Google Git
Sign in
boringssl / boringssl / 4631ccc1bf95d296340e6d1e20a55890e55466a5^! / .
commit4631ccc1bf95d296340e6d1e20a55890e55466a5[log] [tgz]
authorDavid Benjamin <davidben@google.com>Fri May 26 20:54:17 2023 -0400
committerBoringssl LUCI CQ <boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com>Wed May 31 08:43:45 2023 +0000
treeb48a6d5dd71a5267d71324f5e91827b91247b788
parentb0a026f8541c551854efd617021bb276f1fe5c23 [diff]
Remove SSL_CIPHER_get_value

Update-Note: SSL_CIPHER_get_value was our original name for the
function. OpenSSL later called it SSL_CIPHER_get_protocol_id. I believe
all external callers have since been updated to use the new function.
(If I missed a few stragglers, replace with SSL_CIPHER_get_protocol_id
to fix.)

Change-Id: I956fb49bf2d13a898eed73177493d2c8d50778ad
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/60205
Reviewed-by: Bob Beck <bbe@google.com>
Auto-Submit: David Benjamin <davidben@google.com>
Commit-Queue: Bob Beck <bbe@google.com>

diff --git a/include/openssl/ssl.h b/include/openssl/ssl.h
index 53aa9b4..f63acf6 100644
--- a/include/openssl/ssl.h
+++ b/include/openssl/ssl.h

@@ -5244,13 +5244,6 @@
   SSL_R_TLSV1_ALERT_BAD_CERTIFICATE_HASH_VALUE
 #define SSL_R_TLSV1_CERTIFICATE_REQUIRED SSL_R_TLSV1_ALERT_CERTIFICATE_REQUIRED
 
-// SSL_CIPHER_get_value calls |SSL_CIPHER_get_protocol_id|.
-//
-// TODO(davidben): |SSL_CIPHER_get_value| was our name for this function, but
-// upstream added it as |SSL_CIPHER_get_protocol_id|. Switch callers to the new
-// name and remove this one.
-OPENSSL_EXPORT uint16_t SSL_CIPHER_get_value(const SSL_CIPHER *cipher);
-
 
 // Compliance policy configurations
 //

diff --git a/ssl/ssl_cipher.cc b/ssl/ssl_cipher.cc
index 23af474..f705ee0 100644
--- a/ssl/ssl_cipher.cc
+++ b/ssl/ssl_cipher.cc

@@ -1370,10 +1370,6 @@
   return static_cast<uint16_t>(cipher->id);
 }
 
-uint16_t SSL_CIPHER_get_value(const SSL_CIPHER *cipher) {
-  return SSL_CIPHER_get_protocol_id(cipher);
-}
-
 int SSL_CIPHER_is_aead(const SSL_CIPHER *cipher) {
   return (cipher->algorithm_mac & SSL_AEAD) != 0;
 }

diff --git a/ssl/tls13_client.cc b/ssl/tls13_client.cc
index 1971596..7f84241 100644
--- a/ssl/tls13_client.cc
+++ b/ssl/tls13_client.cc

@@ -198,9 +198,8 @@
   if (cipher == nullptr ||
       SSL_CIPHER_get_min_version(cipher) > ssl_protocol_version(ssl) ||
       SSL_CIPHER_get_max_version(cipher) < ssl_protocol_version(ssl) ||
-      !ssl_tls13_cipher_meets_policy(
-          SSL_CIPHER_get_value(cipher),
-          ssl->config->tls13_cipher_policy)) {
+      !ssl_tls13_cipher_meets_policy(SSL_CIPHER_get_protocol_id(cipher),
+                                     ssl->config->tls13_cipher_policy)) {
     OPENSSL_PUT_ERROR(SSL, SSL_R_WRONG_CIPHER_RETURNED);
     ssl_send_alert(ssl, SSL3_AL_FATAL, SSL_AD_ILLEGAL_PARAMETER);
     return ssl_hs_error;