mirror of
https://github.com/wolfSSL/wolfssl.git
synced 2026-07-08 06:00:49 +02:00
8e5be42a9d
ParseCipherList() only cleared the InitSuites mask for "!aNULL"/"!eNULL", which governs generated defaults, so an explicitly listed ADH or NULL-cipher suite survived (e.g. "ADH-AES128-SHA:!aNULL" still offered an unauthenticated suite). Scrub the explicit suites after parsing; exclusions are order- independent and sticky (a later "ALL" cannot re-enable them). Add test_wolfSSL_set_cipher_list_exclusions.
Before creating any new configure files (.conf) read the CONF_FILES_README.md