yuzu-emu/mbedtls
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Add a warning against compression in config.h

Browse source
This commit is contained in:
Manuel Pégourié-Gonnard 2014-03-11 10:30:38 +01:00
parent 14ed1a2934
commit bb4dd37044
1 changed files with 4 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
include/polarssl/config.h
View file

@ -939,6 +939,10 @@
* If set, the SSL/TLS module uses ZLIB to support compression and * If set, the SSL/TLS module uses ZLIB to support compression and
* decompression of packet data. * decompression of packet data.
* *
* \warning TLS-level compression MAY REDUCE SECURITY! See for example the
* CRIME attack. Before enabling this option, you should examine with care if
* CRIME or similar exploits may be a applicable to your use case.
*
* Used in: library/ssl_tls.c * Used in: library/ssl_tls.c
* library/ssl_cli.c * library/ssl_cli.c
* library/ssl_srv.c * library/ssl_srv.c