Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
btwise
openssl
提交
1c735804
O
openssl
项目概览
btwise
/
openssl
通知
1
Star
0
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
DevOps
流水线
流水线任务
计划
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
O
openssl
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
DevOps
DevOps
流水线
流水线任务
计划
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
流水线任务
提交
Issue看板
体验新版 GitCode,发现更多精彩内容 >>
提交
1c735804
编写于
12月 06, 2015
作者:
V
Viktor Dukhovni
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
Really disable 56-bit (single-DES) ciphers
Reviewed-by:
N
Kurt Roeckx
<
kurt@openssl.org
>
上级
361a1191
变更
2
显示空白变更内容
内联
并排
Showing
2 changed file
with
3 addition
and
110 deletion
+3
-110
doc/apps/ciphers.pod
doc/apps/ciphers.pod
+3
-14
ssl/s3_lib.c
ssl/s3_lib.c
+0
-96
未找到文件。
doc/apps/ciphers.pod
浏览文件 @
1c735804
...
...
@@ -165,8 +165,9 @@ encryption.
=item B<LOW>
"low" encryption cipher suites, currently those using 64 or 56 bit encryption
algorithms but excluding export cipher suites.
"low" encryption cipher suites, currently those using 64 or 56 bit
encryption algorithms but excluding export cipher suites. All these
ciphersuites have been removed as of OpenSSL 1.1.0.
=item B<eNULL>, B<NULL>
...
...
@@ -378,20 +379,14 @@ e.g. DES-CBC3-SHA. In these cases, RSA authentication is used.
SSL_RSA_WITH_RC4_128_MD5 RC4-MD5
SSL_RSA_WITH_RC4_128_SHA RC4-SHA
SSL_RSA_WITH_IDEA_CBC_SHA IDEA-CBC-SHA
SSL_RSA_WITH_DES_CBC_SHA DES-CBC-SHA
SSL_RSA_WITH_3DES_EDE_CBC_SHA DES-CBC3-SHA
SSL_DH_DSS_WITH_DES_CBC_SHA DH-DSS-DES-CBC-SHA
SSL_DH_DSS_WITH_3DES_EDE_CBC_SHA DH-DSS-DES-CBC3-SHA
SSL_DH_RSA_WITH_DES_CBC_SHA DH-RSA-DES-CBC-SHA
SSL_DH_RSA_WITH_3DES_EDE_CBC_SHA DH-RSA-DES-CBC3-SHA
SSL_DHE_DSS_WITH_DES_CBC_SHA DHE-DSS-CBC-SHA
SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA DHE-DSS-DES-CBC3-SHA
SSL_DHE_RSA_WITH_DES_CBC_SHA DHE-RSA-DES-CBC-SHA
SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA DHE-RSA-DES-CBC3-SHA
SSL_DH_anon_WITH_RC4_128_MD5 ADH-RC4-MD5
SSL_DH_anon_WITH_DES_CBC_SHA ADH-DES-CBC-SHA
SSL_DH_anon_WITH_3DES_EDE_CBC_SHA ADH-DES-CBC3-SHA
SSL_FORTEZZA_KEA_WITH_NULL_SHA Not implemented.
...
...
@@ -405,20 +400,14 @@ e.g. DES-CBC3-SHA. In these cases, RSA authentication is used.
TLS_RSA_WITH_RC4_128_MD5 RC4-MD5
TLS_RSA_WITH_RC4_128_SHA RC4-SHA
TLS_RSA_WITH_IDEA_CBC_SHA IDEA-CBC-SHA
TLS_RSA_WITH_DES_CBC_SHA DES-CBC-SHA
TLS_RSA_WITH_3DES_EDE_CBC_SHA DES-CBC3-SHA
TLS_DH_DSS_WITH_DES_CBC_SHA Not implemented.
TLS_DH_DSS_WITH_3DES_EDE_CBC_SHA Not implemented.
TLS_DH_RSA_WITH_DES_CBC_SHA Not implemented.
TLS_DH_RSA_WITH_3DES_EDE_CBC_SHA Not implemented.
TLS_DHE_DSS_WITH_DES_CBC_SHA DHE-DSS-CBC-SHA
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA DHE-DSS-DES-CBC3-SHA
TLS_DHE_RSA_WITH_DES_CBC_SHA DHE-RSA-DES-CBC-SHA
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA DHE-RSA-DES-CBC3-SHA
TLS_DH_anon_WITH_RC4_128_MD5 ADH-RC4-MD5
TLS_DH_anon_WITH_DES_CBC_SHA ADH-DES-CBC-SHA
TLS_DH_anon_WITH_3DES_EDE_CBC_SHA ADH-DES-CBC3-SHA
=head2 AES ciphersuites from RFC3268, extending TLS v1.0
...
