diff options
author | Richard Moore <rich@kde.org> | 2012-09-11 22:49:55 +0100 |
---|---|---|
committer | The Qt Project <gerrit-noreply@qt-project.org> | 2012-09-18 14:12:17 +0200 |
commit | 5ea896fbc63593f424a7dfbb11387599c0025c74 (patch) | |
tree | 000d7cc978458bb7e48d3a59cbe4257a6bcbc4ec /tests/auto/network | |
parent | 3f970c20f9afd5c9a1cc14d7f69882e13f6aaf1b (diff) |
Disable SSL compression by default.
Disable SSL compression by default since this appears to be the a likely
cause of the currently hyped CRIME attack.
Change-Id: I515fcc46f5199acf938e9e880a4345f2d405b2a3
Reviewed-by: Thiago Macieira <thiago.macieira@intel.com>
Reviewed-by: Peter Hartmann <phartmann@rim.com>
Diffstat (limited to 'tests/auto/network')
-rw-r--r-- | tests/auto/network/ssl/qsslsocket/tst_qsslsocket.cpp | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/tests/auto/network/ssl/qsslsocket/tst_qsslsocket.cpp b/tests/auto/network/ssl/qsslsocket/tst_qsslsocket.cpp index 350d4c457e..b7422a03f8 100644 --- a/tests/auto/network/ssl/qsslsocket/tst_qsslsocket.cpp +++ b/tests/auto/network/ssl/qsslsocket/tst_qsslsocket.cpp @@ -2109,9 +2109,15 @@ void tst_QSslSocket::sslOptions() if (!QSslSocket::supportsSsl()) return; +#ifdef SSL_OP_NO_COMPRESSION + QCOMPARE(QSslSocketBackendPrivate::setupOpenSslOptions(QSsl::SecureProtocols, + QSslConfigurationPrivate::defaultSslOptions), + long(SSL_OP_ALL|SSL_OP_NO_SSLv2|SSL_OP_NO_COMPRESSION)); +#else QCOMPARE(QSslSocketBackendPrivate::setupOpenSslOptions(QSsl::SecureProtocols, QSslConfigurationPrivate::defaultSslOptions), long(SSL_OP_ALL|SSL_OP_NO_SSLv2)); +#endif QCOMPARE(QSslSocketBackendPrivate::setupOpenSslOptions(QSsl::SecureProtocols, QSsl::SslOptionDisableEmptyFragments |