openssl: force TLS v1.2 instead of v1
authorFelix Fietkau <nbd@openwrt.org>
Sun, 21 Feb 2016 08:10:46 +0000 (09:10 +0100)
committerFelix Fietkau <nbd@openwrt.org>
Sun, 21 Feb 2016 08:10:50 +0000 (09:10 +0100)
Fixes some connection issues

Signed-off-by: Felix Fietkau <nbd@openwrt.org>
ustream-openssl.c

index 0d4a8fffc42126beadc64b35e00503039befc6f4..4a3f0a27aa51008ac8047ea3853e70324ed1278c 100644 (file)
@@ -42,9 +42,9 @@ __ustream_ssl_context_new(bool server)
                m = SSLv23_client_method();
 #else
        if (server)
-               m = TLSv1_server_method();
+               m = TLSv1_2_server_method();
        else
-               m = TLSv1_client_method();
+               m = TLSv1_2_client_method();
 #endif
 
        c = SSL_CTX_new((void *) m);