generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
openssl/ssl
History
Dr. Stephen Henson 741c9959f6 DTLS revision. 
Revise DTLS code. There was a *lot* of code duplication in the
DTLS code that generates records. This makes it harder to maintain and
sometimes a TLS update is omitted by accident from the DTLS code.

Specifically almost all of the record generation functions have code like
this:

some_pointer = buffer + HANDSHAKE_HEADER_LENGTH;
... Record creation stuff ...
set_handshake_header(ssl, SSL_MT_SOMETHING, message_len);

...

write_handshake_message(ssl);

Where the "Record creation stuff" is identical between SSL/TLS and DTLS or
in some cases has very minor differences.

By adding a few fields to SSL3_ENC to include the header length, some flags
and function pointers for handshake header setting and handshake writing the
code can cope with both cases.

(cherry picked from commit 173e72e64c6a07ae97660c322396b66215009f33)
2013-09-18 13:46:02 +01:00
..
.cvsignore
Add emacs cache files to .cvsignore.
2005-04-11 14:17:07 +00:00
bio_ssl.c
OPENSSL_NO_SOCK fixes [from HEAD].
2012-04-16 17:43:02 +00:00
d1_both.c
DTLS revision.
2013-09-18 13:46:02 +01:00
d1_clnt.c
DTLS revision.
2013-09-18 13:46:02 +01:00
d1_enc.c
Update DTLS code to match CBC decoding in TLS.
2013-02-06 13:56:13 +00:00
d1_lib.c
DTLS revision.
2013-09-18 13:46:02 +01:00
d1_meth.c
Let the TLSv1_method() etc. functions return a const SSL_METHOD
2005-08-14 21:48:33 +00:00
d1_pkt.c
DTLS message_sequence number wrong in rehandshake ServerHello
2013-08-13 18:55:16 +01:00
d1_srtp.c
Submitted by: Eric Rescorla <ekr@rtfm.com>
2012-02-11 22:53:48 +00:00
d1_srvr.c
DTLS revision.
2013-09-18 13:46:02 +01:00
dnssec.c
Header needed for SOCK_STREAM on FreeBSD.
2013-06-04 16:27:05 +01:00
dtls1.h
Reduce version skew: trivia (I hope).
2012-06-03 22:03:37 +00:00
install-ssl.com
Don't forget to install srtp.h as well
2012-05-10 15:01:26 +00:00
kssl_lcl.h
Some fixes for kerberos builds.
2009-04-21 22:20:12 +00:00
kssl.c
make kerberos work with OPENSSL_NO_SSL_INTERN
2011-05-11 22:52:34 +00:00
kssl.h
make kerberos work with OPENSSL_NO_SSL_INTERN
2011-05-11 22:52:34 +00:00
Makefile
RFC6689 support: add missing commit (git noob alert).
2013-05-15 20:41:51 +02:00
s2_clnt.c
Add and use a constant-time memcmp.
2013-02-06 13:56:12 +00:00
s2_enc.c
Update ssl library to support EVP_PKEY MAC API. Include generic MAC support.
2007-06-04 17:04:40 +00:00
s2_lib.c
Add ctrl and utility functions to retrieve raw cipher list sent by client in
2012-12-26 16:25:06 +00:00
s2_meth.c
Type-checked (and modern C compliant) OBJ_bsearch.
2008-10-12 14:32:47 +00:00
s2_pkt.c
Add and use a constant-time memcmp.
2013-02-06 13:56:12 +00:00
s2_srvr.c
Reduce version skew: trivia (I hope).
2012-06-03 22:03:37 +00:00
s3_both.c
DTLS revision.
2013-09-18 13:46:02 +01:00
s3_cbc.c
Check DTLS_BAD_VER for version number.
2013-02-12 15:15:32 +00:00
s3_clnt.c
DTLS revision.
2013-09-18 13:46:02 +01:00
