1. 09 4月, 2013 1 次提交
    • D
      Dual DTLS version methods. · c6913eeb
      Dr. Stephen Henson 提交于
      Add new methods DTLS_*_method() which support both DTLS 1.0 and DTLS 1.2 and
      pick the highest version the peer supports during negotiation.
      
      As with SSL/TLS options can change this behaviour specifically
      SSL_OP_NO_DTLSv1 and SSL_OP_NO_DTLSv1_2.
      c6913eeb
  2. 28 3月, 2013 1 次提交
  3. 11 3月, 2013 1 次提交
    • D
      DTLS trace support. · 890f2f8b
      Dr. Stephen Henson 提交于
      Add DTLS record header parsing, different client hello format and add
      HelloVerifyRequest message type.
      
      Add code to d1_pkt.c to send message headers to the message callback.
      890f2f8b
  4. 27 2月, 2013 1 次提交
  5. 08 2月, 2013 1 次提交
  6. 06 2月, 2013 4 次提交
    • A
      ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility. · 2aec073a
      Andy Polyakov 提交于
      Kludge alert. This is arranged by passing padding length in unused
      bits of SSL3_RECORD->type, so that orig_len can be reconstructed.
      (cherry picked from commit 8bfd4c659f180a6ce34f21c0e62956b362067fba)
      2aec073a
    • B
      Update DTLS code to match CBC decoding in TLS. · e33ac0e7
      Ben Laurie 提交于
      This change updates the DTLS code to match the constant-time CBC
      behaviour in the TLS.
      (cherry picked from commit 9f27de170d1b7bef3d46d41382dc4dafde8b3900)
      e33ac0e7
    • B
      Don't crash when processing a zero-length, TLS >= 1.1 record. · 93cab6b3
      Ben Laurie 提交于
      The previous CBC patch was bugged in that there was a path through enc()
      in s3_pkt.c/d1_pkt.c which didn't set orig_len. orig_len would be left
      at the previous value which could suggest that the packet was a
      sufficient length when it wasn't.
      (cherry picked from commit 6cb19b7681f600b2f165e4adc57547b097b475fd)
      93cab6b3
    • B
      Add and use a constant-time memcmp. · 7c770d57
      Ben Laurie 提交于
      This change adds CRYPTO_memcmp, which compares two vectors of bytes in
      an amount of time that's independent of their contents. It also changes
      several MAC compares in the code to use this over the standard memcmp,
      which may leak information about the size of a matching prefix.
      (cherry picked from commit 2ee798880a246d648ecddadc5b91367bee4a5d98)
      7c770d57
  7. 09 3月, 2012 1 次提交
    • D
      PR: 2756 · ea6e3860
      Dr. Stephen Henson 提交于
      Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
      
      Fix DTLS timeout handling.
      ea6e3860
  8. 19 1月, 2012 1 次提交
  9. 05 1月, 2012 1 次提交
  10. 01 1月, 2012 1 次提交
    • D
      PR: 2658 · 4817504d
      Dr. Stephen Henson 提交于
      Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
      Reviewed by: steve
      
      Support for TLS/DTLS heartbeats.
      4817504d
  11. 25 12月, 2011 1 次提交
    • D
      PR: 2535 · 7e159e01
      Dr. Stephen Henson 提交于
      Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
      Reviewed by: steve
      
      Add SCTP support for DTLS (RFC 6083).
      7e159e01
  12. 01 9月, 2011 1 次提交
    • D
      PR: 2573 · d41ce00b
      Dr. Stephen Henson 提交于
      Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
      Reviewed by: steve
      
      Fix DTLS buffering and decryption bug.
      d41ce00b
  13. 05 1月, 2011 1 次提交
  14. 26 8月, 2010 1 次提交
    • D
      PR: 1833 · 44959ee4
      Dr. Stephen Henson 提交于
      Submitted By: Robin Seggelmann <seggelmann@fh-muenster.de>
      
      Support for abbreviated handshakes when renegotiating.
      44959ee4
  15. 12 6月, 2010 1 次提交
  16. 14 4月, 2010 2 次提交
    • D
      PR: 2229 · 3122d1d3
      Dr. Stephen Henson 提交于
      Submitted By: Robin Seggelmann <seggelmann@fh-muenster.de>
      
      Don't drop DTLS connection if mac or decryption failed.
      3122d1d3
    • D
      PR: 2228 · b7463c88
      Dr. Stephen Henson 提交于
      Submitted By: Robin Seggelmann <seggelmann@fh-muenster.de>
      
      Fix DTLS buffer record MAC failure bug.
      b7463c88
  17. 06 4月, 2010 2 次提交
    • D
      PR: 2218 · ff12f88b
      Dr. Stephen Henson 提交于
      Submitted By: Robin Seggelmann <seggelmann@fh-muenster.de>
      
      Fixes for DTLS replay bug.
      ff12f88b
    • D
      PR: 2219 · 47e6a60e
      Dr. Stephen Henson 提交于
      Submitted By: Robin Seggelmann <seggelmann@fh-muenster.de>
      
      Fixes for DTLS buffering bug.
      47e6a60e
  18. 05 10月, 2009 1 次提交
  19. 16 9月, 2009 1 次提交
    • D
      PR: 2039 · e9f613ac
      Dr. Stephen Henson 提交于
      Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
      Approved by: steve@openssl.org
      
      DTLS listen bug fix,
      e9f613ac
  20. 26 8月, 2009 1 次提交
    • D
      PR: 2006 · 480b9e5d
      Dr. Stephen Henson 提交于
      Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
      Approved by: steve@openssl.org
      
      Do not use multiple DTLS records for a single user message
      480b9e5d
  21. 12 8月, 2009 1 次提交
    • D
      PR: 1997 · b972fbaa
      Dr. Stephen Henson 提交于
      Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
      Approved by: steve@openssl.org
      
      DTLS timeout handling fix.
      b972fbaa
  22. 24 7月, 2009 1 次提交
  23. 13 7月, 2009 1 次提交
  24. 04 7月, 2009 2 次提交
  25. 01 7月, 2009 1 次提交
  26. 05 6月, 2009 1 次提交
  27. 17 5月, 2009 1 次提交
  28. 16 5月, 2009 1 次提交
  29. 24 4月, 2009 1 次提交
  30. 20 4月, 2009 1 次提交
  31. 15 4月, 2009 1 次提交
  32. 30 12月, 2008 1 次提交
  33. 29 12月, 2008 1 次提交
  34. 27 12月, 2008 1 次提交