[PATCH] gweb: Enable TLSv1.2 and TLSv1.1

pasi . sjoholm Sat, 18 Oct 2014 14:34:51 -0700

From: Pasi Sjöholm <pasi.sjoh...@jollamobile.com>

As the web servers are migrating away from SSLv3 more secure
protocols need to be enabled.


Thanks for Hannu Mallat noticing this.
---
 gweb/giognutls.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/gweb/giognutls.c b/gweb/giognutls.c
index 09dc9e7..687bf8f 100644
--- a/gweb/giognutls.c
+++ b/gweb/giognutls.c
@@ -456,7 +456,8 @@ GIOChannel *g_io_channel_gnutls_new(int fd)
                                                "NORMAL:%COMPAT", NULL);
 #else
        gnutls_priority_set_direct(gnutls_channel->session,
-               "NORMAL:-VERS-TLS-ALL:+VERS-TLS1.0:+VERS-SSL3.0:%COMPAT", NULL);
+               "NORMAL:-VERS-TLS-ALL:+VERS-TLS1.2:+VERS-TLS1.1:" \
+                       "+VERS-TLS1.0:+VERS-SSL3.0:%COMPAT", NULL);
 #endif
 
        gnutls_certificate_allocate_credentials(&gnutls_channel->cred);
-- 
1.9.1

_______________________________________________
connman mailing list
connman@connman.net
https://lists.connman.net/mailman/listinfo/connman

[PATCH] gweb: Enable TLSv1.2 and TLSv1.1

Reply via email to