Add cipher suite settings for TLS ≥ 1.0.

This change adds the ability to configure ciphers specifically for
TLS ≥ 1.0. This compliments the existing ability to specify ciphers
for TLS ≥ 1.1.

This is useful because TLS 1.0 is the first version not to suffer from
POODLE. (Assuming that it's implemented correctly[1].) Thus one might
wish to reserve RC4 solely for SSLv3.


Change-Id: I774d5336fead48f03d8a0a3cf80c369692ee60df
Reviewed-by: Adam Langley <>
7 files changed