projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2afe316) | patch
Include "!eNULL" in SSL_DEFAULT_CIPHER_LIST to make sure that a
authorBodo Möller <bodo@openssl.org>
Mon, 19 Feb 2007 18:41:41 +0000 (18:41 +0000)
committerBodo Möller <bodo@openssl.org>
Mon, 19 Feb 2007 18:41:41 +0000 (18:41 +0000)
commit0a05123a6c90390c1290fe3bc119f1daf256b834
tree34c7ee359825151da85292b0051a11cf9d80db9btree | snapshot
parent2afe316721982828eba29744f59244d443fc27a3commit | diff
Include "!eNULL" in SSL_DEFAULT_CIPHER_LIST to make sure that a
ciphersuite string such as "DEFAULT:RSA" cannot enable
authentication-only ciphersuites.

Also, change ssl_create_cipher_list() so that it no longer
starts with an arbitrary ciphersuite ordering, but instead
uses the logic that we previously had in SSL_DEFEAULT_CIPHER_LIST.
SSL_DEFAULT_CIPHER_LIST simplifies into just "ALL:!aNULL:!eNULL".
CHANGES diff | blob | history
ssl/ssl.h diff | blob | history
ssl/ssl_ciph.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.