Disable SHA-2 ciphersuites in < TLS 1.2 connections.
authorBodo Möller <bodo@openssl.org>
Tue, 17 Apr 2012 15:20:17 +0000 (15:20 +0000)
committerBodo Möller <bodo@openssl.org>
Tue, 17 Apr 2012 15:20:17 +0000 (15:20 +0000)
commit4d936ace088da7a72e7dc8901cbba64e3c1f3596
tree57fa2dc4438dc8104db545237c957e19c14de2c7
parent89bd25eb26bbc2ebceb4cd892e7453337804820c
Disable SHA-2 ciphersuites in < TLS 1.2 connections.

(TLS 1.2 clients could end up negotiating these with an OpenSSL server
with TLS 1.2 disabled, which is problematic.)

Submitted by: Adam Langley
CHANGES
ssl/s3_lib.c