]> git.ipfire.org Git - thirdparty/curl.git/commit
projects / thirdparty / curl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e233073) | patch
schannel: remove TLS 1.3 ciphersuite-list support
authorWyatt O'Day <wyatt@wyday.com>
Thu, 21 Nov 2024 14:08:31 +0000 (09:08 -0500)
committerJay Satiro <raysatiro@yahoo.com>
Thu, 21 Nov 2024 22:09:24 +0000 (17:09 -0500)
commit6238888ca7f0e473e9713a7c372fac8f025db569
tree04237a088b8c561e34b0fe90513166ca716f6297tree | snapshot
parente233073f0160c77fdb1bb4147f78e2c04a9df917commit | diff
schannel: remove TLS 1.3 ciphersuite-list support

Drop TLS 1.3 ciphersuite-list support from SChannel because of the
number of bugs in SChannel itself (a closed-source TLS library). TLS 1.3
with SChannel still works, however the ciphersuite negotiation is left
entirely to SChannel.

Bug: https://hackerone.com/reports/2792484
Reported-by: newfunction on hackerone
Fixes https://github.com/curl/curl/issues/15482
Closes https://github.com/curl/curl/pull/15621
docs/CIPHERS.md diff | blob | blame | history
docs/cmdline-opts/tls13-ciphers.md diff | blob | blame | history
docs/libcurl/opts/CURLOPT_PROXY_TLS13_CIPHERS.md diff | blob | blame | history
docs/libcurl/opts/CURLOPT_TLS13_CIPHERS.md diff | blob | blame | history
lib/vtls/schannel.c diff | blob | blame | history
Mirror of https://github.com/curl/curl.git