generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
Files
fdf6f73e5e09a98112d85ee745ac5b3c78942956
openssl/ssl
History
David Benjamin 1ed6587154 Resolve DTLS cookie and version before session resumption. 
Session resumption involves a version check, so version negotiation must
happen first. Currently, the DTLS implementation cannot do session
resumption in DTLS 1.0 because the ssl_version check always checks
against 1.2.

Switching the order also removes the need to fixup ssl_version in DTLS
version negotiation.

Signed-off-by: Kurt Roeckx <kurt@roeckx.be>
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

RT: #4392, MR: #2452
2016-03-27 23:59:00 +02:00
..
record
Fix building without multiblock support
2016-03-08 08:52:45 +00:00
statem
Resolve DTLS cookie and version before session resumption.
2016-03-27 23:59:00 +02:00
bio_ssl.c
RT4660: BIO_METHODs should be const.
2016-03-21 16:49:10 -04:00
build.info
Update build.info files for auto-init/de-init
2016-02-09 15:11:38 +00:00
d1_lib.c
Fix no-sock
2016-03-21 16:33:59 +00:00
d1_msg.c
Remove /* foo.c */ comments
2016-01-26 16:40:43 -05:00
d1_srtp.c
Add new DTLS-SRTP protection profiles from RFC 7714
2016-02-04 22:52:21 +00:00
Makefile.in
Remove the remainder of util/mk1mf.pl and companion scripts
2016-03-21 11:02:00 +01:00
methods.c
Allow different protocol version when trying to reuse a session
2016-03-27 23:58:50 +02:00
packet_locl.h
Refactor ClientHello extension parsing
2016-03-03 13:53:26 +01:00
pqueue.c
Remove /* foo.c */ comments
2016-01-26 16:40:43 -05:00
s3_cbc.c
Remove /* foo.c */ comments
2016-01-26 16:40:43 -05:00
s3_enc.c
Lazily initialise the compression buffer
2016-03-07 21:39:27 +00:00
s3_lib.c
Remove #error from include files.
2016-03-20 19:48:36 -04:00
s3_msg.c
Implement write pipeline support in libssl
2016-03-07 21:39:27 +00:00
ssl_asn1.c
Remove /* foo.c */ comments
2016-01-26 16:40:43 -05:00
ssl_cert.c
Remove #error from include files.
2016-03-20 19:48:36 -04:00
ssl_ciph.c
Check algo_strength using SSL_STRONG_MASK
2016-03-22 22:00:12 +01:00
ssl_conf.c
Remove #error from include files.
2016-03-20 19:48:36 -04:00
ssl_err.c
Allow different protocol version when trying to reuse a session
2016-03-27 23:58:50 +02:00
ssl_init.c
Swap the init code to use CRYPTO_ONCE
2016-03-07 17:17:21 +00:00
ssl_lib.c
Remove #error from include files.
2016-03-20 19:48:36 -04:00
ssl_locl.h
Allow different protocol version when trying to reuse a session
2016-03-27 23:58:50 +02:00
ssl_mcnf.c
Remove /* foo.c */ comments
2016-01-26 16:40:43 -05:00
ssl_rsa.c
fix no-ec build
2016-03-03 13:27:34 +00:00
ssl_sess.c
Allow different protocol version when trying to reuse a session
2016-03-27 23:58:50 +02:00
ssl_stat.c
Remove /* foo.c */ comments
2016-01-26 16:40:43 -05:00
ssl_txt.c
Add support for minimum and maximum protocol version supported by a cipher
2016-03-09 19:10:28 +01:00
ssl_utst.c
Fix build-break
2016-02-15 10:17:12 -05:00
t1_enc.c
Remove #error from include files.
2016-03-20 19:48:36 -04:00
t1_ext.c
Remove #error from include files.
2016-03-20 19:48:36 -04:00
t1_lib.c
Fix ALPN - more fixes
2016-03-20 21:09:32 -04:00
t1_reneg.c
Remove outdated DEBUG flags.
2016-02-18 17:14:50 -05:00
t1_trce.c
Adds CT validation to SSL connections
2016-03-04 10:50:10 -05:00
tls_srp.c
Remove /* foo.c */ comments
2016-01-26 16:40:43 -05:00