_method, DUMMYARG, DUMMYARG, return 0, return)
+#endif
  DEFINEFUNC(const SSL_METHOD *, SSLv23_client_method, DUMMYARG, DUMMYARG, return 0, return)
  DEFINEFUNC(const SSL_METHOD *, TLSv1_client_method, DUMMYARG, DUMMYARG, return 0, return)
  #ifndef OPENSSL_NO_SSL2
  DEFINEFUNC(const SSL_METHOD *, SSLv2_server_method, DUMMYARG, DUMMYARG, return 0, return)
  #endif
+#ifndef OPENSSL_NO_SSL3_METHOD
  DEFINEFUNC(const SSL_METHOD *, SSLv3_server_method, DUMMYARG, DUMMYARG, return 0, return)
+#endif
  DEFINEFUNC(const SSL_METHOD *, SSLv23_server_method, DUMMYARG, DUMMYARG, return 0, return)
  DEFINEFUNC(const SSL_METHOD *, TLSv1_server_method, DUMMYARG, DUMMYARG, return 0, return)
  #else
@@ -822,13 +826,17 @@ bool q_resolveOpenSslSymbols()
  #ifndef OPENSSL_NO_SSL2
      RESOLVEFUNC(SSLv2_client_method)
  #endif
+#ifndef OPENSSL_NO_SSL3_METHOD
      RESOLVEFUNC(SSLv3_client_method)
+#endif
      RESOLVEFUNC(SSLv23_client_method)
      RESOLVEFUNC(TLSv1_client_method)
  #ifndef OPENSSL_NO_SSL2
      RESOLVEFUNC(SSLv2_server_method)
  #endif
+#ifndef OPENSSL_NO_SSL3_METHOD
      RESOLVEFUNC(SSLv3_server_method)
+#endif
      RESOLVEFUNC(SSLv23_server_method)
      RESOLVEFUNC(TLSv1_server_method)
      RESOLVEFUNC(X509_NAME_entry_count)
author	Debian Qt/KDE Maintainers <debian-qt-kde@lists.debian.org>
	Sat, 5 May 2018 01:53:17 +0000 (02:53 +0100)
committer	Lisandro Damián Nicanor Pérez Meyer <lisandro@debian.org>
	Sat, 5 May 2018 01:53:17 +0000 (02:53 +0100)
src/network/ssl/qsslsocket_openssl.cpp		patch \| blob \| history
src/network/ssl/qsslsocket_openssl_symbols.cpp		patch \| blob \| history