wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/ssl
History
David Benjamin 1ed6587154 Resolve DTLS cookie and version before session resumption. 
Session resumption involves a version check, so version negotiation must
happen first. Currently, the DTLS implementation cannot do session
resumption in DTLS 1.0 because the ssl_version check always checks
against 1.2.

Switching the order also removes the need to fixup ssl_version in DTLS
version negotiation.

Signed-off-by: Kurt Roeckx <kurt@roeckx.be>
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

RT: #4392, MR: #2452
2016-03-27 23:59:00 +02:00
..
record Fix building without multiblock support 2016-03-08 08:52:45 +00:00
statem Resolve DTLS cookie and version before session resumption. 2016-03-27 23:59:00 +02:00
bio_ssl.c RT4660: BIO_METHODs should be const. 2016-03-21 16:49:10 -04:00
build.info Update build.info files for auto-init/de-init 2016-02-09 15:11:38 +00:00
d1_lib.c Fix no-sock 2016-03-21 16:33:59 +00:00
d1_msg.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
d1_srtp.c Add new DTLS-SRTP protection profiles from RFC 7714 2016-02-04 22:52:21 +00:00
Makefile.in Remove the remainder of util/mk1mf.pl and companion scripts 2016-03-21 11:02:00 +01:00
methods.c Allow different protocol version when trying to reuse a session 2016-03-27 23:58:50 +02:00
packet_locl.h Refactor ClientHello extension parsing 2016-03-03 13:53:26 +01:00
pqueue.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
s3_cbc.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
s3_enc.c Lazily initialise the compression buffer 2016-03-07 21:39:27 +00:00
s3_lib.c Remove #error from include files. 2016-03-20 19:48:36 -04:00
s3_msg.c Implement write pipeline support in libssl 2016-03-07 21:39:27 +00:00
ssl_asn1.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
ssl_cert.c Remove #error from include files. 2016-03-20 19:48:36 -04:00
ssl_ciph.c Check algo_strength using SSL_STRONG_MASK 2016-03-22 22:00:12 +01:00
ssl_conf.c Remove #error from include files. 2016-03-20 19:48:36 -04:00
ssl_err.c Allow different protocol version when trying to reuse a session 2016-03-27 23:58:50 +02:00
ssl_init.c Swap the init code to use CRYPTO_ONCE 2016-03-07 17:17:21 +00:00
ssl_lib.c Remove #error from include files. 2016-03-20 19:48:36 -04:00
ssl_locl.h Allow different protocol version when trying to reuse a session 2016-03-27 23:58:50 +02:00
ssl_mcnf.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
ssl_rsa.c fix no-ec build 2016-03-03 13:27:34 +00:00
ssl_sess.c Allow different protocol version when trying to reuse a session 2016-03-27 23:58:50 +02:00
ssl_stat.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
ssl_txt.c Add support for minimum and maximum protocol version supported by a cipher 2016-03-09 19:10:28 +01:00
ssl_utst.c Fix build-break 2016-02-15 10:17:12 -05:00
t1_enc.c Remove #error from include files. 2016-03-20 19:48:36 -04:00
t1_ext.c Remove #error from include files. 2016-03-20 19:48:36 -04:00
t1_lib.c Fix ALPN - more fixes 2016-03-20 21:09:32 -04:00
t1_reneg.c Remove outdated DEBUG flags. 2016-02-18 17:14:50 -05:00
t1_trce.c Adds CT validation to SSL connections 2016-03-04 10:50:10 -05:00
tls_srp.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00