kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
091c4b9869
boringssl/include/openssl
History
David Benjamin 091c4b9869 Add an option to disable NPN on a per-SSL basis. 
Right whether NPN is advertised can only be configured globally on the SSL_CTX.
Rather than adding two pointers to each SSL*, add an options bit to disable it
so we may plumb in a field trial to disable NPN.

Chromium wants to be able to route a bit in to disable NPN, but it uses SSL_CTX
incorrectly and has a global one, so it can't disconnect the callback. (That
really needs to get fixed. Although it's not clear this necessarily wants to be
lifted up to SSL_CTX as far as Chromium's SSLClientSocket is concerned since
NPN doesn't interact with the session cache.)

BUG=526713

Change-Id: I49c86828b963eb341c6ea6a442557b7dfa190ed3
Reviewed-on: https://boringssl-review.googlesource.com/6351
Reviewed-by: Adam Langley <alangley@gmail.com>
2015-10-26 19:56:52 +00:00
..
aead.h Restore the NULL-SHA ciphersuite. (Alas.) 2015-09-11 22:18:08 +00:00
aes.h
arm_arch.h Allow ARM capabilities to be set at compile time. 2015-10-20 22:40:15 +00:00
asn1_mac.h Ditch remaining filename comments from public headers and ssl/ 2015-10-20 18:40:05 +00:00
asn1.h Ditch remaining filename comments from public headers and ssl/ 2015-10-20 18:40:05 +00:00
asn1t.h Ditch remaining filename comments from public headers and ssl/ 2015-10-20 18:40:05 +00:00
base64.h Deprecate basically the entire base64 implementation. 2015-09-28 21:53:39 +00:00
base.h Deprecate basically the entire base64 implementation. 2015-09-28 21:53:39 +00:00
bio.h Align BIO_get_fd with upstream. 2015-10-12 22:18:17 +00:00
blowfish.h
bn.h Remove BN_MONT_CTX_init. 2015-10-26 19:47:26 +00:00
buf.h
buffer.h
bytestring.h Convert ssl3_send_client_hello to CBB. 2015-10-20 17:56:19 +00:00
cast.h
chacha.h
cipher.h Re-add |EVP_des_ede|, which is ECB. 2015-08-20 21:33:21 +00:00
cmac.h Style: fix some header guards 2015-10-26 18:47:51 +00:00
conf.h
cpu.h Allow ARM capabilities to be set at compile time. 2015-10-20 22:40:15 +00:00
crypto.h
des.h
dh.h
digest.h Documentation typo. 2015-09-28 22:18:40 +00:00
dsa.h
dtls1.h
ec_key.h
ec.h Remove the ifdef around ec.h's ec_key.h compatibility include 2015-10-13 18:14:52 +00:00
ecdh.h
ecdsa.h Fix several minor points noticed by Kenny. 2015-09-24 22:08:50 +00:00
engine.h
err.h Fix minor documentation mistake. 2015-09-15 23:19:57 +00:00
evp.h
ex_data.h
hkdf.h
hmac.h
lhash_macros.h
lhash.h Style: fix some header guards 2015-10-26 18:47:51 +00:00
md4.h
md5.h
mem.h
modes.h
obj_mac.h
obj.h Style: fix some header guards 2015-10-26 18:47:51 +00:00
objects.h
opensslfeatures.h
opensslv.h
ossl_typ.h
pem.h
pkcs7.h
pkcs8.h Add |PKCS12_verify_mac|. 2015-09-29 20:30:35 +00:00
pkcs12.h
poly1305.h Fix several minor points noticed by Kenny. 2015-09-24 22:08:50 +00:00
pqueue.h
rand.h Buffer reads of urandom, if you promise no forking. 2015-09-09 01:02:54 +00:00
rc4.h
rsa.h size_t RSA functions. 2015-10-19 23:54:47 +00:00
safestack.h
sha.h
srtp.h Fold srtp.h into ssl.h. 2015-09-14 23:59:37 +00:00
ssl3.h Fix ssl3.h / ssl.h circular dependency. 2015-10-26 17:50:32 +00:00
ssl.h Add an option to disable NPN on a per-SSL basis. 2015-10-26 19:56:52 +00:00
stack_macros.h
stack.h
thread.h
time_support.h Style: fix some header guards 2015-10-26 18:47:51 +00:00
tls1.h Move remaining functions out of tls1.h. 2015-10-26 17:38:40 +00:00
type_check.h
x509_vfy.h Ditch remaining filename comments from public headers and ssl/ 2015-10-20 18:40:05 +00:00
x509.h Ditch remaining filename comments from public headers and ssl/ 2015-10-20 18:40:05 +00:00
x509v3.h