git.openssl.org Git - openssl.git/commit

author	Viktor Dukhovni <openssl-users@dukhovni.org>
	Thu, 18 Feb 2016 02:07:48 +0000 (21:07 -0500)
committer	Matt Caswell <matt@openssl.org>
	Tue, 1 Mar 2016 11:20:10 +0000 (11:20 +0000)
commit	9dfd2be8a1761fffd152a92d8f1b356ad667eea7
tree	f29b72c28bb200a7790e3b5de278b6e49c779570	tree \| snapshot
parent	c175308407858afff3fc8c2e5e085d94d12edc7d	commit \| diff

Disable SSLv2 default build, default negotiation and weak ciphers.

SSLv2 is by default disabled at build-time.  Builds that are not
configured with "enable-ssl2" will not support SSLv2.  Even if
"enable-ssl2" is used, users who want to negotiate SSLv2 via the
version-flexible SSLv23_method() will need to explicitly call either
of:

    SSL_CTX_clear_options(ctx, SSL_OP_NO_SSLv2);
or
    SSL_clear_options(ssl, SSL_OP_NO_SSLv2);

as appropriate.  Even if either of those is used, or the application
explicitly uses the version-specific SSLv2_method() or its client
or server variants, SSLv2 ciphers vulnerable to exhaustive search
key recovery have been removed.  Specifically, the SSLv2 40-bit
EXPORT ciphers, and SSLv2 56-bit DES are no longer available.

Mitigation for CVE-2016-0800

Reviewed-by: Emilia Käsper <emilia@openssl.org>

CHANGES		diff \| blob \| history
Configure		diff \| blob \| history
NEWS		diff \| blob \| history
ssl/s2_lib.c		diff \| blob \| history
ssl/ssl_conf.c		diff \| blob \| history
ssl/ssl_lib.c		diff \| blob \| history