init3/aria2
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add a patch to use system-wide crypto-policies (RHBZ #1179277)

Browse source
This commit is contained in:
Athmane Madjoudj 2015-02-27 20:05:18 +01:00
parent c22b8229bb
commit 07db86d5b8
2 changed files with 32 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

26
aria2-1.18.10-use-system-wide-crypto-policies.patch Normal file
View file

@ -0,0 +1,26 @@
diff -ru aria2-1.18.10/src/LibgnutlsTLSSession.cc aria2-1.18.10.patched/src/LibgnutlsTLSSession.cc
--- aria2-1.18.10/src/LibgnutlsTLSSession.cc 2015-02-23 15:34:01.000000000 +0100
+++ aria2-1.18.10.patched/src/LibgnutlsTLSSession.cc 2015-02-27 19:49:13.649873035 +0100
@@ -127,20 +127,8 @@
// It seems err is not error message, but the argument string
// which causes syntax error.
const char* err;
- std::string pri = "SECURE128";
- switch(tlsContext_->getMinTLSVersion()) {
- case TLS_PROTO_TLS12:
- pri += ":-VERS-TLS1.1";
- // fall through
- case TLS_PROTO_TLS11:
- pri += ":-VERS-TLS1.0";
- // fall through
- case TLS_PROTO_TLS10:
- pri += ":-VERS-SSL3.0";
- default:
- break;
- };
- rv_ = gnutls_priority_set_direct(sslSession_, pri.c_str(), &err);
+ rv_ = gnutls_priority_set_direct(sslSession_, "@SYSTEM", &err);
+
if(rv_ != GNUTLS_E_SUCCESS) {
return TLS_ERR_ERROR;
}