Diffusion FreeBSD src repository a63752cce646

ktls: Reject attempts to enable AES-CBC with TLS 1.3.
a63752cce646
Actions

Description

ktls: Reject attempts to enable AES-CBC with TLS 1.3.

AES-CBC cipher suites are not supported in TLS 1.3.

Reported by: syzbot+ab501c50033ec01d53c6@syzkaller.appspotmail.com
Reviewed by: tuexen, markj
Differential Revision: https://reviews.freebsd.org/D32404

Details

Provenance

jhb	Authored on Oct 13 2021, 7:12 PM

Reviewer

tuexen

Differential Revision

D32404: ktls: Reject attempts to enable AES-CBC with TLS 1.3.

Parents

rG2144431c1152: Remove in_ifaddr_lock acquisiton to access in_ifaddrhead.

Branches

Unknown

Tags

Unknown

Event Timeline

jhb committed rGa63752cce646: ktls: Reject attempts to enable AES-CBC with TLS 1.3. (authored by jhb).Oct 13 2021, 7:12 PM

jhb added an edge: D32404: ktls: Reject attempts to enable AES-CBC with TLS 1.3..

jhb mentioned this in rG0053fedc1b47: ktls: Reject attempts to enable AES-CBC with TLS 1.3..Nov 23 2021, 11:13 PM

Changes (1)

Path

Size

sys/

kern/

uipc_ktls.c

rGa63752cce646

View Options