When choosing a cipher, use the server's preferences.

commit: 77a677c2bd8147bd19245d4ebdfdd005bc1a4df3 [log] [tgz]
author: David Galeano <davidgaleano@turbulenz.biz> Thu Jan 10 10:14:12 2013 +0800
committer: Andy Green <andy.green@linaro.org> Thu Jan 10 12:45:53 2013 +0800
tree: b09fa76732425f0a66ac4698c0a82ca6278ed4e3
parent: 584b3167002ddedeb1326678717460e5f72d8abc [diff] [blame]
diff --git a/lib/libwebsockets.c b/lib/libwebsockets.c
index 302dab3..c06557e 100644
--- a/lib/libwebsockets.c
+++ b/lib/libwebsockets.c

@@ -2730,6 +2730,7 @@
 	}
 
 	SSL_CTX_set_options(context->ssl_ctx, SSL_OP_NO_COMPRESSION);
+	SSL_CTX_set_options(context->ssl_ctx, SSL_OP_CIPHER_SERVER_PREFERENCE);
 
 	/* client context */
 
@@ -2749,6 +2750,7 @@
 		}
 
 		SSL_CTX_set_options(context->ssl_client_ctx, SSL_OP_NO_COMPRESSION);
+		SSL_CTX_set_options(context->ssl_client_ctx, SSL_OP_CIPHER_SERVER_PREFERENCE);
 
 		/* openssl init for cert verification (for client sockets) */
 		if (!ssl_ca_filepath) {
commit	77a677c2bd8147bd19245d4ebdfdd005bc1a4df3	[log] [tgz]
author	David Galeano <davidgaleano@turbulenz.biz>	Thu Jan 10 10:14:12 2013 +0800
committer	Andy Green <andy.green@linaro.org>	Thu Jan 10 12:45:53 2013 +0800
tree	b09fa76732425f0a66ac4698c0a82ca6278ed4e3
parent	584b3167002ddedeb1326678717460e5f72d8abc [diff] [blame]