Verifying resumption cipher validity with current configuration. BUG=chromium:659593 Change-Id: I73a4751609b85df7cd40f0f60dc3f3046a490940 Reviewed-on: https://boringssl-review.googlesource.com/11861 Reviewed-by: David Benjamin <davidben@google.com> Commit-Queue: David Benjamin <davidben@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>

commit: b6b6ff3bef673afaa4d05400564f8f4f4d31ad9c [log] [tgz]
author: Steven Valdez <svaldez@google.com> Wed Oct 26 11:56:35 2016 -0400
committer: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Thu Oct 27 17:43:59 2016 +0000
tree: 0657c89d42e3b20efc34cb58bdf3b11c61305fce
parent: 3a322f5e4837a0c761d1a64f1bfea82a19f44e45 [diff] [blame]
diff --git a/ssl/internal.h b/ssl/internal.h
index 2772e1b..114c810 100644
--- a/ssl/internal.h
+++ b/ssl/internal.h

@@ -1695,6 +1695,11 @@
 int ssl3_write_app_data(SSL *ssl, const void *buf, int len);
 int ssl3_write_bytes(SSL *ssl, int type, const void *buf, int len);
 int ssl3_output_cert_chain(SSL *ssl);
+
+/* ssl_is_valid_cipher checks that |cipher| is valid according to the current
+ * server configuration in |ssl|. It returns 1 if valid, and 0 otherwise. */
+int ssl_is_valid_cipher(SSL *ssl, const SSL_CIPHER *cipher);
+
 const SSL_CIPHER *ssl3_choose_cipher(
     SSL *ssl, const struct ssl_early_callback_ctx *client_hello,
     const struct ssl_cipher_preference_list_st *srvr);
commit	b6b6ff3bef673afaa4d05400564f8f4f4d31ad9c	[log] [tgz]
author	Steven Valdez <svaldez@google.com>	Wed Oct 26 11:56:35 2016 -0400
committer	CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>	Thu Oct 27 17:43:59 2016 +0000
tree	0657c89d42e3b20efc34cb58bdf3b11c61305fce
parent	3a322f5e4837a0c761d1a64f1bfea82a19f44e45 [diff] [blame]