A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=OPENBSD_7_6_BASE 2023-07-02T17:21:33+00:00 2023-07-02T17:21:33+00:00 beck 2023-07-02T17:21:33+00:00 urn:sha1:4edd92a57f3a74829fe519f35b5c7c79e03ce0b0 Their time has long since past, and they should not be used. This change restricts ssl to versions 1.2 and 1.3, and changes the regression tests to understand we no longer speak the legacy protocols. For the moment the magical "golden" byte for byte comparison tests of raw handshake values are disabled util jsing fixes them. ok jsing@ tb@ 2022-07-07T13:20:12+00:00 tb 2022-07-07T13:20:12+00:00 urn:sha1:c3dac70428be14a5592957954b6648a3301f6331 from beck 2020-07-14T18:13:22+00:00 jsing 2020-07-14T18:13:22+00:00 urn:sha1:433ca5556ec97043c86247c7a189970e68a998b3 Otherwise we end up switching to TLSv1.3 and using a TLSv1.3 cipher suite. 2020-07-07T19:41:31+00:00 jsing 2020-07-07T19:41:31+00:00 urn:sha1:f45a55fc46ffe1493df9e49ec2d3febaf23c557b 2020-04-09T17:55:45+00:00 jsing 2020-04-09T17:55:45+00:00 urn:sha1:02f91bf85c93ea810a5debf412591a16e609bd61 included in the output from `openssl ciphers`. 2020-04-09T17:27:11+00:00 jsing 2020-04-09T17:27:11+00:00 urn:sha1:5e806785eb03c3eea79c60e13b7eb743e022b13b 2017-08-12T21:05:06+00:00 jsing 2017-08-12T21:05:06+00:00 urn:sha1:aa07f6851bbcb6c8ad4d78c02d2b5814864eaac1 2015-09-27T18:20:18+00:00 bcook 2015-09-27T18:20:18+00:00 urn:sha1:517edd4aef01b023f59cf9b4ca4b8d1c7f226426 It was possible for this test to pass even if the openssl command itself was missing. 2015-08-27T07:19:17+00:00 doug 2015-08-27T07:19:17+00:00 urn:sha1:46987ee4e7313e879bf949893a6f9d47b91bc72a 2014-12-12T12:23:35+00:00 jsing 2014-12-12T12:23:35+00:00 urn:sha1:a45d08be405ad0b8778ff090376a760138c5751c use RSA authentication, rather than only those that use RSA key exchange.