kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
f3a8b12ac3
boringssl/ssl
History
David Benjamin f3a8b12ac3 Remove SSL_SESSION::cipher_id. 
As of our 82b7da271f, an SSL_SESSION created
externally always has a cipher set. Unknown ciphers are rejected early. Prior
to that, an SSL_SESSION would only have a valid cipher or valid cipher_id
depending on whether it came from an internal or external session cache.

See upstream's 6a8afe2201cd888e472e44225d3c9ca5fae1ca62 and
c566205319beeaa196e247400c7eb0c16388372b for more context.

Since we don't get ourselves into this strange situation and s->cipher is now
always valid for established SSL_SESSION objects (the existence of
unestablished SSL_SESSION objects during a handshake is awkward, but something
to deal with later), do away with s->cipher_id altogether. An application
should be able to handle failing to parse an SSL_SESSION instead of parsing it
successfuly but rejecting all resumptions.

Change-Id: I2f064a815e0db657b109c7c9269ac6c726d1ffed
Reviewed-on: https://boringssl-review.googlesource.com/2703
Reviewed-by: Adam Langley <agl@google.com>
2015-01-14 21:10:55 +00:00
..
pqueue Test insertion of duplicates in pqueue_test. 2014-11-06 01:46:57 +00:00
test Support EVP_AEAD in DTLS. 2015-01-14 21:03:40 +00:00
CMakeLists.txt Remove dead code from EVP_CIPHER codepaths. 2015-01-14 21:05:41 +00:00
d1_both.c Support EVP_AEAD in DTLS. 2015-01-14 21:03:40 +00:00
d1_clnt.c Reformatting of several DTLS source files. 2014-12-13 16:28:18 -08:00
d1_lib.c Remove dead code from EVP_CIPHER codepaths. 2015-01-14 21:05:41 +00:00
d1_meth.c Implement SSL_clear with ssl_new and ssl_free. 2015-01-12 22:35:58 +00:00
d1_pkt.c Remove dead code from EVP_CIPHER codepaths. 2015-01-14 21:05:41 +00:00
d1_srtp.c Reformat d1_{srtp|srvr}.c and s3_both.c 2014-12-15 18:42:07 -08:00
d1_srvr.c Support EVP_AEAD in DTLS. 2015-01-14 21:03:40 +00:00
s3_both.c Touch up ssl3_get_message. 2014-12-17 00:16:23 +00:00
s3_clnt.c Remove SSL_SESSION::cipher_id. 2015-01-14 21:10:55 +00:00
s3_enc.c Implement SSLv3 ciphers with stateful AEADs. 2015-01-14 20:55:58 +00:00
s3_lib.c Remove dead code from EVP_CIPHER codepaths. 2015-01-14 21:05:41 +00:00
s3_meth.c Implement SSL_clear with ssl_new and ssl_free. 2015-01-12 22:35:58 +00:00
s3_pkt.c Remove dead code from EVP_CIPHER codepaths. 2015-01-14 21:05:41 +00:00
s3_srvr.c Reformat the rest of ssl/. 2014-12-18 17:43:03 -08:00
ssl_algs.c Reformat the rest of ssl/. 2014-12-18 17:43:03 -08:00
ssl_asn1.c Remove SSL_SESSION::cipher_id. 2015-01-14 21:10:55 +00:00
ssl_cert.c Add (void) to some macros to satisfy compiler. 2015-01-12 23:46:03 +00:00
ssl_ciph.c Remove dead code from EVP_CIPHER codepaths. 2015-01-14 21:05:41 +00:00
ssl_error.c Add the PRF to SSL3_ENC_METHOD. 2015-01-14 20:43:26 +00:00
ssl_lib.c Remove dead code from EVP_CIPHER codepaths. 2015-01-14 21:05:41 +00:00
ssl_locl.h Remove dead code from EVP_CIPHER codepaths. 2015-01-14 21:05:41 +00:00
ssl_rsa.c Reformat the rest of ssl/. 2014-12-18 17:43:03 -08:00
ssl_sess.c Add (void) to some macros to satisfy compiler. 2015-01-12 23:46:03 +00:00
ssl_stat.c Reformat the rest of ssl/. 2014-12-18 17:43:03 -08:00
ssl_test.c Merge SSLv23_method and DTLS_ANY_VERSION. 2014-12-13 15:22:21 -08:00
ssl_txt.c Remove SSL_SESSION::cipher_id. 2015-01-14 21:10:55 +00:00
t1_enc.c Remove dead code from EVP_CIPHER codepaths. 2015-01-14 21:05:41 +00:00
t1_lib.c Remove dead code from EVP_CIPHER codepaths. 2015-01-14 21:05:41 +00:00
t1_reneg.c Reformat the rest of ssl/. 2014-12-18 17:43:03 -08:00