Skip to content
  1. Apr 06, 2013
  2. Apr 04, 2013
  3. Apr 03, 2013
  4. Mar 31, 2013
  5. Mar 29, 2013
  6. Mar 28, 2013
  7. Mar 26, 2013
  8. Mar 24, 2013
  9. Mar 19, 2013
  10. Mar 18, 2013
    • Andy Polyakov's avatar
      5c600465
    • Dr. Stephen Henson's avatar
      Use enc_flags when deciding protocol variations. · cbd64894
      Dr. Stephen Henson authored
      Use the enc_flags field to determine whether we should use explicit IV,
      signature algorithms or SHA256 default PRF instead of hard coding which
      versions support each requirement.
      cbd64894
    • Dr. Stephen Henson's avatar
      6de2649a
    • Dr. Stephen Henson's avatar
      DTLS revision. · 173e72e6
      Dr. Stephen Henson authored
      Revise DTLS code. There was a *lot* of code duplication in the
      DTLS code that generates records. This makes it harder to maintain and
      sometimes a TLS update is omitted by accident from the DTLS code.
      
      Specifically almost all of the record generation functions have code like
      this:
      
      some_pointer = buffer + HANDSHAKE_HEADER_LENGTH;
      ... Record creation stuff ...
      set_handshake_header(ssl, SSL_MT_SOMETHING, message_len);
      
      ...
      
      write_handshake_message(ssl);
      
      Where the "Record creation stuff" is identical between SSL/TLS and DTLS or
      in some cases has very minor differences.
      
      By adding a few fields to SSL3_ENC to include the header length, some flags
      and function pointers for handshake header setting and handshake writing the
      code can cope with both cases.
      
      Note: although this passes "make test" and some simple DTLS tests there may
      be some minor differences in the DTLS code that have to be accounted for.
      173e72e6
    • Michael Tuexen's avatar
      Avoid unnecessary fragmentation. · 80ccc66d
      Michael Tuexen authored
      80ccc66d
    • Dr. Stephen Henson's avatar
      Encode INTEGER correctly. · 5de18d5d
      Dr. Stephen Henson authored
      If an ASN1_INTEGER structure is allocated but not explicitly set encode
      it as zero: don't generate an invalid zero length INTEGER.
      (cherry picked from commit 1643edc63c3e15b6db5a15a728bc288f2cc2bbc7)
      5de18d5d