Closed Bug 1875506 Opened 1 year ago Closed 1 year ago

Remove NSS_USE_ALG_IN_SSL_KX flag from default Xyber768d00 policy

Tracking

(Not tracked)

Status:

RESOLVED FIXED

People

(Reporter: jschanck, Assigned: jschanck)

References

(Blocks 1 open bug)

Details

Attachments

(1 file)

Bug 1875506 - make Xyber768d00 opt-in by policy. r=#nss-reviewers 1 year ago John Schanck [:jschanck] 48 bytes, text/x-phabricator-request		Details \| Review

John Schanck [:jschanck]

Assignee

Description

•

1 year ago

Some servers see xyber768d00 in the supported groups extension and send an HRR to force its use. For NSS 3.97, let's ensure that consumers opt-in to using xyber768d00 using NSS policy controls.

John Schanck [:jschanck]

Assignee

Comment 1

•

1 year ago

Attached file Bug 1875506 - make Xyber768d00 opt-in by policy. r=#nss-reviewers — Details

John Schanck [:jschanck]

Assignee

Comment 2

•

1 year ago

https://hg.mozilla.org/projects/nss/rev/c1a86ac938160397d68fc67a4b0abe199a7f89f9 (default branch)
https://hg.mozilla.org/projects/nss/rev/dee8570f62e3dd86f02d94fdeff689ec46a9b194 (3.97 branch)

Status: ASSIGNED → RESOLVED

Closed: 1 year ago

Resolution: --- → FIXED

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Remove NSS_USE_ALG_IN_SSL_KX flag from default Xyber768d00 policy

Categories

(NSS :: Libraries, enhancement, P1)

Tracking

(Not tracked)

People

(Reporter: jschanck, Assigned: jschanck)

References

(Blocks 1 open bug)

Details

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Comment 1

Comment 2

Attachment

General

Description

File Name

Content Type