Bug 1034493 - GCM support introduced in 3.15.2 doesn't work
Summary: GCM support introduced in 3.15.2 doesn't work
Keywords:
Status: CLOSED UPSTREAM
Alias: None
Product: Fedora
Classification: Fedora
Component: nss
Version: 20
Hardware: All
OS: Unspecified
unspecified
medium
Target Milestone: ---
Assignee: Elio Maldonado Batiz
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2013-11-25 23:52 UTC by Christian Stadelmann
Modified: 2013-12-28 18:53 UTC (History)
4 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2013-12-28 18:53:44 UTC
Type: Bug


Attachments (Terms of Use)

Description Christian Stadelmann 2013-11-25 23:52:48 UTC
Description of problem:
According to https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.2_release_notes and https://bugzilla.mozilla.org/show_bug.cgi?id=880543 NSS 3.15.2 introduced support for GCM.

Version-Release number of selected component (if applicable): 3.15.2-3

According to https://www.ssllabs.com/ssltest/viewMyClient.html and https://cc.dcsec.uni-hannover.de/ current versions of Firefox 25.0-3 / nss 3.15.2-3 don't support GCM (you need to set security.tls.version.max to 3 to run this test since GCM is only specified for TLSv1.2).

Comment 1 Bob Relyea 2013-11-26 19:03:39 UTC
You have to turn GCM on. I don't believe Firefox 25 does this.

Comment 2 Christian Stadelmann 2013-11-26 21:28:28 UTC
Afaik Firefox doesn't provide any options to enable GCM.

Comment 3 Christian Stadelmann 2013-11-26 21:29:00 UTC
Afaik Firefox doesn't provide any options to enable or disable GCM.

Comment 4 Bob Relyea 2013-11-26 22:36:07 UTC
Right, so this is a firefox issue, probably best handled by an upstream bug (though I think there is already work upstream to get TLS 1.2 and GCM enabled in newer versions of ff).

Comment 5 Elio Maldonado Batiz 2013-11-26 22:47:53 UTC
Likely on FF 27, see https://bugzilla.mozilla.org/show_bug.cgi?id=861266


Note You need to log in before you can comment on or make changes to this bug.