src: TLS_DEFAULT_CIPHERSUITES was deprecated in OpenSSL 3.0.0

0cc7c598 · Tatsuhiro Tsujikawa · 8c4fbb86 · 0cc7c598
Commit 0cc7c598 authored 3 years ago by Tatsuhiro Tsujikawa
Show whitespace changes
Inline Side-by-side

Showing with 7 additions and 3 deletions

src/tls.h src/tls.h +7 -3

No files found.
--- a/src/tls.h
+++ b/src/tls.h
@@ -57,11 +57,15 @@ constexpr char DEFAULT_CIPHER_LIST[] =
    "AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256";

 constexpr char DEFAULT_TLS13_CIPHER_LIST[] =
-#if OPENSSL_1_1_1_API && !defined(OPENSSL_IS_BORINGSSL)
+#if OPENSSL_3_0_0_API
+    "TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256"
+#elif OPENSSL_1_1_1_API && !defined(OPENSSL_IS_BORINGSSL)
    TLS_DEFAULT_CIPHERSUITES
-#else  // !(OPENSSL_1_1_1_API && !defined(OPENSSL_IS_BORINGSSL))
+#else  // !OPENSSL_3_0_0_API && !(OPENSSL_1_1_1_API &&
+       // !defined(OPENSSL_IS_BORINGSSL))
    ""
-#endif // !(OPENSSL_1_1_1_API && !defined(OPENSSL_IS_BORINGSSL))
+#endif // !OPENSSL_3_0_0_API && !(OPENSSL_1_1_1_API &&
+       // !defined(OPENSSL_IS_BORINGSSL))
    ;

 constexpr auto NGHTTP2_TLS_MIN_VERSION = TLS1_VERSION;