wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/ssl
History
Dr. Stephen Henson 741c9959f6 DTLS revision. 
Revise DTLS code. There was a *lot* of code duplication in the
DTLS code that generates records. This makes it harder to maintain and
sometimes a TLS update is omitted by accident from the DTLS code.

Specifically almost all of the record generation functions have code like
this:

some_pointer = buffer + HANDSHAKE_HEADER_LENGTH;
... Record creation stuff ...
set_handshake_header(ssl, SSL_MT_SOMETHING, message_len);

...

write_handshake_message(ssl);

Where the "Record creation stuff" is identical between SSL/TLS and DTLS or
in some cases has very minor differences.

By adding a few fields to SSL3_ENC to include the header length, some flags
and function pointers for handshake header setting and handshake writing the
code can cope with both cases.

(cherry picked from commit 173e72e64c)
2013-09-18 13:46:02 +01:00
..
.cvsignore Add emacs cache files to .cvsignore. 2005-04-11 14:17:07 +00:00
bio_ssl.c OPENSSL_NO_SOCK fixes [from HEAD]. 2012-04-16 17:43:02 +00:00
d1_both.c DTLS revision. 2013-09-18 13:46:02 +01:00
d1_clnt.c DTLS revision. 2013-09-18 13:46:02 +01:00
d1_enc.c Update DTLS code to match CBC decoding in TLS. 2013-02-06 13:56:13 +00:00
d1_lib.c DTLS revision. 2013-09-18 13:46:02 +01:00
d1_meth.c Let the TLSv1_method() etc. functions return a const SSL_METHOD 2005-08-14 21:48:33 +00:00
d1_pkt.c DTLS message_sequence number wrong in rehandshake ServerHello 2013-08-13 18:55:16 +01:00
d1_srtp.c Submitted by: Eric Rescorla <ekr@rtfm.com> 2012-02-11 22:53:48 +00:00
d1_srvr.c DTLS revision. 2013-09-18 13:46:02 +01:00
dnssec.c Header needed for SOCK_STREAM on FreeBSD. 2013-06-04 16:27:05 +01:00
dtls1.h Reduce version skew: trivia (I hope). 2012-06-03 22:03:37 +00:00
install-ssl.com Don't forget to install srtp.h as well 2012-05-10 15:01:26 +00:00
kssl.c make kerberos work with OPENSSL_NO_SSL_INTERN 2011-05-11 22:52:34 +00:00
kssl.h make kerberos work with OPENSSL_NO_SSL_INTERN 2011-05-11 22:52:34 +00:00
kssl_lcl.h Some fixes for kerberos builds. 2009-04-21 22:20:12 +00:00
Makefile RFC6689 support: add missing commit (git noob alert). 2013-05-15 20:41:51 +02:00
s2_clnt.c Add and use a constant-time memcmp. 2013-02-06 13:56:12 +00:00
s2_enc.c Update ssl library to support EVP_PKEY MAC API. Include generic MAC support. 2007-06-04 17:04:40 +00:00
s2_lib.c Add ctrl and utility functions to retrieve raw cipher list sent by client in 2012-12-26 16:25:06 +00:00
s2_meth.c Type-checked (and modern C compliant) OBJ_bsearch. 2008-10-12 14:32:47 +00:00
s2_pkt.c Add and use a constant-time memcmp. 2013-02-06 13:56:12 +00:00
s2_srvr.c Reduce version skew: trivia (I hope). 2012-06-03 22:03:37 +00:00
s3_both.c DTLS revision. 2013-09-18 13:46:02 +01:00
s3_cbc.c Check DTLS_BAD_VER for version number. 2013-02-12 15:15:32 +00:00
s3_clnt.c DTLS revision. 2013-09-18 13:46:02 +01:00
