diff options
author | Maximilian Hils <git@maximilianhils.com> | 2015-08-28 17:35:48 +0200 |
---|---|---|
committer | Maximilian Hils <git@maximilianhils.com> | 2015-08-28 17:35:48 +0200 |
commit | 982d8000c420937da532d1c584e3ca7a86c5f3e8 (patch) | |
tree | 43e209d43496ca1f65f5d0fe4bf82f347a93f6a8 /netlib/tcp.py | |
parent | de0ced73f8e14aec8f94ea93c0ba0165026e09fc (diff) | |
download | mitmproxy-982d8000c420937da532d1c584e3ca7a86c5f3e8.tar.gz mitmproxy-982d8000c420937da532d1c584e3ca7a86c5f3e8.tar.bz2 mitmproxy-982d8000c420937da532d1c584e3ca7a86c5f3e8.zip |
wip
Diffstat (limited to 'netlib/tcp.py')
-rw-r--r-- | netlib/tcp.py | 18 |
1 files changed, 1 insertions, 17 deletions
diff --git a/netlib/tcp.py b/netlib/tcp.py index 3a094d9a..9dfa8d22 100644 --- a/netlib/tcp.py +++ b/netlib/tcp.py @@ -23,28 +23,12 @@ EINTR = 4 # To enable all SSL methods use: SSLv23 # then add options to disable certain methods # https://bugs.launchpad.net/pyopenssl/+bug/1020632/comments/3 - -# Use ONLY for parsing of CLI arguments! -# All code internals should use OpenSSL constants directly! -SSL_VERSIONS = { - 'TLSv1.2': SSL.TLSv1_2_METHOD, - 'TLSv1.1': SSL.TLSv1_1_METHOD, - 'TLSv1': SSL.TLSv1_METHOD, - 'SSLv3': SSL.SSLv3_METHOD, - 'SSLv2': SSL.SSLv2_METHOD, - 'SSLv23': SSL.SSLv23_METHOD, -} - -SSL_DEFAULT_VERSION = 'SSLv23' - -SSL_DEFAULT_METHOD = SSL_VERSIONS[SSL_DEFAULT_VERSION] - +SSL_DEFAULT_METHOD = SSL.SSLv23_METHOD SSL_DEFAULT_OPTIONS = ( SSL.OP_NO_SSLv2 | SSL.OP_NO_SSLv3 | SSL.OP_CIPHER_SERVER_PREFERENCE ) - if hasattr(SSL, "OP_NO_COMPRESSION"): SSL_DEFAULT_OPTIONS |= SSL.OP_NO_COMPRESSION |