mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-01-18 13:44:20 +08:00
Code Issues Packages Projects Releases Wiki Activity
2016265dfb
openssl/ssl
History
Nick Mathewson 2016265dfb Do not include a timestamp in the Client/ServerHello Random field. 
Instead, send random bytes, unless SSL_SEND_{CLIENT,SERVER}RANDOM_MODE
is set.

This is a forward-port of commits:
  4af793036f
  f4c93b46ed
  3da721dac9
  2583270191

While the gmt_unix_time record was added in an ostensible attempt to
mitigate the dangers of a bad RNG, its presence leaks the host's view
of the current time in the clear.  This minor leak can help
fingerprint TLS instances across networks and protocols... and what's
worse, it's doubtful thet the gmt_unix_time record does any good at
all for its intended purpose, since:

    * It's quite possible to open two TLS connections in one second.

    * If the PRNG output is prone to repeat itself, ephemeral
      handshakes (and who knows what else besides) are broken.
2013-10-21 03:37:20 +01:00
..
.cvsignore
bio_ssl.c
d1_both.c Enable TLS 1.2 ciphers in DTLS 1.2. 2013-03-28 14:14:27 +00:00
d1_clnt.c Dual DTLS version methods. 2013-04-09 14:02:48 +01:00
d1_enc.c misspellings fixes by https://github.com/vlajos/misspell_fixer 2013-09-05 21:39:42 +01:00
d1_lib.c Dual DTLS version methods. 2013-04-09 14:02:48 +01:00
d1_meth.c Dual DTLS version methods. 2013-04-09 14:02:48 +01:00
d1_pkt.c DTLS version usage fixes. 2013-09-17 18:55:41 +01:00
d1_srtp.c
d1_srvr.c DTLS message_sequence number wrong in rehandshake ServerHello 2013-08-13 18:53:19 +01:00
dtls1.h Dual DTLS version methods. 2013-04-09 14:02:48 +01:00
install-ssl.com
kssl_lcl.h
kssl.c
kssl.h
Makefile make depend. 2013-02-21 18:17:38 +00:00
s2_clnt.c Experimental encrypt-then-mac support. 2013-09-08 13:14:03 +01:00
s2_enc.c Experimental encrypt-then-mac support. 2013-09-08 13:14:03 +01:00
s2_lib.c
s2_meth.c
s2_pkt.c Add and use a constant-time memcmp. 2013-02-06 14:16:55 +00:00
s2_srvr.c Experimental encrypt-then-mac support. 2013-09-08 13:14:03 +01:00
s3_both.c DTLS revision. 2013-03-18 14:36:43 +00:00
s3_cbc.c misspellings fixes by https://github.com/vlajos/misspell_fixer 2013-09-05 21:39:42 +01:00
s3_clnt.c Do not include a timestamp in the Client/ServerHello Random field. 2013-10-21 03:37:20 +01:00
s3_enc.c Experimental encrypt-then-mac support. 2013-09-08 13:14:03 +01:00
s3_lib.c Tidy up comments. 2013-09-13 16:24:22 +01:00
s3_meth.c
s3_pkt.c ssl/s3_pkt.c: add initial multi-block encrypt. 2013-10-08 23:40:09 +02:00
s3_srvr.c Do not include a timestamp in the Client/ServerHello Random field. 2013-10-21 03:37:20 +01:00
s23_clnt.c Do not include a timestamp in the Client/ServerHello Random field. 2013-10-21 03:37:20 +01:00
s23_lib.c
s23_meth.c
s23_pkt.c
s23_srvr.c
srtp.h
ssl2.h
ssl3.h Tidy up comments. 2013-09-13 16:24:22 +01:00
ssl23.h
ssl_algs.c Add AES-SHA256 stitch. 2013-05-13 22:49:58 +02:00
ssl_asn1.c
ssl_cert.c Add callbacks supporting generation and retrieval of supplemental data entries, facilitating RFC 5878 (TLS auth extensions) 2013-09-06 13:59:13 +01:00
ssl_ciph.c Experimental encrypt-then-mac support. 2013-09-08 13:14:03 +01:00
ssl_conf.c Extend SSL_CONF 2013-10-20 22:07:36 +01:00
ssl_err2.c
ssl_err.c Show useful errors. 2013-09-25 12:45:48 +01:00
ssl_lib.c More cleanup. 2013-09-06 13:59:14 +01:00
ssl_locl.h Do not include a timestamp in the Client/ServerHello Random field. 2013-10-21 03:37:20 +01:00
ssl_rsa.c Show useful errors. 2013-09-25 12:45:48 +01:00
ssl_sess.c Add callbacks supporting generation and retrieval of supplemental data entries, facilitating RFC 5878 (TLS auth extensions) 2013-09-06 13:59:13 +01:00
ssl_stat.c Add callbacks supporting generation and retrieval of supplemental data entries, facilitating RFC 5878 (TLS auth extensions) 2013-09-06 13:59:13 +01:00
ssl_task.c
ssl_txt.c Experimental encrypt-then-mac support. 2013-09-08 13:14:03 +01:00
ssl-lib.com
ssl.h Do not include a timestamp in the Client/ServerHello Random field. 2013-10-21 03:37:20 +01:00
ssltest.c More cleanup. 2013-09-06 13:59:14 +01:00
t1_clnt.c Use appropriate versions of SSL3_ENC_METHOD 2013-03-18 14:53:59 +00:00
t1_enc.c Experimental encrypt-then-mac support. 2013-09-08 13:14:03 +01:00
t1_lib.c Prevent use of RSA+MD5 in TLS 1.2 by default. 2013-10-20 22:07:35 +01:00
t1_meth.c Use appropriate versions of SSL3_ENC_METHOD 2013-03-18 14:53:59 +00:00
t1_reneg.c
t1_srvr.c Use appropriate versions of SSL3_ENC_METHOD 2013-03-18 14:53:59 +00:00
t1_trce.c Provisional DTLS 1.2 support. 2013-03-26 15:16:41 +00:00
tls1.h Add callbacks supporting generation and retrieval of supplemental data entries, facilitating RFC 5878 (TLS auth extensions) 2013-09-06 13:59:13 +01:00
tls_srp.c