Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

TLS server: Enable SHA256-based cipher suites

The SHA256-based RSA-AES-128/256 cipher suites were already implemented
and enabled for the internal TLS client, but they had not been enabled
for the server.

Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen 11 years ago
parent
daf3806d1d
commit
41ebfe97ec
1 changed files with 2 additions and 0 deletions
Split View Show Diff Stats
  1. 2 0
      src/tls/tlsv1_server.c

+ 2 - 0
src/tls/tlsv1_server.c
View File 

@@ -361,7 +361,9 @@ struct tlsv1_server * tlsv1_server_init(struct tlsv1_credentials *cred)
 
 
 	count = 0;
 
 	suites = conn->cipher_suites;
 
+	suites[count++] = TLS_RSA_WITH_AES_256_CBC_SHA256;
 
 	suites[count++] = TLS_RSA_WITH_AES_256_CBC_SHA;
 
+	suites[count++] = TLS_RSA_WITH_AES_128_CBC_SHA256;
 
 	suites[count++] = TLS_RSA_WITH_AES_128_CBC_SHA;
 
 	suites[count++] = TLS_RSA_WITH_3DES_EDE_CBC_SHA;
 
 	suites[count++] = TLS_RSA_WITH_RC4_128_SHA;