artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 791ec58) | patch
Disallow MD5 and SHA-1 HMACs depending on the security level
authortb <tb@openbsd.org>
Tue, 19 Jul 2022 18:55:12 +0000 (18:55 +0000)
committertb <tb@openbsd.org>
Tue, 19 Jul 2022 18:55:12 +0000 (18:55 +0000)
commita042a42d45fe37bd30ccc76e5ce802950916f699
tree7019c7d3b0a5d9cdcd9e2c98593d6f98161a5e0etree | snapshot
parent791ec582e9dadb1dbac6213f61142a880505b026commit | diff
Disallow MD5 and SHA-1 HMACs depending on the security level

Ciphers using an MD5 HMAC are not allowed on security levels >= 1 and
using a SHA-1 HMAC is disallowed on security levels >= 4. This disables
RC4-MD5 by default.

ok jsing
lib/libssl/ssl_seclevel.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim