]> www.infradead.org Git - users/dwmw2/openconnect.git/commit
projects / users / dwmw2 / openconnect.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: b4bd548) | patch
Support non-AEAD ciphersuites in DTLSv1.2 with GnuTLS
authorDavid Woodhouse <dwmw2@infradead.org>
Tue, 15 Jun 2021 12:02:49 +0000 (13:02 +0100)
committerDavid Woodhouse <dwmw2@infradead.org>
Tue, 15 Jun 2021 12:10:05 +0000 (13:10 +0100)
commit33cd8fe13bdb659f1c4e2e296fc58349b3118576
tree46c2dcb5ea1330a1fedab169f18081b511cb1829tree
parentb4bd54840f6f622750c8dde45f228d3e8fe892d9commit | diff
Support non-AEAD ciphersuites in DTLSv1.2 with GnuTLS

We have encountered a Cisco server in the wild which appears only to
support the legacy ciphersuites. And since we offer a set of DTLSv1.2
ciphers it doesn't fall back to accepting the DTLSv1.0 offer; we end
up with no DTLS at all.

This should fix #249.

Signed-off-by: David Woodhouse <dwmw2@infradead.org>
gnutls-dtls.c diff | blob | history
www/changelog.xml diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.