diff options
author | Rob Crittenden <rcritten@redhat.com> | 2016-02-29 13:56:20 -0500 |
---|---|---|
committer | Rob Crittenden <rcritten@redhat.com> | 2016-02-29 16:44:53 -0500 |
commit | ef90eb1b1e5b68aa53164813bd4a70697dcbef17 (patch) | |
tree | 0d9fd7c5c001293035b802390b7da4721f5fe8d5 /nss_engine_vars.c | |
parent | 31a5ff02f6ff251629d597d43ee88fadb135ff8b (diff) | |
download | mod_nss-ef90eb1b1e5b68aa53164813bd4a70697dcbef17.tar.gz mod_nss-ef90eb1b1e5b68aa53164813bd4a70697dcbef17.tar.xz mod_nss-ef90eb1b1e5b68aa53164813bd4a70697dcbef17.zip |
Don't ignore NSSProtocol when NSSFIPS is enabled
The value was always being set to TLS 1.0, 1.1 and 1.2, ignoring
the configuration value.
I suspect this is because this code dated to when only SSL2, 3 and
TLS 1.0 were supported so it only enabled TLS v1.0. When 1.1 and
1.2 were added it seemed natural to automatically enable those
as well. Natural but incorrect.
Based on patch by Matthew Harmsen <mharmsen@redhat.com>
RHBZ #1312052
Diffstat (limited to 'nss_engine_vars.c')
0 files changed, 0 insertions, 0 deletions