sectransp: allow cipher name to be specified

Browse Source

Add parser for CURLOPT_SSL_CIPHER_LIST option for Secure Transport (ST)
back-end. Similar to NSS and GSKit back-ends, new code parses string
value and configures ST library to use those ciphers for communication.
Create cipher spec data structure and initialize the array of specs with
cipher number, name, alias, and 'weak' flag.

Mark triple-DES ciphers as 'weak', and exclude them from the default
ciphers list.

Closes #6464

...

This commit is contained in:

Michael Kolechkin 2021-01-15 12:32:04 -08:00 committed by Daniel Stenberg

parent df44138b1f

commit dd2bb48552

No known key found for this signature in database

GPG Key ID: 5CC908FDB71E12C2

1 changed files with 854 additions and 695 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1549

lib/vtls/sectransp.c

View File

File diff suppressed because it is too large Load Diff