kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
65fb425811
boringssl/ssl
History
David Benjamin 65fb425811 Remove version-specific cipher lists. 
There are no longer any consumers of these APIs.

These were useful back when the CBC vs. RC4 tradeoff varied by version
and it was worth carefully tuning this cutoff. Nowadays RC4 is
completely gone and there's no use in configuring these anymore.

To avoid invalidating the existing ssl_ctx_api corpus and requiring it
regenerated, I've left the entries in there. It's probably reasonable
for new API fuzzers to reuse those slots.

Change-Id: I02bf950e3828062341e4e45c8871a44597ae93d5
Reviewed-on: https://boringssl-review.googlesource.com/12880
Commit-Queue: David Benjamin <davidben@google.com>
Reviewed-by: Adam Langley <agl@google.com>
2016-12-16 19:11:02 +00:00
..
test Remove version-specific cipher lists. 2016-12-16 19:11:02 +00:00
CMakeLists.txt
custom_extensions.c Pass explicit hs parameters into custom_extensions.c. 2016-12-06 19:49:36 +00:00
d1_both.c Replace hash_current_message with get_current_message. 2016-11-15 06:52:10 +00:00
d1_lib.c Move a few more functions into *_method.c. 2016-12-08 16:29:19 +00:00
d1_pkt.c Expose SSL_max_seal_overhead. 2016-11-09 16:51:46 +00:00
d1_srtp.c Fix ssl_ctx_make_profiles error handling. 2016-09-27 13:27:06 +00:00
dtls_method.c Move a few more functions into *_method.c. 2016-12-08 16:29:19 +00:00
dtls_record.c Take the version parameter out of ssl_do_msg_callback. 2016-09-21 18:55:27 +00:00
handshake_client.c Don't use X.509 functions to check ECDSA keyUsage. 2016-12-14 17:51:03 +00:00
handshake_server.c Preserve the peer signature algorithm across resumes. 2016-12-14 01:12:40 +00:00
internal.h Don't use X.509 functions to check ECDSA keyUsage. 2016-12-14 17:51:03 +00:00
s3_both.c Don't depend on the X509 code for getting public keys. 2016-12-13 21:27:31 +00:00
s3_enc.c Move key_block into SSL_HANDSHAKE. 2016-11-09 17:02:33 +00:00
s3_lib.c Remove version-specific cipher lists. 2016-12-16 19:11:02 +00:00
s3_pkt.c Expose SSL_max_seal_overhead. 2016-11-09 16:51:46 +00:00
ssl_aead_ctx.c Validate input iv/mac sizes in SSL_AEAD_CTX_new. 2016-10-28 21:25:35 +00:00
ssl_asn1.c Preserve the peer signature algorithm across resumes. 2016-12-14 01:12:40 +00:00
ssl_buffer.c
ssl_cert.c Don't use X.509 functions to check ECDSA keyUsage. 2016-12-14 17:51:03 +00:00
ssl_cipher.c Remove CECPQ1 (experimental post-quantum key agreement). 2016-12-09 19:16:56 +00:00
ssl_ecdh.c Remove New Hope key agreement. 2016-12-10 01:06:31 +00:00
ssl_file.c Check for sk_X509_NAME_push failures. 2016-09-27 13:18:37 +00:00
ssl_lib.c Remove version-specific cipher lists. 2016-12-16 19:11:02 +00:00
ssl_rsa.c Rename X.509 members in |SSL_SESSION| and |CERT|. 2016-11-09 20:07:57 +00:00
ssl_session.c Preserve the peer signature algorithm across resumes. 2016-12-14 01:12:40 +00:00
ssl_stat.c Move state and next_state to SSL_HANDSHAKE. 2016-12-12 22:09:01 +00:00
ssl_test.cc Push the difference in chain semantics to the edge. 2016-12-13 17:18:53 +00:00
t1_enc.c Pass explicit hs parameters into t1_enc.c. 2016-12-06 19:49:46 +00:00
t1_lib.c Remove the BORINGSSL_ANDROID_SYSTEM P-521 special-case. 2016-12-15 15:47:39 +00:00
tls13_both.c Make TLS 1.3 check ECDSA KeyUsage and add test. 2016-12-14 17:56:55 +00:00
tls13_client.c Don't use |X509_get_pubkey| in TLS 1.3 code either. 2016-12-14 17:49:10 +00:00
tls13_enc.c Pass explicit hs parameters to tls13_*.c. 2016-12-06 19:49:24 +00:00
tls13_server.c Don't use |X509_get_pubkey| in TLS 1.3 code either. 2016-12-14 17:49:10 +00:00
tls_method.c Move a few more functions into *_method.c. 2016-12-08 16:29:19 +00:00
tls_record.c Skipping early data on 0RTT rejection. 2016-12-01 20:16:08 +00:00