From 3035c2c63a226cf97044405eea5107ab01be2a6d Mon Sep 17 00:00:00 2001 From: Peter Cai Date: Sun, 3 Apr 2016 15:05:39 +0000 Subject: [PATCH] net: disable SSLv3 SSLv3 is no longer secure and has been removed from OpenSSL since 1.0.2. Disabling this will enable Nim programs to run against OpenSSL 1.0.2. --- lib/pure/net.nim | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/lib/pure/net.nim b/lib/pure/net.nim index 330682ca90..394bccee31 100644 --- a/lib/pure/net.nim +++ b/lib/pure/net.nim @@ -222,9 +222,9 @@ when defined(ssl): of protSSLv23: newCTX = SSL_CTX_new(SSLv23_method()) # SSlv2,3 and TLS1 support. of protSSLv2: - raiseSslError("SSLv2 is no longer secure and has been deprecated, use protSSLv3") + raiseSslError("SSLv2 is no longer secure and has been deprecated, use protSSLv23") of protSSLv3: - newCTX = SSL_CTX_new(SSLv3_method()) + raiseSslError("SSLv3 is no longer secure and has been deprecated, use protSSLv23") of protTLSv1: newCTX = SSL_CTX_new(TLSv1_method())