Browse Source
Remove SSL_CIPHER_ALGORITHM2_AEAD.
All ciphers are implemented by an EVP_AEAD. Change-Id: Ifa754599a34e16bf97e1a4b84a271c6d45462c7c Reviewed-on: https://boringssl-review.googlesource.com/4958 Reviewed-by: Adam Langley <agl@google.com>kris/onging/CECPQ3_patch15
David Benjamin
9 years ago
committed by
Adam Langley
Adam Langley
2 changed files with 12 additions and 16 deletions
Split View
Diff Options
-
+0 -4ssl/internal.h
-
+12 -12ssl/s3_lib.c
+ 0
- 4
ssl/internal.h
View File
| @@ -224,10 +224,6 @@ | |||
| #define TLS1_PRF_SHA384 (SSL_HANDSHAKE_MAC_SHA384 << TLS1_PRF_DGST_SHIFT) | |||
| #define TLS1_PRF (TLS1_PRF_MD5 | TLS1_PRF_SHA1) | |||
| /* SSL_CIPHER_ALGORITHM2_AEAD is a flag in SSL_CIPHER.algorithm2 which | |||
| * indicates that the cipher is implemented via an EVP_AEAD. */ | |||
| #define SSL_CIPHER_ALGORITHM2_AEAD (1 << 23) | |||
| /* SSL_CIPHER_ALGORITHM2_VARIABLE_NONCE_INCLUDED_IN_RECORD is a flag in | |||
| * SSL_CIPHER.algorithm2 which indicates that the variable part of the nonce is | |||
| * included as a prefix of the record. (AES-GCM, for example, does with with an | |||
+ 12
- 12
ssl/s3_lib.c
View File
| @@ -279,7 +279,7 @@ const SSL_CIPHER ssl3_ciphers[] = { | |||
| TLS1_TXT_RSA_WITH_AES_128_GCM_SHA256, | |||
| TLS1_CK_RSA_WITH_AES_128_GCM_SHA256, SSL_kRSA, SSL_aRSA, SSL_AES128GCM, | |||
| SSL_AEAD, SSL_TLSV1_2, SSL_HIGH | SSL_FIPS, | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256 | SSL_CIPHER_ALGORITHM2_AEAD | | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256 | | |||
| SSL_CIPHER_ALGORITHM2_VARIABLE_NONCE_INCLUDED_IN_RECORD, | |||
| 128, 128, | |||
| }, | |||
| @@ -289,7 +289,7 @@ const SSL_CIPHER ssl3_ciphers[] = { | |||
| TLS1_TXT_RSA_WITH_AES_256_GCM_SHA384, | |||
| TLS1_CK_RSA_WITH_AES_256_GCM_SHA384, SSL_kRSA, SSL_aRSA, SSL_AES256GCM, | |||
| SSL_AEAD, SSL_TLSV1_2, SSL_HIGH | SSL_FIPS, | |||
| SSL_HANDSHAKE_MAC_SHA384 | TLS1_PRF_SHA384 | SSL_CIPHER_ALGORITHM2_AEAD | | |||
| SSL_HANDSHAKE_MAC_SHA384 | TLS1_PRF_SHA384 | | |||
| SSL_CIPHER_ALGORITHM2_VARIABLE_NONCE_INCLUDED_IN_RECORD, | |||
| 256, 256, | |||
| }, | |||
| @@ -299,7 +299,7 @@ const SSL_CIPHER ssl3_ciphers[] = { | |||
| TLS1_TXT_DHE_RSA_WITH_AES_128_GCM_SHA256, | |||
| TLS1_CK_DHE_RSA_WITH_AES_128_GCM_SHA256, SSL_kDHE, SSL_aRSA, SSL_AES128GCM, | |||
| SSL_AEAD, SSL_TLSV1_2, SSL_HIGH | SSL_FIPS, | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256 | SSL_CIPHER_ALGORITHM2_AEAD | | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256 | | |||
| SSL_CIPHER_ALGORITHM2_VARIABLE_NONCE_INCLUDED_IN_RECORD, | |||
| 128, 128, | |||
| }, | |||
| @@ -309,7 +309,7 @@ const SSL_CIPHER ssl3_ciphers[] = { | |||
| TLS1_TXT_DHE_RSA_WITH_AES_256_GCM_SHA384, | |||
| TLS1_CK_DHE_RSA_WITH_AES_256_GCM_SHA384, SSL_kDHE, SSL_aRSA, SSL_AES256GCM, | |||
| SSL_AEAD, SSL_TLSV1_2, SSL_HIGH | SSL_FIPS, | |||
| SSL_HANDSHAKE_MAC_SHA384 | TLS1_PRF_SHA384 | SSL_CIPHER_ALGORITHM2_AEAD | | |||
| SSL_HANDSHAKE_MAC_SHA384 | TLS1_PRF_SHA384 | | |||
| SSL_CIPHER_ALGORITHM2_VARIABLE_NONCE_INCLUDED_IN_RECORD, | |||
| 256, 256, | |||
| }, | |||
| @@ -404,7 +404,7 @@ const SSL_CIPHER ssl3_ciphers[] = { | |||
| TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, | |||
| TLS1_CK_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, SSL_kECDHE, SSL_aECDSA, | |||
| SSL_AES128GCM, SSL_AEAD, SSL_TLSV1_2, SSL_HIGH | SSL_FIPS, | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256 | SSL_CIPHER_ALGORITHM2_AEAD | | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256 | | |||
