|
Lines 342-347
Link Here
|
| 342 |
SSL_CTX_set_verify(res->ctx, SSL_VERIFY_NONE, NULL); |
342 |
SSL_CTX_set_verify(res->ctx, SSL_VERIFY_NONE, NULL); |
| 343 |
SSL_CTX_set_mode(res->ctx, SSL_MODE_AUTO_RETRY); |
343 |
SSL_CTX_set_mode(res->ctx, SSL_MODE_AUTO_RETRY); |
| 344 |
SSL_CTX_set_options(res->ctx, SSL_OP_ALL); |
344 |
SSL_CTX_set_options(res->ctx, SSL_OP_ALL); |
|
|
345 |
#ifdef SSL_OP_NO_COMPRESSION |
| 346 |
SSL_CTX_set_options(res->ctx, SSL_OP_NO_COMPRESSION); |
| 347 |
#endif |
| 345 |
SSL_CTX_clear_options(res->ctx, SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION); |
348 |
SSL_CTX_clear_options(res->ctx, SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION); |
| 346 |
SSL_CTX_clear_options(res->ctx, SSL_OP_LEGACY_SERVER_CONNECT); |
349 |
SSL_CTX_clear_options(res->ctx, SSL_OP_LEGACY_SERVER_CONNECT); |
| 347 |
sprintf(lin, "%d-Pound-%ld", getpid(), random()); |
350 |
sprintf(lin, "%d-Pound-%ld", getpid(), random()); |
|
Lines 362-367
Link Here
|
| 362 |
SSL_CTX_set_verify(res->ctx, SSL_VERIFY_NONE, NULL); |
365 |
SSL_CTX_set_verify(res->ctx, SSL_VERIFY_NONE, NULL); |
| 363 |
SSL_CTX_set_mode(res->ctx, SSL_MODE_AUTO_RETRY); |
366 |
SSL_CTX_set_mode(res->ctx, SSL_MODE_AUTO_RETRY); |
| 364 |
SSL_CTX_set_options(res->ctx, SSL_OP_ALL); |
367 |
SSL_CTX_set_options(res->ctx, SSL_OP_ALL); |
|
|
368 |
#ifdef SSL_OP_NO_COMPRESSION |
| 369 |
SSL_CTX_set_options(res->ctx, SSL_OP_NO_COMPRESSION); |
| 370 |
#endif |
| 365 |
SSL_CTX_clear_options(res->ctx, SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION); |
371 |
SSL_CTX_clear_options(res->ctx, SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION); |
| 366 |
SSL_CTX_clear_options(res->ctx, SSL_OP_LEGACY_SERVER_CONNECT); |
372 |
SSL_CTX_clear_options(res->ctx, SSL_OP_LEGACY_SERVER_CONNECT); |
| 367 |
sprintf(lin, "%d-Pound-%ld", getpid(), random()); |
373 |
sprintf(lin, "%d-Pound-%ld", getpid(), random()); |
|
Lines 902-907
Link Here
|
| 902 |
POUND_CTX *pc; |
908 |
POUND_CTX *pc; |
| 903 |
|
909 |
|
| 904 |
ssl_op_enable = SSL_OP_ALL; |
910 |
ssl_op_enable = SSL_OP_ALL; |
|
|
911 |
#ifdef SSL_OP_NO_COMPRESSION |
| 912 |
ssl_op_enable |= SSL_OP_NO_COMPRESSION; |
| 913 |
#endif |
| 905 |
ssl_op_disable = SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION | SSL_OP_LEGACY_SERVER_CONNECT; |
914 |
ssl_op_disable = SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION | SSL_OP_LEGACY_SERVER_CONNECT; |
| 906 |
|
915 |
|
| 907 |
if((res = (LISTENER *)malloc(sizeof(LISTENER))) == NULL) |
916 |
if((res = (LISTENER *)malloc(sizeof(LISTENER))) == NULL) |
