CryptoPkg/BaseCryptLib: Retire HMAC SHA1 algorithm
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=1898 HMAC SHA1 is not secure any longer. Remove the HMAC SHA1 support from edk2. Change the HMAC SHA1 field name in EDKII_CRYPTO_PROTOCOL to indicate the function is unsupported any longer. Cc: Jian J Wang <jian.j.wang@intel.com> Cc: Xiaoyu Lu <xiaoyux.lu@intel.com> Cc: Siyuan Fu <siyuan.fu@intel.com> Cc: Michael D Kinney <michael.d.kinney@intel.com> Cc: Jiewen Yao <jiewen.yao@intel.com> Cc: Philippe Mathieu-Daude <philmd@redhat.com> Reviewed-by: Jian J Wang <jian.j.wang@intel.com> Signed-off-by: Zhichao Gao <zhichao.gao@intel.com>
This commit is contained in:
committed by
mergify[bot]
parent
b6174e2d09
commit
c812d3209c
@@ -7,8 +7,7 @@
|
||||
# buffer overflow or integer overflow.
|
||||
#
|
||||
# Note: SHA-384 Digest functions, SHA-512 Digest functions,
|
||||
# HMAC-SHA1 functions, RSA external
|
||||
# functions, PKCS#7 SignedData sign functions, Diffie-Hellman functions, and
|
||||
# RSA external functions, PKCS#7 SignedData sign functions, Diffie-Hellman functions, and
|
||||
# authenticode signature verification functions are not supported in this instance.
|
||||
#
|
||||
# Copyright (c) 2010 - 2020, Intel Corporation. All rights reserved.<BR>
|
||||
@@ -39,7 +38,6 @@
|
||||
Hash/CryptSha256.c
|
||||
Hash/CryptSm3.c
|
||||
Hash/CryptSha512Null.c
|
||||
Hmac/CryptHmacSha1Null.c
|
||||
Hmac/CryptHmacSha256.c
|
||||
Kdf/CryptHkdfNull.c
|
||||
Cipher/CryptAes.c
|
||||
|
Reference in New Issue
Block a user