generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
openssl/ssl
History
Dr. Stephen Henson 28ea0a0c6a Add custom extension sanity checks. 
Reject attempts to use extensions handled internally.

Add flags to each extension structure to indicate if an extension
has been sent or received. Enforce RFC5246 compliance by rejecting
duplicate extensions and unsolicited extensions and only send a
server extension if we have sent the corresponding client extension.
Reviewed-by: Emilia Käsper <emilia@openssl.org>
2014-08-28 17:06:52 +01:00
..
.cvsignore
Add emacs cache files to .cvsignore.
2005-04-11 14:17:07 +00:00
bio_ssl.c
OPENSSL_NO_SOCK fixes.
2012-04-16 17:42:36 +00:00
d1_both.c
RT1815: More const'ness improvements
2014-08-18 11:49:16 -04:00
d1_clnt.c
DTLS/SCTP Finished Auth Bug
2013-11-01 21:41:52 +00:00
d1_enc.c
misspellings fixes by https://github.com/vlajos/misspell_fixer
2013-09-05 21:39:42 +01:00
d1_lib.c
Constification - mostly originally from Chromium.
2014-06-29 21:05:23 +01:00
d1_meth.c
Dual DTLS version methods.
2013-04-09 14:02:48 +01:00
d1_pkt.c
RT3023: Redundant logical expressions
2014-08-15 10:45:00 -04:00
d1_srtp.c
Submitted by: Eric Rescorla <ekr@rtfm.com>
2012-02-11 22:53:31 +00:00
d1_srvr.c
Fix DTLS certificate requesting code.
2014-07-15 18:23:13 +01:00
dtls1.h
Dual DTLS version methods.
2013-04-09 14:02:48 +01:00
heartbeat_test.c
Add conditional unit testing interface.
2014-07-24 19:41:29 +01:00
install-ssl.com
Install srtp.h
2012-07-05 13:20:19 +00:00
kssl_lcl.h
Merge from 1.0.0-stable branch.
2009-04-23 16:32:42 +00:00
kssl.c
RT2848: Remove extra NULL check
2014-08-19 12:43:58 -04:00
kssl.h
Fix for WIN32 builds with KRB5
2014-02-26 15:33:11 +00:00
Makefile
Custom extension revision.
2014-08-28 17:06:52 +01:00
s2_clnt.c
Security framework.
2014-03-28 14:56:30 +00:00
s2_enc.c
Experimental encrypt-then-mac support.
2013-09-08 13:14:03 +01:00
s2_lib.c
Update strength_bits for 3DES.
2014-06-09 12:09:52 +01:00
s2_meth.c
Type-checked (and modern C compliant) OBJ_bsearch.
2008-10-12 14:32:47 +00:00
s2_pkt.c
Add and use a constant-time memcmp.
2013-02-06 14:16:55 +00:00
s2_srvr.c
Security framework.
2014-03-28 14:56:30 +00:00
s3_both.c
Security framework.
2014-03-28 14:56:30 +00:00
s3_cbc.c
Constant-time utilities
2014-08-28 15:48:45 +02:00
s3_clnt.c
Fixed out-of-bounds read errors in ssl3_get_key_exchange.
2014-08-15 23:27:34 +01:00
s3_enc.c
RT1815: More const'ness improvements
2014-08-18 11:49:16 -04:00
s3_lib.c
Add support for Camellia HMAC-Based cipher suites from RFC6367
2014-08-15 23:41:20 +01:00
s3_meth.c
Type-checked (and modern C compliant) OBJ_bsearch.
2008-10-12 14:32:47 +00:00
s3_pkt.c
RT 3060: amend patch
2014-08-22 15:35:42 +02:00
s3_srvr.c
Fix SRP authentication ciphersuites.
2014-08-09 13:21:30 +01:00
s23_clnt.c
Custom extension revision.
2014-08-28 17:06:52 +01:00
s23_lib.c
Don't advertise ECC ciphersuits in SSLv2 compatible client hello.
