openssl/ssl
Matt Caswell cf3e221bd9 Ensure after an HRR any PSKs have the right hash
Don't include a PSK that does not have the right hash for the selected
ciphersuite following an HRR.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2895)
2017-03-16 14:20:38 +00:00
..
record Update end of early data processing for draft-19 2017-03-16 14:20:38 +00:00
statem Ensure after an HRR any PSKs have the right hash 2017-03-16 14:20:38 +00:00
bio_ssl.c Get pointer type right in BIO_ssl_shutdown() 2017-03-07 09:56:49 -05:00
build.info Move client parsing of ServerHello extensions into new framework 2016-12-08 17:18:25 +00:00
d1_lib.c Code health: Stop using timeb.h / ftime() (VMS only) 2017-02-28 15:32:01 +01:00
d1_msg.c Remove some obsolete/obscure internal define switches: 2017-03-01 10:44:49 +01:00
d1_srtp.c Move client parsing of ServerHello extensions into new framework 2016-12-08 17:18:25 +00:00
methods.c
packet_locl.h Miscellaneous style tweaks based on feedback received 2017-01-30 10:18:23 +00:00
packet.c Use for loop in WPACKET_fill_lengths instead of do...while 2017-01-30 10:18:24 +00:00
pqueue.c
s3_cbc.c Clean up references to FIPS 2017-02-28 15:26:25 +01:00
s3_enc.c Use the new TLSv1.3 certificate_required alert where appropriate 2017-03-10 15:33:31 +00:00
s3_lib.c Remove some commented out code in libssl 2017-02-28 16:02:11 +00:00
s3_msg.c Provide functions to write early data 2017-03-02 17:44:14 +00:00
ssl_asn1.c Only accept early_data if the negotiated ALPN is the same 2017-03-02 17:44:15 +00:00
ssl_cert.c Tidy up certificate type handling. 2017-02-24 01:23:38 +00:00
ssl_ciph.c Remove some obsolete/obscure internal define switches: 2017-03-01 10:44:49 +01:00
ssl_conf.c
ssl_err.c HelloRetryRequest updates for draft-19 2017-03-16 14:20:38 +00:00
ssl_init.c
ssl_lib.c Update end of early data processing for draft-19 2017-03-16 14:20:38 +00:00
ssl_locl.h Merge early_data_info extension into early_data 2017-03-16 14:20:38 +00:00
ssl_mcnf.c
ssl_rsa.c Use the callbacks from the SSL object instead of the SSL_CTX object 2017-03-10 22:31:50 +01:00
ssl_sess.c this change will prevent undefined behavior when src and dst are equal (memcpy), effectively allowing setting length only in both functions. 2017-03-08 09:42:29 -05:00
ssl_stat.c
ssl_txt.c Move extension data into sub-structs 2017-01-09 22:26:47 -05:00
ssl_utst.c
t1_enc.c Use the new TLSv1.3 certificate_required alert where appropriate 2017-03-10 15:33:31 +00:00
t1_ext.c Rework error handling of custom_ext_meth_add towards strong exception safety. 2017-02-15 08:37:52 -05:00
t1_lib.c Avoid questionable use of the value of a pointer 2017-03-10 15:56:58 -05:00
t1_trce.c HelloRetryRequest updates for draft-19 2017-03-16 14:20:38 +00:00
tls13_enc.c Update end of early data processing for draft-19 2017-03-16 14:20:38 +00:00
tls_srp.c