kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
d1e28ad53b
boringssl/ssl
History
David Benjamin d1e28ad53b Remove key_exchange_info for plain RSA. 
This isn't filled in on the client and Chromium no longer uses it for
plain RSA. It's redundant with existing APIs. This is part of removing
the need for callers to call SSL_get_session where possible.

SSL_get_session is ambiguous when it comes to renego. Some code wants
the current connection state which should not include the pending
handshake and some code wants the handshake scratch space which should.
Renego doesn't exist in TLS 1.3, but TLS 1.3 makes NewSessionTicket a
post-handshake message, so SSL_get_session is somewhat silly of an API
there too.

SSL_SESSION_get_key_exchange_info is a BoringSSL-only API, so we can
freely change it and replace it with APIs keyed on SSL. In doing so, I
think it is better to provide APIs like "SSL_get_dhe_group_size" and
"SSL_get_curve_id" rather than make the caller do the multi-step
SSL_get_current_cipher / SSL_CIPHER_is_ECDHE dance. To that end, RSA
key_exchange_info is pointless as it can already be determined from the
peer certificate.

Change-Id: Ie90523083d8649701c17934b7be0383502a0caa3
Reviewed-on: https://boringssl-review.googlesource.com/8564
Reviewed-by: Adam Langley <agl@google.com>
2016-06-30 22:27:48 +00:00
..
test Remove key_exchange_info for plain RSA. 2016-06-30 22:27:48 +00:00
CMakeLists.txt Remove pqueue. 2016-06-27 20:12:20 +00:00
custom_extensions.c Align the SSL stack on #include style. 2015-09-15 23:32:07 +00:00
d1_both.c Remove a/b parameters to send_change_cipher_spec. 2016-06-29 18:50:47 +00:00
d1_lib.c Stop using the word 'buffer' everywhere. 2016-06-27 22:15:22 +00:00
d1_meth.c Simplify version configuration. 2016-06-30 21:56:01 +00:00
d1_pkt.c Stop using the word 'buffer' everywhere. 2016-06-27 22:15:22 +00:00
d1_srtp.c Make kSRTPProfiles static. 2016-05-13 14:12:22 +00:00
dtls_record.c Fix the alias checks in dtls_record.c. 2016-06-09 21:11:22 +00:00
handshake_client.c Remove key_exchange_info for plain RSA. 2016-06-30 22:27:48 +00:00
handshake_server.c Simplify version configuration. 2016-06-30 21:56:01 +00:00
internal.h Simplify version configuration. 2016-06-30 21:56:01 +00:00
s3_both.c Cleaning up internal use of Signature Algorithms. 2016-06-29 21:22:25 +00:00
s3_enc.c Remove some easy obj.h dependencies. 2016-03-31 20:50:33 +00:00
s3_lib.c Disconnect handshake message creation from init_buf. 2016-06-27 22:15:01 +00:00
s3_meth.c Simplify version configuration. 2016-06-30 21:56:01 +00:00
s3_pkt.c Remove the 'ssl_' prefix on most SSL_PROTOCOL_METHOD hooks. 2016-06-27 18:43:33 +00:00
ssl_aead_ctx.c Fixing iv_length for TLS 1.3. 2016-06-16 17:04:14 +00:00
ssl_asn1.c Disconnect handshake message creation from init_buf. 2016-06-27 22:15:01 +00:00
ssl_buffer.c Remove in-place TLS record assembly for now. 2016-06-09 19:47:44 +00:00
ssl_cert.c Fix missing cert length prefix. 2016-06-28 19:58:19 +00:00
ssl_cipher.c Add TLS 1.3 record layer to go implementation. 2016-06-21 21:43:40 +00:00
ssl_ecdh.c Generalizing curves to groups in preparation for TLS 1.3. 2016-05-20 17:43:11 +00:00
ssl_file.c Banish SSL_add_dir_cert_subjects_to_stack and OPENSSL_DIR_CTX to decrepit. 2016-04-27 18:40:25 +00:00
ssl_lib.c Simplify version configuration. 2016-06-30 21:56:01 +00:00
ssl_rsa.c Cleaning up internal use of Signature Algorithms. 2016-06-29 21:22:25 +00:00
ssl_session.c Split unlock functions into read/write variants. 2016-05-31 21:09:29 +00:00
ssl_stat.c Remove a/b parameters to send_change_cipher_spec. 2016-06-29 18:50:47 +00:00
ssl_test.cc Simplify version configuration. 2016-06-30 21:56:01 +00:00
t1_enc.c Remove some easy obj.h dependencies. 2016-03-31 20:50:33 +00:00
t1_lib.c Simplify version configuration. 2016-06-30 21:56:01 +00:00
tls_record.c Build up TLS 1.3 record-layer tests. 2016-06-27 17:02:01 +00:00