Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | priorities: hmac-sha256 ciphersuites were removed from defaults | Nikos Mavrogiannopoulos | 2018-06-12 | 1 | -9/+9 |
| | | | | | | | | | | | | These ciphersuites are deprecated since the introduction of AEAD ciphersuites, and are only necessary for compatibility with older servers. Since older servers already support hmac-sha1 there is no reason to keep these ciphersuites enabled by default, as they increase our attack surface. Relates #456 Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | tests: updated to account for HMAC-SHA384 and CAMELLIA removal | Nikos Mavrogiannopoulos | 2018-02-19 | 1 | -14/+14 |
| | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | tests: verify that no signature algorithms with (D)TLS 1.2 will cause an error | Nikos Mavrogiannopoulos | 2018-02-19 | 1 | -0/+2 |
| | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | tests: verify that +SIGN-ECDSA-SECP256R1-SHA256 has no effect when combined ↵ | Nikos Mavrogiannopoulos | 2018-02-19 | 1 | -1/+21 |
| | | | | | | with TLS1.2 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | tests: adjusted for the removal of HMAC-MD5tmp-remove-hmac-md5 | Nikos Mavrogiannopoulos | 2017-03-08 | 1 | -1/+1 |
| | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | tests: converted compile-time checks for FIPS140 mode to run-timetmp-use-thread-local-rng | Nikos Mavrogiannopoulos | 2017-03-07 | 1 | -9/+9 |
| | | | | | | | | This allows running the complete test suite even when the library is compiled in FIPS140-2 mode, as long as the run-time is not at this mode. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | tests: priorities: enhanced for test to work under FIPS140-2 mode | Nikos Mavrogiannopoulos | 2017-03-01 | 1 | -13/+27 |
| | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | tests: modified tests for the disablement of 3DES | Nikos Mavrogiannopoulos | 2017-02-05 | 1 | -9/+9 |
| | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | tests: updated known ciphersuites test for CHACHA20-POLY1305 in the SECURE set | Nikos Mavrogiannopoulos | 2016-11-04 | 1 | -4/+4 |
| | |||||
* | tests: added 'PFS' and 'SUITEB128' into the list of checked priority strings | Nikos Mavrogiannopoulos | 2016-04-29 | 1 | -0/+2 |
| | |||||
* | tests: priorities: account for the addition of CHACHA20-POLY1305 | Nikos Mavrogiannopoulos | 2016-01-21 | 1 | -8/+8 |
| | |||||
* | tests: check whether the RSA-EXPORT and ARCFOUR-40 legacy strings are accepted | Nikos Mavrogiannopoulos | 2015-10-15 | 1 | -9/+4 |
| | |||||
* | tests: updated the suite to account for the removal of DSA by default | Nikos Mavrogiannopoulos | 2015-03-03 | 1 | -4/+5 |
| | |||||
* | tests: account for disabling of ARCFOUR where needed | Nikos Mavrogiannopoulos | 2015-01-05 | 1 | -16/+16 |
| | |||||
* | tests: updated for AES-128-CCM ciphersuites | Nikos Mavrogiannopoulos | 2014-12-03 | 1 | -13/+13 |
| | |||||
* | Restrict the number of tests run on FIPS140-2 mode. | Nikos Mavrogiannopoulos | 2013-11-27 | 1 | -0/+10 |
| | |||||
* | reindented code | Nikos Mavrogiannopoulos | 2013-11-08 | 1 | -69/+66 |
| | |||||
* | updated priorities for new ciphersuites | Nikos Mavrogiannopoulos | 2013-10-25 | 1 | -3/+3 |
| | |||||
* | Added camellia-gcm into the default priority levels, and prioritized GCM ↵ | Nikos Mavrogiannopoulos | 2013-10-23 | 1 | -11/+11 |
| | | | | over CBC everywhere. | ||||
* | corrected ciphersuite numbers in priorities | Nikos Mavrogiannopoulos | 2013-10-23 | 1 | -3/+3 |
| | |||||
* | add some RC4-128-SHA1 ciphersuites based on ECDH(E) key exchanges | Stefan Bühler | 2013-08-25 | 1 | -1/+1 |
| | |||||
* | test also the number of ciphers. | Nikos Mavrogiannopoulos | 2013-07-25 | 1 | -14/+27 |
| | |||||
* | Added a test that checks whether the priorities behave as expected (depends ↵ | Nikos Mavrogiannopoulos | 2013-07-25 | 1 | -0/+101 |
on the supported ciphersuite numbers) |