wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/ssl
History
Matt Caswell 04a73c844f Verify that we have a sensible message len and fail if not 
RT#3592 provides an instance where the OPENSSL_assert that this commit
replaces can be hit. I was able to recreate this issue by forcing the
underlying BIO to misbehave and come back with very small mtu values. This
happens the second time around the while loop after we have detected that the
MTU has been exceeded following the call to dtls1_write_bytes.

Reviewed-by: Tim Hudson <tjh@openssl.org>
(cherry picked from commit cf75017bfd)
2014-12-03 09:38:10 +00:00
..
.cvsignore Add emacs cache files to .cvsignore. 2005-04-11 14:17:07 +00:00
bio_ssl.c OPENSSL_NO_SOCK fixes [from HEAD]. 2012-04-16 17:43:28 +00:00
d1_both.c Verify that we have a sensible message len and fail if not 2014-12-03 09:38:10 +00:00
d1_clnt.c Fix DTLS anonymous EC(DH) denial of service 2014-08-06 21:30:39 +01:00
d1_enc.c Add checks to the return value of EVP_Cipher to prevent silent encryption failure. 2014-11-27 21:58:31 +00:00
d1_lib.c Fixed memory leak due to incorrect freeing of DTLS reassembly bit mask 2014-11-26 10:18:15 +00:00
d1_meth.c Let the TLSv1_method() etc. functions return a const SSL_METHOD 2005-08-14 21:48:33 +00:00
d1_pkt.c Add checks to the return value of EVP_Cipher to prevent silent encryption failure. 2014-11-27 21:58:31 +00:00
d1_srvr.c Fix DTLS certificate requesting code. 2014-07-15 18:23:52 +01:00
dtls1.h Support TLS_FALLBACK_SCSV. 2014-10-15 04:05:57 +02:00
install-ssl.com Apply all the changes submitted by Steven M. Schweda <sms@antinode.info> 2011-03-19 09:44:53 +00:00
kssl.c Submitted by: Tomas Hoger <thoger@redhat.com> 2010-03-03 15:41:00 +00:00
kssl.h Fix for WIN32 builds with KRB5 2014-02-26 15:33:31 +00:00
kssl_lcl.h Some fixes for kerberos builds. 2009-04-21 22:20:12 +00:00
Makefile RT3067: simplify patch 2014-09-24 15:58:20 +02:00
s2_clnt.c Add and use a constant-time memcmp. 2013-02-05 16:46:15 +00:00
s2_enc.c Fixed warning in ssl2_enc 2014-11-27 21:58:32 +00:00
s2_lib.c Support TLS_FALLBACK_SCSV. 2014-10-15 04:05:57 +02:00
s2_meth.c Type-checked (and modern C compliant) OBJ_bsearch. 2008-10-12 14:32:47 +00:00
s2_pkt.c Check EVP_Cipher return values for SSL2 2014-11-27 21:58:32 +00:00
s2_srvr.c Assorted bugfixes: 2011-02-03 12:04:40 +00:00
s3_both.c [PR3597] Advance to the next state variant when reusing messages. 2014-11-28 23:31:53 +01:00
s3_cbc.c RT3066: rewrite RSA padding checks to be slightly more constant time. 2014-09-24 14:35:03 +02:00
s3_clnt.c Fixed error introduced in commit f2be92b94d 2014-09-22 06:32:42 +10:00
s3_enc.c Add checks to the return value of EVP_Cipher to prevent silent encryption failure. 2014-11-27 21:58:31 +00:00
s3_lib.c Support TLS_FALLBACK_SCSV. 2014-10-15 04:05:57 +02:00
s3_meth.c Type-checked (and modern C compliant) OBJ_bsearch. 2008-10-12 14:32:47 +00:00
s3_pkt.c Add checks to the return value of EVP_Cipher to prevent silent encryption failure. 2014-11-27 21:58:31 +00:00
s3_srvr.c RT3067: simplify patch 2014-09-24 15:58:20 +02:00
s23_clnt.c Fix no-ssl3 configuration option 2014-10-15 08:49:50 -04:00
s23_lib.c Don't advertise ECC ciphersuits in SSLv2 compatible client hello. 2014-06-27 16:52:10 +01:00
s23_meth.c recent changes from 0.9.8: fix cipher list order in s3_lib.c, 2006-01-15 17:35:28 +00:00
s23_pkt.c Reorder inclusion of header files: 2002-07-10 07:01:54 +00:00
s23_srvr.c Keep old method in case of an unsupported protocol 2014-10-21 21:15:58 +02:00
ssl-lib.com Spaces were added in some strings for better readability. However, those spaces do not belong in file names, so when picking out the individual parts, remove the spaces 2014-10-15 11:32:17 +02:00
ssl.h Corrected comments in ssl.h about SSLv23_method and friends 2014-11-25 22:28:42 +00:00
ssl2.h Implement msg_callback for SSL 2.0. 2001-11-10 01:16:28 +00:00
ssl3.h Support TLS_FALLBACK_SCSV. 2014-10-15 04:05:57 +02:00
ssl23.h Import of old SSLeay release: SSLeay 0.9.0b 1998-12-21 10:56:39 +00:00
ssl_algs.c Fixups from previous commit. 2013-02-05 16:46:17 +00:00
ssl_asn1.c fix coverity issue 966597 - error line is not always initialised 2014-05-08 00:04:16 +01:00
ssl_cert.c Remove redundant checks in ssl_cert_dup. This was causing spurious error messages when using GOST 2014-11-27 20:55:52 +00:00
ssl_ciph.c Use more common name for GOST key exchange. 2014-07-14 18:31:54 +01:00
ssl_err.c Support TLS_FALLBACK_SCSV. 2014-10-15 04:05:57 +02:00
ssl_err2.c Use new-style system-id macros everywhere possible. I hope I haven't 2001-02-20 08:13:47 +00:00
ssl_lib.c When processing ClientHello.cipher_suites, don't ignore cipher suites 2014-10-21 22:32:44 +02:00
ssl_locl.h Check EVP_Cipher return values for SSL2 2014-11-27 21:58:32 +00:00
ssl_rsa.c PR: 1411 2009-09-12 23:09:26 +00:00
ssl_sess.c PR: 2160 2010-02-01 16:49:42 +00:00
ssl_stat.c Don't disable state strings with no-ssl2 2014-06-28 00:56:59 +01:00
ssl_task.c Security fixes brought forward from 0.9.7. 2002-11-13 15:43:43 +00:00
ssl_txt.c Update from 0.9.8-stable. 2009-06-30 22:26:28 +00:00
ssltest.c Fix in ssltest is no-ssl2 configured 2013-02-11 18:27:06 +00:00
t1_clnt.c Let the TLSv1_method() etc. functions return a const SSL_METHOD 2005-08-14 21:48:33 +00:00
t1_enc.c Support TLS_FALLBACK_SCSV. 2014-10-15 04:05:57 +02:00
t1_lib.c Fix for session tickets memory leak. 2014-10-15 08:49:50 -04:00
t1_meth.c Let the TLSv1_method() etc. functions return a const SSL_METHOD 2005-08-14 21:48:33 +00:00
t1_reneg.c Update RI to match latest spec. 2009-12-27 22:59:09 +00:00
t1_srvr.c Let the TLSv1_method() etc. functions return a const SSL_METHOD 2005-08-14 21:48:33 +00:00
tls1.h Oops -- fix typo in coment added with TLS_FALLBACK_SCSV support. 2014-10-15 04:25:41 +02:00