yuzu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2025-05-01 17:46:31 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix documentation for 3DES removal

Browse source
This commit is contained in:
Andres Amaya Garcia 2019-02-11 21:47:30 +00:00
parent 0a0e5b12a9
commit b7c22ecc74
2 changed files with 2 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
include/mbedtls/config.h
View file

@ -565,7 +565,7 @@
* to enable (some of) them with mbedtls_ssl_conf_ciphersuites() by including * to enable (some of) them with mbedtls_ssl_conf_ciphersuites() by including
* them explicitly. * them explicitly.
* *
* A man-in-the browser attacker can recover authentication tokens sent through * A man-in-the-browser attacker can recover authentication tokens sent through
* a TLS connection using a 3DES based cipher suite (see "On the Practical * a TLS connection using a 3DES based cipher suite (see "On the Practical
* (In-)Security of 64-bit Block Ciphers" by Karthikeyan Bhargavan and Gaëtan * (In-)Security of 64-bit Block Ciphers" by Karthikeyan Bhargavan and Gaëtan
* Leurent, see https://sweet32.info/SWEET32_CCS16.pdf). If this attack falls * Leurent, see https://sweet32.info/SWEET32_CCS16.pdf). If this attack falls

1
tests/compat.sh
View file

@ -57,6 +57,7 @@ FILTER=""
# - NULL: excluded from our default config # - NULL: excluded from our default config
# - RC4, single-DES: requires legacy OpenSSL/GnuTLS versions # - RC4, single-DES: requires legacy OpenSSL/GnuTLS versions
# avoid plain DES but keep 3DES-EDE-CBC (mbedTLS), DES-CBC3 (OpenSSL) # avoid plain DES but keep 3DES-EDE-CBC (mbedTLS), DES-CBC3 (OpenSSL)
# - 3DES: not in default config
EXCLUDE='NULL\|DES-CBC-\|RC4\|3DES\|ARCFOUR' EXCLUDE='NULL\|DES-CBC-\|RC4\|3DES\|ARCFOUR'
VERBOSE="" VERBOSE=""
MEMCHECK=0 MEMCHECK=0