Skip to content
  1. Mar 13, 2001
  2. Mar 09, 2001
  3. Mar 08, 2001
  4. Feb 23, 2001
  5. Feb 22, 2001
  6. Feb 21, 2001
    • Geoff Thorpe's avatar
      If a callback is generating a new session ID for SSLv2, then upon exiting, · ec0f1959
      Geoff Thorpe authored
      the ID will be padded out to 16 bytes if the callback attempted to generate
      a shorter one. The problem is that the uniqueness checking function used in
      callbacks may mistakenly think a 9-byte ID is unique when in fact its
      padded 16-byte version is not. This makes the checking function detect
      SSLv2 cases, and ensures the padded form is checked rather than the shorter
      one passed by the callback.
      ec0f1959
    • Geoff Thorpe's avatar
      fa2b8db4
    • Geoff Thorpe's avatar
      This adds command-line support to s_server for controlling the generation · 1aa0d947
      Geoff Thorpe authored
      of session IDs. Namely, passing "-id_prefix <text>" will set a
      generate_session_id() callback that generates session IDs as random data
      with <text> block-copied over the top of the start of the ID. This can be
      viewed by watching the session ID s_client's output when it connects.
      
      This is mostly useful for testing any SSL/TLS code (eg. proxies) that wish
      to deal with multiple servers, when each of which might be generating a
      unique range of session IDs (eg. with a certain prefix).
      1aa0d947