generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
openssl/ssl
History
Dr. Stephen Henson 2d64b51d20 Fix DTLS retransmission from previous session. 
For DTLS we might need to retransmit messages from the previous session
so keep a copy of write context in DTLS retransmission buffers instead
of replacing it after sending CCS. CVE-2013-6450.
(cherry picked from commit 34628967f1e65dc8f34e000f0f5518e21afbfc7b)

Conflicts:

	ssl/ssl_locl.h
2013-12-20 23:20:24 +00:00
..
.cvsignore
Add emacs cache files to .cvsignore.
2005-04-11 14:17:07 +00:00
bio_ssl.c
OPENSSL_NO_SOCK fixes [from HEAD].
2012-04-16 17:43:28 +00:00
d1_both.c
Fix DTLS retransmission from previous session.
2013-12-20 23:20:24 +00:00
d1_clnt.c
PR: 2748
2012-03-06 13:22:57 +00:00
d1_enc.c
Update DTLS code to match CBC decoding in TLS.
2013-02-05 16:46:17 +00:00
d1_lib.c
Set s->d1 to NULL after freeing it.
2013-04-08 18:40:08 +01:00
d1_meth.c
Let the TLSv1_method() etc. functions return a const SSL_METHOD
2005-08-14 21:48:33 +00:00
d1_pkt.c
DTLS message_sequence number wrong in rehandshake ServerHello
2013-08-13 18:59:41 +01:00
d1_srvr.c
DTLS message_sequence number wrong in rehandshake ServerHello
2013-08-13 18:59:41 +01:00
dtls1.h
PR: 2230
2010-04-14 00:17:29 +00:00
install-ssl.com
Apply all the changes submitted by Steven M. Schweda <sms@antinode.info>
2011-03-19 09:44:53 +00:00
kssl_lcl.h
Some fixes for kerberos builds.
2009-04-21 22:20:12 +00:00
kssl.c
Submitted by: Tomas Hoger <thoger@redhat.com>
2010-03-03 15:41:00 +00:00
kssl.h
Make kerberos ciphersuite code work with newer header files
2005-04-09 23:55:55 +00:00
Makefile
make update
2013-02-05 16:46:21 +00:00
s2_clnt.c
Add and use a constant-time memcmp.
2013-02-05 16:46:15 +00:00
s2_enc.c
Update ssl library to support EVP_PKEY MAC API. Include generic MAC support.
2007-06-04 17:04:40 +00:00
s2_lib.c
Make no-ssl2 work including on Win32 builds.
2009-04-04 17:57:34 +00:00
s2_meth.c
Type-checked (and modern C compliant) OBJ_bsearch.
2008-10-12 14:32:47 +00:00
s2_pkt.c
Add and use a constant-time memcmp.
2013-02-05 16:46:15 +00:00
s2_srvr.c
Assorted bugfixes:
2011-02-03 12:04:40 +00:00
s3_both.c
Add and use a constant-time memcmp.
2013-02-05 16:46:15 +00:00
s3_cbc.c
Check DTLS_BAD_VER for version number.
2013-02-12 15:09:44 +00:00
s3_clnt.c
ssl/s3_[clnt|srvr].c: fix warnings and linking error.
2013-02-09 19:48:34 +01:00
s3_enc.c
ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility.
2013-02-07 13:43:51 +00:00
s3_lib.c
Tidy up comments.
2013-09-10 10:13:00 +01:00
s3_meth.c
Type-checked (and modern C compliant) OBJ_bsearch.
2008-10-12 14:32:47 +00:00
s3_pkt.c
ssl/[d1|s3]_pkt.c: harmomize orig_len handling.
2013-02-08 11:14:12 +01:00
s3_srvr.c
ssl/s3_[clnt|srvr].c: fix warnings and linking error.
2013-02-09 19:48:34 +01:00
s23_clnt.c
PR: 2171
2010-02-16 14:20:40 +00:00
s23_lib.c
Fix warnings (From HEAD, original patch by Ben).
2010-06-15 17:25:15 +00:00
s23_meth.c
recent changes from 0.9.8: fix cipher list order in s3_lib.c,
2006-01-15 17:35:28 +00:00
s23_pkt.c
Reorder inclusion of header files:
2002-07-10 07:01:54 +00:00
s23_srvr.c
PR: 2171
2010-02-16 14:20:40 +00:00
ssl2.h
Implement msg_callback for SSL 2.0.
2001-11-10 01:16:28 +00:00
ssl3.h
Remove empty line.
2013-09-10 11:38:52 +01:00
ssl23.h
Import of old SSLeay release: SSLeay 0.9.0b
1998-12-21 10:56:39 +00:00
ssl_algs.c
Fixups from previous commit.
2013-02-05 16:46:17 +00:00
ssl_asn1.c
Fix warnings (From HEAD, original patch by Ben).
2010-06-15 17:25:15 +00:00
ssl_cert.c
PR: 1731 and maybe 2197
2010-03-24 23:16:49 +00:00
ssl_ciph.c
Resolve a stack set-up race condition (if the list of compression
2011-12-02 12:51:05 +00:00
ssl_err2.c
Use new-style system-id macros everywhere possible. I hope I haven't
2001-02-20 08:13:47 +00:00
ssl_err.c
Fix error codes.
2013-02-05 16:46:19 +00:00
ssl_lib.c
Disable compression for DTLS.
2013-03-19 13:47:51 +00:00
ssl_locl.h
Fix DTLS retransmission from previous session.
2013-12-20 23:20:24 +00:00
ssl_rsa.c
PR: 1411
2009-09-12 23:09:26 +00:00
ssl_sess.c
PR: 2160
2010-02-01 16:49:42 +00:00
ssl_stat.c
PR: 2133
2010-01-16 19:20:38 +00:00
ssl_task.c
Security fixes brought forward from 0.9.7.
2002-11-13 15:43:43 +00:00
ssl_txt.c
Update from 0.9.8-stable.
2009-06-30 22:26:28 +00:00
ssl-lib.com
Corrections to the VMS build system.
2011-03-25 16:21:39 +00:00
ssl.h
Don't prefer ECDHE-ECDSA ciphers when the client appears to be Safari on OS X.
2013-09-09 14:13:59 +01:00
ssltest.c
Fix in ssltest is no-ssl2 configured
2013-02-11 18:27:06 +00:00
t1_clnt.c
Let the TLSv1_method() etc. functions return a const SSL_METHOD
2005-08-14 21:48:33 +00:00
t1_enc.c
Fix DTLS retransmission from previous session.
2013-12-20 23:20:24 +00:00
t1_lib.c
Tidy up comments.
2013-09-10 10:13:00 +01:00
t1_meth.c
Let the TLSv1_method() etc. functions return a const SSL_METHOD
2005-08-14 21:48:33 +00:00
t1_reneg.c
Update RI to match latest spec.
2009-12-27 22:59:09 +00:00
t1_srvr.c
Let the TLSv1_method() etc. functions return a const SSL_METHOD
2005-08-14 21:48:33 +00:00
tls1.h
Backport TLS 1.1/1.2 #defines
2013-09-09 21:08:17 +01:00