[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Bug-wget] [PATCH] OpenSSL TLSv1+ regression in wget-1.16
From: |
Jérémie Courrèges-Anglas |
Subject: |
[Bug-wget] [PATCH] OpenSSL TLSv1+ regression in wget-1.16 |
Date: |
Tue, 02 Dec 2014 14:09:00 +0100 |
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/24.4 (berkeley-unix) |
The problem is that wget --security-protocol=auto and
wget --security-protocol=pfs are restricted to the use of TLSv1.0 only.
Sites that enforce the use of eg TLSv1.2 are unreachable by default.
The issue was reported by Mikolaj Kucharski, and I have already a fix in
the OpenBSD ports tree:
http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/net/wget/patches/patch-src_openssl_c
The attached patch fixes this problem.
Regards,
0001-openssl-backend-repair-use-of-TLSv1-protocols.patch
Description: Text Data
--
jca | PGP : 0x1524E7EE / 5135 92C1 AD36 5293 2BDF DDCC 0DFA 74AE 1524 E7EE
signature.asc
Description: PGP signature
- [Bug-wget] [PATCH] OpenSSL TLSv1+ regression in wget-1.16,
Jérémie Courrèges-Anglas <=
- Re: [Bug-wget] [PATCH] OpenSSL TLSv1+ regression in wget-1.16, Tim Ruehsen, 2014/12/02
- Re: [Bug-wget] [PATCH] OpenSSL TLSv1+ regression in wget-1.16, Darshit Shah, 2014/12/02
- Re: [Bug-wget] [PATCH] OpenSSL TLSv1+ regression in wget-1.16, Jérémie Courrèges-Anglas, 2014/12/02
- Re: [Bug-wget] [PATCH] OpenSSL TLSv1+ regression in wget-1.16, Darshit Shah, 2014/12/02
- Re: [Bug-wget] [PATCH] OpenSSL TLSv1+ regression in wget-1.16, Giuseppe Scrivano, 2014/12/03
- Re: [Bug-wget] [PATCH] OpenSSL TLSv1+ regression in wget-1.16, Jérémie Courrèges-Anglas, 2014/12/03
- Re: [Bug-wget] [PATCH] OpenSSL TLSv1+ regression in wget-1.16, Tim Rühsen, 2014/12/03
- Re: [Bug-wget] [PATCH] OpenSSL TLSv1+ regression in wget-1.16, Tim Ruehsen, 2014/12/04
- Re: [Bug-wget] [PATCH] OpenSSL TLSv1+ regression in wget-1.16, Jérémie Courrèges-Anglas, 2014/12/05
- Re: [Bug-wget] [PATCH] OpenSSL TLSv1+ regression in wget-1.16, Tim Ruehsen, 2014/12/17