From 8d55e305612cb4b6b934e53eef340dfed6a3d78d Mon Sep 17 00:00:00 2001
From: Nils Maier <maierman@web.de>
Date: Sun, 13 Apr 2014 16:04:24 +0200
Subject: [PATCH] WinTLS: Use SCH_USE_STRONG_CRYPTO

See: #217
---
 src/WinTLSContext.cc | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/src/WinTLSContext.cc b/src/WinTLSContext.cc
index 1c678409..92176f05 100644
--- a/src/WinTLSContext.cc
+++ b/src/WinTLSContext.cc
@@ -44,6 +44,10 @@
 #include "message.h"
 #include "util.h"
 
+#ifndef SCH_USE_STRONG_CRYPTO
+#define SCH_USE_STRONG_CRYPTO 0x00400000
+#endif
+
 namespace aria2 {
 
 WinTLSContext::WinTLSContext(TLSSessionSide side)
@@ -95,7 +99,8 @@ void WinTLSContext::setVerifyPeer(bool verify)
       SCH_CRED_NO_DEFAULT_CREDS |
       SCH_CRED_AUTO_CRED_VALIDATION |
       SCH_CRED_REVOCATION_CHECK_CHAIN |
-      SCH_CRED_IGNORE_NO_REVOCATION_CHECK;
+      SCH_CRED_IGNORE_NO_REVOCATION_CHECK |
+      SCH_USE_STRONG_CRYPTO;
   }
   else {
     credentials_.dwFlags =
@@ -103,7 +108,8 @@ void WinTLSContext::setVerifyPeer(bool verify)
       SCH_CRED_MANUAL_CRED_VALIDATION |
       SCH_CRED_IGNORE_NO_REVOCATION_CHECK |
       SCH_CRED_IGNORE_REVOCATION_OFFLINE |
-      SCH_CRED_NO_SERVERNAME_CHECK;
+      SCH_CRED_NO_SERVERNAME_CHECK |
+      SCH_USE_STRONG_CRYPTO;
   }
   cred_.reset();
 }