Skip to content
  1. Mar 21, 2017
    • Matt Caswell's avatar
      Fix resumption after HRR · 77815a02
      Matt Caswell authored
      Commit 6b1bb98f
      
       moved the processing of ClientHello extensions into the
      state machine post-processing stage. After processing s->init_num is reset
      to 0, so by post-processing we cannot rely on its value. Unfortunately we
      were using it to handle the PSK extension. This causes the handshake to
      fail.
      
      We were using init_num to figure out the length of ClientHello2 so we can
      remove it from the handshake_buffer. The handshake_buffer holds the
      transcript of all the messages sent so far. For PSK processing though we
      only want to add in a partial ClientHello2. This commit changes things so
      we just work out where ClientHello2 starts, working forward from the
      beginning of handshake_buffer.
      
      Fixes #2983
      
      Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
      (Merged from https://github.com/openssl/openssl/pull/2996)
      77815a02
    • Richard Levitte's avatar
      Rework how protocol specific ciphers in 80-test_ssl_old.t are picked out · 9ea6d56d
      Richard Levitte authored
      
      
      The code to do this incorrectly assumed that the protocol version
      could be used as a valid cipher suite  for the 'openssl cipher'
      command.  While this is true in some cases, that isn't something to be
      trusted.  Replace that assumption with code that takes the full
      'openssl ciphers' command output and parses it to find the ciphers we
      look for.
      
      Reviewed-by: default avatarEmilia Käsper <emilia@openssl.org>
      (Merged from https://github.com/openssl/openssl/pull/2956)
      9ea6d56d
  2. Mar 20, 2017
  3. Mar 19, 2017
  4. Mar 18, 2017
  5. Mar 17, 2017
  6. Mar 16, 2017