Hello,
I create the TSLStream and authentificate as a client, but need to not to cipher TLS_EMPTY_RENEGOTIATION_INFO_SCSV
.
I have the next code, but TLSEMPTYRENEGOTIATIONINFOSCSV is still send.
var stream = new TlsStream(_tcpClient.Client);
stream.Parameters.SetSymmetricCipherSuites(new TlsSymmetricCipherSuite[] {
TlsSymmetricCipherSuite.TLS_CHACHA20_POLY1305_SHA256,
TlsSymmetricCipherSuite.TLS_AES_128_GCM_SHA256,
TlsSymmetricCipherSuite.TLS_AES_256_GCM_SHA384 });
stream.Parameters.AllowedSuites =
TlsCipherSuite.ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
| TlsCipherSuite.ECDHE_RSA_WITH_AES_128_GCM_SHA256
| TlsCipherSuite.ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
| TlsCipherSuite.ECDHE_RSA_WITH_AES_256_GCM_SHA384
| TlsCipherSuite.ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
| TlsCipherSuite.ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
| TlsCipherSuite.ECDHE_RSA_WITH_AES_128_CBC_SHA
| TlsCipherSuite.ECDHE_RSA_WITH_AES_256_CBC_SHA
| TlsCipherSuite.RSA_WITH_AES_128_GCM_SHA256
| TlsCipherSuite.RSA_WITH_AES_256_GCM_SHA384
| TlsCipherSuite.RSA_WITH_AES_128_CBC_SHA
| TlsCipherSuite.RSA_WITH_AES_256_CBC_SHA;
stream.Parameters.AllowedCurves = TlsEllipticCurve.Curve25519
| TlsEllipticCurve.BrainpoolP256R1
| TlsEllipticCurve.BrainpoolP384R1;
stream.AuthenticateAsClient(Address.Host);
Any advice?