Add TLS_PSK tests

Fix a bug which rejected any short server key exchanges. These can occur with a plain PSK with short or empty identity hints. Disable SHA-224 by default. Remove some vestigal RC4 cruft. Push more on the TLS corruption tests.
author: Jack Lloyd <[email protected]> 2015-11-13 12:52:20 -0500
committer: Jack Lloyd <[email protected]> 2015-11-13 12:52:20 -0500
commit: 406c57f09eac849c10807b74c8e7ba051a6a5c2c (patch)
tree: fcb26fab346948c2647ff7db4144bb9d5ed07295 /doc/manual
parent: 3dbcfb6297acfdb8818742acfb0fa9ffe70bcdbc (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/doc/manual/tls.rst b/doc/manual/tls.rst
index f96f27620..1926d5c08 100644
--- a/doc/manual/tls.rst
+++ b/doc/manual/tls.rst
@@ -560,8 +560,9 @@ policy settings from a file.
      Returns the list of algorithms we are willing to use for
      public key signatures, in order of preference.
 
-     Default: "SHA-512", "SHA-384", "SHA-256", "SHA-224"
+     Default: "SHA-512", "SHA-384", "SHA-256"
 
+     Also allowed: "SHA-224"
      Also allowed (although **not recommended**): "MD5", "SHA-1"
 
      .. note::
author	Jack Lloyd <[email protected]>	2015-11-13 12:52:20 -0500
committer	Jack Lloyd <[email protected]>	2015-11-13 12:52:20 -0500
commit	406c57f09eac849c10807b74c8e7ba051a6a5c2c (patch)
tree	fcb26fab346948c2647ff7db4144bb9d5ed07295 /doc/manual
parent	3dbcfb6297acfdb8818742acfb0fa9ffe70bcdbc (diff)