Summary: | Add SPI to disable legacy TLS fallback | ||||||
---|---|---|---|---|---|---|---|
Product: | WebKit | Reporter: | Alex Christensen <achristensen> | ||||
Component: | New Bugs | Assignee: | Alex Christensen <achristensen> | ||||
Status: | RESOLVED FIXED | ||||||
Severity: | Normal | CC: | commit-queue, ggaren, webkit-bug-importer | ||||
Priority: | P2 | Keywords: | InRadar | ||||
Version: | WebKit Nightly Build | ||||||
Hardware: | Unspecified | ||||||
OS: | Unspecified | ||||||
Attachments: |
|
Description
Alex Christensen
2019-04-03 11:47:18 PDT
Created attachment 366626 [details]
Patch
Comment on attachment 366626 [details]
Patch
This seems like a really nice improvement to apply by default for the long tail of clients who don't think deeply about TLS. Can you think of a strategy to apply this change by default? Maybe a linked-on-or-after check?
We do not want to pursue this in this way at this time. Plans exist, though. Comment on attachment 366626 [details] Patch Clearing flags on attachment: 366626 Committed r243829: <https://trac.webkit.org/changeset/243829> All reviewed patches have been landed. Closing bug. |