commit | feeb485667d1fdabe727840fe00adc22431bc86e | [log] [tgz] |
---|---|---|
author | Dmitry Savintsev <dsavints@gmail.com> | Tue May 02 19:39:58 2017 +0200 |
committer | Brad Fitzpatrick <bradfitz@golang.org> | Wed May 03 12:02:55 2017 +0000 |
tree | b118de31544d1378be4a7bf277e03c13dd794b2e | |
parent | 0819898fb4973868bba6de59b6aaad75beea9a6a [diff] |
http2: add all bad ciphers, use package constants Make all the ciphers from https://www.iana.org/assignments/tls-parameters/tls-parameters.txt available as package constants (no longer relying on crypto/tls). Number of bad ciphers such as TLS_RSA_WITH_AES_128_CBC_SHA256 from https://tools.ietf.org/html/rfc7540#appendix-A are added to the HTTP/2 blacklist (also listed in https://http2.github.io/http2-spec/#BadCipherSuites). The zero CipherSuite TLS_NULL_WITH_NULL_NULL (0x00) is now explicitly marked as a bad one which required change of some test mocks. Fixes golang/go#20213 Change-Id: I6b02061603cce4cf469998606400ed6729199238 Reviewed-on: https://go-review.googlesource.com/42510 Run-TryBot: Brad Fitzpatrick <bradfitz@golang.org> TryBot-Result: Gobot Gobot <gobot@golang.org> Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>