mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-02-11 14:22:43 +08:00
Code Issues Packages Projects Releases Wiki Activity
0de6d66d36
openssl/ssl
History
Matt Caswell 0de6d66d36 Move ciphersuite selection before session resumption in TLSv1.3 
This does things as per the recommendation in the TLSv1.3 spec. It also
means that the server will always choose its preferred ciphersuite.
Previously the server would only select ciphersuites compatible with the
session.

Reviewed-by: Ben Kaduk <kaduk@mit.edu>
(Merged from https://github.com/openssl/openssl/pull/3623)
2017-06-16 10:57:59 +01:00
..
record drop some no-longer-relevant TODO(TLS1.3) entries 2017-06-12 09:19:05 +01:00
statem Move ciphersuite selection before session resumption in TLSv1.3 2017-06-16 10:57:59 +01:00
bio_ssl.c Get pointer type right in BIO_ssl_shutdown() 2017-03-07 09:56:49 -05:00
build.info Move ssl/t1_ext.c to ssl/statem/extensions_cust.c 2017-04-07 13:41:04 +01:00
d1_lib.c Convert existing usage of assert() to ossl_assert() in libssl 2017-05-22 14:00:43 +01:00
d1_msg.c Remove special case code for SCTP reneg handling 2017-04-25 11:13:39 +01:00
d1_srtp.c
methods.c
packet_locl.h TLS1.3 Padding 2017-05-02 09:44:43 +01:00
packet.c Convert existing usage of assert() to ossl_assert() in libssl 2017-05-22 14:00:43 +01:00
pqueue.c
s3_cbc.c Convert existing usage of assert() to ossl_assert() in libssl 2017-05-22 14:00:43 +01:00
s3_enc.c Replace instances of OPENSSL_assert() with soft asserts in libssl 2017-05-22 14:00:19 +01:00
s3_lib.c Move ciphersuite selection before session resumption in TLSv1.3 2017-06-16 10:57:59 +01:00
s3_msg.c Always flush the BIO when we send any alert 2017-06-06 22:39:41 +01:00
ssl_asn1.c ASN.1: adapt our use of INTxx et al by making them explicitely embedded 2017-04-13 10:23:31 +02:00
ssl_cert.c Ignore dups in X509_STORE_add_* 2017-04-20 15:33:42 -04:00
ssl_ciph.c Replace instances of OPENSSL_assert() with soft asserts in libssl 2017-05-22 14:00:19 +01:00
ssl_conf.c Ignore -named_curve auto value to improve backwards compatibility 2017-06-08 21:28:36 +01:00
ssl_err.c Allow the server to change the ciphersuite on resume 2017-06-16 10:57:59 +01:00
ssl_init.c Convert existing usage of assert() to ossl_assert() in libssl 2017-05-22 14:00:43 +01:00
ssl_lib.c Add SSL_early_get1_extensions_present() 2017-06-12 09:31:47 +01:00
ssl_locl.h Add SSL_early_get1_extensions_present() 2017-06-12 09:31:47 +01:00
ssl_mcnf.c
ssl_rsa.c Try to be more consistent about the alerts we send 2017-05-19 08:47:08 +01:00
ssl_sess.c Fix ex_data and session_dup issues 2017-06-02 12:11:38 -04:00
ssl_stat.c
ssl_txt.c Move extension data into sub-structs 2017-01-09 22:26:47 -05:00
ssl_utst.c
t1_enc.c Remove support for OPENSSL_SSL_TRACE_CRYPTO 2017-05-08 11:42:37 +01:00
t1_lib.c Fix no-ec 2017-06-15 17:02:45 -04:00
t1_trce.c Add back support for SHA224 based sig algs 2017-06-08 17:37:02 +01:00
tls13_enc.c Fix a memleak in tls13_generate_secret. 2017-06-12 15:15:04 -04:00
tls_srp.c Use memset to clear SRP_CTX instead of NULL and zero assignments 2017-06-08 20:59:24 +01:00