diff options
author | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2017-12-19 16:00:45 +0100 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2017-12-19 16:08:54 +0100 |
commit | d4a7dad6a67c77cb3dcae49358d5b86181ae801e (patch) | |
tree | 2588575f1047aa5b73b4d42ea055f75ca46fc3f3 /tests/data/listings-TLS1.0 | |
parent | ab50e053a6ef9fd6ed0eed5a284b5380bfe7aee5 (diff) | |
download | gnutls-d4a7dad6a67c77cb3dcae49358d5b86181ae801e.tar.gz |
priorities: provide a more consistent "story" for default cipher settings
Current settings in NORMAL priorities which were affected:
* Enabled ciphers:
- AES-GCM
- CHACHA20-POLY1305
- AES-CCM
- AES-CBC
* Enabled signature algorithms:
- RSA-SHA256
- RSA-PSS-SHA256
- ECDSA-SHA256 / ECDSA-SECP256R1-SHA256
- EDDSA-ED25519
- RSA-SHA384
- RSA-PSS-SHA384
- ECDSA-SHA384 / ECDSA-SECP384R1-SHA384
- RSA-SHA512
- RSA-PSS-SHA512
- ECDSA-SHA512 / ECDSA-SECP521R1-SHA512
- RSA-SHA1
- ECDSA-SHA1
Removed:
* Ciphersuites utilizing HMAC-SHA384. That MAC is only used on "legacy"
type of ciphersuites, and doesn't provide any advantage over HMAC-SHA256.
* Ciphersuites utilizing CAMELLIA were removed. TLS1.3 doesn't define any
CAMELLIA ciphersuites, and thus provide consistent defaults across
protocols.
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
Diffstat (limited to 'tests/data/listings-TLS1.0')
0 files changed, 0 insertions, 0 deletions