s3_enc.c
ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility.
2013-02-06 13:56:15 +00:00
s3_lib.c
DTLS revision.
2013-09-18 13:46:02 +01:00
s3_meth.c
Type-checked (and modern C compliant) OBJ_bsearch.
2008-10-12 14:32:47 +00:00
s3_pkt.c
Fix error codes.
2013-02-26 17:05:39 +00:00
s3_srvr.c
DTLS revision.
2013-09-18 13:46:02 +01:00
s23_clnt.c
Various custom extension fixes.
2013-09-16 18:40:53 +01:00
s23_lib.c
Fix warnings (From HEAD, original patch by Ben).
2010-06-15 17:25:15 +00:00
s23_meth.c
Backport TLS v1.2 support from HEAD.
2011-05-11 13:37:52 +00:00
s23_pkt.c
Reorder inclusion of header files:
2002-07-10 07:01:54 +00:00
s23_srvr.c
Add three Suite B modes to TLS code, supporting RFC6460.
2012-12-26 16:17:40 +00:00
srtp.h
move internal functions to ssl_locl.h
2011-11-21 22:52:01 +00:00
ssl2.h
Initial "opaque SSL" framework. If an application defines OPENSSL_NO_SSL_INTERN
2011-05-11 12:56:38 +00:00
ssl3.h
DTLS revision.
2013-09-18 13:46:02 +01:00
ssl23.h
Import of old SSLeay release: SSLeay 0.9.0b
1998-12-21 10:56:39 +00:00
ssl_algs.c
e_aes_cbc_hmac_sha1.c: address the CBC decrypt timing issues.
2013-02-06 13:56:15 +00:00
ssl_asn1.c
Use correct tag for SRP username.
2011-10-25 12:52:47 +00:00
ssl_cert.c
Cosmetic touchups.
2013-07-31 16:38:43 +01:00
ssl_ciph.c
Make no-ec compilation work.
2013-08-19 14:13:38 +01:00
ssl_conf.c
Make no-ec compilation work.
2013-08-19 14:13:38 +01:00
ssl_err2.c
Use new-style system-id macros everywhere possible. I hope I haven't
2001-02-20 08:13:47 +00:00
ssl_err.c
Trying cherrypick:
2013-07-03 11:53:30 +01:00
ssl_lib.c
Make no-ec compilation work.
2013-08-19 14:13:38 +01:00
ssl_locl.h
DTLS revision.
2013-09-18 13:46:02 +01:00
ssl_rsa.c
Various custom extension fixes.
2013-09-16 18:40:53 +01:00
ssl_sess.c
RFC 5878 support.
2012-05-29 17:27:48 +00:00
ssl_stat.c
PR: 1794
2011-11-25 00:18:10 +00:00
ssl_task.c
Security fixes brought forward from 0.9.7.
2002-11-13 15:43:43 +00:00
ssl_txt.c
Backport TLS v1.2 support from HEAD.
2011-05-11 13:37:52 +00:00
ssl-lib.com
PR: 2652
2012-01-05 14:30:08 +00:00
ssl.h
Don't prefer ECDHE-ECDSA ciphers when the client appears to be Safari on OS X.
2013-09-16 14:03:21 +01:00
ssltest.c
Trying cherrypick:
2013-07-03 11:53:30 +01:00
t1_clnt.c
Backport TLS v1.2 support from HEAD.
2011-05-11 13:37:52 +00:00
t1_enc.c
ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility.
2013-02-06 13:56:15 +00:00
t1_lib.c
DTLS revision.
2013-09-18 13:46:02 +01:00
t1_meth.c
Backport TLS v1.2 support from HEAD.
2011-05-11 13:37:52 +00:00
t1_reneg.c
Update RI to match latest spec.
2009-12-27 22:59:09 +00:00
t1_srvr.c
Backport TLS v1.2 support from HEAD.
2011-05-11 13:37:52 +00:00
t1_trce.c
Fix for trace code: SSL3 doesn't include a length value for
2013-02-04 15:14:00 +00:00
tls1.h
Add three Suite B modes to TLS code, supporting RFC6460.
2012-12-26 16:17:40 +00:00
tls_srp.c
Reduce version skew: trivia (I hope).
2012-06-03 22:03:37 +00:00