mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-01-24 13:55:42 +08:00
Code Issues Packages Projects Releases Wiki Activity
78fb5374e1
openssl/ssl
History
Matt Caswell 66d7de1634 Add an anti-replay mechanism 
If the server is configured to allow early data then we check if the PSK
session presented by the client is available in the cache or not. If it
isn't then this may be a replay and we disallow it. If it is then we allow
it and remove the session from the cache. Note: the anti-replay protection
is not used for externally established PSKs.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/5644)
2018-03-19 12:21:41 +00:00
..
record Fix a memory leak in tls1_mac 2018-03-17 08:25:25 +01:00
statem Add an anti-replay mechanism 2018-03-19 12:21:41 +00:00
bio_ssl.c Add comments to NULL func ptrs in bio_method_st 2017-12-18 07:04:48 +10:00
build.info
d1_lib.c More record layer conversions to use SSLfatal() 2017-12-08 16:42:02 +00:00
d1_msg.c Remove parentheses of return. 2017-10-18 16:05:06 +01:00
d1_srtp.c
methods.c
packet_locl.h
packet.c
pqueue.c
s3_cbc.c
s3_enc.c Tell the ciphers which DRBG to use for generating random bytes. 2018-02-28 21:20:01 +01:00
s3_lib.c Split configuration of TLSv1.3 ciphers from older ciphers 2018-03-14 10:15:50 +00:00
s3_msg.c Update copyright year 2018-02-13 13:59:25 +00:00
ssl_asn1.c Session Ticket app data 2018-03-12 10:31:09 +00:00
ssl_cert_table.h Add X448/Ed448 support to libssl 2018-03-05 11:39:20 +00:00
ssl_cert.c Update copyright years on all files merged since Jan 1st 2018 2018-01-09 05:49:01 +01:00
ssl_ciph.c Split configuration of TLSv1.3 ciphers from older ciphers 2018-03-14 10:15:50 +00:00
ssl_conf.c Split configuration of TLSv1.3 ciphers from older ciphers 2018-03-14 10:15:50 +00:00
ssl_err.c Split configuration of TLSv1.3 ciphers from older ciphers 2018-03-14 10:15:50 +00:00
ssl_init.c In OPENSSL_init_ssl(), run the base ssl init before OPENSSL_init_crypto() 2017-12-08 16:08:39 +01:00
ssl_lib.c RAND_DRBG: add a function for setting the default DRBG type and flags 2018-03-16 18:31:30 +01:00
ssl_locl.h Split configuration of TLSv1.3 ciphers from older ciphers 2018-03-14 10:15:50 +00:00
ssl_mcnf.c
ssl_rsa.c Add SSL/SSL_CTX_use_cert_and_key() 2018-03-09 10:28:04 -06:00
ssl_sess.c Add an anti-replay mechanism 2018-03-19 12:21:41 +00:00
ssl_stat.c Merge HRR into ServerHello 2017-12-14 15:06:37 +00:00
ssl_txt.c Remove parentheses of return. 2017-10-18 16:05:06 +01:00
ssl_utst.c
t1_enc.c Rename EVP_PKEY_new_private_key()/EVP_PKEY_new_public_key() 2018-03-15 12:47:27 +00:00
t1_lib.c Always call the new_session_cb when issuing a NewSessionTicket in TLSv1.3 2018-03-19 12:21:17 +00:00
t1_trce.c Fix miscellaneous typos in docs and source 2018-03-17 18:24:03 +01:00
tls13_enc.c Rename EVP_PKEY_new_private_key()/EVP_PKEY_new_public_key() 2018-03-15 12:47:27 +00:00
tls_srp.c update SRP copyright notice 2018-03-13 18:33:44 +10:00