mirror of
https://github.com/jellyfin/jellyfin-kodi.git
synced 2024-12-26 02:36:10 +00:00
Disable SSLv2 and SSLv3 support in websocket lib
Requires Python2 >= 2.7.9, Python3 >= 3.6
This commit is contained in:
parent
cf29767406
commit
0dfea09769
1 changed files with 4 additions and 2 deletions
|
@ -136,7 +136,9 @@ def getdefaulttimeout():
|
||||||
|
|
||||||
|
|
||||||
def _wrap_sni_socket(sock, sslopt, hostname):
|
def _wrap_sni_socket(sock, sslopt, hostname):
|
||||||
context = ssl.SSLContext(sslopt.get('ssl_version', ssl.PROTOCOL_SSLv23))
|
context = ssl.SSLContext(sslopt.get('ssl_version', ssl.PROTOCOL_TLS))
|
||||||
|
context.options |= ssl.OP_NO_SSLv2 # Explicitly disable SSLv2
|
||||||
|
context.options |= ssl.OP_NO_SSLv3 # Explicitly disable SSLv3
|
||||||
|
|
||||||
if sslopt.get('cert_reqs', ssl.CERT_NONE) != ssl.CERT_NONE:
|
if sslopt.get('cert_reqs', ssl.CERT_NONE) != ssl.CERT_NONE:
|
||||||
capath = ssl.get_default_verify_paths().capath
|
capath = ssl.get_default_verify_paths().capath
|
||||||
|
|
Loading…
Reference in a new issue