mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-01-06 13:26:43 +08:00
Code Issues Packages Projects Releases Wiki Activity
dceb99a5fb
openssl/test/ssl-tests
History
Matt Caswell f865b08143 Split configuration of TLSv1.3 ciphers from older ciphers 
With the current mechanism, old cipher strings that used to work in 1.1.0,
may inadvertently disable all TLSv1.3 ciphersuites causing connections to
fail. This is confusing for users.

In reality TLSv1.3 are quite different to older ciphers. They are much
simpler and there are only a small number of them so, arguably, they don't
need the same level of control that the older ciphers have.

This change splits the configuration of TLSv1.3 ciphers from older ones.
By default the TLSv1.3 ciphers are on, so you cannot inadvertently disable
them through your existing config.

Fixes #5359

Reviewed-by: Tim Hudson <tjh@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/5392)
2018-03-14 10:15:50 +00:00
..
01-simple.conf
01-simple.conf.in
02-protocol-version.conf Split configuration of TLSv1.3 ciphers from older ciphers 2018-03-14 10:15:50 +00:00
02-protocol-version.conf.in
03-custom_verify.conf
03-custom_verify.conf.in
04-client_auth.conf
04-client_auth.conf.in
05-sni.conf
05-sni.conf.in
06-sni-ticket.conf
06-sni-ticket.conf.in
07-dtls-protocol-version.conf
07-dtls-protocol-version.conf.in
08-npn.conf
08-npn.conf.in
09-alpn.conf
09-alpn.conf.in
10-resumption.conf Enable TLSv1.3 by default 2018-02-07 21:34:18 +00:00
10-resumption.conf.in
11-dtls_resumption.conf
11-dtls_resumption.conf.in
12-ct.conf
12-ct.conf.in
13-fragmentation.conf
13-fragmentation.conf.in Copyright update of more files that have changed this year 2018-01-19 13:34:03 +01:00
14-curves.conf Update tests for TLS Ed448 2018-03-05 11:39:44 +00:00
14-curves.conf.in Update tests for TLS Ed448 2018-03-05 11:39:44 +00:00
15-certstatus.conf
15-certstatus.conf.in
16-certstatus.conf
16-dtls-certstatus.conf
16-dtls-certstatus.conf.in
17-renegotiate.conf
17-renegotiate.conf.in
18-dtls-renegotiate.conf
18-dtls-renegotiate.conf.in
19-mac-then-encrypt.conf
19-mac-then-encrypt.conf.in
20-cert-select.conf Update tests for TLS Ed448 2018-03-05 11:39:44 +00:00
20-cert-select.conf.in Update tests for TLS Ed448 2018-03-05 11:39:44 +00:00
21-key-update.conf
21-key-update.conf.in
22-compression.conf Enable TLSv1.3 by default 2018-02-07 21:34:18 +00:00
22-compression.conf.in
23-srp.conf
23-srp.conf.in
24-padding.conf
24-padding.conf.in
25-cipher.conf Don't expect a POLY1305 ciphersuite when using no-poly1305 2017-12-11 09:41:59 +00:00
25-cipher.conf.in Fix no-chacha 2017-12-11 09:41:59 +00:00
26-tls13_client_auth.conf Add TLSv1.3 post-handshake authentication (PHA) 2018-02-01 17:07:56 +00:00
26-tls13_client_auth.conf.in Add TLSv1.3 post-handshake authentication (PHA) 2018-02-01 17:07:56 +00:00
27-ticket-appdata.conf Session Ticket app data 2018-03-12 10:31:09 +00:00
27-ticket-appdata.conf.in Session Ticket app data 2018-03-12 10:31:09 +00:00
protocol_version.pm Split configuration of TLSv1.3 ciphers from older ciphers 2018-03-14 10:15:50 +00:00
ssltests_base.pm