yuzu-emu/mbedtls
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge pull request #3122 from mpg/drafts-became-rfcs

Browse source 
Update references from drafts to RFCs in config.h
This commit is contained in:
danh-arm 2020-04-06 09:54:53 +01:00 committed by GitHub
commit 6d41f4cc42
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
include/mbedtls/config.h
View file

@ -1520,8 +1520,8 @@
/** \def MBEDTLS_SSL_EXTENDED_MASTER_SECRET /** \def MBEDTLS_SSL_EXTENDED_MASTER_SECRET
* *
* Enable support for Extended Master Secret, aka Session Hash * Enable support for RFC 7627: Session Hash and Extended Master Secret
* (draft-ietf-tls-session-hash-02). * Extension.
* *
* This was introduced as "the proper fix" to the Triple Handshake familiy of * This was introduced as "the proper fix" to the Triple Handshake familiy of
* attacks, but it is recommended to always use it (even if you disable * attacks, but it is recommended to always use it (even if you disable
@ -1539,7 +1539,8 @@
/** /**
* \def MBEDTLS_SSL_FALLBACK_SCSV * \def MBEDTLS_SSL_FALLBACK_SCSV
* *
* Enable support for FALLBACK_SCSV (draft-ietf-tls-downgrade-scsv-00). * Enable support for RFC 7507: Fallback Signaling Cipher Suite Value (SCSV)
* for Preventing Protocol Downgrade Attacks.
* *
* For servers, it is recommended to always enable this, unless you support * For servers, it is recommended to always enable this, unless you support
* only one version of TLS, or know for sure that none of your clients * only one version of TLS, or know for sure that none of your clients