Skip to content

Commit

Permalink
Merge pull request #412
Browse files Browse the repository at this point in the history
  • Loading branch information
@Neverlord
Neverlord committed Jul 14, 2024
2 parents 2777023 + ca197cd commit aa81a91
Show file tree
Hide file tree
Showing 3 changed files with 7 additions and 1 deletion.
4 changes: 4 additions & 0 deletions CHANGES
View file
Original file line number Diff line number Diff line change
@@ -1,3 +1,7 @@
2.8.0-dev.109 | 2024-07-14 11:04:26 +0200

* Enforce TLS version 1.2 as minimum when using SSL (Dominik Charousset, Corelight)

2.8.0-dev.107 | 2024-07-14 08:39:15 +0200

* Add more btests to replace "unit" tests (Dominik Charousset, Corelight)
Expand Down
2 changes: 1 addition & 1 deletion VERSION
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
2.8.0-dev.107
2.8.0-dev.109
2 changes: 2 additions & 0 deletions libbroker/broker/internal/connector.cc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -261,6 +261,8 @@ ssl_context_from_cfg(const openssl_options_ptr& cfg) {
if (SSL_CTX_set_cipher_list(ctx.get(), cipher) != 1)
throw ssl_error("failed to set anonymous cipher");
}
// Prohibit outdated and insecure protocols.
SSL_CTX_set_min_proto_version(ctx.get(), TLS1_2_VERSION);
return ctx;
}

Expand Down

0 comments on commit aa81a91

Please sign in to comment.