mirror of
https://github.com/jellyfin/jellyfin-kodi.git
synced 2024-12-25 18:26:15 +00:00
Disable SSLv2 and SSLv3 support in websocket lib
Requires Python2 >= 2.7.9, Python3 >= 3.6
This commit is contained in:
parent
cf29767406
commit
0dfea09769
1 changed files with 4 additions and 2 deletions
|
@ -136,7 +136,9 @@ def getdefaulttimeout():
|
|||
|
||||
|
||||
def _wrap_sni_socket(sock, sslopt, hostname):
|
||||
context = ssl.SSLContext(sslopt.get('ssl_version', ssl.PROTOCOL_SSLv23))
|
||||
context = ssl.SSLContext(sslopt.get('ssl_version', ssl.PROTOCOL_TLS))
|
||||
context.options |= ssl.OP_NO_SSLv2 # Explicitly disable SSLv2
|
||||
context.options |= ssl.OP_NO_SSLv3 # Explicitly disable SSLv3
|
||||
|
||||
if sslopt.get('cert_reqs', ssl.CERT_NONE) != ssl.CERT_NONE:
|
||||
capath = ssl.get_default_verify_paths().capath
|
||||
|
@ -547,7 +549,7 @@ class WebSocket(object):
|
|||
|
||||
# https://tools.ietf.org/html/rfc6455#page-6
|
||||
magic_string = "258EAFA5-E914-47DA-95CA-C5AB0DC85B11".encode()
|
||||
value = key + magic_string
|
||||
value = key + magic_string
|
||||
hashed = base64.encodestring(hashlib.sha1(value).digest()).strip().lower().decode()
|
||||
return hashed == result
|
||||
|
||||
|
|
Loading…
Reference in a new issue