Fix documentation for 3DES removal

2026-05-09 03:04:24 +02:00 · 2019-02-11 21:47:30 +00:00
parent 0a0e5b12a9
commit b7c22ecc74
2 changed files with 2 additions and 1 deletions
--- a/include/mbedtls/config.h
+++ b/include/mbedtls/config.h
@@ -565,7 +565,7 @@
 * to enable (some of) them with mbedtls_ssl_conf_ciphersuites() by including
 * them explicitly.
 *
- * A man-in-the browser attacker can recover authentication tokens sent through
+ * A man-in-the-browser attacker can recover authentication tokens sent through
 * a TLS connection using a 3DES based cipher suite (see "On the Practical
 * (In-)Security of 64-bit Block Ciphers" by Karthikeyan Bhargavan and Gaëtan
 * Leurent, see https://sweet32.info/SWEET32_CCS16.pdf). If this attack falls
--- a/tests/compat.sh
+++ b/tests/compat.sh
@@ -57,6 +57,7 @@ FILTER=""
 # - NULL: excluded from our default config
 # - RC4, single-DES: requires legacy OpenSSL/GnuTLS versions
 #   avoid plain DES but keep 3DES-EDE-CBC (mbedTLS), DES-CBC3 (OpenSSL)
+# - 3DES: not in default config
 EXCLUDE='NULL\|DES-CBC-\|RC4\|3DES\|ARCFOUR'
 VERBOSE=""
 MEMCHECK=0