|  | Commit message (Collapse) | Author | Age | Files | Lines | 
|---|
| ... |  | 
| | |  | 
| | 
| 
| 
| | Reported by <dravion at ht-foss dot net> | 
| | 
| 
| 
| 
| 
| | keep these around.
ok beck@ | 
| | 
| 
| 
| 
| 
| 
| | while we are at it, convert SSLerror to use a function
internally, so that we may later allocate the handshake
structure and check for it
ok jsing@ | 
| | 
| 
| 
| | ok jsing@, gcc@, regress@ | 
| | 
| 
| 
| 
| 
| | Rides minor bump.
ok beck@ | 
| | 
| 
| 
| | explicit_bzero()/free(). Less code and potentially less overhead. | 
| | |  | 
| | 
| 
| 
| 
| 
| 
| | with the handshake hash. For now tls1_digest_cached_records() is retained
to release the handshake buffer.
ok beck@ inoguchi@ | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| | suite has been selected, and convert the final finish MAC to use this
handshake hash.
This is a first step towards cleaning up the current handshake
buffer/digest code.
ok beck@ inoguchi@ | 
| | 
| 
| 
| 
| | function. Nothing makes use of the return value and the second argument
was only used to produce the return value... | 
| | 
| 
| 
| 
| 
| 
| 
| 
| | Make a table of "function codes" which maps the internal state of the SSL *
to something like a useful name so in a typical error in the connection you
know in what sort of place in the handshake things happened. (instead of
by arcane function name).
Add SSLerrorx() for when we don't have an SSL *
ok jsing@ after us both being prodded by bluhm@ to make it not terrible | 
| | 
| 
| 
| 
| 
| 
| 
| | SSL_{,CTX_}ctrl() functions. As crazy as it is, some software appears to
call the control functions directly rather than using the macros (or
functions) provided by the library.
Discussed with beck@ and sthen@ | 
| | 
| 
| 
| | line wraps that resulted | 
| | 
| 
| 
| 
| 
| 
| | We leave a single funciton code (0xFFF) to say "SSL_internal" so the public
API will not break, and we replace all internal use of the two argument
SSL_err() with the internal only SSL_error() that only takes a reason code.
ok jsing@ | 
| | |  | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| | SSL{_CTX}_set1_groups{_list}() - also provide defines for the previous
SSL{_CTX}_set1_curves{_list} names.
This also changes the default list of EC curves to be X25519, P-256 and
P-384. If you want others (such a brainpool) you need to configure this
yourself.
Inspired by parts of BoringSSL and OpenSSL.
ok beck@ | 
| | |  | 
| | 
| 
| 
| | set and cleared via existing functions. | 
| | 
| 
| 
| | Discussed with beck@ | 
| | 
| 
| 
| 
| | so these should not be diddled with directly
ok jsing@ | 
| | 
| 
| 
| | ok jsing@ | 
| | 
| 
| 
| 
| 
| | known to be in use.
ok beck@ | 
| | 
| 
| 
| | ok jsing@ | 
| | 
| 
| 
| 
| 
| | internal.
ok beck@ | 
| | 
| 
| 
| | ok beck@ | 
| | 
| 
| 
| 
| 
| | known to be used by ports.
ok beck@ | 
| | 
| 
| 
| | ok beck@ | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| | This change adds an internal opaque struct for each of the significant
publically visible structs. The opaque struct is then allocated and
attached to the publically visible struct when the appropriate *_new()
function is called, then cleared and freed as necessary.
This will allow for changes to be made to the internals of libssl, without
requiring a major bump each time the publically visible structs are
modified.
ok beck@ | 
| | 
| 
| 
| 
| 
| | are within a struct that was just allocated via calloc.
ok beck@ | 
| | 
| 
| 
| 
| 
| | zeroed the entire struct via memset.
ok beck@ | 
| | 
| 
| 
| | ok doug@ | 
| | 
| 
| 
| 
| 
| | Testing of an earlier revision by naddy@.
ok beck@ | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| | up and restructure.
This also adds CBB based variants of the ssl3_handshake_msg_{start,finish}
functions - for the time being these use a CBB to build the messages, then
copy back into the init_buf.
ok doug@ | 
| | 
| 
| 
| 
| 
| | MEDIUM.
ok beck@ bcook@ | 
| | 
| 
| 
| 
| 
| | this.
ok beck@ bcook@ | 
| | 
| 
| 
| | ok beck@ | 
| | 
| 
| 
| 
| 
| 
| 
| 
| | and more importantly they do not provide PFS (if you want to use ECDH, use
ECDHE instead).
With input from guenther@.
ok deraadt@ guenther@ | 
| | 
| 
| 
| 
| 
| 
| 
| 
| | Rename the existing ChaCha20-Poly1305 cipher suites with an "-OLD" suffix,
effectively replaces the original Google implementation. We continue to
support both the IETF and Google versions, however the existing names
now refer to the ciphers from draft-ietf-tls-chacha20-poly1305-04.
Feedback from doug@ | 
| | 
| 
| 
| | ok jsing@ | 
| | 
| 
| 
| 
| 
| 
| | We can now assume >= TLS v1.0 since SSL2_VERSION, SSL3_VERSION and
DTLS1_BAD_VER support was removed.
"reads ok" miod@ | 
| | 
| 
| 
| 
| 
| 
| | ssl3_handshake_msg_hdr_len() function. Use this to correct several places
that have magic numbers with header lengths hardcoded as '4'.
ok beck@ | 
| | 
| 
| 
| 
| 
| | ssl3_ prefix.
ok beck@ | 
| | 
| 
| 
| | ok "flensing knife" | 
| | 
| 
| 
| | ok "flensing knife" | 
| | 
| 
| 
| | ok miod@ | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| | This is the first wave of SSLv3 removal which removes the main SSLv3
functions.  Future commits will remove the rest of the SSLv3 support.
Discussed the plan at c2k15.  Input from jsing@, beck@, miod@, bcook@,
sthen@, naddy@, and deraadt@.
ok jsing@, beck@ | 
| | 
| 
| 
| 
| 
| | Libtls is riding this crank.
ok miod@ bcook@ | 
| | 
| 
| 
| 
| 
| 
| 
| 
| | For a few old releases, ECDHE-ECDSA was broken on OS X.  This option
cannot differentiate between working and broken OS X so it disabled
ECDHE-ECDSA support on all OS X >= 10.6.  10.8-10.8.3 were the faulty
releases but these are no longer relevant.  Tested on OS X 10.10 by jsing.
ok jsing@ | 
| | 
| 
| 
| | ok miod@ jsing@ |