net/ssl/ssl_config_service.cc - Issue 17094016: Disable TLS 1.2 if USE_OPENSSL is defined (such as on Android) to - Code Review

Chromium Code Reviews

chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out

(540)

My Issues | Starred Open | Closed | All

Unified Diff: net/ssl/ssl_config_service.cc

Issue 17094016: Disable TLS 1.2 if USE_OPENSSL is defined (such as on Android) to (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src/

Patch Set: Created 7 years, 6 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

« no previous file with comments | « no previous file | no next file » | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: net/ssl/ssl_config_service.cc

===================================================================

--- net/ssl/ssl_config_service.cc (revision 207033)

+++ net/ssl/ssl_config_service.cc (working copy)

@@ -20,9 +20,9 @@

static uint16 g_default_version_max =

#if defined(USE_OPENSSL)

-#if defined(SSL_OP_NO_TLSv1_2)

- SSL_PROTOCOL_VERSION_TLS1_2;

-#elif defined(SSL_OP_NO_TLSv1_1)

+// TODO(wtc): do not enable TLS 1.2 until we can keep ClientHello under 256

+// bytes. See http://crbug.com/245500 and http://crbug.com/247691.

+#if defined(SSL_OP_NO_TLSv1_1)

SSL_PROTOCOL_VERSION_TLS1_1;

#else

SSL_PROTOCOL_VERSION_TLS1;

« no previous file with comments | « no previous file | no next file » | no next file with comments »

Powered by Google App Engine

This is Rietveld 408576698