pike.git / lib / modules / SSL.pmod / Session.pike

version» Context lines:

pike.git/lib/modules/SSL.pmod/Session.pike:86:   //! The set of <hash, signature> combinations supported by the peer.   //!   //! Only used with TLS 1.2 and later.   //!   //! Defaults to the settings from @rfc{5246:7.4.1.4.1@}.   array(array(int)) signature_algorithms = ({    // RFC 5246 7.4.1.4.1:    // Note: this is a change from TLS 1.1 where there are no explicit    // rules, but as a practical matter one can assume that the peer    // supports MD5 and SHA-1. -  ({ HASH_sha, SIGNATURE_rsa }), -  ({ HASH_sha, SIGNATURE_dsa }), -  ({ HASH_sha, SIGNATURE_ecdsa }), +  ({ HASH_sha1, SIGNATURE_rsa }), +  ({ HASH_sha1, SIGNATURE_dsa }), +  ({ HASH_sha1, SIGNATURE_ecdsa }),   });      //! Supported finite field diffie-hellman groups in order of preference.   //!   //! @mixed   //! @type int(0..0)   //! Zero indicates that none have been specified.   //! @type array(zero)   //! The empty array indicates that none are supported.   //! @type array(int)