mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2024-11-30 00:24:16 +01:00
- Default to disabled renegotiation
This commit is contained in:
parent
fc975dc592
commit
7c900780d9
@ -116,8 +116,8 @@
|
|||||||
#define SSL_LEGACY_RENEGOTIATION 0
|
#define SSL_LEGACY_RENEGOTIATION 0
|
||||||
#define SSL_SECURE_RENEGOTIATION 1
|
#define SSL_SECURE_RENEGOTIATION 1
|
||||||
|
|
||||||
#define SSL_RENEGOTIATION_ENABLED 0
|
#define SSL_RENEGOTIATION_DISABLED 0
|
||||||
#define SSL_RENEGOTIATION_DISABLED 1
|
#define SSL_RENEGOTIATION_ENABLED 1
|
||||||
|
|
||||||
#define SSL_LEGACY_NO_RENEGOTIATION 0
|
#define SSL_LEGACY_NO_RENEGOTIATION 0
|
||||||
#define SSL_LEGACY_ALLOW_RENEGOTIATION 1
|
#define SSL_LEGACY_ALLOW_RENEGOTIATION 1
|
||||||
@ -852,7 +852,8 @@ void ssl_set_min_version( ssl_context *ssl, int major, int minor );
|
|||||||
* (Default: SSL_RENEGOTIATION_DISABLED)
|
* (Default: SSL_RENEGOTIATION_DISABLED)
|
||||||
*
|
*
|
||||||
* Note: A server with support enabled is more vulnerable for a
|
* Note: A server with support enabled is more vulnerable for a
|
||||||
* resource DoS by a malicious client.
|
* resource DoS by a malicious client. You should enable this on
|
||||||
|
* a client to enable server-initiated renegotiation.
|
||||||
*
|
*
|
||||||
* \param ssl SSL context
|
* \param ssl SSL context
|
||||||
* \param renegotiation Enable or disable (SSL_RENEGOTIATION_ENABLED or
|
* \param renegotiation Enable or disable (SSL_RENEGOTIATION_ENABLED or
|
||||||
|
Loading…
Reference in New Issue
Block a user