GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-03-14 14:58:06 +08:00
Code Issues Packages Projects Releases Wiki Activity

removed support for chacha20-poly1305 using the legacy protocol

Browse Source
This commit is contained in:
Nikos Mavrogiannopoulos
2016-08-05 09:04:33 +02:00
parent 068548e83f
commit a581d0babb
1 changed files with 1 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
src/worker-http.c
View File

@@ -40,7 +40,6 @@
#define CS_AES128_GCM "OC-DTLS1_2-AES128-GCM" #define CS_AES128_GCM "OC-DTLS1_2-AES128-GCM"
#define CS_AES256_GCM "OC-DTLS1_2-AES256-GCM" #define CS_AES256_GCM "OC-DTLS1_2-AES256-GCM"
#define CS_CHACHA20_POLY1305 "OC2-DTLS1_2-CHACHA20-POLY1305"
struct known_urls_st { struct known_urls_st {
const char *url; const char *url;
@@ -122,20 +121,7 @@ static const dtls_ciphersuite_st ciphersuites[] = {
.gnutls_kx = GNUTLS_KX_RSA, .gnutls_kx = GNUTLS_KX_RSA,
.gnutls_cipher = GNUTLS_CIPHER_3DES_CBC, .gnutls_cipher = GNUTLS_CIPHER_3DES_CBC,
.server_prio = 1, .server_prio = 1,
}, }
#if GNUTLS_VERSION_NUMBER >= 0x030400
{
.oc_name = CS_CHACHA20_POLY1305,
.gnutls_name =
"NONE:+VERS-DTLS1.2:+COMP-NULL:+CHACHA20-POLY1305:+AEAD:+PSK:%COMPAT:+SIGN-ALL",
.gnutls_version = GNUTLS_DTLS1_2,
.gnutls_mac = GNUTLS_MAC_AEAD,
.gnutls_kx = GNUTLS_KX_PSK,
.gnutls_cipher = GNUTLS_CIPHER_CHACHA20_POLY1305,
.txt_version = "3.4.8",
.server_prio = 40
},
#endif
}; };
#ifdef HAVE_LZ4 #ifdef HAVE_LZ4