Remove (Device)PostQuantumKeyAgreementEnabled admin policy [chromium/src : main]
David Benjamin (Gerrit)
David Benjamin has uploaded the change for review![]( "Open in Gerrit")
Commit message
Remove (Device)PostQuantumKeyAgreementEnabled admin policy
As documented in the policy, and in enterprise release notes[*], the
temporary admin policy to disable post-quantum protections was to be
removed after Chrome 145. The main branch is now Chrome 147, so remove
this.
[*] https://support.google.com/chrome/a/answer/7679408#:~:text=Chrome%20146%20on%20Linux%2C%20MacOS%2C%20Windows%3A%20Enterprise%20policy%20will%20be%20removed.%C2%A0
Change diff
Change information
- M chrome/browser/ash/policy/core/device_policy_decoder.cc
- M chrome/browser/ash/policy/core/device_policy_decoder_unittest.cc
- M chrome/browser/policy/configuration_policy_handler_list_factory.cc
- M chrome/browser/policy/policy_network_browsertest.cc
- M chrome/browser/ssl/ssl_config_service_manager.cc
- M chrome/browser/ssl/ssl_config_service_manager.h
- M chrome/common/pref_names.h
- M components/policy/proto/chrome_device_policy.proto
- M components/policy/resources/templates/policy_definitions/CryptographyCompliance/DeviceLoginScreenPreferSlowKexAlgorithms.yaml
- M components/policy/resources/templates/policy_definitions/CryptographyCompliance/PreferSlowKexAlgorithms.yaml
- M components/policy/resources/templates/policy_definitions/Miscellaneous/DevicePostQuantumKeyAgreementEnabled.yaml
- M components/policy/resources/templates/policy_definitions/Miscellaneous/PostQuantumKeyAgreementEnabled.yaml
- M components/policy/test/data/pref_mapping/DevicePostQuantumKeyAgreementEnabled.json
- M components/policy/test/data/pref_mapping/PostQuantumKeyAgreementEnabled.json
- M net/quic/quic_end_to_end_unittest.cc
- M net/socket/ssl_client_socket_unittest.cc
- M net/ssl/ssl_config_service.cc
- M net/ssl/ssl_config_service.h
- M services/network/public/mojom/ssl_config.mojom
- M services/network/ssl_config_service_mojo_unittest.cc
- M services/network/ssl_config_type_converter.cc
Related details
Code-Coverage
Code-Owners
Code-Review
Review-Enforcement
| Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. |
gwsq (Gerrit)
Message from gwsq![]( "Open in Gerrit")
From chrome/enterprise/gwsq/enterprise-policy-review.gwsq:
New rules apply to adding device policies. go/device-policy-generation-future-proofing
From googleclient/chrome/chromium_gwsq/ipc/config.gwsq:
IPC: ort...@chromium.org
📎 It looks like you’re making a possibly security-sensitive change! 📎 IPC security review isn’t a rubberstamp, so your friendly security reviewer will need a fair amount of context to review your CL effectively. Please review your CL description and code comments to make sure they provide context for someone unfamiliar with your project/area. Pay special attention to where data comes from and which processes it flows between (and their privilege levels). Feel free to point your security reviewer at design docs, bugs, or other links if you can’t reasonably make a self-contained CL description. (Also see https://cbea.ms/git-commit/).
IPC reviewer(s): ort...@chromium.org
Reviewer source(s):
pma...@chromium.org is from context(chrome/enterprise/gwsq/enterprise-policy-review.gwsq)
ort...@chromium.org is from context(googleclient/chrome/chromium_gwsq/ipc/config.gwsq)
Related details
- Carlos IL
- Giovanni Ortuno Urquidi
- Pavol Marko
- Tsuyoshi Horo
Code-Coverage
Code-Owners
Code-Review
Review-Enforcement
| Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. |