projects / openssl.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
e_aes_cbc_hmac_sha1.c: address the CBC decrypt timing issues.
[openssl.git] / ssl / ssl_algs.c
diff --git a/ssl/ssl_algs.c b/ssl/ssl_algs.c
index 41ccbaac30d7aa5974bb480eee0d343bf053d8ed..9c34d19725b133bdfe771e7696b69f9e783236e7 100644 (file)
--- a/ssl/ssl_algs.c
+++ b/ssl/ssl_algs.c
@@ -90,12 +90,10 @@ int SSL_library_init(void)
        EVP_add_cipher(EVP_aes_256_cbc());
        EVP_add_cipher(EVP_aes_128_gcm());
        EVP_add_cipher(EVP_aes_256_gcm());
-#if 0 /* Disabled because of timing side-channel leaks. */
 #if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA1)
        EVP_add_cipher(EVP_aes_128_cbc_hmac_sha1());
        EVP_add_cipher(EVP_aes_256_cbc_hmac_sha1());
 #endif
-#endif
 
 #endif
 #ifndef OPENSSL_NO_CAMELLIA
Unnamed repository; edit this file 'description' to name the repository.