Enforce the server ALPN protocol was advertised. The server should not be allowed select a protocol that wasn't advertised. Callers tend to not really notice and act as if some default were chosen which is unlikely to work very well. Change-Id: Ib6388db72f05386f854d275bab762ca79e8174e6 Reviewed-on: https://boringssl-review.googlesource.com/10284 Reviewed-by: Adam Langley <agl@google.com> Commit-Queue: Adam Langley <agl@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>

commit: 3e51757de2bf9beef7d249f22d255e4dd9ddb012 [log] [tgz]
author: David Benjamin <davidben@google.com> Thu Aug 11 11:52:23 2016 -0400
committer: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Thu Aug 11 16:46:34 2016 +0000
tree: dfbc2e0ecfc8988d5e7b7cb4a6838a7de0f7769c
parent: 37b486aade4bd69af05b523182126559ba6431c3 [diff] [blame]
diff --git a/include/openssl/ssl.h b/include/openssl/ssl.h
index 931b100..fe6bac2 100644
--- a/include/openssl/ssl.h
+++ b/include/openssl/ssl.h

@@ -4803,6 +4803,7 @@
 #define SSL_R_INVALID_COMPRESSION_LIST 256
 #define SSL_R_DUPLICATE_EXTENSION 257
 #define SSL_R_MISSING_KEY_SHARE 258
+#define SSL_R_INVALID_ALPN_PROTOCOL 259
 #define SSL_R_SSLV3_ALERT_CLOSE_NOTIFY 1000
 #define SSL_R_SSLV3_ALERT_UNEXPECTED_MESSAGE 1010
 #define SSL_R_SSLV3_ALERT_BAD_RECORD_MAC 1020
commit	3e51757de2bf9beef7d249f22d255e4dd9ddb012	[log] [tgz]
author	David Benjamin <davidben@google.com>	Thu Aug 11 11:52:23 2016 -0400
committer	CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>	Thu Aug 11 16:46:34 2016 +0000
tree	dfbc2e0ecfc8988d5e7b7cb4a6838a7de0f7769c
parent	37b486aade4bd69af05b523182126559ba6431c3 [diff] [blame]