summaryrefslogtreecommitdiffhomepage
path: root/applications/luci-app-openvpn
diff options
context:
space:
mode:
authorJo-Philipp Wich <jo@mein.io>2020-05-07 21:57:23 +0200
committerGitHub <noreply@github.com>2020-05-07 21:57:23 +0200
commit893dfe727a7940aa6fc83d6583263224a228f1ec (patch)
tree2b41cf1219a5c878d27c21a87b0be5f0f556ca87 /applications/luci-app-openvpn
parentf8cf115d9b7525d3d9b259c20a4d2e662bcb7e22 (diff)
parentc029f2dc09703d3cfaf13d225904d56a587e61b9 (diff)
Merge pull request #4012 from TDT-AG/pr/20200505-openvpn-tls-ciphers
luci-app-openvpn: update tls_cipher list
Diffstat (limited to 'applications/luci-app-openvpn')
-rw-r--r--applications/luci-app-openvpn/luasrc/model/cbi/openvpn-advanced.lua40
1 files changed, 21 insertions, 19 deletions
diff --git a/applications/luci-app-openvpn/luasrc/model/cbi/openvpn-advanced.lua b/applications/luci-app-openvpn/luasrc/model/cbi/openvpn-advanced.lua
index 97c0cbcc5..04934c8c1 100644
--- a/applications/luci-app-openvpn/luasrc/model/cbi/openvpn-advanced.lua
+++ b/applications/luci-app-openvpn/luasrc/model/cbi/openvpn-advanced.lua
@@ -679,25 +679,27 @@ local knownParams = {
{ DynamicList,
"tls_cipher",
{
- "DHE-RSA-AES256-SHA",
- "DHE-DSS-AES256-SHA",
- "AES256-SHA",
- "EDH-RSA-DES-CBC3-SHA",
- "EDH-DSS-DES-CBC3-SHA",
- "DES-CBC3-SHA",
- "DHE-RSA-AES128-SHA",
- "DHE-DSS-AES128-SHA",
- "AES128-SHA",
- "RC4-SHA",
- "RC4-MD5",
- "EDH-RSA-DES-CBC-SHA",
- "EDH-DSS-DES-CBC-SHA",
- "DES-CBC-SHA",
- "EXP-EDH-RSA-DES-CBC-SHA",
- "EXP-EDH-DSS-DES-CBC-SHA",
- "EXP-DES-CBC-SHA",
- "EXP-RC2-CBC-MD5",
- "EXP-RC4-MD5"
+ "TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384",
+ "TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384",
+ "TLS-DHE-RSA-WITH-AES-256-GCM-SHA384",
+ "TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256",
+ "TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256",
+ "TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256",
+ "TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256",
+ "TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256",
+ "TLS-DHE-RSA-WITH-AES-128-GCM-SHA256",
+ "TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384",
+ "TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384",
+ "TLS-DHE-RSA-WITH-AES-256-CBC-SHA256",
+ "TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256",
+ "TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256",
+ "TLS-DHE-RSA-WITH-AES-128-CBC-SHA256",
+ "TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA",
+ "TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA",
+ "TLS-DHE-RSA-WITH-AES-256-CBC-SHA",
+ "TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA",
+ "TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA",
+ "TLS-DHE-RSA-WITH-AES-128-CBC-SHA"
},
translate("TLS cipher") },
{ DynamicList,
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-23 15:04:10 +0000