Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
dotNET Platform
runtime
提交
464010d9
R
runtime
项目概览
dotNET Platform
/
runtime
11 个月 前同步成功
通知
1
Star
1
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
DevOps
流水线
流水线任务
计划
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
R
runtime
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
DevOps
DevOps
流水线
流水线任务
计划
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
流水线任务
提交
Issue看板
体验新版 GitCode,发现更多精彩内容 >>
未验证
提交
464010d9
编写于
10月 01, 2020
作者:
T
Tom Deseyn
提交者:
GitHub
10月 01, 2020
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
Use same code to DetectCiphersuiteConfiguration for portable and non-portable builds
上级
f2bfa7b6
变更
1
隐藏空白更改
内联
并排
Showing
1 changed file
with
9 addition
and
20 deletion
+9
-20
src/libraries/Native/Unix/System.Security.Cryptography.Native/pal_ssl.c
...Native/Unix/System.Security.Cryptography.Native/pal_ssl.c
+9
-20
未找到文件。
src/libraries/Native/Unix/System.Security.Cryptography.Native/pal_ssl.c
浏览文件 @
464010d9
...
...
@@ -43,21 +43,18 @@ static int32_t g_config_specified_ciphersuites = 0;
static
void
DetectCiphersuiteConfiguration
()
{
// This routine will always produce g_config_specified_ciphersuites = 1 on OpenSSL 1.0.x,
// so if we're building direct for 1.0.x (the only time NEED_OPENSSL_1_1 is undefined) then
// just omit all the code here.
//
// The method uses OpenSSL 1.0.x API, except for the fallback function SSL_CTX_config, to
// make the portable version easier.
#ifdef NEED_OPENSSL_1_1
// OpenSSL 1.0 does not support CipherSuites so there is no way for caller to override default
// Always produce g_config_specified_ciphersuites = 1 on OpenSSL 1.0.
#ifdef FEATURE_DISTRO_AGNOSTIC_SSL
if
(
API_EXISTS
(
SSL_state
))
{
// For portable builds NEED_OPENSSL_1_1 is always set.
// OpenSSL 1.0 does not support CipherSuites so there is no way for caller to override default
g_config_specified_ciphersuites
=
1
;
return
;
}
#elif OPENSSL_VERSION_NUMBER < OPENSSL_VERSION_1_1_0_RTM
g_config_specified_ciphersuites
=
1
;
return
;
#endif
// Check to see if there's a registered default CipherString. If not, we will use our own.
SSL_CTX
*
ctx
=
SSL_CTX_new
(
TLS_method
());
...
...
@@ -103,21 +100,13 @@ static void DetectCiphersuiteConfiguration()
{
ssl
=
SSL_new
(
ctx
);
assert
(
ssl
!=
NULL
);
int
after
=
sk_SSL_CIPHER_num
(
SSL_get_ciphers
(
ssl
));
int
systemDefaultCount
=
sk_SSL_CIPHER_num
(
SSL_get_ciphers
(
ssl
));
SSL_free
(
ssl
);
g_config_specified_ciphersuites
=
(
allCount
!=
after
);
g_config_specified_ciphersuites
=
(
allCount
!=
systemDefaultCount
);
}
SSL_CTX_free
(
ctx
);
#else
// The Fedora, RHEL, and CentOS builds replace the normal defaults (with a configuration model).
// Consider their non-portable builds to always have specified ciphersuites in config.
g_config_specified_ciphersuites
=
1
;
#endif
}
void
CryptoNative_EnsureLibSslInitialized
()
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录