Skip to content
This repository has been archived by the owner on Nov 6, 2023. It is now read-only.

Update Cipher List for Pending Fetch Test #18964

Merged
merged 3 commits into from
Mar 9, 2020
Merged

Update Cipher List for Pending Fetch Test #18964

merged 3 commits into from
Mar 9, 2020

Conversation

zoracon
Copy link
Contributor

@zoracon zoracon commented Feb 20, 2020
edited
Loading

Updating cipher suite to TLS 1.2 for March Fetch Test

TLS 1.0., 1.1 complete deprecation in both Chrome and Firefox roll out in March

Related PR:
#18700

Related Issue:
#18866

@zoracon zoracon mentioned this pull request Feb 21, 2020
Closed
@J0WI
Copy link
Contributor

J0WI commented Feb 21, 2020

The current versions of ESR/Tor are still supporting TLS 1.0, 3DES an CBC ciphers.

@pipboy96
Copy link
Contributor

@J0WI We need to test for intersection of supported browsers' cipher lists, so even if only Chrome removed TLS 1.0, 3DES or CBC ciphers, we would have to disable it anyway.

@J0WI
Copy link
Contributor

J0WI commented Mar 1, 2020

https://bugzilla.mozilla.org/show_bug.cgi?id=1227524
https://bugs.chromium.org/p/chromium/issues/detail?id=691888

@pipboy96
Copy link
Contributor

pipboy96 commented Mar 2, 2020

@J0WI Should we replicate this behavior by making a connection without 3DES support and if if fails, making another with 3DES support enabled?

@J0WI
Copy link
Contributor

J0WI commented Mar 2, 2020

I think we should just keep it in the cipher list until it's disabled by default in browsers.

@zoracon zoracon merged commit 1ba3d77 into EFForg:master Mar 9, 2020
@zoracon zoracon mentioned this pull request Mar 9, 2020
Closed
6 tasks
@zoracon zoracon deleted the fetch-test-update-ciphers branch March 9, 2020 23:45
@J0WI J0WI mentioned this pull request Mar 18, 2020
Closed
zoracon added a commit that referenced this pull request Mar 24, 2020
@zoracon
Revert "Update Cipher List for Pending Fetch Test (#18964)"
7cd4a3c 
This reverts commit 1ba3d77.
@zoracon zoracon mentioned this pull request Mar 24, 2020
Merged
zoracon added a commit that referenced this pull request Mar 24, 2020
@zoracon
Revert "Update Cipher List for Pending Fetch Test" (#19076)
0679268 
* Revert "Update Cipher List for Pending Fetch Test (#18964)"

This reverts commit 1ba3d77.

* Add back relevent and up to date comments
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@pipboy96 pipboy96 pipboy96 requested changes

Assignees
No one assigned
Labels
fetch-test-2020 ruleset-enhancement ruleset-testing
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@zoracon @J0WI @pipboy96