| SSL_CIPHER_ALGORITHM2_VARIABLE_NONCE_INCLUDED_IN_RECORD, | |||
| 128, 128, | |||
| }, | |||
| @@ -414,7 +414,7 @@ const SSL_CIPHER ssl3_ciphers[] = { | |||
| TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, | |||
| TLS1_CK_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, SSL_kECDHE, SSL_aECDSA, | |||
| SSL_AES256GCM, SSL_AEAD, SSL_TLSV1_2, SSL_HIGH | SSL_FIPS, | |||
| SSL_HANDSHAKE_MAC_SHA384 | TLS1_PRF_SHA384 | SSL_CIPHER_ALGORITHM2_AEAD | | |||
| SSL_HANDSHAKE_MAC_SHA384 | TLS1_PRF_SHA384 | | |||
| SSL_CIPHER_ALGORITHM2_VARIABLE_NONCE_INCLUDED_IN_RECORD, | |||
| 256, 256, | |||
| }, | |||
| @@ -424,7 +424,7 @@ const SSL_CIPHER ssl3_ciphers[] = { | |||
| TLS1_TXT_ECDHE_RSA_WITH_AES_128_GCM_SHA256, | |||
| TLS1_CK_ECDHE_RSA_WITH_AES_128_GCM_SHA256, SSL_kECDHE, SSL_aRSA, | |||
| SSL_AES128GCM, SSL_AEAD, SSL_TLSV1_2, SSL_HIGH | SSL_FIPS, | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256 | SSL_CIPHER_ALGORITHM2_AEAD | | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256 | | |||
| SSL_CIPHER_ALGORITHM2_VARIABLE_NONCE_INCLUDED_IN_RECORD, | |||
| 128, 128, | |||
| }, | |||
| @@ -434,7 +434,7 @@ const SSL_CIPHER ssl3_ciphers[] = { | |||
| TLS1_TXT_ECDHE_RSA_WITH_AES_256_GCM_SHA384, | |||
| TLS1_CK_ECDHE_RSA_WITH_AES_256_GCM_SHA384, SSL_kECDHE, SSL_aRSA, | |||
| SSL_AES256GCM, SSL_AEAD, SSL_TLSV1_2, SSL_HIGH | SSL_FIPS, | |||
| SSL_HANDSHAKE_MAC_SHA384 | TLS1_PRF_SHA384 | SSL_CIPHER_ALGORITHM2_AEAD | | |||
| SSL_HANDSHAKE_MAC_SHA384 | TLS1_PRF_SHA384 | | |||
| SSL_CIPHER_ALGORITHM2_VARIABLE_NONCE_INCLUDED_IN_RECORD, | |||
| 256, 256, | |||
| }, | |||
| @@ -447,7 +447,7 @@ const SSL_CIPHER ssl3_ciphers[] = { | |||
| TLS1_TXT_ECDHE_PSK_WITH_AES_128_GCM_SHA256, | |||
| TLS1_CK_ECDHE_PSK_WITH_AES_128_GCM_SHA256, SSL_kECDHE, SSL_aPSK, | |||
| SSL_AES128GCM, SSL_AEAD, SSL_TLSV1_2, SSL_HIGH, | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256 | SSL_CIPHER_ALGORITHM2_AEAD | | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256 | | |||
| SSL_CIPHER_ALGORITHM2_VARIABLE_NONCE_INCLUDED_IN_RECORD, | |||
| 128, 128, | |||
| }, | |||
| @@ -456,7 +456,7 @@ const SSL_CIPHER ssl3_ciphers[] = { | |||
| TLS1_TXT_ECDHE_RSA_WITH_CHACHA20_POLY1305, | |||
| TLS1_CK_ECDHE_RSA_CHACHA20_POLY1305, SSL_kECDHE, SSL_aRSA, | |||
| SSL_CHACHA20POLY1305, SSL_AEAD, SSL_TLSV1_2, SSL_HIGH, | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256 | SSL_CIPHER_ALGORITHM2_AEAD, | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256, | |||
| 256, 0, | |||
| }, | |||
| @@ -464,7 +464,7 @@ const SSL_CIPHER ssl3_ciphers[] = { | |||
| TLS1_TXT_ECDHE_ECDSA_WITH_CHACHA20_POLY1305, | |||
| TLS1_CK_ECDHE_ECDSA_CHACHA20_POLY1305, SSL_kECDHE, SSL_aECDSA, | |||
| SSL_CHACHA20POLY1305, SSL_AEAD, SSL_TLSV1_2, SSL_HIGH, | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256 | SSL_CIPHER_ALGORITHM2_AEAD, | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256, | |||
| 256, 0, | |||
| }, | |||
| @@ -472,7 +472,7 @@ const SSL_CIPHER ssl3_ciphers[] = { | |||
| TLS1_TXT_DHE_RSA_WITH_CHACHA20_POLY1305, | |||
| TLS1_CK_DHE_RSA_CHACHA20_POLY1305, SSL_kDHE, SSL_aRSA, | |||
| SSL_CHACHA20POLY1305, SSL_AEAD, SSL_TLSV1_2, SSL_HIGH, | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256 | SSL_CIPHER_ALGORITHM2_AEAD, | |||
| SSL_HANDSHAKE_MAC_SHA256 | TLS1_PRF_SHA256, | |||
| 256, 0, | |||
| }, | |||
| }; | |||