packages/rubygem-puma
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
rubygem-puma/rubygem-puma-3.6.0-fedora-crypto-policy-cipher-list.patch
wk333 35e2ddde05 Fix CVE-2024-45614,CVE-2022-24790,CVE-2023-40175,CVE-2024-21647 
(cherry picked from commit e2a00591173c8e89d5030e729f31c006a25640b0)
2024-09-27 14:18:44 +08:00

17 lines
492 B
Diff
Raw Permalink Blame History

diff --git a/ext/puma_http11/mini_ssl.c b/ext/puma_http11/mini_ssl.c
index 7e0fd5e..88c4652 100644
--- a/ext/puma_http11/mini_ssl.c
+++ b/ext/puma_http11/mini_ssl.c
@@ -336,7 +336,7 @@ sslctx_initialize(VALUE self, VALUE mini_ssl_ctx) {
SSL_CTX_set_cipher_list(ctx, RSTRING_PTR(ssl_cipher_filter));
}
else {
- SSL_CTX_set_cipher_list(ctx, "HIGH:!aNULL@STRENGTH");
+ SSL_CTX_set_cipher_list(ctx, "PROFILE=SYSTEM");
}
#if OPENSSL_VERSION_NUMBER < 0x10002000L
--
2.30.0
Reference in New Issue View Git Blame Copy Permalink