openssl/ssl
Dr. Stephen Henson 1e2d4cb0e1 Make TLS 1.2 ciphers work again.
Since s->method does not reflect the final client version when a client
hello is sent for SSLv23_client_method it can't be relied on to indicate
if TLS 1.2 ciphers should be used. So use the client version instead.
2013-04-04 18:21:58 +01:00
..
.cvsignore Add emacs cache files to .cvsignore. 2005-04-11 14:17:07 +00:00
bio_ssl.c OPENSSL_NO_SOCK fixes. 2012-04-16 17:42:36 +00:00
d1_both.c Enable TLS 1.2 ciphers in DTLS 1.2. 2013-03-28 14:14:27 +00:00
d1_clnt.c Provisional DTLS 1.2 support. 2013-03-26 15:16:41 +00:00
d1_enc.c Update DTLS code to match CBC decoding in TLS. 2013-02-06 14:19:07 +00:00
d1_lib.c Enable TLS 1.2 ciphers in DTLS 1.2. 2013-03-28 14:14:27 +00:00
d1_meth.c Provisional DTLS 1.2 support. 2013-03-26 15:16:41 +00:00
d1_pkt.c Enable TLS 1.2 ciphers in DTLS 1.2. 2013-03-28 14:14:27 +00:00
d1_srtp.c Submitted by: Eric Rescorla <ekr@rtfm.com> 2012-02-11 22:53:31 +00:00
d1_srvr.c DTLS 1.2 cached record support. 2013-03-28 14:14:27 +00:00
dtls1.h Provisional DTLS 1.2 support. 2013-03-26 15:16:41 +00:00
install-ssl.com Install srtp.h 2012-07-05 13:20:19 +00:00
kssl_lcl.h Merge from 1.0.0-stable branch. 2009-04-23 16:32:42 +00:00
kssl.c Version skew reduction: trivia (I hope). 2012-06-03 22:00:21 +00:00
kssl.h make kerberos work with OPENSSL_NO_SSL_INTERN 2011-05-11 22:50:18 +00:00
Makefile make depend. 2013-02-21 18:17:38 +00:00
s2_clnt.c Add and use a constant-time memcmp. 2013-02-06 14:16:55 +00:00
s2_enc.c Update ssl library to support EVP_PKEY MAC API. Include generic MAC support. 2007-06-04 17:04:40 +00:00
s2_lib.c Add ctrl and utility functions to retrieve raw cipher list sent by client in 2012-09-12 13:57:48 +00:00
s2_meth.c Type-checked (and modern C compliant) OBJ_bsearch. 2008-10-12 14:32:47 +00:00
s2_pkt.c Add and use a constant-time memcmp. 2013-02-06 14:16:55 +00:00
s2_srvr.c Fix some warnings caused by __owur. Temporarily (I hope) remove the more 2011-11-14 00:36:10 +00:00
s3_both.c DTLS revision. 2013-03-18 14:36:43 +00:00
s3_cbc.c Use enc_flags when deciding protocol variations. 2013-03-18 15:03:58 +00:00
s3_clnt.c Update fixed DH requirements. 2013-03-28 14:14:27 +00:00
s3_enc.c ssl/*: revert "remove SSL_RECORD->orig_len" and merge "fix IV". 2013-02-08 10:20:48 +01:00
s3_lib.c Enable TLS 1.2 ciphers in DTLS 1.2. 2013-03-28 14:14:27 +00:00
s3_meth.c Type-checked (and modern C compliant) OBJ_bsearch. 2008-10-12 14:32:47 +00:00
s3_pkt.c Use enc_flags when deciding protocol variations. 2013-03-18 15:03:58 +00:00
s3_srvr.c Use enc_flags when deciding protocol variations. 2013-03-18 15:03:58 +00:00
s23_clnt.c send out the raw SSL/TLS headers to the msg_callback and display them in SSL_trace 2012-12-07 23:42:33 +00:00
s23_lib.c Fix warnings. 2010-06-12 14:13:23 +00:00
s23_meth.c Initial incomplete TLS v1.2 support. New ciphersuites added, new version 2011-04-29 22:56:51 +00:00
s23_pkt.c Reorder inclusion of header files: 2002-07-10 07:01:54 +00:00
s23_srvr.c Add three Suite B modes to TLS code, supporting RFC6460. 2012-08-15 15:15:05 +00:00
srtp.h move internal functions to ssl_locl.h 2011-11-21 22:52:13 +00:00
ssl2.h Initial "opaque SSL" framework. If an application defines 2011-04-29 22:37:12 +00:00
ssl3.h DTLS revision. 2013-03-18 14:36:43 +00:00
ssl23.h Import of old SSLeay release: SSLeay 0.9.0b 1998-12-21 10:56:39 +00:00
ssl_algs.c e_aes_cbc_hmac_sha1.c: address the CBC decrypt timing issues. 2013-02-06 14:19:10 +00:00
ssl_asn1.c Version skew reduction: trivia (I hope). 2012-06-03 22:00:21 +00:00
ssl_cert.c Add ctrl and utility functions to retrieve raw cipher list sent by client in 2012-09-12 13:57:48 +00:00
ssl_ciph.c return error if Suite B mode is selected and TLS 1.2 can't be used. Correct error coded 2012-12-01 18:33:21 +00:00
ssl_conf.c really fix automatic ;-) 2012-12-07 12:41:13 +00:00
ssl_err2.c Use new-style system-id macros everywhere possible. I hope I haven't 2001-02-20 08:13:47 +00:00
ssl_err.c return error if Suite B mode is selected and TLS 1.2 can't be used. Correct error coded 2012-12-01 18:33:21 +00:00
ssl_lib.c Disable compression for DTLS. 2013-03-19 13:43:06 +00:00
ssl_locl.h Make TLS 1.2 ciphers work again. 2013-04-04 18:21:58 +01:00
ssl_rsa.c Rearrange and test authz extension. 2012-06-07 13:20:47 +00:00
ssl_sess.c Provisional DTLS 1.2 support. 2013-03-26 15:16:41 +00:00
ssl_stat.c PR: 1794 2011-11-25 00:17:44 +00:00
ssl_task.c Security fixes brought forward from 0.9.7. 2002-11-13 15:43:43 +00:00
ssl_txt.c Provisional DTLS 1.2 support. 2013-03-26 15:16:41 +00:00
ssl-lib.com Add d1_srtp and t1_trce. 2012-07-05 13:20:02 +00:00
ssl.h Provisional DTLS 1.2 support. 2013-03-26 15:16:41 +00:00
ssltest.c Fix in ssltest is no-ssl2 configured 2013-02-11 18:29:05 +00:00
t1_clnt.c Use appropriate versions of SSL3_ENC_METHOD 2013-03-18 14:53:59 +00:00
t1_enc.c Enable TLS 1.2 ciphers in DTLS 1.2. 2013-03-28 14:14:27 +00:00
t1_lib.c Make TLS 1.2 ciphers work again. 2013-04-04 18:21:58 +01:00
t1_meth.c Use appropriate versions of SSL3_ENC_METHOD 2013-03-18 14:53:59 +00:00
t1_reneg.c Update RI to match latest spec. 2009-12-27 22:58:55 +00:00
t1_srvr.c Use appropriate versions of SSL3_ENC_METHOD 2013-03-18 14:53:59 +00:00
t1_trce.c Provisional DTLS 1.2 support. 2013-03-26 15:16:41 +00:00
tls1.h Add three Suite B modes to TLS code, supporting RFC6460. 2012-08-15 15:15:05 +00:00
tls_srp.c PR: 1794 2011-12-14 22:17:06 +00:00