Skip to content

Commit 1b8cc20

Browse files
sabrinajleesabrinajlee
committed
Remove TLS support
Removes support for TLS key generation in OpenJCEPlus and OpenJCEPlusFIPS profiles. The internal parameter specs for these classes have been deprecated. Signed-off-by: Sabrina Lee <[email protected]>
1 parent 94b3fe1 commit 1b8cc20

File tree

7 files changed

+4
-1111
lines changed

7 files changed

+4
-1111
lines changed

README.md

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -370,10 +370,10 @@ KeyGenerator | SunTls12KeyMaterial |X
370370
KeyGenerator | SunTls12MasterSecret |X |X | |
371371
KeyGenerator | SunTls12Prf |X |X | |
372372
KeyGenerator | SunTls12RsaPremasterSecret |X |X | |
373-
KeyGenerator | SunTlsKeyMaterial |X |X | |
374-
KeyGenerator | SunTlsMasterSecret |X |X | |
375-
KeyGenerator | SunTlsPrf |X |X | |
376-
KeyGenerator | SunTlsRsaPremasterSecret |X |X | |
373+
KeyGenerator | SunTlsKeyMaterial | | | |
374+
KeyGenerator | SunTlsMasterSecret | | | |
375+
KeyGenerator | SunTlsPrf | | | |
376+
KeyGenerator | SunTlsRsaPremasterSecret | | | |
377377
KeyGenerator | kda-hkdf-with-sha1 | |X | |
378378
KeyGenerator | kda-hkdf-with-sha224 |X |X | |
379379
KeyGenerator | kda-hkdf-with-sha256 |X |X | |

src/main/java/com/ibm/crypto/plus/provider/OpenJCEPlus.java

Lines changed: 0 additions & 33 deletions
Original file line numberDiff line numberDiff line change
@@ -541,39 +541,6 @@ private void registerAlgorithms(Provider jce) {
541541
putService(new OpenJCEPlusService(jce, "KeyGenerator", "HmacSHA3-512",
542542
"com.ibm.crypto.plus.provider.HmacKeyGenerator$HmacSHA3_512", aliases));
543543

544-
aliases = new String[] {"TlsPrf"};
545-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTlsPrf",
546-
"com.ibm.crypto.plus.provider.TlsPrfGenerator$V10", aliases));
547-
548-
aliases = new String[] {"Tls12Prf"};
549-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTls12Prf",
550-
"com.ibm.crypto.plus.provider.TlsPrfGenerator$V12", aliases));
551-
552-
aliases = new String[] {"TlsRsaPremasterSecret"};
553-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTlsRsaPremasterSecret",
554-
"com.ibm.crypto.plus.provider.TlsRsaPremasterSecretGenerator", aliases));
555-
556-
aliases = new String[] {"Tls12RsaPremasterSecret"};
557-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTls12RsaPremasterSecret",
558-
"com.ibm.crypto.plus.provider.TlsRsaPremasterSecretGenerator", aliases));
559-
560-
aliases = new String[] {"TlsMasterSecret", "TlsExtendedMasterSecret",
561-
"SunTlsExtendedMasterSecret"};
562-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTlsMasterSecret",
563-
"com.ibm.crypto.plus.provider.TlsMasterSecretGenerator", aliases));
564-
565-
aliases = new String[] {"Tls12MasterSecret"};
566-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTls12MasterSecret",
567-
"com.ibm.crypto.plus.provider.TlsMasterSecretGenerator", aliases));
568-
569-
aliases = new String[] {"TlsKeyMaterial"};
570-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTlsKeyMaterial",
571-
"com.ibm.crypto.plus.provider.TlsKeyMaterialGenerator", aliases));
572-
573-
aliases = new String[] {"Tls12KeyMaterial"};
574-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTls12KeyMaterial",
575-
"com.ibm.crypto.plus.provider.TlsKeyMaterialGenerator", aliases));
576-
577544
// Used for both ChaCha20 and ChaCha20-Poly1305 ciphers
578545
aliases = null;
579546
putService(new OpenJCEPlusService(jce, "KeyGenerator", "ChaCha20",

src/main/java/com/ibm/crypto/plus/provider/OpenJCEPlusFIPS.java

Lines changed: 0 additions & 32 deletions
Original file line numberDiff line numberDiff line change
@@ -343,38 +343,6 @@ private void registerAlgorithms(Provider jce) {
343343
putService(new OpenJCEPlusService(jce, "KeyGenerator", "HmacSHA3-512",
344344
"com.ibm.crypto.plus.provider.HmacKeyGenerator$HmacSHA3_512", aliases));
345345

346-
aliases = new String[] {"TlsPrf"};
347-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTlsPrf",
348-
"com.ibm.crypto.plus.provider.TlsPrfGenerator$V10", aliases));
349-
350-
aliases = new String[] {"Tls12Prf"};
351-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTls12Prf",
352-
"com.ibm.crypto.plus.provider.TlsPrfGenerator$V12", aliases));
353-
354-
aliases = new String[] {"TlsRsaPremasterSecret"};
355-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTlsRsaPremasterSecret",
356-
"com.ibm.crypto.plus.provider.TlsRsaPremasterSecretGenerator", aliases));
357-
358-
aliases = new String[] {"Tls12RsaPremasterSecret"};
359-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTls12RsaPremasterSecret",
360-
"com.ibm.crypto.plus.provider.TlsRsaPremasterSecretGenerator", aliases));
361-
362-
aliases = new String[] {"TlsMasterSecret", "TlsExtendedMasterSecret",
363-
"SunTlsExtendedMasterSecret"};
364-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTlsMasterSecret",
365-
"com.ibm.crypto.plus.provider.TlsMasterSecretGenerator", aliases));
366-
367-
aliases = new String[] {"Tls12MasterSecret"};
368-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTls12MasterSecret",
369-
"com.ibm.crypto.plus.provider.TlsMasterSecretGenerator", aliases));
370-
371-
aliases = new String[] {"TlsKeyMaterial"};
372-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTlsKeyMaterial",
373-
"com.ibm.crypto.plus.provider.TlsKeyMaterialGenerator", aliases));
374-
375-
aliases = new String[] {"Tls12KeyMaterial"};
376-
putService(new OpenJCEPlusService(jce, "KeyGenerator", "SunTls12KeyMaterial",
377-
"com.ibm.crypto.plus.provider.TlsKeyMaterialGenerator", aliases));
378346
// Not supported in FIPS mode yet - Used for both ChaCha20 and ChaCha20-Poly1305 ciphers
379347

380348
/* =======================================================================

0 commit comments

Comments
 (0)