195dc78c6e691fdbdc0d7a615deb84dbb0a19879 - boringssl

commit	195dc78c6e691fdbdc0d7a615deb84dbb0a19879	[log] [tgz]
author	David Benjamin <davidben@chromium.org>	Thu Feb 19 13:27:05 2015 -0500
committer	Adam Langley <agl@google.com>	Thu Feb 19 18:32:39 2015 +0000
tree	d762704e8098134bd0b554d2018d0b76b31d2fe6
parent	5f237bc843f4a4791667493d8748c903b8e540e4 [diff]

Allow False Start only for >= TLS 1.2 && AEAD && forward-secure && ALPN/NPN.

Tighten up the requirements for False Start. At this point, neither
AES-CBC or RC4 are something that we want to use unless we're sure that
the server wants to speak them.

Rebase of original CL at: https://boringssl-review.googlesource.com/#/c/1980/

BUG=427721

Change-Id: I9ef7a596edeb8df1ed070aac67c315b94f3cc77f
Reviewed-on: https://boringssl-review.googlesource.com/3501
Reviewed-by: Adam Langley <agl@google.com>

ssl/ssl_lib.c[diff]
ssl/test/runner/runner.go[diff]

2 files changed

tree: d762704e8098134bd0b554d2018d0b76b31d2fe6

crypto/
doc/
include/
ssl/
tool/
util/
.clang-format
.gitignore
BUILDING
CMakeLists.txt
codereview.settings
STYLE