QSsl: workaround a 'very secure' OpenSSL version (CentOS 8.x et al)

CentOS it seems not only backported some OpenSSL 3 functions, but also raised the default security level to 2, making some of our keys (and MDs?) 'too weak' and failing auto-tests here and there as a result. For our auto-test we lower the level to 1, as it is expected to be. Fixes: QTBUG-86336 Pick-to: 5.15 Change-Id: I7062a1b292e8b60eb9c2b2e82bd002f09f9da603 Reviewed-by: Mårten Nordheim <marten.nordheim@qt.io>
author: Timur Pocheptsov <timur.pocheptsov@qt.io> 2020-09-09 08:37:54 +0200
committer: Timur Pocheptsov <timur.pocheptsov@qt.io> 2020-09-12 05:36:08 +0200
commit: 605d2163f1dcd7e1ad701ade913cb476b91865b1 (patch)
tree: 9db599aad23ae70761246dc104f340cb897a82b6 /src/network/ssl/qsslsocket_openssl_symbols_p.h
parent: 5bb4baae0379d5903f547f0399be9620f5ab06a0 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/src/network/ssl/qsslsocket_openssl_symbols_p.h b/src/network/ssl/qsslsocket_openssl_symbols_p.h
index 744e5e34f9..9f54efddaa 100644
--- a/src/network/ssl/qsslsocket_openssl_symbols_p.h
+++ b/src/network/ssl/qsslsocket_openssl_symbols_p.h
@@ -753,6 +753,9 @@ void q_SSL_set_info_callback(SSL *ssl, void (*cb) (const SSL *ssl, int type, int
 const char *q_SSL_alert_type_string(int value);
 const char *q_SSL_alert_desc_string_long(int value);
 
+int q_SSL_CTX_get_security_level(const SSL_CTX *ctx);
+void q_SSL_CTX_set_security_level(SSL_CTX *ctx, int level);
+
 QT_END_NAMESPACE
 
 #endif
author	Timur Pocheptsov <timur.pocheptsov@qt.io>	2020-09-09 08:37:54 +0200
committer	Timur Pocheptsov <timur.pocheptsov@qt.io>	2020-09-12 05:36:08 +0200
commit	605d2163f1dcd7e1ad701ade913cb476b91865b1 (patch)
tree	9db599aad23ae70761246dc104f340cb897a82b6 /src/network/ssl/qsslsocket_openssl_symbols_p.h
parent	5bb4baae0379d5903f547f0399be9620f5ab06a0 (diff)