mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-01-24 13:55:42 +08:00
Code Issues Packages Projects Releases Wiki Activity
28ea0a0c6a
openssl/ssl
History
Dr. Stephen Henson 28ea0a0c6a Add custom extension sanity checks. 
Reject attempts to use extensions handled internally.

Add flags to each extension structure to indicate if an extension
has been sent or received. Enforce RFC5246 compliance by rejecting
duplicate extensions and unsolicited extensions and only send a
server extension if we have sent the corresponding client extension.
Reviewed-by: Emilia Käsper <emilia@openssl.org>
2014-08-28 17:06:52 +01:00
..
.cvsignore Add emacs cache files to .cvsignore. 2005-04-11 14:17:07 +00:00
bio_ssl.c OPENSSL_NO_SOCK fixes. 2012-04-16 17:42:36 +00:00
d1_both.c RT1815: More const'ness improvements 2014-08-18 11:49:16 -04:00
d1_clnt.c DTLS/SCTP Finished Auth Bug 2013-11-01 21:41:52 +00:00
d1_enc.c misspellings fixes by https://github.com/vlajos/misspell_fixer 2013-09-05 21:39:42 +01:00
d1_lib.c Constification - mostly originally from Chromium. 2014-06-29 21:05:23 +01:00
d1_meth.c Dual DTLS version methods. 2013-04-09 14:02:48 +01:00
d1_pkt.c RT3023: Redundant logical expressions 2014-08-15 10:45:00 -04:00
d1_srtp.c Submitted by: Eric Rescorla <ekr@rtfm.com> 2012-02-11 22:53:31 +00:00
d1_srvr.c Fix DTLS certificate requesting code. 2014-07-15 18:23:13 +01:00
dtls1.h Dual DTLS version methods. 2013-04-09 14:02:48 +01:00
heartbeat_test.c Add conditional unit testing interface. 2014-07-24 19:41:29 +01:00
install-ssl.com Install srtp.h 2012-07-05 13:20:19 +00:00
kssl_lcl.h Merge from 1.0.0-stable branch. 2009-04-23 16:32:42 +00:00
kssl.c RT2848: Remove extra NULL check 2014-08-19 12:43:58 -04:00
kssl.h Fix for WIN32 builds with KRB5 2014-02-26 15:33:11 +00:00
Makefile Custom extension revision. 2014-08-28 17:06:52 +01:00
s2_clnt.c Security framework. 2014-03-28 14:56:30 +00:00
s2_enc.c Experimental encrypt-then-mac support. 2013-09-08 13:14:03 +01:00
s2_lib.c Update strength_bits for 3DES. 2014-06-09 12:09:52 +01:00
s2_meth.c Type-checked (and modern C compliant) OBJ_bsearch. 2008-10-12 14:32:47 +00:00
s2_pkt.c Add and use a constant-time memcmp. 2013-02-06 14:16:55 +00:00
s2_srvr.c Security framework. 2014-03-28 14:56:30 +00:00
s3_both.c Security framework. 2014-03-28 14:56:30 +00:00
s3_cbc.c Constant-time utilities 2014-08-28 15:48:45 +02:00
s3_clnt.c Fixed out-of-bounds read errors in ssl3_get_key_exchange. 2014-08-15 23:27:34 +01:00
s3_enc.c RT1815: More const'ness improvements 2014-08-18 11:49:16 -04:00
s3_lib.c Add support for Camellia HMAC-Based cipher suites from RFC6367 2014-08-15 23:41:20 +01:00
s3_meth.c Type-checked (and modern C compliant) OBJ_bsearch. 2008-10-12 14:32:47 +00:00
s3_pkt.c RT 3060: amend patch 2014-08-22 15:35:42 +02:00
s3_srvr.c Fix SRP authentication ciphersuites. 2014-08-09 13:21:30 +01:00
s23_clnt.c Custom extension revision. 2014-08-28 17:06:52 +01:00
s23_lib.c Don't advertise ECC ciphersuits in SSLv2 compatible client hello. 2014-06-27 16:51:26 +01:00
s23_meth.c Initial incomplete TLS v1.2 support. New ciphersuites added, new version 2011-04-29 22:56:51 +00:00
s23_pkt.c Reorder inclusion of header files: 2002-07-10 07:01:54 +00:00
s23_srvr.c Fix protocol downgrade bug in case of fragmented packets 2014-08-06 20:36:40 +01:00
srtp.h RT2724: Remove extra declaration 2014-08-19 09:38:43 -04:00
ssl2.h Initial "opaque SSL" framework. If an application defines 2011-04-29 22:37:12 +00:00
ssl3.h Remove all RFC5878 code. 2014-07-04 13:26:35 +01:00
ssl23.h Import of old SSLeay release: SSLeay 0.9.0b 1998-12-21 10:56:39 +00:00
ssl_algs.c Add AES-SHA256 stitch. 2013-05-13 22:49:58 +02:00
ssl_asn1.c fix coverity issue 966597 - error line is not always initialised 2014-05-07 23:54:25 +01:00
ssl_cert.c Custom extension revision. 2014-08-28 17:06:52 +01:00
ssl_ciph.c RT1815: More const'ness improvements 2014-08-18 11:49:16 -04:00
ssl_conf.c Add -no_resumption_on_reneg to SSL_CONF. 2014-03-27 16:12:40 +00:00
ssl_err2.c Use new-style system-id macros everywhere possible. I hope I haven't 2001-02-20 08:13:47 +00:00
ssl_err.c RT 3060: amend patch 2014-08-22 15:35:42 +02:00
ssl_lib.c Custom extension revision. 2014-08-28 17:06:52 +01:00
ssl_locl.h Add custom extension sanity checks. 2014-08-28 17:06:52 +01:00
ssl_rsa.c RT 1988: Add "const" to SSL_use_RSAPrivateKey_ASN1 2014-08-09 07:56:28 -04:00
ssl_sess.c Add callbacks supporting generation and retrieval of supplemental data entries, facilitating RFC 5878 (TLS auth extensions) 2013-09-06 13:59:13 +01:00
ssl_stat.c Remove all RFC5878 code. 2014-07-04 13:26:35 +01:00
ssl_task.c Security fixes brought forward from 0.9.7. 2002-11-13 15:43:43 +00:00
ssl_txt.c Add an NSS output format to sess_id to export to export the session id and the master key in NSS keylog format. PR#3352 2014-05-24 00:02:24 +01:00
ssl_utst.c Add conditional unit testing interface. 2014-07-24 19:41:29 +01:00
ssl-lib.com Add d1_srtp and t1_trce. 2012-07-05 13:20:02 +00:00
ssl.h Add custom extension sanity checks. 2014-08-28 17:06:52 +01:00
ssltest.c Include error messages on extension check failure. 2014-08-15 12:16:16 +01:00
t1_clnt.c Use appropriate versions of SSL3_ENC_METHOD 2013-03-18 14:53:59 +00:00
t1_enc.c RT 1528; misleading debug print, "pre-master" should be "master key" 2014-07-01 13:22:38 -04:00
t1_ext.c Add custom extension sanity checks. 2014-08-28 17:06:52 +01:00
t1_lib.c Add custom extension sanity checks. 2014-08-28 17:06:52 +01:00
t1_meth.c Use appropriate versions of SSL3_ENC_METHOD 2013-03-18 14:53:59 +00:00
t1_reneg.c Update RI to match latest spec. 2009-12-27 22:58:55 +00:00
t1_srvr.c Use appropriate versions of SSL3_ENC_METHOD 2013-03-18 14:53:59 +00:00
t1_trce.c Adding padding extension to trace code. 2014-05-20 11:09:04 +01:00
tls1.h Add support for Camellia HMAC-Based cipher suites from RFC6367 2014-08-15 23:41:20 +01:00
tls_srp.c Check SRP parameters early. 2014-08-06 20:36:41 +01:00