Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2024-12-29 04:49:44 +01:00
Code Issues Packages Projects Releases Wiki Activity

Include RSA-PSS in ClientHello

Browse Source 
This commit changes prepare_tls_clienthello() so that the RSA-PSS algorithms are offered in the signature algorithms extension of TLS 1.2 and below ClientHello messages.
This commit is contained in:
David Cooper 2022-03-08 11:45:55 -05:00 committed by Dirk
parent 1c2e340506
commit bddf9c967f
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
testssl.sh
View File

@ -14996,9 +14996,10 @@ prepare_tls_clienthello() {
if [[ 0x$tls_low_byte -le 0x03 ]]; then
extension_signature_algorithms="
00, 0d, # Type: signature_algorithms , see RFC 5246 and RFC 8422
00, 24, 00,22, # lengths
00, 30, 00,2e, # lengths
06,01, 06,02, 06,03, 05,01, 05,02, 05,03, 04,01, 04,02, 04,03,
03,01, 03,02, 03,03, 02,01, 02,02, 02,03, 08,07, 08,08"
03,01, 03,02, 03,03, 02,01, 02,02, 02,03,
08,04, 08,05, 08,06, 08,07, 08,08, 08,09, 08,0a, 08,0b"
else
extension_signature_algorithms="
00, 0d, # Type: signature_algorithms , see RFC 8446