From 77a677c2bd8147bd19245d4ebdfdd005bc1a4df3 Mon Sep 17 00:00:00 2001
From: David Galeano <davidgaleano@turbulenz.biz>
Date: Thu, 10 Jan 2013 10:14:12 +0800
Subject: [PATCH] When choosing a cipher, use the server's preferences.

---
 lib/libwebsockets.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/lib/libwebsockets.c b/lib/libwebsockets.c
index 302dab36..c06557ed 100644
--- a/lib/libwebsockets.c
+++ b/lib/libwebsockets.c
@@ -2730,6 +2730,7 @@ libwebsocket_create_context(int port, const char *interf,
 	}
 
 	SSL_CTX_set_options(context->ssl_ctx, SSL_OP_NO_COMPRESSION);
+	SSL_CTX_set_options(context->ssl_ctx, SSL_OP_CIPHER_SERVER_PREFERENCE);
 
 	/* client context */
 
@@ -2749,6 +2750,7 @@ libwebsocket_create_context(int port, const char *interf,
 		}
 
 		SSL_CTX_set_options(context->ssl_client_ctx, SSL_OP_NO_COMPRESSION);
+		SSL_CTX_set_options(context->ssl_client_ctx, SSL_OP_CIPHER_SERVER_PREFERENCE);
 
 		/* openssl init for cert verification (for client sockets) */
 		if (!ssl_ca_filepath) {