Bug 1227519: remove DHE ciphers from WebRTC DTLS handshake. r=mt
authorNils Ohlmeier [:drno] <drno@ohlmeier.org>
Mon, 22 Oct 2018 22:58:48 +0000
changeset 490828 ae266baf08fe02facf73233fccf30140a42ef0f4
parent 490827 9fb4fd49a8189f4da9998f9cf80d94f699c6b739
child 490829 29c73665ba1923bbb91cebfc3f785e8c7471522b
push id247
push userfmarier@mozilla.com
push dateSat, 27 Oct 2018 01:06:44 +0000
reviewersmt
bugs1227519
milestone65.0a1
Bug 1227519: remove DHE ciphers from WebRTC DTLS handshake. r=mt Differential Revision: https://phabricator.services.mozilla.com/D7965
media/mtransport/transportlayerdtls.cpp
--- a/media/mtransport/transportlayerdtls.cpp
+++ b/media/mtransport/transportlayerdtls.cpp
@@ -694,16 +694,19 @@ static const uint32_t DisabledCiphers[] 
   TLS_AES_256_GCM_SHA384,
   TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
   TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
   TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384,
   TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,
   TLS_DHE_RSA_WITH_AES_256_GCM_SHA384,
   TLS_DHE_DSS_WITH_AES_256_GCM_SHA384,
 
+  TLS_DHE_RSA_WITH_AES_128_CBC_SHA,
+  TLS_DHE_RSA_WITH_AES_256_CBC_SHA,
+
   TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA,
   TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA,
   TLS_ECDHE_ECDSA_WITH_RC4_128_SHA,
   TLS_ECDHE_RSA_WITH_RC4_128_SHA,
 
   TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA,
   TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA,
   TLS_DHE_DSS_WITH_RC4_128_SHA,