Google Git
Sign in
boringssl / boringssl / df90a644831ff5b5962f8060227ca2646d069417
commitdf90a644831ff5b5962f8060227ca2646d069417[log] [tgz]
authorDavid Benjamin <davidben@chromium.org>Sun Aug 31 02:29:42 2014 -0400
committerAdam Langley <agl@google.com>Tue Sep 02 23:42:15 2014 +0000
tree9ec537ac9d94d6ade9f894891dc8eca8390cf3de
parent39ebf53dd34a553768277ee2e0a5c681b4ac6f9e [diff]
Remove MD5, SHA-224, and SHA-512 handling from s3_cbc.c.

The only MD5 CBC-mode cipher suites are TLS_KRB5_WITH_DES_CBC_MD5,
TLS_KRB5_WITH_3DES_EDE_CBC_MD5, and TLS_KRB5_WITH_IDEA_CBC_MD5. We do not
support those, and it seems quite safe to assume that list will not grow.

No current cipher suites use SHA-224 or SHA-512 MACs. We can restore those
cases if that ever changes, but hopefully any future cipher suites we care
about will be using the AEAD construction.

Change-Id: I7f2d30238e2156a59b5fed1e48fabe6660fc9b67
Reviewed-on: https://boringssl-review.googlesource.com/1697
Reviewed-by: Adam Langley <agl@google.com>
1 file changed
tree: 9ec537ac9d94d6ade9f894891dc8eca8390cf3de
  1. crypto/
  2. doc/
  3. include/
  4. ssl/
  5. tool/
  6. util/
  7. .clang-format
  8. .gitignore
  9. BUILDING
  10. CMakeLists.txt