diff options
| author | Richard J. Moore <rich@kde.org> | 2014-01-17 21:23:20 +0000 |
|---|---|---|
| committer | The Qt Project <gerrit-noreply@qt-project.org> | 2014-01-21 03:41:34 +0100 |
| commit | 5c19fad8c178b055e8864b2576cfa3cbaa44a19e (patch) | |
| tree | 1eebf5363ee15b41287b546b266ed1e68ddce8c7 /src/testlib/qxmltestlogger_p.h | |
| parent | f81de3944d3b500e64fe0a21e2f5dbcebcb5ac8a (diff) | |
Ensure weak ciphers are not part of the default SSL configuration.
Any cipher that is < 128 bits is excluded from the default SSL
configuration. These ciphers are still included in the list
of availableCiphers() and can be used by applications if required.
Calling QSslSocket::setDefaultCiphers(QSslSocket::availableCiphers())
will restore the old behavior.
Note that in doing so I spotted that calling defaultCiphers() before
doing other actions with SSL had an existing bug that I've addressed
as part of the change.
[ChangeLog][Important Behavior Changes] The default set of
ciphers used by QSslSocket has been changed to exclude ciphers that are
using key lengths smaller than 128 bits. These ciphers are still available
and can be enabled by applications if required.
Change-Id: If2241dda67b624e5febf788efa1369f38c6b1dba
Reviewed-by: Thiago Macieira <thiago.macieira@intel.com>
Diffstat (limited to 'src/testlib/qxmltestlogger_p.h')
0 files changed, 0 insertions, 0 deletions