[Privoxy-commits] [privoxy] 03/16: wolfssl: Use wolfTLS_client_method() instead of wolfSSLv23_method()

[User Git]

This is an automated email from the git hooks/post-receive script.

git pushed a commit to branch master
in repository privoxy.

commit e41e25b8a35c8655d6295148cafaef004f813032
Author: Fabian Keil <fk at fabiankeil.de>
AuthorDate: Fri Dec 12 07:16:27 2025 +0100

    wolfssl: Use wolfTLS_client_method() instead of wolfSSLv23_method()
    
    ... when creating the connection to the server.
    
    Allows to connect to https://media.ccc.de/ and https://traxxas.com/
    while wolfSSLv23_method() currently doesn't (wolfSSL 5.8.4).
    
    Unfortunately this does not allow to connect to https://www.fsf.org/
    while wolfSSLv23_method() does.
    
    Reported upstream in [0].
    
    curl is using wolfTLS_client_method() with recent wolfSSL versions
    as well so this seems to be the way to go.
    
    [0]: <https://github.com/wolfSSL/wolfssl/issues/7735>
---
 wolfssl.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/wolfssl.c b/wolfssl.c
index 9bdc8b80..a545e5f5 100644
--- a/wolfssl.c
+++ b/wolfssl.c
@@ -1086,7 +1086,7 @@ extern int create_server_ssl_connection(struct client_state *csp)
    csp->server_cert_verification_result = SSL_CERT_NOT_VERIFIED;
    csp->server_certs_chain.next = NULL;
 
-   ssl_attrs->ctx = wolfSSL_CTX_new(wolfSSLv23_method());
+   ssl_attrs->ctx = wolfSSL_CTX_new(wolfTLS_client_method());
    if (ssl_attrs->ctx == NULL)
    {
       log_error(LOG_LEVEL_ERROR, "TLS context creation failed");

-- 
To stop receiving notification emails like this one, please contact
the administrator of this repository.