- 10 Jan, 2017 34 commits
-
-
Matt Caswell authored
TLSv1.3 freezes the record layer version and ensures that it is always set to TLSv1.0. Some implementations check this. Reviewed-by:
Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/2157)
-
Matt Caswell authored
Reviewed-by:
-
Matt Caswell authored
Reviewed-by:
-
Matt Caswell authored
In TLSv1.3 we must use PSS based sig algs for RSA signing. Ignore any shared sig algs which are PKCS1 based. Reviewed-by:
-
Matt Caswell authored
Reviewed-by:
-
Matt Caswell authored
A misreading of the TLS1.3 spec meant we were using the handshake hashes up to and including the Client Finished to calculate the client application traffic secret. We should be only use up until the Server Finished. Reviewed-by:
-
Matt Caswell authored
We can't handle these messages yet, so ignore them for now. Reviewed-by:
-
Matt Caswell authored
We need to use the length of the handshake hash for the length of the finished key. Reviewed-by:
-
Matt Caswell authored
We were not incrementing the sequence number every time we sent/received a record. Reviewed-by:
-
Matt Caswell authored
The sigalgs work has made some old lookup tables and functions redundant so remove them. Reviewed-by:
-
Matt Caswell authored
We had an extra layer of indirection in looking up hashes and sigs based on sigalgs which is now no longer necessary. This removes it. Reviewed-by:
-
Matt Caswell authored
The extensions refactor made this function redundant so we can remove it. Reviewed-by:
-
Matt Caswell authored
In TLSv1.2 an individual sig alg is represented by 1 byte for the hash and 1 byte for the signature. In TLSv1.3 each sig alg is represented by two bytes, where the two bytes together represent a single hash and signature combination. This converts the internal representation of sigalgs to use a single int for the pair, rather than a pair of bytes. Reviewed-by:
-
Matt Caswell authored
Reviewed-by:
-
Matt Caswell authored
Reviewed-by:
-
Matt Caswell authored
Reviewed-by:
-
Matt Caswell authored
Reviewed-by:
-
Rich Salz authored
Fixes GitHub issue 2169. Reviewed-by:
Kurt Roeckx <kurt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/2207)
-
Kurt Roeckx authored
Found by tis-interpreter Reviewed-by: -
Richard Levitte authored
Reviewed-by:
-
Richard Levitte authored
- guard CRYPTO_3DES_CBC - add a missing cast Reviewed-by:
-
Matt Caswell authored
Otherwise the client will try to process it again. The second time around it will try and move the record data into handshake fragment storage and realise that there is no data left. At that point it marks it as read anyway. However, it is a bug that we go around the loop a second time, so we prevent that. Reviewed-by:
-
Iaroslav Gridin authored
by levitte Reviewed-by:
Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/1784)
-
Iaroslav Gridin authored
by levitte Reviewed-by:
-
Iaroslav Gridin authored
Reviewed-by:
-
Iaroslav Gridin authored
Reviewed-by:
-
Iaroslav Gridin authored
Reviewed-by:
-
Iaroslav Gridin authored
Reviewed-by:
-
Iaroslav Gridin authored
Reviewed-by:
-
Nikos Mavrogiannopoulos authored
Reviewed-by:
-
Nikos Mavrogiannopoulos authored
That patch also enables support for SHA2 hashes, and removes support for hashes that were never supported by cryptodev. Reviewed-by:
-
Rich Salz authored
Reviewed-by:
Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/2052)
-
Rich Salz authored
Reviewed-by:
-
Rich Salz authored
Reviewed-by:
-
- 09 Jan, 2017 4 commits
-
-
Richard Levitte authored
Reviewed-by:
-
Bernd Edlinger authored
Signed-off-by:
Kurt Roeckx <kurt@roeckx.be> Reviewed-by:
-
Rich Salz authored
Reviewed-by:
-
Rich Salz authored
Enhance find-doc-nits to be better about finding typedefs for callback functions. Fix all nits it now finds. Added some new typedef names to ssl.h some of which were documented but did not exist Reviewed-by:
-
- 08 Jan, 2017 2 commits
-
-
Dr. Stephen Henson authored
Reviewed-by:
-
Dr. Stephen Henson authored
Add option ExpectedTmpKeyType to test the temporary key the server sends is of the correct type. Reviewed-by:
-
