Closed
Bug 1107787
Opened 11 years ago
Closed 11 years ago
Disable TLS_DHE_DSS_WITH_AES_128_CBC_SHA support
Categories
(Core :: Security: PSM, defect)
Core
Security: PSM
Tracking
()
RESOLVED
FIXED
mozilla37
People
(Reporter: emk, Assigned: briansmith)
References
Details
(Keywords: site-compat, Whiteboard: [parity-Chrome])
Attachments
(1 file)
2.29 KB,
patch
|
keeler
:
review+
|
Details | Diff | Splinter Review |
According to bug 970254 comment #11, Chrome will also drop the support soon.
Reporter | ||
Comment 1•11 years ago
|
||
The removal commit of BoringSSL:
https://boringssl.googlesource.com/boringssl/+/ef2116d33c3c1b38005eb59caa2aaa6300a9b450
Reporter | ||
Comment 2•11 years ago
|
||
Chromium already switched to BoringSSL on OS X:
https://code.google.com/p/chromium/issues/detail?id=338885
Assignee | ||
Updated•11 years ago
|
Assignee: nobody → brian
Status: NEW → ASSIGNED
Target Milestone: --- → mozilla37
Assignee | ||
Comment 3•11 years ago
|
||
This patch disables the cipher suite by switching the default value of the pref. If/when this lands, I'll file a follow-up bug for removing the pref, just like we've done for other disabled/removed cipher suites.
Attachment #8532365 -
Flags: review?(dkeeler)
Assignee | ||
Comment 4•11 years ago
|
||
The compatibility impact information is in bug 1073867 comment 2. Should be minimal, especially considering Chrome's changes.
Keywords: site-compat
![]() |
||
Updated•11 years ago
|
Attachment #8532365 -
Flags: review?(dkeeler) → review+
Assignee | ||
Comment 5•11 years ago
|
||
This needs to be applied on top of the patch for bug 1037098 to avoid merge conflicts.
Keywords: checkin-needed
Whiteboard: [parity-Chrome] → [parity-Chrome][apply on top of bug 1037098]
Assignee | ||
Comment 6•11 years ago
|
||
Assignee | ||
Comment 7•11 years ago
|
||
Keywords: checkin-needed
Comment 8•11 years ago
|
||
Status: ASSIGNED → RESOLVED
Closed: 11 years ago
Resolution: --- → FIXED
Whiteboard: [parity-Chrome][apply on top of bug 1037098] → [parity-Chrome]
You need to log in
before you can comment on or make changes to this bug.
Description
•