aboutsummaryrefslogtreecommitdiffstats
path: root/testing/libtls-standalone/libtls-ciphers.patch
diff options
context:
space:
mode:
authorWilliam Pitcock <nenolod@dereferenced.org>2018-10-13 11:34:45 -0500
committerWilliam Pitcock <nenolod@dereferenced.org>2018-10-13 11:38:52 -0500
commitb8e9780813989d6e55cd48ca0b96a2e521a75660 (patch)
tree7fd76adc6162842ff5ed35eeb0cb55359302d6fb /testing/libtls-standalone/libtls-ciphers.patch
parentaf1db7f2648388315f975cf3b637cb27e423148c (diff)
downloadaports-b8e9780813989d6e55cd48ca0b96a2e521a75660.tar.gz
aports-b8e9780813989d6e55cd48ca0b96a2e521a75660.tar.bz2
aports-b8e9780813989d6e55cd48ca0b96a2e521a75660.tar.xz
testing/libtls-standalone: new aport
libtls extricated from libressl, built against openssl. also, probably one of the ugliest hacks i have ever done.
Diffstat (limited to 'testing/libtls-standalone/libtls-ciphers.patch')
-rw-r--r--testing/libtls-standalone/libtls-ciphers.patch25
1 files changed, 25 insertions, 0 deletions
diff --git a/testing/libtls-standalone/libtls-ciphers.patch b/testing/libtls-standalone/libtls-ciphers.patch
new file mode 100644
index 0000000000..b037944655
--- /dev/null
+++ b/testing/libtls-standalone/libtls-ciphers.patch
@@ -0,0 +1,25 @@
+--- libressl-2.7.4.orig/tls/tls_internal.h
++++ libressl-2.7.4/tls/tls_internal.h
+@@ -30,10 +30,10 @@
+ #define _PATH_SSL_CA_FILE "/etc/ssl/cert.pem"
+ #endif
+
+-#define TLS_CIPHERS_DEFAULT "TLSv1.2+AEAD+ECDHE:TLSv1.2+AEAD+DHE"
+ #define TLS_CIPHERS_COMPAT "HIGH:!aNULL"
+ #define TLS_CIPHERS_LEGACY "HIGH:MEDIUM:!aNULL"
+ #define TLS_CIPHERS_ALL "ALL:!aNULL:!eNULL"
++#define TLS_CIPHERS_DEFAULT TLS_CIPHERS_COMPAT
+
+ #define TLS_ECDHE_CURVES "X25519,P-256,P-384"
+
+--- libressl-2.7.4.orig/tls/tls_internal.h
++++ libressl-2.7.4/tls/tls_internal.h
+@@ -35,7 +35,7 @@
+ #define TLS_CIPHERS_ALL "ALL:!aNULL:!eNULL"
+ #define TLS_CIPHERS_DEFAULT TLS_CIPHERS_COMPAT
+
+-#define TLS_ECDHE_CURVES "X25519,P-256,P-384"
++#define TLS_ECDHE_CURVES "P-256,P-384"
+
+ union tls_addr {
+ struct in_addr ip4;