Lines 342-347
Link Here
|
342 |
SSL_CTX_set_verify(res->ctx, SSL_VERIFY_NONE, NULL); |
342 |
SSL_CTX_set_verify(res->ctx, SSL_VERIFY_NONE, NULL); |
343 |
SSL_CTX_set_mode(res->ctx, SSL_MODE_AUTO_RETRY); |
343 |
SSL_CTX_set_mode(res->ctx, SSL_MODE_AUTO_RETRY); |
344 |
SSL_CTX_set_options(res->ctx, SSL_OP_ALL); |
344 |
SSL_CTX_set_options(res->ctx, SSL_OP_ALL); |
|
|
345 |
#ifdef SSL_OP_NO_COMPRESSION |
346 |
SSL_CTX_set_options(res->ctx, SSL_OP_NO_COMPRESSION); |
347 |
#endif |
345 |
SSL_CTX_clear_options(res->ctx, SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION); |
348 |
SSL_CTX_clear_options(res->ctx, SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION); |
346 |
SSL_CTX_clear_options(res->ctx, SSL_OP_LEGACY_SERVER_CONNECT); |
349 |
SSL_CTX_clear_options(res->ctx, SSL_OP_LEGACY_SERVER_CONNECT); |
347 |
sprintf(lin, "%d-Pound-%ld", getpid(), random()); |
350 |
sprintf(lin, "%d-Pound-%ld", getpid(), random()); |
Lines 362-367
Link Here
|
362 |
SSL_CTX_set_verify(res->ctx, SSL_VERIFY_NONE, NULL); |
365 |
SSL_CTX_set_verify(res->ctx, SSL_VERIFY_NONE, NULL); |
363 |
SSL_CTX_set_mode(res->ctx, SSL_MODE_AUTO_RETRY); |
366 |
SSL_CTX_set_mode(res->ctx, SSL_MODE_AUTO_RETRY); |
364 |
SSL_CTX_set_options(res->ctx, SSL_OP_ALL); |
367 |
SSL_CTX_set_options(res->ctx, SSL_OP_ALL); |
|
|
368 |
#ifdef SSL_OP_NO_COMPRESSION |
369 |
SSL_CTX_set_options(res->ctx, SSL_OP_NO_COMPRESSION); |
370 |
#endif |
365 |
SSL_CTX_clear_options(res->ctx, SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION); |
371 |
SSL_CTX_clear_options(res->ctx, SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION); |
366 |
SSL_CTX_clear_options(res->ctx, SSL_OP_LEGACY_SERVER_CONNECT); |
372 |
SSL_CTX_clear_options(res->ctx, SSL_OP_LEGACY_SERVER_CONNECT); |
367 |
sprintf(lin, "%d-Pound-%ld", getpid(), random()); |
373 |
sprintf(lin, "%d-Pound-%ld", getpid(), random()); |
Lines 902-907
Link Here
|
902 |
POUND_CTX *pc; |
908 |
POUND_CTX *pc; |
903 |
|
909 |
|
904 |
ssl_op_enable = SSL_OP_ALL; |
910 |
ssl_op_enable = SSL_OP_ALL; |
|
|
911 |
#ifdef SSL_OP_NO_COMPRESSION |
912 |
ssl_op_enable |= SSL_OP_NO_COMPRESSION; |
913 |
#endif |
905 |
ssl_op_disable = SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION | SSL_OP_LEGACY_SERVER_CONNECT; |
914 |
ssl_op_disable = SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION | SSL_OP_LEGACY_SERVER_CONNECT; |
906 |
|
915 |
|
907 |
if((res = (LISTENER *)malloc(sizeof(LISTENER))) == NULL) |
916 |
if((res = (LISTENER *)malloc(sizeof(LISTENER))) == NULL) |