|
@ -0,0 +1,38 @@ |
|
|
|
|
|
diff --git a/configure.in b/configure.in
|
|
|
|
|
|
index bf5463a..43ec27c 100644
|
|
|
|
|
|
--- a/configure.in
|
|
|
|
|
|
+++ b/configure.in
|
|
|
|
|
|
@@ -96,8 +96,8 @@ if test "x$enable_cyassl" = xyes; then
|
|
|
|
|
|
# the use the new naming scheme below as cyassl/ssl.h is not available for |
|
|
|
|
|
# AC_SEARCH_LIBS |
|
|
|
|
|
AC_CHECK_HEADERS(cyassl/ssl.h) |
|
|
|
|
|
- AC_SEARCH_LIBS([CyaTLSv1_client_method], [cyassl], [], [
|
|
|
|
|
|
- AC_SEARCH_LIBS([wolfTLSv1_client_method], [wolfssl], [], [
|
|
|
|
|
|
+ AC_SEARCH_LIBS([CyaSSLv23_client_method], [cyassl], [], [
|
|
|
|
|
|
+ AC_SEARCH_LIBS([wolfSSLv23_client_method], [wolfssl], [], [
|
|
|
|
|
|
AC_MSG_ERROR([unable to locate SSL lib: either wolfSSL or CyaSSL needed.]) |
|
|
|
|
|
]) |
|
|
|
|
|
]) |
|
|
|
|
|
@@ -110,7 +110,7 @@ if test "x$enable_cyassl" = xyes; then
|
|
|
|
|
|
]], [[ |
|
|
|
|
|
CYASSL_CTX *ctx; |
|
|
|
|
|
CyaSSL_Init(); |
|
|
|
|
|
- ctx = CyaSSL_CTX_new(CyaTLSv1_client_method());
|
|
|
|
|
|
+ ctx = CyaSSL_CTX_new(CyaSSLv23_client_method());
|
|
|
|
|
|
CyaSSL_CTX_UseSNI(ctx, CYASSL_SNI_HOST_NAME, "wifidog.org", 11); |
|
|
|
|
|
]])], [enabled_sni=yes], [enabled_sni=no]) |
|
|
|
|
|
|
|
|
|
|
|
diff --git a/src/simple_http.c b/src/simple_http.c
|
|
|
|
|
|
index f0e27ee..7271021 100644
|
|
|
|
|
|
--- a/src/simple_http.c
|
|
|
|
|
|
+++ b/src/simple_http.c
|
|
|
|
|
|
@@ -162,8 +162,7 @@ get_cyassl_ctx(const char *hostname)
|
|
|
|
|
|
if (NULL == cyassl_ctx) { |
|
|
|
|
|
CyaSSL_Init(); |
|
|
|
|
|
/* Create the CYASSL_CTX */ |
|
|
|
|
|
- /* Allow TLSv1.0 up to TLSv1.2 */
|
|
|
|
|
|
- if ((cyassl_ctx = CyaSSL_CTX_new(CyaTLSv1_client_method())) == NULL) {
|
|
|
|
|
|
+ if ((cyassl_ctx = CyaSSL_CTX_new(CyaSSLv23_client_method())) == NULL) {
|
|
|
|
|
|
debug(LOG_ERR, "Could not create CYASSL context."); |
|
|
|
|
|
UNLOCK_CYASSL_CTX(); |
|
|
|
|
|
return NULL; |