diff options
| author | Jack Lloyd <[email protected]> | 2018-08-21 15:43:34 -0400 |
|---|---|---|
| committer | Jack Lloyd <[email protected]> | 2018-08-22 15:13:14 -0400 |
| commit | e05a7337add6c5f61d5abc05bb69c8d0698aa3ef (patch) | |
| tree | 8bb911536d39c43385a59d1bc9a09b2b14bd7075 /src/cli | |
| parent | 2fc2598ebab23aa63f7be30c8a2eff6afb262fb3 (diff) | |
Default disable support for TLS v1.0/v1.1 and all CBC and CCM suites
Diffstat (limited to 'src/cli')
| -rw-r--r-- | src/cli/tls_utils.cpp | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/src/cli/tls_utils.cpp b/src/cli/tls_utils.cpp index de5c93fe6..2429b5de6 100644 --- a/src/cli/tls_utils.cpp +++ b/src/cli/tls_utils.cpp @@ -34,6 +34,8 @@ class TLS_All_Policy final : public Botan::TLS::Policy "AES-128/CCM(8)", "Camellia-256/GCM", "Camellia-128/GCM", + "ARIA-256/GCM", + "ARIA-128/GCM", "AES-256", "AES-128", "Camellia-256", @@ -52,6 +54,10 @@ class TLS_All_Policy final : public Botan::TLS::Policy { return { "ECDSA", "RSA", "DSA" }; } + + bool allow_tls10() const override { return false; } + bool allow_tls11() const override { return false; } + bool allow_tls12() const override { return true; } }; class TLS_Ciphersuites final : public Command |