[xchat-gnome] gnome bz#738870

[Ritesh Khadgaray <rkhadgaray src gnome org>]

commit f9e2f17c26abf90b340c8a80248326f4c7c1f3b7
Author: Marc Deslauriers <marc deslauriers ubuntu com>
Date:   Tue Dec 9 22:02:14 2014 +0530

    gnome bz#738870
    
    SSLv3 should no longer be used for security reasons. Let the best
    connection method be automatically determined by using SSLv23_client_method()
    and SSLv23_server_method().
    
    https://blog.mozilla.org/security/2014/10/14/the-poodle-attack-and-the-end-of-ssl-3-0/

 src/common/ssl.c |    4 ++--
 1 files changed, 2 insertions(+), 2 deletions(-)
---
diff --git a/src/common/ssl.c b/src/common/ssl.c
index a18ad47..35eb237 100644
--- a/src/common/ssl.c
+++ b/src/common/ssl.c
@@ -70,7 +70,7 @@ _SSL_context_init (void (*info_cb_func), int server)
 
        SSLeay_add_ssl_algorithms ();
        SSL_load_error_strings ();
-       ctx = SSL_CTX_new (server ? SSLv3_server_method() : SSLv3_client_method ());
+       ctx = SSL_CTX_new (server ? SSLv23_server_method() : SSLv23_client_method ());
 
        SSL_CTX_set_session_cache_mode (ctx, SSL_SESS_CACHE_BOTH);
        SSL_CTX_set_timeout (ctx, 300);
@@ -281,7 +281,7 @@ _SSL_socket (SSL_CTX *ctx, int sd)
                __SSL_critical_error ("SSL_new");
 
        SSL_set_fd (ssl, sd);
-       if (ctx->method == SSLv3_client_method())
+       if (ctx->method == SSLv23_client_method())
                SSL_set_connect_state (ssl);
        else
                SSL_set_accept_state(ssl);