Implement draft-ietf-tls-chacha20-poly1305-04. Only ECDHE-based ciphers are implemented. To ease the transition, the pre-standard cipher shares a name with the standard one. The cipher rule parser is hacked up to match the name to both ciphers. From the perspective of the cipher suite configuration language, there is only one cipher. This does mean it is impossible to disable the old variant without a code change, but this situation will be very short-lived, so this is fine. Also take this opportunity to make the CK and TXT names align with convention. Change-Id: Ie819819c55bce8ff58e533f1dbc8bef5af955c21 Reviewed-on: https://boringssl-review.googlesource.com/6686 Reviewed-by: Adam Langley <agl@google.com>

commit: 13414b3a048f17074253d23d03c0ab97c49b54e2 [log] [tgz]
author: David Benjamin <davidben@chromium.org> Wed Dec 09 23:02:39 2015 -0500
committer: Adam Langley <agl@google.com> Wed Dec 16 23:34:56 2015 +0000
tree: bb1db872f6b5443a6a310a85571c770a428dbb72
parent: 37489902ba168f80af32a3423c31d1c05edd54d5 [diff] [blame]
diff --git a/include/openssl/ssl.h b/include/openssl/ssl.h
index 58a32bb..bce981c 100644
--- a/include/openssl/ssl.h
+++ b/include/openssl/ssl.h

@@ -1044,7 +1044,9 @@
 OPENSSL_EXPORT int SSL_CIPHER_is_AES256CBC(const SSL_CIPHER *cipher);
 
 /* SSL_CIPHER_is_CHACHA20POLY1305 returns one if |cipher| uses
- * CHACHA20_POLY1305. */
+ * CHACHA20_POLY1305. Note this includes both the
+ * draft-ietf-tls-chacha20-poly1305-04 and draft-agl-tls-chacha20poly1305-04
+ * versions. */
 OPENSSL_EXPORT int SSL_CIPHER_is_CHACHA20POLY1305(const SSL_CIPHER *cipher);
 
 /* SSL_CIPHER_is_NULL returns one if |cipher| does not encrypt. */
commit	13414b3a048f17074253d23d03c0ab97c49b54e2	[log] [tgz]
author	David Benjamin <davidben@chromium.org>	Wed Dec 09 23:02:39 2015 -0500
committer	Adam Langley <agl@google.com>	Wed Dec 16 23:34:56 2015 +0000
tree	bb1db872f6b5443a6a310a85571c770a428dbb72
parent	37489902ba168f80af32a3423c31d1c05edd54d5 [diff] [blame]