[PATCH] DTLS: Add ECDHE-RSA-AES256-SHA384 as a v1.2 cipher suite

Daniel Lenski dlenski at gmail.com
Fri Jul 31 20:12:28 EDT 2020


On Fri, Jul 31, 2020 at 4:45 PM Jason Gunthorpe <jgg at ziepe.ca> wrote:
> Yes, arguably the list in #2 should map all of the cisco suite names
> to gnutls parameters and the policy string should control which are
> allowed.

That might be a useful follow-up to
https://gitlab.com/openconnect/openconnect/-/merge_requests/71.

Is there any way to get an exhaustive list of all the suite names that
have ever been seen in the X-DTLS[12]-CipherSuite strings sent by
Cisco servers…?



More information about the openconnect-devel mailing list