...
ssl/s3_lib.c
浏览文件 @
1c735804
...
...
@@ -245,22 +245,6 @@ OPENSSL_GLOBAL const SSL_CIPHER ssl3_ciphers[] = {
},
#endif
/* Cipher 09 */
{
1
,
SSL3_TXT_RSA_DES_64_CBC_SHA
,
SSL3_CK_RSA_DES_64_CBC_SHA
,
SSL_kRSA
,
SSL_aRSA
,
SSL_DES
,
SSL_SHA1
,
SSL_SSLV3
,
SSL_NOT_DEFAULT
|
SSL_LOW
,
SSL_HANDSHAKE_MAC_DEFAULT
|
TLS1_PRF
,
56
,
56
,
},
/* Cipher 0A */
{
1
,
...
...
@@ -277,22 +261,6 @@ OPENSSL_GLOBAL const SSL_CIPHER ssl3_ciphers[] = {
168
,
},
/* Cipher 0C */
{
1
,
SSL3_TXT_DH_DSS_DES_64_CBC_SHA
,
SSL3_CK_DH_DSS_DES_64_CBC_SHA
,
SSL_kDHd
,
SSL_aDH
,
SSL_DES
,
SSL_SHA1
,
SSL_SSLV3
,
SSL_NOT_DEFAULT
|
SSL_LOW
,
SSL_HANDSHAKE_MAC_DEFAULT
|
TLS1_PRF
,
56
,
56
,
},
/* Cipher 0D */
{
1
,
...
...
@@ -309,22 +277,6 @@ OPENSSL_GLOBAL const SSL_CIPHER ssl3_ciphers[] = {
168
,
},
/* Cipher 0F */
{
1
,
SSL3_TXT_DH_RSA_DES_64_CBC_SHA
,
SSL3_CK_DH_RSA_DES_64_CBC_SHA
,
SSL_kDHr
,
SSL_aDH
,
SSL_DES
,
SSL_SHA1
,
SSL_SSLV3
,
SSL_NOT_DEFAULT
|
SSL_LOW
,
SSL_HANDSHAKE_MAC_DEFAULT
|
TLS1_PRF
,
56
,
56
,
},
/* Cipher 10 */
{
1
,
...
...
@@ -341,22 +293,6 @@ OPENSSL_GLOBAL const SSL_CIPHER ssl3_ciphers[] = {
168
,
},
/* Cipher 12 */
{
1
,
SSL3_TXT_DHE_DSS_DES_64_CBC_SHA
,
SSL3_CK_DHE_DSS_DES_64_CBC_SHA
,
SSL_kDHE
,
SSL_aDSS
,
SSL_DES
,
SSL_SHA1
,
SSL_SSLV3
,
SSL_NOT_DEFAULT
|
SSL_LOW
,
SSL_HANDSHAKE_MAC_DEFAULT
|
TLS1_PRF
,
56
,
56
,
},
/* Cipher 13 */
{
1
,
...
...
@@ -373,22 +309,6 @@ OPENSSL_GLOBAL const SSL_CIPHER ssl3_ciphers[] = {
168
,
},
/* Cipher 15 */
{
1
,
SSL3_TXT_DHE_RSA_DES_64_CBC_SHA
,
SSL3_CK_DHE_RSA_DES_64_CBC_SHA
,
SSL_kDHE
,
SSL_aRSA
,
SSL_DES
,
SSL_SHA1
,
SSL_SSLV3
,
SSL_NOT_DEFAULT
|
SSL_LOW
,
SSL_HANDSHAKE_MAC_DEFAULT
|
TLS1_PRF
,
56
,
56
,
},
/* Cipher 16 */
{
1
,
...
...
@@ -421,22 +341,6 @@ OPENSSL_GLOBAL const SSL_CIPHER ssl3_ciphers[] = {
128
,
},
/* Cipher 1A */
{
1
,
SSL3_TXT_ADH_DES_64_CBC_SHA
,
SSL3_CK_ADH_DES_64_CBC_SHA
,
SSL_kDHE
,
SSL_aNULL
,
SSL_DES
,
SSL_SHA1
,
SSL_SSLV3
,
SSL_NOT_DEFAULT
|
SSL_LOW
,
SSL_HANDSHAKE_MAC_DEFAULT
|
TLS1_PRF
,
56
,
56
,
},
/* Cipher 1B */
{
1
,
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录