net/socket/nss_ssl_util.cc - Issue 21696002: Implement the AES GCM cipher suites for TLS. - Code Review

Chromium Code Reviews

chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out

(1151)

My Issues | Starred Open | Closed | All

Unified Diff: net/socket/nss_ssl_util.cc

Issue 21696002: Implement the AES GCM cipher suites for TLS. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src/

Patch Set: Add a TODO to README.chromium to remove cbc.patch Created 7 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

« no previous file with comments | « no previous file | net/third_party/nss/README.chromium » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: net/socket/nss_ssl_util.cc

===================================================================

--- net/socket/nss_ssl_util.cc (revision 215189)

+++ net/socket/nss_ssl_util.cc (working copy)

@@ -58,12 +58,13 @@

enabled = false;

// Trim the list of cipher suites in order to keep the size of the

- // ClientHello down. DSS, ECDH, CAMELLIA, SEED and ECC+3DES cipher

- // suites are disabled.

+ // ClientHello down. DSS, ECDH, CAMELLIA, SEED, ECC+3DES, and

+ // HMAC-SHA256 cipher suites are disabled.

if (info.symCipher == ssl_calg_camellia ||

info.symCipher == ssl_calg_seed ||

(info.symCipher == ssl_calg_3des && info.keaType != ssl_kea_rsa) ||

info.authAlgorithm == ssl_auth_dsa ||

+ info.macAlgorithm == ssl_hmac_sha256 ||

info.nonStandard ||

strcmp(info.keaTypeName, "ECDH") == 0) {

enabled = false;

« no previous file with comments | « no previous file | net/third_party/nss/README.chromium » ('j') | no next file with comments »

Powered by Google App Engine

This is Rietveld 408576698