[Git][NTPsec/ntpsec][master] Move NO_OLD_VERSIONS from include/nts2.h to ntpd/nts.c

[Hal Murray]

Hal Murray pushed to branch master at NTPsec / ntpsec


Commits:
ceebdffe by Hal Murray at 2019-03-12T06:24:19Z
Move NO_OLD_VERSIONS from include/nts2.h to ntpd/nts.c

- - - - -


2 changed files:

- include/nts2.h
- ntpd/nts.c


Changes:

=====================================
include/nts2.h
=====================================
@@ -30,7 +30,6 @@ bool nts_unpack_cookie(uint8_t *cookie, int cookielen,
   int16_t *aead,
   uint8_t *c2s, uint8_t *s2c, int *keylen);
 
-#define NO_OLD_VERSIONS SSL_OP_NO_SSLv2|SSL_OP_NO_SSLv3|SSL_OP_NO_TLSv1|SSL_OP_NO_TLSv1_1
 
 
 /* buffer packing/unpacking routines.


=====================================
ntpd/nts.c
=====================================
@@ -125,8 +125,9 @@ bool nts_load_versions(SSL_CTX *ctx) {
   SSL_CTX_set_max_proto_version(ctx, maxver);
 #else
   /* Older versions of OpenSSL don't support min/max version requests.
- *    * That's OK, since we don't want anything older than 1.2 and
- *       * they don't support anything newer. */
+   * That's OK, since we don't want anything older than 1.2 and
+   * they don't support anything newer. */
+#define NO_OLD_VERSIONS SSL_OP_NO_SSLv2|SSL_OP_NO_SSLv3|SSL_OP_NO_TLSv1|SSL_OP_NO_TLSv1_1
   SSL_CTX_set_options(ctx, NO_OLD_VERSIONS);
 #endif
   return true;



View it on GitLab: https://gitlab.com/NTPsec/ntpsec/commit/ceebdffefbe573f9588697bb1072010dd8d194a1

-- 
View it on GitLab: https://gitlab.com/NTPsec/ntpsec/commit/ceebdffefbe573f9588697bb1072010dd8d194a1
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ntpsec.org/pipermail/vc/attachments/20190312/eb966299/attachment.html>