diff options
author | JackLivio <jack@livio.io> | 2021-03-10 12:26:53 -0500 |
---|---|---|
committer | GitHub <noreply@github.com> | 2021-03-10 12:26:53 -0500 |
commit | fed2ae4a88afd6b4141b19fee9595b76d19a84c7 (patch) | |
tree | 99fb7c6a8f3d474cd08fdf078fc4859e3c811927 | |
parent | e75828392038d1a8bcf8dcb10c3beaeb7d7159e2 (diff) | |
download | sdl_core-fed2ae4a88afd6b4141b19fee9595b76d19a84c7.tar.gz |
Compile ssl version check (#3657)
* Compile ssl version check
* Fix comparison
* Remove redundant tls 1.3 check
-rw-r--r-- | src/components/security_manager/src/crypto_manager_impl.cc | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/src/components/security_manager/src/crypto_manager_impl.cc b/src/components/security_manager/src/crypto_manager_impl.cc index b5dbea0ad3..53c61401c3 100644 --- a/src/components/security_manager/src/crypto_manager_impl.cc +++ b/src/components/security_manager/src/crypto_manager_impl.cc @@ -232,7 +232,7 @@ bool CryptoManagerImpl::Init() { // Disable SSL2 as deprecated // TLS 1.2 is the max supported TLS version for SDL - SSL_CTX_set_options(context_, SSL_OP_NO_SSLv2 | SSL_OP_NO_TLSv1_3); + SSL_CTX_set_options(context_, SSL_OP_NO_SSLv2); SaveCertificateData(get_settings().certificate_data()); @@ -248,6 +248,7 @@ bool CryptoManagerImpl::Init() { "Could not set cipher list: " << get_settings().ciphers_list()); return false; } +#if OPENSSL_VERSION_NUMBER > OPENSSL1_1_VERSION auto sk = SSL_CTX_get_ciphers(context_); const char* p; for (int i = 0; i < sk_SSL_CIPHER_num(sk); i++) { @@ -257,6 +258,7 @@ bool CryptoManagerImpl::Init() { break; SDL_LOG_DEBUG("Using Cipher: " << p); } +#endif } if (get_settings().ca_cert_path().empty()) { |