提交 · 32ec41539b5b23bc42503589fcc5be65d648d1f5 · btwise / openssl

16 5月, 2015 1 次提交

Server side version negotiation rewrite · 32ec4153

由 Matt Caswell 提交于 3月 27, 2015

This commit changes the way that we do server side protocol version
negotiation. Previously we had a whole set of code that had an "up front"
state machine dedicated to the negotiating the protocol version. This adds
significant complexity to the state machine. Historically the justification
for doing this was the support of SSLv2 which works quite differently to
SSLv3+. However, we have now removed support for SSLv2 so there is little
reason to maintain this complexity.

The one slight difficulty is that, although we no longer support SSLv2, we
do still support an SSLv3+ ClientHello in an SSLv2 backward compatible
ClientHello format. This is generally only used by legacy clients. This
commit adds support within the SSLv3 code for these legacy format
ClientHellos.

Server side version negotiation now works in much the same was as DTLS,
i.e. we introduce the concept of TLS_ANY_VERSION. If s->version is set to
that then when a ClientHello is received it will work out the most
appropriate version to respond with. Also, SSLv23_method and
SSLv23_server_method have been replaced with TLS_method and
TLS_server_method respectively. The old SSLv23* names still exist as
macros pointing at the new name, although they are deprecated.

Subsequent commits will look at client side version negotiation, as well of
removal of the old s23* code.
Reviewed-by: NKurt Roeckx <kurt@openssl.org>

32ec4153

25 3月, 2015 1 次提交

free NULL cleanup · ca3a82c3

由 Rich Salz 提交于 3月 25, 2015

This commit handles BIO_ACCEPT_free BIO_CB_FREE BIO_CONNECT_free
BIO_free BIO_free_all BIO_vfree
Reviewed-by: NMatt Caswell <matt@openssl.org>

ca3a82c3

24 1月, 2015 1 次提交

ifdef cleanup, part 4a: '#ifdef undef' · a2b18e65

由 Rich Salz 提交于 1月 24, 2015

This removes all code surrounded by '#ifdef undef'
One case is left: memmove() replaced by open-coded for loop,
in crypto/stack/stack.c  That needs further review.

Also removed a couple of instances of /* dead code */ if I saw them
while doing the main removal.
Reviewed-by: NMatt Caswell <matt@openssl.org>

a2b18e65

22 1月, 2015 4 次提交
- M
  More comment realignment · 35a1cc90
  由 Matt Caswell 提交于 1月 17, 2015
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  35a1cc90
- M
  Re-align some comments after running the reformat script. · 50e735f9
  由 Matt Caswell 提交于 1月 05, 2015
```
This should be a one off operation (subsequent invokation of the
script should not move them)
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  50e735f9
- M
  Run util/openssl-format-source -v -c . · 0f113f3e
  由 Matt Caswell 提交于 1月 22, 2015
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  0f113f3e
- M
  Further comment changes for reformat (master) · c80fd6b2
  由 Matt Caswell 提交于 1月 16, 2015
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  c80fd6b2
15 1月, 2015 1 次提交

Cleanup OPENSSL_NO_xxx, part 1 · 4b618848

由 Rich Salz 提交于 1月 14, 2015

OPENSSL_NO_RIPEMD160, OPENSSL_NO_RIPEMD merged into OPENSSL_NO_RMD160
OPENSSL_NO_FP_API merged into OPENSSL_NO_STDIO
Two typo's on #endif comments fixed:
	OPENSSL_NO_ECB fixed to OPENSSL_NO_OCB
	OPENSSL_NO_HW_SureWare fixed to OPENSSL_NO_HW_SUREWARE
Reviewed-by: NRichard Levitte <levitte@openssl.org>

4b618848

13 1月, 2015 1 次提交

RT3548: Remove unsupported platforms · 6d23cf97

由 Rich Salz 提交于 1月 12, 2015

This last one for this ticket.  Removes WIN16.
So long, MS_CALLBACK and MS_FAR.  We won't miss you.
Reviewed-by: NRichard Levitte <levitte@openssl.org>

6d23cf97

06 1月, 2015 1 次提交
- M
  Further comment amendments to preserve formatting prior to source reformat · 3a83462d
  由 Matt Caswell 提交于 1月 05, 2015
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  3a83462d
18 12月, 2014 1 次提交
- R
  RT3548: Remove some obsolete platforms · b317819b
  由 Rich Salz 提交于 12月 17, 2014
```
This commit removes BEOS.
Reviewed-by: NRichard Levitte <levitte@openssl.org>
```
  b317819b
04 12月, 2014 1 次提交

Remove SSLv2 support · 45f55f6a

由 Kurt Roeckx 提交于 11月 30, 2014

The only support for SSLv2 left is receiving a SSLv2 compatible client hello.
Reviewed-by: NRichard Levitte <levitte@openssl.org>

45f55f6a

12 4月, 2006 1 次提交

Add BeOS support. · 4700aea9

由 Ulf Möller 提交于 4月 11, 2006

PR: 1312
Submitted by: Oliver Tappe <zooey@hirschkaefer.de>
Reviewed by: Ulf Moeller

4700aea9

28 12月, 2003 1 次提交
- R
  Only use environment variables if uid and gid are the same as euid and egid. · f28e8bd3
  由 Richard Levitte 提交于 12月 27, 2003
```
This is part of a large change submitted by Markus Friedl <markus@openbsd.org>
```
  f28e8bd3
28 11月, 2003 1 次提交
- R
  Netware-specific changes, · 4d8743f4
  由 Richard Levitte 提交于 11月 28, 2003
```
PR: 780
Submitted by: Verdon Walker <VWalker@novell.com>
Reviewed by: Richard Levitte
```
  4d8743f4
23 2月, 2003 1 次提交
- U
  
  more mingw related cleanups. · 66ecdf3b
  由 Ulf Möller 提交于 2月 22, 2003
  
  66ecdf3b
20 2月, 2001 2 次提交

Use new-style system-id macros everywhere possible. I hope I haven't · bc36ee62

由 Richard Levitte 提交于 2月 20, 2001

missed any.

This compiles and runs on Linux, and external applications have no
problems with it.  The definite test will be to build this on VMS.

bc36ee62

Make all configuration macros available for application by making · cf1b7d96

由 Richard Levitte 提交于 2月 19, 2001

sure they are available in opensslconf.h, by giving them names starting
with "OPENSSL_" to avoid conflicts with other packages and by making
sure e_os2.h will cover all platform-specific cases together with
opensslconf.h.

I've checked fairly well that nothing breaks with this (apart from
external software that will adapt if they have used something like
NO_KRB5), but I can't guarantee it completely, so a review of this
change would be a good thing.

cf1b7d96

02 6月, 2000 1 次提交

There have been a number of complaints from a number of sources that names · 26a3a48d

由 Richard Levitte 提交于 6月 01, 2000

like Malloc, Realloc and especially Free conflict with already existing names
on some operating systems or other packages. That is reason enough to change
the names of the OpenSSL memory allocation macros to something that has a
better chance of being unique, like prepending them with OPENSSL_.

This change includes all the name changes needed throughout all C files.

26a3a48d

26 2月, 2000 3 次提交
- R
  
  Make sure there's some entropy, and log a few more errors. · c131593d
  由 Richard Levitte 提交于 2月 26, 2000
  
  c131593d
- R
  
  Small error fix. · 1340db65
  由 Richard Levitte 提交于 2月 25, 2000
  
  1340db65
- R
  Update the two threads modules to conform to our recommendations (use · 2d2d3139
  由 Richard Levitte 提交于 2月 25, 2000
```
CRYPTO_num_locks() instead of CRYPTO_NUM_LOCKS!), and correct all the
inconsistencies with the rest of OpenSSL.

At least, this compiles nicely on Linux using PTHREADS.  I've done no
other tests so far.
```
  2d2d3139
04 2月, 2000 1 次提交
- D
  Rename SSLeay_add_all_algorithms() et al to · af57d843
  由 Dr. Stephen Henson 提交于 2月 04, 2000
```
OpenSSL_add_all_algorithms(). Move these into
separate files so they work properly.
```
  af57d843
27 4月, 1999 1 次提交
- U
  
  Remove NOPROTO definitions and error code comments. · a9be3af5
  由 Ulf Möller 提交于 4月 26, 1999
  
  a9be3af5
24 4月, 1999 1 次提交
- B
  Change #include filenames from <foo.h> to <openssl.h>. · ec577822
  由 Bodo Möller 提交于 4月 23, 1999
```
Submitted by:
Reviewed by:
PR:
```
  ec577822
20 4月, 1999 1 次提交
- U
  
  Change functions to ANSI C. · 6b691a5c
  由 Ulf Möller 提交于 4月 19, 1999
  
  6b691a5c
21 12月, 1998 2 次提交
- R
  
  Import of old SSLeay release: SSLeay 0.9.0b · 58964a49
  由 Ralf S. Engelschall 提交于 12月 21, 1998
  
  58964a49
- R
  
  Import of old SSLeay release: SSLeay 0.8.1b · d02b48c6
  由 Ralf S. Engelschall 提交于 12月 21, 1998
  
  d02b48c6