[Libwebsockets] TLS version

Ondra Čopák ondraco at gmail.com
Thu Jun 9 09:36:52 CEST 2016


Hello,

I have a question regarding TLS version when OpenSSL is used.
I see that it is possible to specify the allowed ciphers by using the
ssl_cipher_list.

Is it also possible to specify which TLS protocol versions are supported
(for example allow only TLS1.2)?

Seems to me that it is hard-coded now for all but SSLv2 and SSLv3 .

ssl-server.c, lws_context_init_server_ssl()
SSL_CTX_set_options(vhost->ssl_ctx, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3);

Thank you.

Best regards,
Ondrej
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://libwebsockets.org/pipermail/libwebsockets/attachments/20160609/49ee7b3a/attachment.html>


More information about the Libwebsockets mailing list