s3_enc.c ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility. 2013-02-06 13:56:15 +00:00
s3_lib.c DTLS revision. 2013-09-18 13:46:02 +01:00
s3_meth.c Type-checked (and modern C compliant) OBJ_bsearch. 2008-10-12 14:32:47 +00:00
s3_pkt.c Fix error codes. 2013-02-26 17:05:39 +00:00
s3_srvr.c DTLS revision. 2013-09-18 13:46:02 +01:00
s23_clnt.c Various custom extension fixes. 2013-09-16 18:40:53 +01:00
s23_lib.c Fix warnings (From HEAD, original patch by Ben). 2010-06-15 17:25:15 +00:00
s23_meth.c Backport TLS v1.2 support from HEAD. 2011-05-11 13:37:52 +00:00
s23_pkt.c Reorder inclusion of header files: 2002-07-10 07:01:54 +00:00
s23_srvr.c Add three Suite B modes to TLS code, supporting RFC6460. 2012-12-26 16:17:40 +00:00
srtp.h move internal functions to ssl_locl.h 2011-11-21 22:52:01 +00:00
ssl-lib.com PR: 2652 2012-01-05 14:30:08 +00:00
ssl.h Don't prefer ECDHE-ECDSA ciphers when the client appears to be Safari on OS X. 2013-09-16 14:03:21 +01:00
ssl2.h Initial "opaque SSL" framework. If an application defines OPENSSL_NO_SSL_INTERN 2011-05-11 12:56:38 +00:00
ssl3.h DTLS revision. 2013-09-18 13:46:02 +01:00
ssl23.h Import of old SSLeay release: SSLeay 0.9.0b 1998-12-21 10:56:39 +00:00
ssl_algs.c e_aes_cbc_hmac_sha1.c: address the CBC decrypt timing issues. 2013-02-06 13:56:15 +00:00
ssl_asn1.c Use correct tag for SRP username. 2011-10-25 12:52:47 +00:00
ssl_cert.c Cosmetic touchups. 2013-07-31 16:38:43 +01:00
ssl_ciph.c Make no-ec compilation work. 2013-08-19 14:13:38 +01:00
ssl_conf.c Make no-ec compilation work. 2013-08-19 14:13:38 +01:00
ssl_err.c Trying cherrypick: 2013-07-03 11:53:30 +01:00
ssl_err2.c Use new-style system-id macros everywhere possible. I hope I haven't 2001-02-20 08:13:47 +00:00
ssl_lib.c Make no-ec compilation work. 2013-08-19 14:13:38 +01:00
ssl_locl.h DTLS revision. 2013-09-18 13:46:02 +01:00
ssl_rsa.c Various custom extension fixes. 2013-09-16 18:40:53 +01:00
ssl_sess.c RFC 5878 support. 2012-05-29 17:27:48 +00:00
ssl_stat.c PR: 1794 2011-11-25 00:18:10 +00:00
ssl_task.c Security fixes brought forward from 0.9.7. 2002-11-13 15:43:43 +00:00
ssl_txt.c Backport TLS v1.2 support from HEAD. 2011-05-11 13:37:52 +00:00
ssltest.c Trying cherrypick: 2013-07-03 11:53:30 +01:00
t1_clnt.c Backport TLS v1.2 support from HEAD. 2011-05-11 13:37:52 +00:00
t1_enc.c ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility. 2013-02-06 13:56:15 +00:00
t1_lib.c DTLS revision. 2013-09-18 13:46:02 +01:00
t1_meth.c Backport TLS v1.2 support from HEAD. 2011-05-11 13:37:52 +00:00
t1_reneg.c Update RI to match latest spec. 2009-12-27 22:59:09 +00:00
t1_srvr.c Backport TLS v1.2 support from HEAD. 2011-05-11 13:37:52 +00:00
t1_trce.c Fix for trace code: SSL3 doesn't include a length value for 2013-02-04 15:14:00 +00:00
tls1.h Add three Suite B modes to TLS code, supporting RFC6460. 2012-12-26 16:17:40 +00:00
tls_srp.c Reduce version skew: trivia (I hope). 2012-06-03 22:03:37 +00:00