2016-07-25 20:00:28 +00:00
|
|
|
// Copyright 2015 The Go Authors. All rights reserved.
|
|
|
|
// Use of this source code is governed by a BSD-style
|
|
|
|
// license that can be found in the LICENSE file.
|
|
|
|
|
|
|
|
// +build !go1.6
|
|
|
|
|
|
|
|
package http2
|
|
|
|
|
|
|
|
import (
|
2016-08-01 06:26:27 +00:00
|
|
|
"crypto/tls"
|
2016-07-25 20:00:28 +00:00
|
|
|
"net/http"
|
|
|
|
"time"
|
|
|
|
)
|
|
|
|
|
|
|
|
func configureTransport(t1 *http.Transport) (*Transport, error) {
|
|
|
|
return nil, errTransportVersion
|
|
|
|
}
|
|
|
|
|
|
|
|
func transportExpectContinueTimeout(t1 *http.Transport) time.Duration {
|
|
|
|
return 0
|
2016-08-01 06:26:27 +00:00
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
// isBadCipher reports whether the cipher is blacklisted by the HTTP/2 spec.
|
|
|
|
func isBadCipher(cipher uint16) bool {
|
|
|
|
switch cipher {
|
|
|
|
case tls.TLS_RSA_WITH_RC4_128_SHA,
|
|
|
|
tls.TLS_RSA_WITH_3DES_EDE_CBC_SHA,
|
|
|
|
tls.TLS_RSA_WITH_AES_128_CBC_SHA,
|
|
|
|
tls.TLS_RSA_WITH_AES_256_CBC_SHA,
|
|
|
|
tls.TLS_ECDHE_ECDSA_WITH_RC4_128_SHA,
|
|
|
|
tls.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,
|
|
|
|
tls.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,
|
|
|
|
tls.TLS_ECDHE_RSA_WITH_RC4_128_SHA,
|
|
|
|
tls.TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA,
|
|
|
|
tls.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,
|
|
|
|
tls.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA:
|
|
|
|
// Reject cipher suites from Appendix A.
|
|
|
|
// "This list includes those cipher suites that do not
|
|
|
|
// offer an ephemeral key exchange and those that are
|
|
|
|
// based on the TLS null, stream or block cipher type"
|
|
|
|
return true
|
|
|
|
default:
|
|
|
|
return false
|
|
|
|
}
|
2016-07-25 20:00:28 +00:00
|
|
|
}
|