www.infradead.org Git - users/dwmw2/openconnect.git/commit

author	Elias Norberg <elias@aisle.se>
	Fri, 1 May 2020 12:08:02 +0000 (14:08 +0200)
committer	Daniel Lenski <dlenski@gmail.com>
	Tue, 5 Jan 2021 18:06:34 +0000 (10:06 -0800)
commit	4864ee17347323d7f5446c0a079c8a8728be30d9
tree	ed473c0115519171c5575c7136a73cf745461720	tree
parent	14a1c56a0d521443c5c7138553e46f3e47544254	commit \| diff

Always set security level to 0 for openssl versions >= 1.1.0

In version 1.1.0 of OpenSSL, a security level was introduced that enforces specific settings for certificates etc.
This PR sets the security level to 0, to retain the functionality that
previous versions of openssl had, and preventing errors like:

140088222534656:error:140AB18E:SSL routines:SSL_CTX_use_certificate:ca md too weak:../ssl/ssl_rsa.c:310

See https://www.openssl.org/docs/manmaster/man3/SSL_CTX_set_security_level.html for more information about security levels.

Signed-off-by: Elias Norberg <elias@aisle.se>
Signed-off-by: Daniel Lenski <dlenski@gmail.com>