Matrix-Mirrors/anonymousland-synapse
1
0
Fork 0
mirror of https://git.anonymousland.org/anonymousland/synapse.git synced 2025-05-02 12:26:02 -04:00
Code Issues Projects Releases Packages Wiki Activity

Fixes #3135 - Replace _OpenSSLECCurve with crypto.get_elliptic_curve (#3157)

Browse source 
fixes #3135

Signed-off-by: Will Hunt will@half-shot.uk
This commit is contained in:
Will Hunt 2018-04-30 16:21:11 +01:00 committed by Richard van der Hoff
parent cead75fae3
commit 2ad3fc36e6
2 changed files with 8 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

9
synapse/crypto/context_factory.py
View file

@ -13,8 +13,8 @@
# limitations under the License.
from twisted.internet import ssl
from OpenSSL import SSL
from twisted.internet._sslverify import _OpenSSLECCurve, _defaultCurveName
from OpenSSL import SSL, crypto
from twisted.internet._sslverify import _defaultCurveName
import logging
@ -32,8 +32,9 @@ class ServerContextFactory(ssl.ContextFactory):
@staticmethod
def configure_context(context, config):
try:
_ecCurve = _OpenSSLECCurve(_defaultCurveName)
_ecCurve.addECKeyToContext(context)
_ecCurve = crypto.get_elliptic_curve(_defaultCurveName)
context.set_tmp_ecdh(_ecCurve)
except Exception:
logger.exception("Failed to enable elliptic curve for TLS")
context.set_options(SSL.OP_NO_SSLv2 | SSL.OP_NO_SSLv3)