Enable single ECDH use

2016-10-30 13:41:24 -07:00 · 2016-10-30 13:41:24 -07:00 · ee79db61c2
parent 677718f8da
commit ee79db61c2
1 changed files with 2 additions and 1 deletions
--- a/openssl/src/ssl/connector.rs
+++ b/openssl/src/ssl/connector.rs
@ -126,7 +126,8 @@ impl ServerConnectorBuilder {
              I::Item: AsRef<X509Ref>
    {
        let mut ctx = try!(ctx(method));
-        ctx.set_options(ssl::SSL_OP_SINGLE_DH_USE | ssl::SSL_OP_CIPHER_SERVER_PREFERENCE);
+        ctx.set_options(ssl::SSL_OP_SINGLE_DH_USE | ssl::SSL_OP_SINGLE_ECDH_USE |
+            ssl::SSL_OP_CIPHER_SERVER_PREFERENCE);
        let dh = try!(Dh::from_pem(DHPARAM_PEM.as_bytes()));
        try!(ctx.set_tmp_dh(&dh));
        try!(setup_curves(&mut ctx));