diff options
| author | Martijn Otto <git@martijnotto.nl> | 2020-03-11 09:28:02 +0100 |
|---|---|---|
| committer | Martijn Otto <git@martijnotto.nl> | 2020-03-11 09:28:02 +0100 |
| commit | 6079042ccefe7d93cf6a09007c068aa0c9a8978c (patch) | |
| tree | 19d84d840ad9f2566c7c069159f137ed02816ffb | |
| parent | Bump downloaded boost version to 1.72 (diff) | |
| download | monero-6079042ccefe7d93cf6a09007c068aa0c9a8978c.tar.xz | |
Use boost::asio::ssl::context::sslv23 for backwards compatibility
All the insecure protocols that this enables are then disabled, so they
cannot be actually used. The end-result is the same.
| -rw-r--r-- | contrib/epee/src/net_ssl.cpp | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/contrib/epee/src/net_ssl.cpp b/contrib/epee/src/net_ssl.cpp index 946499129..d7bb62049 100644 --- a/contrib/epee/src/net_ssl.cpp +++ b/contrib/epee/src/net_ssl.cpp @@ -289,7 +289,9 @@ ssl_options_t::ssl_options_t(std::vector<std::vector<std::uint8_t>> fingerprints boost::asio::ssl::context ssl_options_t::create_context() const { - boost::asio::ssl::context ssl_context{boost::asio::ssl::context::tls}; + // note: this enables a lot of old and insecure protocols, which we + // promptly disable below - if the result is actually used + boost::asio::ssl::context ssl_context{boost::asio::ssl::context::sslv23}; if (!bool(*this)) return ssl_context; |