From ff0a7262873e7f2fcfcae5ed46d99499be210db8 Mon Sep 17 00:00:00 2001
From: Loganaden Velvindron <logan@cyberstorm.mu>
Date: Sat, 21 Mar 2020 17:38:43 +0400
Subject: [PATCH] Switch to TLS 1.2 as minimum requirement according to
 https://tools.ietf.org/id/draft-ietf-tls-oldversions-deprecate-06.txt

---
 runtime/bin/security_context.cc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/runtime/bin/security_context.cc b/runtime/bin/security_context.cc
index 5d649df619cd..6c728258fa32 100644
--- a/runtime/bin/security_context.cc
+++ b/runtime/bin/security_context.cc
@@ -805,7 +805,7 @@ void FUNCTION_NAME(SecurityContext_Allocate)(Dart_NativeArguments args) {
   SSLFilter::InitializeLibrary();
   SSL_CTX* ctx = SSL_CTX_new(TLS_method());
   SSL_CTX_set_verify(ctx, SSL_VERIFY_PEER, SSLCertContext::CertificateCallback);
-  SSL_CTX_set_min_proto_version(ctx, TLS1_VERSION);
+  SSL_CTX_set_min_proto_version(ctx, TLS1_2_VERSION);
   SSL_CTX_set_cipher_list(ctx, "HIGH:MEDIUM");
   SSLCertContext* context = new SSLCertContext(ctx);
   Dart_Handle err = SetSecurityContext(args, context);