cuberite/polarssl
1
0
Fork 0
mirror of https://github.com/cuberite/polarssl.git synced 2025-09-10 07:36:28 -04:00
Code Issues Packages Projects Releases Wiki Activity

compat.sh: no TLS-RSA-WITH-NULL-SHA256 with ssl3

Browse Source 
This is officially a 1.2-only ciphersuite, but we also support it with
1.0 and 1.1. However we don't support it with SSLv3 (see definition in
ssl_ciphersuites.c: mininum minor version is 1, that is TLS 1.0).

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
This commit is contained in:
Manuel Pégourié-Gonnard 2024-04-10 12:50:40 +02:00
parent e86e2bc451
commit 7e5d81d431
1 changed files with 12 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
tests/compat.sh
View File

@ -655,6 +655,8 @@ add_gnutls_ciphersuites()
;; ;;
"RSA") "RSA")
if [ `minor_ver "$MODE"` -ge 1 ]
then
# Not actually supported with all GnuTLS versions. See # Not actually supported with all GnuTLS versions. See
# GNUTLS_HAS_TLS1_RSA_NULL_SHA256= below. # GNUTLS_HAS_TLS1_RSA_NULL_SHA256= below.
M_CIPHERS="$M_CIPHERS \ M_CIPHERS="$M_CIPHERS \
@ -663,6 +665,8 @@ add_gnutls_ciphersuites()
G_CIPHERS="$G_CIPHERS \ G_CIPHERS="$G_CIPHERS \
+RSA:+NULL:+SHA256 \ +RSA:+NULL:+SHA256 \
" "
fi
if [ `minor_ver "$MODE"` -ge 3 ] if [ `minor_ver "$MODE"` -ge 3 ]
then then
M_CIPHERS="$M_CIPHERS \ M_CIPHERS="$M_CIPHERS \