From 82fca1c483e775c9322b2da1a603239d07b7760e Mon Sep 17 00:00:00 2001
From: aidan garske <aidangarske03@gmail.com>
Date: Thu, 11 Jul 2024 15:52:26 -0700
Subject: [PATCH] `InitSuites` changes to order making
 `BUILD_TLS_AES_256_GCM_SHA384` be prioritized over
 `BUILD_TLS_AES_128_GCM_SHA256`

---
 src/internal.c | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/src/internal.c b/src/internal.c
index 7a2690ed8..37809668d 100644
--- a/src/internal.c
+++ b/src/internal.c
@@ -3304,13 +3304,6 @@ void InitSuites(Suites* suites, ProtocolVersion pv, int keySz, word16 haveRSA,
         return;      /* trust user settings, don't override */
 
 #ifdef WOLFSSL_TLS13
-#ifdef BUILD_TLS_AES_128_GCM_SHA256
-    if (tls1_3) {
-        suites->suites[idx++] = TLS13_BYTE;
-        suites->suites[idx++] = TLS_AES_128_GCM_SHA256;
-    }
-#endif
-
 #ifdef BUILD_TLS_AES_256_GCM_SHA384
     if (tls1_3) {
         suites->suites[idx++] = TLS13_BYTE;
@@ -3318,6 +3311,13 @@ void InitSuites(Suites* suites, ProtocolVersion pv, int keySz, word16 haveRSA,
     }
 #endif
 
+#ifdef BUILD_TLS_AES_128_GCM_SHA256
+    if (tls1_3) {
+        suites->suites[idx++] = TLS13_BYTE;
+        suites->suites[idx++] = TLS_AES_128_GCM_SHA256;
+    }
+#endif
+
 #ifdef BUILD_TLS_CHACHA20_POLY1305_SHA256
     if (tls1_3) {
         suites->suites[idx++] = TLS13_BYTE;