Browse Source

As usual, ECDSA/ECDHE is nightmare. Need to use at least the ECDSA curve

new-scoring
aeris 2 years ago
parent
commit
d4850e4a26
1 changed files with 2 additions and 1 deletions
  1. 2
    1
      lib/cryptcheck/tls/engine.rb

+ 2
- 1
lib/cryptcheck/tls/engine.rb View File

@@ -149,10 +149,11 @@ module CryptCheck
@supported_ciphers.each do |method, ciphers|
ecdsa = ciphers.keys.detect &:ecdsa?
next unless ecdsa
ecdsa_curve = Curve.new ciphers[ecdsa].tmp_key.curve

@ecdsa_certs = Curve.collect do |curve|
begin
connection = ssl_client method, ecdsa, curves: curve
connection = ssl_client method, ecdsa, curves: [curve, ecdsa_curve]
[curve, connection]
rescue TLSException
nil

Loading…
Cancel
Save