Re: Issue with TLS_ECDHE_RSA_AES_128_CBC

help-gnutls

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Issue with TLS_ECDHE_RSA_AES_128_CBC_SHA256 cipher suite.

From:	Nikos Mavrogiannopoulos
Subject:	Re: Issue with TLS_ECDHE_RSA_AES_128_CBC_SHA256 cipher suite.
Date:	Tue, 08 Nov 2011 07:56:31 +0100
User-agent:	Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.23) Gecko/20111010 Icedove/3.1.15

On 11/08/2011 04:14 AM, Fabrice Gautier wrote:
> Hi,
> 
> It looks like this cipher suite is using the wrong hash.
> From algorithms/ciphersuites.c:
>   GNUTLS_CIPHER_SUITE_ENTRY (GNUTLS_ECDHE_RSA_AES_128_CBC_SHA256,
>                              GNUTLS_CIPHER_AES_128_CBC, GNUTLS_KX_ECDHE_RSA,
>                              GNUTLS_MAC_SHA1, GNUTLS_TLS1_2,
>                              GNUTLS_VERSION_MAX, 1),
> Should be GNUTLS_MAC_SHA256 instead of GNUTLS_MAC_SHA1

Nice catch. I've committed a fix.


regards,
Nikos

[Prev in Thread]

Current Thread

[Next in Thread]

Issue with TLS_ECDHE_RSA_AES_128_CBC_SHA256 cipher suite., Fabrice Gautier, 2011/11/07
- Re: Issue with TLS_ECDHE_RSA_AES_128_CBC_SHA256 cipher suite., Nikos Mavrogiannopoulos <=

Prev by Date: Issue with TLS_ECDHE_RSA_AES_128_CBC_SHA256 cipher suite.
Next by Date: gnutls 3.0.7
Previous by thread: Issue with TLS_ECDHE_RSA_AES_128_CBC_SHA256 cipher suite.
Next by thread: gnutls 3.0.7
Index(es):
- Date
- Thread