ustream-openssl: Disable renegotiation in TLSv1.2 and earlier
authorMartin Schiller <ms@dev.tdt.de>
Wed, 7 Dec 2022 09:45:04 +0000 (10:45 +0100)
committerHauke Mehrtens <hauke@hauke-m.de>
Wed, 7 Dec 2022 23:45:19 +0000 (00:45 +0100)
commit9217ab46536353c7c792951b57163063f5ec7a3b
tree3ad7e7bd5a60eb5e06cad0bcfdb71010eaee0a03
parent2ce1d482e9445a97e44a42ddf393597d23dab97c
ustream-openssl: Disable renegotiation in TLSv1.2 and earlier

This fixes CVE-2011-1473 and CVE-2011-5094 by disabling renegotiation in
TLSv1.2 and earlier for server context.

Signed-off-by: Martin Schiller <ms@dev.tdt.de>
ustream-openssl.c