1 files changed, 24 insertions, 1 deletions
diff --git a/plugins/sslutils.c b/plugins/sslutils.c
index 6e86dc62..2157764f 100644
--- a/plugins/sslutils.c
+++ b/plugins/sslutils.c
@@ -41,6 +41,29 @@ int np_net_ssl_init (int sd) {
 }
 int np_net_ssl_init_with_hostname (int sd, char *host_name) {
+                return np_net_ssl_init_with_hostname_and_version(sd, host_name, 0);
+}
+int np_net_ssl_init_with_hostname_and_version (int sd, char *host_name, int version) {
+                const SSL_METHOD *method = NULL;
+                switch (version) {
+                case 0: /* Deafult to auto negotiation */
+                        method = SSLv23_client_method();
+                        break;
+                case 1: /* TLSv1 protocol */
+                        method = TLSv1_client_method();
+                        break;
+                case 2: /* SSLv2 protocol */
+                        method = SSLv2_client_method();
+                        break;
+                case 3: /* SSLv3 protocol */
+                        method = SSLv3_client_method();
+                        break;
+                default: /* Unsupported */
+                        printf ("%s\n", _("CRITICAL - Unsupported SSL Protocol Version."));
+                        return STATE_CRITICAL;
+                }
                if (!initialized) {
                        /* Initialize SSL context */
                        SSLeay_add_ssl_algorithms ();
@@ -48,7 +71,7 @@ int np_net_ssl_init_with_hostname (int sd, char *host_name) {
                        OpenSSL_add_all_algorithms ();
                        initialized = 1;
                }
-                if ((c = SSL_CTX_new (SSLv23_client_method ())) == NULL) {
+                if ((c = SSL_CTX_new (method)) == NULL) {
                                printf ("%s\n", _("CRITICAL - Cannot create SSL context."));
                                return STATE_CRITICAL;
                }

diff --git a/plugins/sslutils.c b/plugins/sslutils.c index 6e86dc62..2157764f 100644 --- a/plugins/sslutils.c +++ b/plugins/sslutils.c
@@ -41,6 +41,29 @@ int np_net_ssl_init (int sd) {
41	}	41	}
42		42
43	int np_net_ssl_init_with_hostname (int sd, char *host_name) {	43	int np_net_ssl_init_with_hostname (int sd, char *host_name) {
		44	return np_net_ssl_init_with_hostname_and_version(sd, host_name, 0);
		45	}
		46
		47	int np_net_ssl_init_with_hostname_and_version (int sd, char *host_name, int version) {
		48	const SSL_METHOD *method = NULL;
		49
		50	switch (version) {
		51	case 0: /* Deafult to auto negotiation */
		52	method = SSLv23_client_method();
		53	break;
		54	case 1: /* TLSv1 protocol */
		55	method = TLSv1_client_method();
		56	break;
		57	case 2: /* SSLv2 protocol */
		58	method = SSLv2_client_method();
		59	break;
		60	case 3: /* SSLv3 protocol */
		61	method = SSLv3_client_method();
		62	break;
		63	default: /* Unsupported */
		64	printf ("%s\n", _("CRITICAL - Unsupported SSL Protocol Version."));
		65	return STATE_CRITICAL;
		66	}
44	if (!initialized) {	67	if (!initialized) {
45	/* Initialize SSL context */	68	/* Initialize SSL context */
46	SSLeay_add_ssl_algorithms ();	69	SSLeay_add_ssl_algorithms ();
@@ -48,7 +71,7 @@ int np_net_ssl_init_with_hostname (int sd, char *host_name) {
48	OpenSSL_add_all_algorithms ();	71	OpenSSL_add_all_algorithms ();
49	initialized = 1;	72	initialized = 1;
50	}	73	}
51	if ((c = SSL_CTX_new (SSLv23_client_method ())) == NULL) {	74	if ((c = SSL_CTX_new (method)) == NULL) {
52	printf ("%s\n", _("CRITICAL - Cannot create SSL context."));	75	printf ("%s\n", _("CRITICAL - Cannot create SSL context."));
53	return STATE_CRITICAL;	76	return STATE_CRITICAL;
54	}	77	}