Added code to work around a security vulnerability discovered in SSL (as recommended by Digia).

Sat, 29 Sep 2012 11:09:02 +0200

author
Detlev Offenbach <detlev@die-offenbachs.de>
date
Sat, 29 Sep 2012 11:09:02 +0200
changeset 2067
778e254ad4ee
parent 2065
aea3ddf97aca
child 2070
85259c62cd82

Added code to work around a security vulnerability discovered in SSL (as recommended by Digia).

Helpviewer/Network/NetworkAccessManager.py file | annotate | diff | comparison | revisions
--- a/Helpviewer/Network/NetworkAccessManager.py	Fri Sep 28 18:19:01 2012 +0200
+++ b/Helpviewer/Network/NetworkAccessManager.py	Sat Sep 29 11:09:02 2012 +0200
@@ -84,6 +84,10 @@
             sslCfg = QSslConfiguration.defaultConfiguration()
             sslCfg.setCaCertificates(caList)
             sslCfg.setProtocol(QSsl.AnyProtocol)
+            try:
+                sslCfg.setSslOption(QSsl.SslOptionDisableCompression, True)
+            except AttributeError:
+                pass
             QSslConfiguration.setDefaultConfiguration(sslCfg)
             
             self.sslErrors.connect(self.__sslErrors)

eric ide

mercurial