aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJack Lloyd <[email protected]>2018-10-17 19:51:57 -0400
committerJack Lloyd <[email protected]>2018-10-17 19:51:57 -0400
commit91eb6406383dfbf62848bf7af77e82937e7b69b3 (patch)
tree68f537192951dc5d0603cdf3387bfb5c92446e81
parent0afb074eb42d9fc0cfe30b8ddb820c5e24066117 (diff)
parent3e1a89257a91a06f61ee0f7414c52016bb62aaff (diff)
Merge GH #1711 Fix TLS version intolerance
-rw-r--r--src/lib/tls/tls_version.cpp20
1 files changed, 10 insertions, 10 deletions
diff --git a/src/lib/tls/tls_version.cpp b/src/lib/tls/tls_version.cpp
index 2b8b68566..33db02bce 100644
--- a/src/lib/tls/tls_version.cpp
+++ b/src/lib/tls/tls_version.cpp
@@ -59,28 +59,28 @@ bool Protocol_Version::known_version() const
bool Protocol_Version::supports_negotiable_signature_algorithms() const
{
- return (m_version == Protocol_Version::TLS_V12 ||
- m_version == Protocol_Version::DTLS_V12);
+ return (m_version != Protocol_Version::TLS_V10 &&
+ m_version != Protocol_Version::TLS_V11 &&
+ m_version != Protocol_Version::DTLS_V10);
}
bool Protocol_Version::supports_explicit_cbc_ivs() const
{
- return (m_version == Protocol_Version::TLS_V11 ||
- m_version == Protocol_Version::TLS_V12 ||
- m_version == Protocol_Version::DTLS_V10 ||
- m_version == Protocol_Version::DTLS_V12);
+ return (m_version != Protocol_Version::TLS_V10);
}
bool Protocol_Version::supports_ciphersuite_specific_prf() const
{
- return (m_version == Protocol_Version::TLS_V12 ||
- m_version == Protocol_Version::DTLS_V12);
+ return (m_version != Protocol_Version::TLS_V10 &&
+ m_version != Protocol_Version::TLS_V11 &&
+ m_version != Protocol_Version::DTLS_V10);
}
bool Protocol_Version::supports_aead_modes() const
{
- return (m_version == Protocol_Version::TLS_V12 ||
- m_version == Protocol_Version::DTLS_V12);
+ return (m_version != Protocol_Version::TLS_V10 &&
+ m_version != Protocol_Version::TLS_V11 &&
+ m_version != Protocol_Version::DTLS_V10);
}
}