openssl/ssl
Todd Short 088dfa1335 Add option to disable Extended Master Secret
Add SSL_OP64_NO_EXTENDED_MASTER_SECRET, that can be set on either
an SSL or an SSL_CTX. When processing a ClientHello, if this flag
is set, do not indicate that the EMS TLS extension was received in
either the ssl3 object or the SSL_SESSION.  Retain most of the
sanity checks between the previous and current session during
session resumption, but weaken the check when the current SSL
object is configured to not use EMS.

Reviewed-by: Paul Dale <paul.dale@oracle.com>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3910)
2019-02-15 10:11:18 +00:00
..
record Revert "Keep the DTLS timer running after the end of the handshake if appropriate" 2019-01-24 13:39:38 +00:00
statem Add option to disable Extended Master Secret 2019-02-15 10:11:18 +00:00
bio_ssl.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
build.info Move ssl/t1_ext.c to ssl/statem/extensions_cust.c 2017-04-07 13:41:04 +01:00
d1_lib.c Use (D)TLS_MAX_VERSION_INTERNAL internally 2018-12-15 12:52:02 +01:00
d1_msg.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
d1_srtp.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
methods.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
packet.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
packet_locl.h Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
pqueue.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
s3_cbc.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
s3_enc.c Eliminate unused buffers from ssl3_change_cipher_state 2019-01-03 14:17:31 +00:00
s3_lib.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
s3_msg.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
ssl_asn1.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
ssl_cert.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
ssl_cert_table.h Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
ssl_ciph.c Add missing entries in ssl_mac_pkey_id 2019-01-15 11:40:39 +00:00
ssl_conf.c Add option to disable Extended Master Secret 2019-02-15 10:11:18 +00:00
ssl_err.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
ssl_init.c More configurable crypto and ssl library initialization 2019-01-07 14:02:28 -05:00
ssl_lib.c Ignore cipher suites when setting cipher list 2019-02-14 13:54:56 +00:00
ssl_locl.h add an additional async notification communication method based on callback 2019-01-27 12:27:17 +00:00
ssl_mcnf.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
ssl_rsa.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
ssl_sess.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
ssl_stat.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
ssl_txt.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
ssl_utst.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
t1_enc.c Remove unused variables from tls1_change_cipher_state 2019-01-03 14:17:31 +00:00
t1_lib.c Use (D)TLS_MAX_VERSION_INTERNAL internally 2018-12-15 12:52:02 +01:00
t1_trce.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
tls13_enc.c Don't get the mac type in TLSv1.3 2019-01-15 11:40:39 +00:00
tls_srp.c Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00