Mercurial Repositories > eric / file diff

--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/eric7/EricNetwork/EricSslUtilities.py	Sat May 22 16:52:45 2021 +0200
@@ -0,0 +1,30 @@
+# -*- coding: utf-8 -*-
+
+# Copyright (c) 2015 - 2021 Detlev Offenbach <detlev@die-offenbachs.de>
+#
+
+"""
+Module implementing SSL utility functions.
+"""
+
+
+def initSSL():
+    """
+    Function to initialize some global SSL stuff.
+    """
+    blacklist = [
+        "SRP-AES-256-CBC-SHA",          # open to MitM
+        "SRP-AES-128-CBC-SHA",          # open to MitM
+    ]
+    
+    try:
+        from PyQt6.QtNetwork import QSslConfiguration
+    except ImportError:
+        # no SSL available, so there is nothing to initialize
+        return
+    
+    strongCiphers = [c for c in QSslConfiguration.supportedCiphers()
+                     if c.name() not in blacklist and c.usedBits() >= 128]
+    defaultSslConfiguration = QSslConfiguration.defaultConfiguration()
+    defaultSslConfiguration.setCiphers(strongCiphers)
+    QSslConfiguration.setDefaultConfiguration(defaultSslConfiguration)