]> git.ipfire.org Git - thirdparty/hostap.git/commitdiff
projects / thirdparty / hostap.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: daf3806)
TLS server: Enable SHA256-based cipher suites
authorJouni Malinen <j@w1.fi>
Sun, 9 Mar 2014 09:57:05 +0000 (11:57 +0200)
committerJouni Malinen <j@w1.fi>
Sun, 9 Mar 2014 09:57:05 +0000 (11:57 +0200)
The SHA256-based RSA-AES-128/256 cipher suites were already implemented
and enabled for the internal TLS client, but they had not been enabled
for the server.

Signed-off-by: Jouni Malinen <j@w1.fi>
src/tls/tlsv1_server.c patch | blob | blame | history

diff --git a/src/tls/tlsv1_server.c b/src/tls/tlsv1_server.c
index 2880309ebf51523523296605498cb7008bd74a6a..55f5a78fbeceebe844f624edb99a13f6dca5d7ae 100644 (file)
--- a/src/tls/tlsv1_server.c
+++ b/src/tls/tlsv1_server.c
@@ -361,7 +361,9 @@ struct tlsv1_server * tlsv1_server_init(struct tlsv1_credentials *cred)
 
        count = 0;
        suites = conn->cipher_suites;
+       suites[count++] = TLS_RSA_WITH_AES_256_CBC_SHA256;
        suites[count++] = TLS_RSA_WITH_AES_256_CBC_SHA;
+       suites[count++] = TLS_RSA_WITH_AES_128_CBC_SHA256;
        suites[count++] = TLS_RSA_WITH_AES_128_CBC_SHA;
        suites[count++] = TLS_RSA_WITH_3DES_EDE_CBC_SHA;
        suites[count++] = TLS_RSA_WITH_RC4_128_SHA;
Unnamed repository; edit this file 'description' to name the repository.