Timeline for How should I modify the Qt5 source code if I want to add back SSLv3 support in the libqt5network5 module?
Current License: CC BY-SA 4.0
5 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Aug 29, 2023 at 8:53 | comment | added | Chris Haddad | Thank you @MarcusMüller for your answer. Actually, I don't know the files to patch. That is the problem. The commit I've given in my question seems to be one of many to revert the support for SSLv3. So it seems there are more commits that change other files related to the support of SSLv3. I used the revert commit as a patch but even with this, it seems there are still things not as they should be. And thank you as well for your guidance regarding the security and how we should proceed in this matter. I will take what you said into consideration. | |
| Aug 25, 2023 at 12:21 | comment | added | Marcus Müller | @AndrewHenle fair point, added to the answer. | |
| Aug 25, 2023 at 12:21 | history | edited | Marcus Müller | CC BY-SA 4.0 |
added 794 characters in body
|
| Aug 25, 2023 at 12:16 | comment | added | Andrew Henle | You left out, "For the rest of time you have to monitor Qt and OpenSSL for vulnerabilities, and when a critical one is discovered, do it all again with the added task of verifying the updated Qt or OpenSSL code doesn't break your patching." | |
| Aug 25, 2023 at 12:02 | history | answered | Marcus Müller | CC BY-SA 4.0 |