crypto/tls: Improve ambiguous comment in cipher_suites.go

A comment existed referencing RC4 coming before AES because of it's vulnerability to the Lucky 13 attack. This clarifies that the Lucky 13 attack only effects AES-CBC, and not AES-GCM. Fixes #14474 Change-Id: Idcb07b5e0cdb0f9257cf75abea60129ba495b5f5 Reviewed-on: https://go-review.googlesource.com/19845 Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
author: Brady Sullivan <brady@bsull.com> 2016-02-22 15:19:18 -0800
committer: Brad Fitzpatrick <bradfitz@golang.org> 2016-02-22 23:56:37 +0000
commit: 1e00cc1647916b705682f8721b8a9e9e095bf4ee (patch)
tree: fceb7d302a956950668088185c1814367417b0a5 /src
parent: 108218453a2cd26920f9be899b4a5102e80007a8 (diff)
download: go-1e00cc1647916b705682f8721b8a9e9e095bf4ee.tar.xz
1 files changed, 1 insertions, 1 deletions
diff --git a/src/crypto/tls/cipher_suites.go b/src/crypto/tls/cipher_suites.go
index 869ffa50bd..224ed1bc86 100644
--- a/src/crypto/tls/cipher_suites.go
+++ b/src/crypto/tls/cipher_suites.go
@@ -74,7 +74,7 @@ type cipherSuite struct {
 
 var cipherSuites = []*cipherSuite{
 	// Ciphersuite order is chosen so that ECDHE comes before plain RSA
-	// and RC4 comes before AES (because of the Lucky13 attack).
+	// and RC4 comes before AES-CBC (because of the Lucky13 attack).
 	{TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, 16, 0, 4, ecdheRSAKA, suiteECDHE | suiteTLS12, nil, nil, aeadAESGCM},
 	{TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, 16, 0, 4, ecdheECDSAKA, suiteECDHE | suiteECDSA | suiteTLS12, nil, nil, aeadAESGCM},
 	{TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, 32, 0, 4, ecdheRSAKA, suiteECDHE | suiteTLS12 | suiteSHA384, nil, nil, aeadAESGCM},
author	Brady Sullivan <brady@bsull.com>	2016-02-22 15:19:18 -0800
committer	Brad Fitzpatrick <bradfitz@golang.org>	2016-02-22 23:56:37 +0000
commit	1e00cc1647916b705682f8721b8a9e9e095bf4ee (patch)
tree	fceb7d302a956950668088185c1814367417b0a5 /src
parent	108218453a2cd26920f9be899b4a5102e80007a8 (diff)
download	go-1e00cc1647916b705682f8721b8a9e9e095bf4ee.tar.xz