Parcourir la source

As usual, ECDSA/ECDHE is nightmare. Need to use at least the ECDSA curve

new-scoring
aeris il y a 2 ans
Parent
révision
d4850e4a26
1 fichiers modifiés avec 2 ajouts et 1 suppressions
  1. +2
    -1
      lib/cryptcheck/tls/engine.rb

+ 2
- 1
lib/cryptcheck/tls/engine.rb Voir le fichier

@@ -149,10 +149,11 @@ module CryptCheck
@supported_ciphers.each do |method, ciphers|
ecdsa = ciphers.keys.detect &:ecdsa?
next unless ecdsa
ecdsa_curve = Curve.new ciphers[ecdsa].tmp_key.curve

@ecdsa_certs = Curve.collect do |curve|
begin
connection = ssl_client method, ecdsa, curves: curve
connection = ssl_client method, ecdsa, curves: [curve, ecdsa_curve]
[curve, connection]
rescue TLSException
nil


Chargement…
Annuler
Enregistrer