2014-06-27 16:51:26 +01:00
s23_meth.c
Initial incomplete TLS v1.2 support. New ciphersuites added, new version
2011-04-29 22:56:51 +00:00
s23_pkt.c
Reorder inclusion of header files:
2002-07-10 07:01:54 +00:00
s23_srvr.c
Fix protocol downgrade bug in case of fragmented packets
2014-08-06 20:36:40 +01:00
srtp.h
RT2724: Remove extra declaration
2014-08-19 09:38:43 -04:00
ssl2.h
Initial "opaque SSL" framework. If an application defines
2011-04-29 22:37:12 +00:00
ssl3.h
Remove all RFC5878 code.
2014-07-04 13:26:35 +01:00
ssl23.h
Import of old SSLeay release: SSLeay 0.9.0b
1998-12-21 10:56:39 +00:00
ssl_algs.c
Add AES-SHA256 stitch.
2013-05-13 22:49:58 +02:00
ssl_asn1.c
fix coverity issue 966597 - error line is not always initialised
2014-05-07 23:54:25 +01:00
ssl_cert.c
Custom extension revision.
2014-08-28 17:06:52 +01:00
ssl_ciph.c
RT1815: More const'ness improvements
2014-08-18 11:49:16 -04:00
ssl_conf.c
Add -no_resumption_on_reneg to SSL_CONF.
2014-03-27 16:12:40 +00:00
ssl_err2.c
Use new-style system-id macros everywhere possible. I hope I haven't
2001-02-20 08:13:47 +00:00
ssl_err.c
RT 3060: amend patch
2014-08-22 15:35:42 +02:00
ssl_lib.c
Custom extension revision.
2014-08-28 17:06:52 +01:00
ssl_locl.h
Add custom extension sanity checks.
2014-08-28 17:06:52 +01:00
ssl_rsa.c
RT 1988: Add "const" to SSL_use_RSAPrivateKey_ASN1
2014-08-09 07:56:28 -04:00
ssl_sess.c
Add callbacks supporting generation and retrieval of supplemental data entries, facilitating RFC 5878 (TLS auth extensions)
2013-09-06 13:59:13 +01:00
ssl_stat.c
Remove all RFC5878 code.
2014-07-04 13:26:35 +01:00
ssl_task.c
Security fixes brought forward from 0.9.7.
2002-11-13 15:43:43 +00:00
ssl_txt.c
Add an NSS output format to sess_id to export to export the session id and the master key in NSS keylog format. PR#3352
2014-05-24 00:02:24 +01:00
ssl_utst.c
Add conditional unit testing interface.
2014-07-24 19:41:29 +01:00
ssl-lib.com
Add d1_srtp and t1_trce.
2012-07-05 13:20:02 +00:00
ssl.h
Add custom extension sanity checks.
2014-08-28 17:06:52 +01:00
ssltest.c
Include error messages on extension check failure.
2014-08-15 12:16:16 +01:00
t1_clnt.c
Use appropriate versions of SSL3_ENC_METHOD
2013-03-18 14:53:59 +00:00
t1_enc.c
RT 1528; misleading debug print, "pre-master" should be "master key"
2014-07-01 13:22:38 -04:00
t1_ext.c
Add custom extension sanity checks.
2014-08-28 17:06:52 +01:00
t1_lib.c
Add custom extension sanity checks.
2014-08-28 17:06:52 +01:00
t1_meth.c
Use appropriate versions of SSL3_ENC_METHOD
2013-03-18 14:53:59 +00:00
t1_reneg.c
Update RI to match latest spec.
2009-12-27 22:58:55 +00:00
t1_srvr.c
Use appropriate versions of SSL3_ENC_METHOD
2013-03-18 14:53:59 +00:00
t1_trce.c
Adding padding extension to trace code.
2014-05-20 11:09:04 +01:00
tls1.h
Add support for Camellia HMAC-Based cipher suites from RFC6367
2014-08-15 23:41:20 +01:00
tls_srp.c
Check SRP parameters early.
2014-08-06 20:36:41 +01:00