diff options
| author | lloyd <[email protected]> | 2014-10-30 23:56:02 +0000 |
|---|---|---|
| committer | lloyd <[email protected]> | 2014-10-30 23:56:02 +0000 |
| commit | 71e9b91eea49d53853250e56fcbc42c4ca59dd93 (patch) | |
| tree | a04d985dc9721e0b9a3b71229da8b46e06cab44d /src/lib/tls/tls_ciphersuite.cpp | |
| parent | 6c77c2fd9b59ad063a1ef6020ef5976647eab0f9 (diff) | |
If the server offers us a SCSV instead of a real ciphersuite send a fatal alert
Diffstat (limited to 'src/lib/tls/tls_ciphersuite.cpp')
| -rw-r--r-- | src/lib/tls/tls_ciphersuite.cpp | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/src/lib/tls/tls_ciphersuite.cpp b/src/lib/tls/tls_ciphersuite.cpp index e8c551b01..4c9b204a6 100644 --- a/src/lib/tls/tls_ciphersuite.cpp +++ b/src/lib/tls/tls_ciphersuite.cpp @@ -55,6 +55,12 @@ Ciphersuite Ciphersuite::by_name(const std::string& name) return Ciphersuite(); // some unknown ciphersuite } +bool Ciphersuite::is_scsv(u16bit suite) + { + // TODO: derive from IANA file in script + return (suite == 0x00FF || suite == 0x5600); + } + Ciphersuite::Ciphersuite(u16bit ciphersuite_code, const char* sig_algo, const char* kex_algo, |