Gitiles
Code Review Sign In
gerrit.openfyde.cn / boringssl.googlesource.com / boringssl / 1fd39d84cf616fb126a33b771830477fd321f39e^! / . / include / openssl / ssl.h
commit1fd39d84cf616fb126a33b771830477fd321f39e[log] [tgz]
authorNick Harper <nharper@chromium.org>Tue Jun 14 18:14:35 2016 -0700
committerDavid Benjamin <davidben@google.com>Tue Jun 21 21:43:40 2016 +0000
tree9411648376420416ee871ea48dc293f65e46433f
parentc9a43688780a7808d54a20283a3ee96d80adeb25 [diff] [blame]
Add TLS 1.3 record layer to go implementation.

This implements the cipher suite constraints in "fake TLS 1.3". It also makes
bssl_shim and runner enable it by default so we can start adding MaxVersion:
VersionTLS12 markers to tests as 1.2 vs. 1.3 differences begin to take effect.

Change-Id: If1caf6e43938c8d15b0a0f39f40963b8199dcef5
Reviewed-on: https://boringssl-review.googlesource.com/8340
Reviewed-by: David Benjamin <davidben@google.com>

diff --git a/include/openssl/ssl.h b/include/openssl/ssl.h
index 5d21486..fd58e2d 100644
--- a/include/openssl/ssl.h
+++ b/include/openssl/ssl.h

@@ -1111,6 +1111,10 @@
  * for |cipher|. */
 OPENSSL_EXPORT uint16_t SSL_CIPHER_get_min_version(const SSL_CIPHER *cipher);
 
+/* SSL_CIPHER_get_max_version returns the maximum protocol version that
+ * supports |cipher|. */
+OPENSSL_EXPORT uint16_t SSL_CIPHER_get_max_version(const SSL_CIPHER *cipher);
+
 /* SSL_CIPHER_get_name returns the OpenSSL name of |cipher|. */
 OPENSSL_EXPORT const char *SSL_CIPHER_get_name(const SSL_CIPHER *cipher);