boringssl

History

David Benjamin 68a0b1b112 Remove RFC 5114 groups. These groups are terrible, we got the function wrong (unused ENGINE parameter does not match upstream), and the functions are unused. Unwind them. This change doesn't unwind the X9.42 Diffie-Hellman machinery, so the checks are still present and tested. (We can probably get rid of the X9.42 machinery too, but it is reachable from DSA_dup_DH. That's only used by wpa_supplicant and, if that code ever ran, it'd be ignored because we don't support DHE in TLS. I've left it alone for the time being.) Bug: 2 Change-Id: I8d9396983c8d40ed46a03ba6947720da7e9b689a Reviewed-on: https://boringssl-review.googlesource.com/19384 Reviewed-by: Adam Langley <agl@google.com> Commit-Queue: Adam Langley <agl@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>	2017-08-18 16:48:11 +00:00
..
openssl	Remove RFC 5114 groups.	2017-08-18 16:48:11 +00:00

David Benjamin 68a0b1b112 Remove RFC 5114 groups.

These groups are terrible, we got the function wrong (unused ENGINE
parameter does not match upstream), and the functions are unused. Unwind
them. This change doesn't unwind the X9.42 Diffie-Hellman machinery, so
the checks are still present and tested.

(We can probably get rid of the X9.42 machinery too, but it is reachable
from DSA_dup_DH.  That's only used by wpa_supplicant and, if that code
ever ran, it'd be ignored because we don't support DHE in TLS. I've left
it alone for the time being.)

Bug: 2
Change-Id: I8d9396983c8d40ed46a03ba6947720da7e9b689a
Reviewed-on: https://boringssl-review.googlesource.com/19384
Reviewed-by: Adam Langley <agl@google.com>
Commit-Queue: Adam Langley <agl@google.com>
CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>

2017-08-18 16:48:11 +00:00

openssl

Remove RFC 5114 groups.

2017-08-18 16:48:11 +00:00