git.ipfire.org Git - thirdparty/hostap.git/commit

]> git.ipfire.org Git - thirdparty/hostap.git/commit

projects / thirdparty / hostap.git / commit

author	Jouni Malinen <quic_jouni@quicinc.com>
	Wed, 30 Nov 2022 12:01:55 +0000 (14:01 +0200)
committer	Jouni Malinen <j@w1.fi>
	Wed, 30 Nov 2022 12:01:55 +0000 (14:01 +0200)
commit	e9b4ad2364c68130c7618a88a171e29e0e15007e
tree	e7b804cc787c7f3816f5cdd3e7f9241eaaecd517	tree
parent	bbd5a4689b52ea90a803e4aa5e5357938c3d76c9	commit \| diff

OpenSSL: Apply connection flags before reading certificates

This is needed to be able to drop the OpenSSL security level, if
necessary, for cases where old certificates (e.g., something using SHA-1
signatures) are still needed. openssl_ciphers="DEFAULT@SECLEVEL=0" can
achieve this, but only if applied before attempting to load the
certificates.

Signed-off-by: Jouni Malinen <quic_jouni@quicinc.com>

src/crypto/tls_openssl.c

diff | blob | blame | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom