Up to [local] / src / lib / libssl
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.7, Sat Feb 9 15:30:52 2019 UTC (5 years, 3 months ago) by jsing
Branch: MAIN
CVS Tags: HEAD
Changes since 1.6: +1 -1 lines
FILE REMOVED
Rename the file that contains the transcript handling code. ok inoguchi@ tb@
Revision 1.6 / (download) - annotate - [select for diffs], Sat Feb 9 15:26:15 2019 UTC (5 years, 3 months ago) by jsing
Branch: MAIN
Changes since 1.5: +9 -9 lines
Diff to previous 1.5 (colored)
Rename tls1_handshake_hash*() to tls1_transcript_hash*(). While handshake hash is correct (in as far as it is a hash of handshake messages), using tls1_transcript_hash*() aligns them with the naming of the tls1_transcript*() functions. Additionally, the TLSv1.3 specification uses Transcript-Hash and "transcript hash", which this matches. ok inoguchi@ tb@
Revision 1.5 / (download) - annotate - [select for diffs], Wed Nov 21 15:13:29 2018 UTC (5 years, 6 months ago) by jsing
Branch: MAIN
Changes since 1.4: +17 -2 lines
Diff to previous 1.4 (colored)
Fix DTLS transcript handling for HelloVerifyRequest. If DTLS sees a HelloVerifyRequest the transcript is reset - the previous tls1_init_finished_mac() function could be called multiple times and would discard any existing state. The replacement tls1_transcript_init() is more strict and fails if a transcript already exists. Provide an explicit tls1_transcript_reset() function and call it from the appropriate places. This also lets us make DTLS less of a special snowflake and call tls1_transcript_init() in the same place as used for TLS. ok beck@ tb@
Revision 1.4 / (download) - annotate - [select for diffs], Thu Nov 8 22:28:52 2018 UTC (5 years, 6 months ago) by jsing
Branch: MAIN
Changes since 1.3: +81 -6 lines
Diff to previous 1.3 (colored)
Clean up and simplify the handshake transcript code. This provides a cleaner, simpler and more readable API, with code that uses a BUF_MEM instead of a BIO. ok beck@ ("hurry up") and tb@.
Revision 1.3 / (download) - annotate - [select for diffs], Wed Sep 5 16:58:59 2018 UTC (5 years, 8 months ago) by jsing
Branch: MAIN
CVS Tags: OPENBSD_6_4_BASE,
OPENBSD_6_4
Changes since 1.2: +5 -5 lines
Diff to previous 1.2 (colored)
Use the newer/more sensible names for EVP_MD_CTX_* functions. EVP_MD_CTX_create -> EVP_MD_CTX_new EVP_MD_CTX_destroy -> EVP_MD_CTX_free This should make the intent more obvious and reduce head scratching during code reviews. Raised by tb@
Revision 1.2 / (download) - annotate - [select for diffs], Sat May 6 16:18:36 2017 UTC (7 years ago) by jsing
Branch: MAIN
CVS Tags: OPENBSD_6_3_BASE,
OPENBSD_6_3,
OPENBSD_6_2_BASE,
OPENBSD_6_2
Changes since 1.1: +1 -0 lines
Diff to previous 1.1 (colored)
Add missing $OpenBSD$ tags.
Revision 1.1 / (download) - annotate - [select for diffs], Sun Mar 5 14:39:53 2017 UTC (7 years, 2 months ago) by jsing
Branch: MAIN
CVS Tags: OPENBSD_6_1_BASE,
OPENBSD_6_1
Provide a rolling handshake hash that commences as soon as the cipher suite has been selected, and convert the final finish MAC to use this handshake hash. This is a first step towards cleaning up the current handshake buffer/digest code. ok beck@ inoguchi@