netty5

History

Norman Maurer cbe238a95b Correctly include TLS1.3 ciphers in the enabled ciphersuites when using BoringSSL (#10388 ) Motivation: BoringSSL behaves differently then OpenSSL and not include any TLS1.3 ciphers in the returned array when calling SSL_get_ciphers(...). This is due the fact that it also not allow to explicit configure which are supported and which not for TLS1.3. To mimic the behaviour expected by the SSLEngine API we should workaround this. Modifications: - Add a unit test that verifies enabled protocols / ciphers - Add special handling for BoringSSL and tls1.3 Result: Make behaviour consistent	2020-07-02 21:34:37 +02:00
..
handler	Correctly include TLS1.3 ciphers in the enabled ciphersuites when using BoringSSL (#10388 )	2020-07-02 21:34:37 +02:00

Correctly include TLS1.3 ciphers in the enabled ciphersuites when using BoringSSL (#10388 )

Motivation:

BoringSSL behaves differently then OpenSSL and not include any TLS1.3 ciphers in the returned array when calling SSL_get_ciphers(...). This is due the fact that it also not allow to explicit configure which are supported and which not for TLS1.3. To mimic the behaviour expected by the SSLEngine API we should workaround this.

Modifications:

- Add a unit test that verifies enabled protocols / ciphers
- Add special handling for BoringSSL and tls1.3

Result:

Make behaviour consistent

2020-07-02 21:34:37 +02:00

handler

Correctly include TLS1.3 ciphers in the enabled ciphersuites when using BoringSSL (#10388 )

2020-07-02 21:34:37 +02:00