CCM ciphers were wrongly handled due to shorter name

Question

CCM ciphers were wrongly handled due to shorter name

n0lz opened this issue 4 years ago · 2 comments

The CCM (8) mode was shown as the hash algorithm which is wrong.
Quick & Dirty fix was to delete all CCM ciphers from the database, editing the cipher suite parsing code, then to reimport all ciphers.

Following edit in the signals.py was made:
` # split enc again if we only got a number for hsh
# specifically needed for 'CCM 8' hash algorithm
#if re.match(r'\d+', hsh.strip()):
# (enc,_,ccm) = enc.rpartition(" ")
# hsh = ccm + " " + hsh

    if re.match(r'\d+', hsh.strip()):
         (enc,_,ccm) = enc.rpartition(" ")
         enc = enc + " " + ccm + " 8"
         hsh = "SHA256"

    if re.match(r'CCM\Z', hsh.strip()):
         (enc,_,ccm) = enc.rpartition(" ")
         enc = enc + " " + ccm + " CCM"
         hsh = "SHA256"`

Answer 1 · 2021-02-10T14:00:44.000Z

Fixed with staging fix.

Answer 2 · 2021-03-27T11:27:27.000Z

Fix deployed