openssl/util/TLSProxy
Emilia Kasper dc5744cb78 RT3234: disable compression
CRIME protection: disable compression by default, even if OpenSSL is
compiled with zlib enabled. Applications can still enable compression by
calling SSL_CTX_clear_options(ctx, SSL_OP_NO_COMPRESSION), or by using
the SSL_CONF library to configure compression. SSL_CONF continues to
work as before:

SSL_CONF_cmd(ctx, "Options", "Compression") enables compression.

SSL_CONF_cmd(ctx, "Options", "-Compression") disables compression (now
no-op by default).

The command-line switch has changed from -no_comp to -comp.

Reviewed-by: Rich Salz <rsalz@openssl.org>
2016-02-03 18:08:16 +01:00
..
ClientHello.pm Add test for missing CertificateStatus message 2015-12-27 21:59:04 +00:00
Message.pm Empty NewSessionTicket: test session resumption 2015-09-28 16:00:58 +02:00
NewSessionTicket.pm Empty session ticket: add a test 2015-09-28 16:00:47 +02:00
Proxy.pm RT3234: disable compression 2016-02-03 18:08:16 +01:00
Record.pm for test_sslvertol, add a value to display SSL version < 3 in debug 2015-08-13 22:05:25 +02:00
ServerHello.pm TLSProxy update 2015-12-08 16:33:04 +00:00
ServerKeyExchange.pm Fixups in libssl test harness 2015-08-13 22:05:25 +02:00