Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / android_libcore / 71fa3ffedf35aff964eb2545e9af5fecfb8fe8ce
commit71fa3ffedf35aff964eb2545e9af5fecfb8fe8ce[log] [tgz]
authorAlex Klyubin <klyubin@google.com>Wed Dec 18 14:13:01 2013 -0800
committerAlex Klyubin <klyubin@google.com>Thu Dec 19 12:05:34 2013 -0800
tree1863addc3e808d7ff9c7fda2c5e59e707b7213ff
parent79a0da5d3d4c6369cee33877a005f3c99f281c85 [diff]
Disable MD5 cipher suites in SSLSocket and SSLEngine.

Although HMAC-MD5 is not yet broken, the foundations are shaky --
see http://tools.ietf.org/html/rfc6151.

Scans show that disabling these TLS/SSL cipher suites currently
causes handshake issues with 0.4% of the ecosystem.

Bug: 11220570
Change-Id: I1970d2ecbdf3c0d26e45d439047b1d3884ade2ec
2 files changed
tree: 1863addc3e808d7ff9c7fda2c5e59e707b7213ff
  1. benchmarks/
  2. dalvik/
  3. dex/
  4. dom/
  5. expectations/
  6. harmony-tests/
  7. include/
  8. json/
  9. jsr166-tests/
  10. libart/
  11. libdvm/
  12. luni/
  13. support/
  14. xml/
  15. Android.mk
  16. CaCerts.mk
  17. CleanSpec.mk
  18. Docs.mk
  19. JavaLibrary.mk
  20. NativeCode.mk
  21. NOTICE
  22. run-libcore-tests