Loading...

XML

Word

Printable

Details

Type: Suggestion
Resolution: Done
Priority: P4: Low
Fix Version/s: 5.0.0, Some future release
Affects Version/s: None
Component/s: Network: SSL
Labels:
None
Environment:

Any

Commits:
52bf03d155aab0170c5bf3b62813ab5a402d220a

Description

OpenSSL >= 0.9.8l disable renegotiation by default: http://isc.sans.org/diary.html?storyid=7543
You can still enable it:

OpenSSL = 0.9.8I SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION in s3->flags
OpenSSL > 0.9.8l SSL_CTX_set_options(ssl_ctx, SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION)

There should be a way to do that in Qt.
Maybe a more flexible way would be add a method which return the SSL_CTX (like the QAbstractSocket::socketDescriptor() method which return the fd).

Attachments

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Richard Moore (qtnetwork)

Reporter:: Corentin Chary

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 01 Feb '10 14:11

Updated:: 05 Mar '13 12:58

Resolved:: 17 Feb '13 21:53

Gerrit Reviews

There are no open Gerrit changes