net/socket/nss_ssl_util.cc - Issue 60353005: net: disable ChaCha20 based cipher suites. - Code Review

Chromium Code Reviews

chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out

(795)

My Issues | Starred Open | Closed | All

Unified Diff: net/socket/nss_ssl_util.cc

Issue 60353005: net: disable ChaCha20 based cipher suites. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: Created 7 years, 1 month ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

« no previous file with comments | « no previous file | no next file » | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: net/socket/nss_ssl_util.cc

diff --git a/net/socket/nss_ssl_util.cc b/net/socket/nss_ssl_util.cc

index 7e3aee430c4417353bca38270ea2f4564e90a0e0..40921078b0feec1e1290e1e887598ddcb5fdf99e 100644

--- a/net/socket/nss_ssl_util.cc

+++ b/net/socket/nss_ssl_util.cc

@@ -70,6 +70,11 @@ class NSSSSLInitSingleton {

enabled = false;

}

+ // We also disable ChaCha20 based cipher suites for now because we

+ // aren't quite ready to use them in M32.

+ if (ssl_ciphers[i] == 0xcc13 || ssl_ciphers[i] == 0xcc14)

agl 2013/11/05 23:18:01 We may be compiling on systems where the headers d

wtc 2013/11/05 23:38:37 I think we use our own SSL headers in net/third_pa

agl 2013/11/06 19:11:23 On 2013/11/05 23:38:37, wtc wrote:> I think we use

+ enabled = false;

+

if (ssl_ciphers[i] == TLS_DHE_DSS_WITH_AES_128_CBC_SHA) {

// Enabled to allow servers with only a DSA certificate to function.

enabled = true;

« no previous file with comments | « no previous file | no next file » | no next file with comments »

Powered by Google App Engine

This is Rietveld 408576698