From 4a014b61befdf1ad54c9fcf90071977e7b3cbe12 Mon Sep 17 00:00:00 2001
From: John-Mark Bell <jmb@netsurf-browser.org>
Date: Fri, 17 Jan 2014 01:09:24 +0000
Subject: Enable TLS 1.2 support again.

---
 content/fetchers/curl.c | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

(limited to 'content')

diff --git a/content/fetchers/curl.c b/content/fetchers/curl.c
index 92d4625b5..bc6b2c338 100644
--- a/content/fetchers/curl.c
+++ b/content/fetchers/curl.c
@@ -688,16 +688,14 @@ fetch_curl_sslctxfun(CURL *curl_handle, void *_sslctx, void *parm)
 					 parm);
 
 	if (f->downgrade_tls) {
+		/* Disable TLS 1.1/1.2 if the server can't cope with them */
 #ifdef SSL_OP_NO_TLSv1_1
-		/* Disable TLS1.1, if the server can't cope with it */
 		options |= SSL_OP_NO_TLSv1_1;
 #endif
-	}
-
 #ifdef SSL_OP_NO_TLSv1_2
-	/* Disable TLS1.2, as it causes some servers to stall. */
-	options |= SSL_OP_NO_TLSv1_2;
+		options |= SSL_OP_NO_TLSv1_2;
 #endif
+	}
 
 	SSL_CTX_set_options(sslctx, options);
 
-- 
cgit v1.2.3