From 810a791332e863c7dd1debc2f60503c2535aa92c Mon Sep 17 00:00:00 2001
From: Alberto Sottile <alby128@gmail.com>
Date: Thu, 7 Feb 2019 15:31:35 +0100
Subject: [PATCH] startTLS: set minimum protocol version to TLS 1.2

---
 syncplay/server.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/syncplay/server.py b/syncplay/server.py
index 4a0c142..86d9c97 100755
--- a/syncplay/server.py
+++ b/syncplay/server.py
@@ -213,7 +213,8 @@ class SyncFactory(Factory):
             certifpyssl = crypto.load_certificate(crypto.FILETYPE_PEM, certif)
             chainpyssl = [crypto.load_certificate(crypto.FILETYPE_PEM, chain)]
 
-            contextFactory = ssl.CertificateOptions(privateKey=privkeypyssl, certificate=certifpyssl, extraCertChain=chainpyssl)
+            contextFactory = ssl.CertificateOptions(privateKey=privkeypyssl, certificate=certifpyssl,
+                                                    extraCertChain=chainpyssl, raiseMinimumTo=ssl.TLSVersion.TLSv1_2)
             self.options = contextFactory
         except Exception as e:
             print(e)