Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
OpenHarmony
Third Party Openssl
提交
869e978c
T
Third Party Openssl
项目概览
OpenHarmony
/
Third Party Openssl
大约 1 年 前同步成功
通知
9
Star
18
Fork
1
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
T
Third Party Openssl
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
提交
Issue看板
体验新版 GitCode,发现更多精彩内容 >>
提交
869e978c
编写于
1月 02, 2016
作者:
K
Kurt Roeckx
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
Allow disabling the min and max version
Reviewed-by:
N
Viktor Dukhovni
<
openssl-users@dukhovni.org
>
上级
ca0004e5
变更
3
隐藏空白更改
内联
并排
Showing
3 changed file
with
10 addition
and
1 deletion
+10
-1
doc/ssl/SSL_CONF_cmd.pod
doc/ssl/SSL_CONF_cmd.pod
+4
-1
ssl/ssl_conf.c
ssl/ssl_conf.c
+1
-0
ssl/statem/statem_lib.c
ssl/statem/statem_lib.c
+5
-0
未找到文件。
doc/ssl/SSL_CONF_cmd.pod
浏览文件 @
869e978c
...
...
@@ -113,7 +113,8 @@ operations are permitted.
Sets the minimum and maximum supported protocol.
Currently supported protocol values are B<SSLv3>, B<TLSv1>,
B<TLSv1.1>, B<TLSv1.2> for TLS and B<DTLSv1>, B<DTLSv1.2> for DTLS.
B<TLSv1.1>, B<TLSv1.2> for TLS and B<DTLSv1>, B<DTLSv1.2> for DTLS,
and B<None> for no limit.
If the either bound is not specified then only the other bound applies,
if specified.
To restrict the supported protocol versions use these commands rather
...
...
@@ -275,6 +276,7 @@ This sets the minimum supported SSL, TLS or DTLS version.
Currently supported protocol values are B<SSLv3>, B<TLSv1>, B<TLSv1.1>,
B<TLSv1.2>, B<DTLSv1> and B<DTLSv1.2>.
The value B<None> will disable the limit.
=item B<MaxProtocol>
...
...
@@ -282,6 +284,7 @@ This sets the maximum supported SSL, TLS or DTLS version.
Currently supported protocol values are B<SSLv3>, B<TLSv1>, B<TLSv1.1>,
B<TLSv1.2>, B<DTLSv1> and B<DTLSv1.2>.
The value B<None> will disable the limit.
=item B<Protocol>
...
...
ssl/ssl_conf.c
浏览文件 @
869e978c
...
...
@@ -332,6 +332,7 @@ static int protocol_from_string(const char *value)
int
version
;
};
static
const
struct
protocol_versions
versions
[]
=
{
{
"None"
,
0
},
{
"SSLv3"
,
SSL3_VERSION
},
{
"TLSv1"
,
TLS1_VERSION
},
{
"TLSv1.1"
,
TLS1_1_VERSION
},
...
...
ssl/statem/statem_lib.c
浏览文件 @
869e978c
...
...
@@ -834,6 +834,11 @@ int ssl_check_version_downgrade(SSL *s)
*/
int
ssl_set_version_bound
(
int
method_version
,
int
version
,
int
*
bound
)
{
if
(
version
==
0
)
{
*
bound
=
version
;
return
1
;
}
/*-
* Restrict TLS methods to TLS protocol versions.
* Restrict DTLS methods to DTLS protocol versions.
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录