1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
|
--- libnessus/network.c.orig 2006-05-22 14:14:35 UTC
+++ libnessus/network.c
@@ -532,12 +532,16 @@ open_SSL_connection(fp, timeout, cert, k
switch (fp->transport)
{
+#ifndef OPENSSL_NO_SSL2
case NESSUS_ENCAPS_SSLv2:
fp->ssl_mt = SSLv2_client_method();
break;
+#endif
+#ifndef OPENSSL_NO_SSL3
case NESSUS_ENCAPS_SSLv3:
fp->ssl_mt = SSLv3_client_method();
break;
+#endif
case NESSUS_ENCAPS_TLSv1:
fp->ssl_mt = TLSv1_client_method();
break;
@@ -724,9 +728,13 @@ open_stream_connection(args, port, trans
{
case NESSUS_ENCAPS_IP:
#ifdef HAVE_SSL
+#ifndef OPENSSL_NO_SSL2
case NESSUS_ENCAPS_SSLv2:
+#endif
case NESSUS_ENCAPS_SSLv23:
+#ifndef OPENSSL_NO_SSL3
case NESSUS_ENCAPS_SSLv3:
+#endif
case NESSUS_ENCAPS_TLSv1:
#endif
break;
@@ -763,7 +771,9 @@ open_stream_connection(args, port, trans
break;
#ifdef HAVE_SSL
case NESSUS_ENCAPS_SSLv23:
+#ifndef OPENSSL_NO_SSL3
case NESSUS_ENCAPS_SSLv3:
+#endif
case NESSUS_ENCAPS_TLSv1:
renice_myself();
cert = kb_item_get_str(plug_get_kb(args), "SSL/cert");
@@ -782,12 +792,13 @@ open_stream_connection(args, port, trans
sslerror(msg);
}
}
-
+#ifndef OPENSSL_NO_SSL2
case NESSUS_ENCAPS_SSLv2:
/* We do not need a client certificate in this case */
if (open_SSL_connection(fp, timeout, cert, key, passwd, cert_names) <= 0)
goto failed;
+#endif
break;
#endif
}
@@ -812,10 +823,14 @@ open_stream_connection_unknown_encaps5(a
struct timeval tv1, tv2;
static int encaps[] = {
#ifdef HAVE_SSL
+#ifndef OPENSSL_NO_SSL2
NESSUS_ENCAPS_SSLv2,
+#endif
NESSUS_ENCAPS_TLSv1,
+#ifndef OPENSSL_NO_SSL3
NESSUS_ENCAPS_SSLv3,
#endif
+#endif
NESSUS_ENCAPS_IP
};
@@ -1044,9 +1059,13 @@ read_stream_connection_unbuffered(fd, bu
{
/* NESSUS_ENCAPS_IP was treated before with the non-Nessus fd */
#ifdef HAVE_SSL
+#ifndef OPENSSL_NO_SSL2
case NESSUS_ENCAPS_SSLv2:
+#endif
case NESSUS_ENCAPS_SSLv23:
+#ifndef OPENSSL_NO_SSL3
case NESSUS_ENCAPS_SSLv3:
+#endif
case NESSUS_ENCAPS_TLSv1:
# if DEBUG_SSL > 0
if (getpid() != fp->pid)
@@ -1280,9 +1299,13 @@ write_stream_connection4(fd, buf0, n, i_
break;
#ifdef HAVE_SSL
+#ifndef OPENSSL_NO_SSL2
case NESSUS_ENCAPS_SSLv2:
+#endif
case NESSUS_ENCAPS_SSLv23:
+#ifndef OPENSSL_NO_SSL3
case NESSUS_ENCAPS_SSLv3:
+#endif
case NESSUS_ENCAPS_TLSv1:
FD_ZERO(&fdr); FD_ZERO(&fdw);
FD_SET(fp->fd, & fdr); FD_SET(fp->fd, & fdw);
@@ -1504,12 +1527,16 @@ get_encaps_name(code)
{
case NESSUS_ENCAPS_IP:
return "IP";
+#ifndef OPENSSL_NO_SSL2
case NESSUS_ENCAPS_SSLv2:
return "SSLv2";
+#endif
case NESSUS_ENCAPS_SSLv23:
return "SSLv23";
+#ifndef OPENSSL_NO_SSL3
case NESSUS_ENCAPS_SSLv3:
return "SSLv3";
+#endif
case NESSUS_ENCAPS_TLSv1:
return "TLSv1";
default:
@@ -1527,9 +1554,13 @@ get_encaps_through(code)
{
case NESSUS_ENCAPS_IP:
return "";
+#ifndef OPENSSL_NO_SSL2
case NESSUS_ENCAPS_SSLv2:
+#endif
case NESSUS_ENCAPS_SSLv23:
+#ifndef OPENSSL_NO_SSL3
case NESSUS_ENCAPS_SSLv3:
+#endif
case NESSUS_ENCAPS_TLSv1:
return " through SSL";
default:
|
