Closed Bug 1347429 Opened 8 years ago Closed 8 years ago

Deprecated SSL 3.0 cipher names in SSLSocket class.

Categories

(JSS Graveyard :: Library, defect)

Product:
JSS Graveyard
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
VERIFIED FIXED

People

(Reporter: edewata, Assigned: edewata)

References

Details

Attachments

(2 files)

0001-Reformatted-cipher-definitions-in-SSLSocket-class.patch
19.17 KB, patch
elio.maldonado.batiz
: review+
Details | Diff | Splinter Review
0002-Added-annotations-for-deprecated-SSL-3.0-ciphers.patch
10.29 KB, patch
elio.maldonado.batiz
: review+
Details | Diff | Splinter Review
User Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:51.0) Gecko/20100101 Firefox/51.0 Build ID: 20170125094131 Steps to reproduce: Some SSL 3.0 cipher names have been replaced with IANA-registered TLS names. See https://github.com/nss-dev/nss/blob/master/lib/ssl/sslproto.h. Actual results: In the SSLSocket class the deprecation is only documented as comments and the replacement cipher names are not defined. Expected results: The old cipher names should be deprecated, and the replacement cipher names should be defined with the same cipher IDs. This will allow applications to migrate to the new cipher names while maintaining backward compatibility.
The cipher definitions in SSLSocket class have been moved to the top of the class and reformatted for better readability.
Attachment #8848671 - Flags: review?(emaldona)
Some SSL 3.0 ciphers have deprecated according to this list: https://github.com/nss-dev/nss/blob/master/lib/ssl/sslproto.h The deprecated cipher definitions have been marked accordingly in the SSLSocket class. The replacement cipher definitions (if any) have been added with the same cipher IDs.
Attachment #8848672 - Flags: review?(emaldona)
Depends on bug #1347394 due to formatting.
Depends on: 1347394
Comment on attachment 8848671 [details] [diff] [review] 0001-Reformatted-cipher-definitions-in-SSLSocket-class.patch Review of attachment 8848671 [details] [diff] [review]: ----------------------------------------------------------------- r+, Applies cleanly and no extra warnings on the build, ran test and all pass.
Attachment #8848671 - Flags: review?(emaldona) → review+
Comment on attachment 8848672 [details] [diff] [review] 0002-Added-annotations-for-deprecated-SSL-3.0-ciphers.patch Review of attachment 8848672 [details] [diff] [review]: ----------------------------------------------------------------- r+, Applies cleanly and no extra warnings on the build, ran test and all pass. I did the review of the patches for Bug 1347394 along with the the ones for this bug. Applied the four patches as follows: hg import ~/Downloads/0001-Added-Eclipse-project-files.patch hg import ~/Downloads/0002-Cleaned-up-SSLSocket-class.patch hg import ~/Downloads/0001-Reformatted-cipher-definitions-in-SSLSocket-class.patch hg import ~/Downloads/0002-Added-annotations-for-deprecated-SSL-3.0-ciphers.patch They applied cleanly. The build went fine with no additional warnings. Built and tested following the steps in https://hg.mozilla.org/projects/jss/file/tip/README and all tests passed.
Attachment #8848672 - Flags: review?(emaldona) → review+
Assignee: glenbeasley → edewata
Status: UNCONFIRMED → ASSIGNED
Ever confirmed: true
Target Milestone: --- → 4.4.1
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: