mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2024-11-21 01:15:20 +08:00
Code Issues Packages Projects Releases Wiki Activity
3d63315366
openssl/ssl
History
Matt Caswell cbb862fbaa New extensions can be sent in a certificate request 
Normally we expect a client to send new  extensions in the ClientHello,
which may be echoed back by the server in subsequent messages. However the
server can also send a new extension in the certificate request message to
be echoed back in a certificate message

Fixes #16632

Reviewed-by: Paul Dale <pauli@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/16634)
2021-10-11 11:04:53 +01:00
..
record Replace the AES-128-CBC-HMAC-SHA1 cipher in e_ossltest.c 2021-10-06 15:18:10 +02:00
statem New extensions can be sent in a certificate request 2021-10-11 11:04:53 +01:00
bio_ssl.c Fix ssl_free() and thus BIO_free() to respect BIO_NOCLOSE 2021-10-04 10:55:39 +02:00
build.info Do not duplicate symbols between libcrypto and libssl in static builds 2021-06-14 09:21:05 +10:00
d1_lib.c Fix dtls timeout dead code 2021-07-29 10:08:07 -07:00
d1_msg.c Update copyright year 2020-11-26 14:18:57 +00:00
d1_srtp.c Convert all {NAME}err() in ssl/ to their corresponding ERR_raise() call 2020-11-11 12:12:11 +01:00
ktls.c KTLS: AES-CCM in TLS-1.3 is broken on 5.x kernels, disable it 2021-07-27 13:19:20 +10:00
methods.c Update some inclusions of <openssl/macros.h> 2019-11-07 11:37:25 +01:00
pqueue.c Update copyright year 2020-11-26 14:18:57 +00:00
s3_cbc.c fips module header inclusion fine-tunning 2021-07-06 10:52:27 +10:00
s3_enc.c tls: remove TODOs 2021-06-02 16:30:15 +10:00
s3_lib.c tls/ccm8: reduce the cipher strength for CCM8 ciphers to 64 bits 2021-09-24 17:38:39 +10:00
s3_msg.c Update copyright year 2021-05-20 14:22:33 +01:00
ssl_asn1.c Make the -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION pass tests 2021-08-31 12:20:12 +02:00
ssl_cert_table.h Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
ssl_cert.c Change TLS RC4 cipher strength check to be data driven. 2021-09-23 14:17:33 +02:00
ssl_ciph.c Allow cipher strings to be given using its standard name 2021-09-30 12:20:01 +02:00
ssl_conf.c Disabling Encrypt-then-MAC extension in s_client/s_server 2021-06-15 22:14:34 +02:00
ssl_err_legacy.c Update copyright year 2021-06-17 13:24:59 +01:00
ssl_err.c err: rename err_load_xxx_strings_int functions 2021-05-26 13:01:47 +10:00
ssl_init.c Update copyright year 2021-06-17 13:24:59 +01:00
ssl_lib.c Fix some minor record layer issues 2021-07-17 08:50:55 -07:00
ssl_local.h Fix dtls timeout dead code 2021-07-29 10:08:07 -07:00
ssl_mcnf.c SSL: refactor all SSLfatal() calls 2020-11-11 12:12:23 +01:00
ssl_rsa_legacy.c Deprecate RSA harder 2020-11-18 23:38:34 +01:00
ssl_rsa.c ssl: coverity 1465527 - dereference after null check 2021-03-20 10:18:32 +10:00
ssl_sess.c Add missing session timeout calc 2021-07-28 10:37:21 +10:00
ssl_stat.c Update copyright year 2021-09-07 13:35:43 +02:00
ssl_txt.c Update copyright year 2021-06-17 13:24:59 +01:00
ssl_utst.c Reorganize local header files 2019-09-28 20:26:35 +02:00
sslerr.h err: rename err_load_xxx_strings_int functions 2021-05-26 13:01:47 +10:00
t1_enc.c tls: remove TODOs 2021-06-02 16:30:15 +10:00
t1_lib.c Omitted signature_algorithms extension alerts updated 2021-08-11 09:47:47 +02:00
t1_trce.c Update copyright year 2021-02-18 15:05:17 +00:00
tls13_enc.c Fix indentation of tls13_hkdf_expand parameters 2021-09-03 08:55:29 +10:00
tls_depr.c Replace the AES-128-CBC-HMAC-SHA1 cipher in e_ossltest.c 2021-10-06 15:18:10 +02:00
tls_srp.c ssl: add zero strenght arguments to BN and RAND RNG calls 2021-05-29 17:17:12 +10:00