Disable SHA-2 ciphersuites in < TLS 1.2 connections.
authorBodo Möller <bodo@openssl.org>
Tue, 17 Apr 2012 15:21:29 +0000 (15:21 +0000)
committerBodo Möller <bodo@openssl.org>
Tue, 17 Apr 2012 15:21:29 +0000 (15:21 +0000)
commitbb3add20f33ec6c62c449954823c7439ea2ad24d
tree61e50634f82a36afc988c6ffb3eed6fc52461806
parent48e0f6667b86cade6e7b7afa83c7006ab7e8c2d1
Disable SHA-2 ciphersuites in < TLS 1.2 connections.

(TLS 1.2 clients could end up negotiating these with an OpenSSL server
with TLS 1.2 disabled, which is problematic.)

Submitted by: Adam Langley
CHANGES
ssl/s3_lib.c