Mirrors/openssl
0
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2026-01-18 17:11:31 +01:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • e44454e269 Reduce the number of mallocs in dtls1_new() by allocating message queues together with the d1 struct. Frederik Wedel-Heinen 2024-12-11 13:13:28 +01:00
  • a55cc9aafc This change fixes an issue where a DTLS 1.3 would calculate a wrong transcript hash. Frederik Wedel-Heinen 2025-01-17 09:05:59 +01:00
  • 4a08d18737 Sequence number cipher context is NULL for TLS connections Frederik Wedel-Heinen 2025-01-13 09:53:07 +01:00
  • fdd02b72e3 Check result of set_protocol_version() and use the version passed as argument Frederik Wedel-Heinen 2024-12-20 13:57:49 +01:00
  • 7238620824 Avoid mallocing unprocessed_rcds and processed_rcds in dtls record layer Frederik Wedel-Heinen 2024-12-18 20:38:04 +01:00
  • 6e80e7e994 Fix DTLS 1.3 handshake transcript hash Frederik Wedel-Heinen 2024-10-25 11:19:14 +02:00
  • f9cdccb4e0 DTLS 1.3 record number encryption Frederik Wedel-Heinen 2024-02-07 13:30:00 +01:00
  • 62fb518914 Support dtls 1.3 downgrade mechanism Frederik Wedel-Heinen 2024-01-03 14:31:15 +01:00
  • 24ea63ce59 Update epochs when changing key and cipher state for dtls 1.3 Frederik Wedel-Heinen 2024-01-08 13:44:08 +01:00
  • 75a6daa3e5 Refactor handshake msg header parsing etc. Frederik Wedel-Heinen 2024-06-11 10:51:38 +02:00
  • eb3dd826e8 Fix SCTP todo Frederik Wedel-Heinen 2024-06-10 20:46:17 +02:00
  • a351d67c4c Run 70-test_tls13certcomp.t with dtls Frederik Wedel-Heinen 2024-05-30 15:46:02 +02:00
  • 0be56c45a9 Run 70-test_tls13kexmodes.t with dtls Frederik Wedel-Heinen 2024-05-30 11:58:23 +02:00
  • 2e13d7339e Run 70-test_tls13messages.t with dtls Frederik Wedel-Heinen 2024-05-30 11:50:54 +02:00
  • ab479d7169 Add support for running 70-test_tls13psk.t with dtls Frederik Wedel-Heinen 2024-05-30 10:51:21 +02:00
  • 6607b4345e Run 70-test_tls13hrr.t with dtls Frederik Wedel-Heinen 2024-05-30 09:04:48 +02:00
  • d9c913731c Run 70-test_tls13cookie.t with dtls Frederik Wedel-Heinen 2024-05-29 15:29:49 +02:00
  • b1cd19d99f Run 70-test_tls13alerts.t with dtls Frederik Wedel-Heinen 2024-05-29 11:04:14 +02:00
  • db560ade8c Fix an assertion failure which happens when a DTLS 1.3 client receives a HelloVerifyRequest. Frederik Wedel-Heinen 2024-05-27 21:58:13 +02:00
  • b10580efb6 Use WPACKET in dtls1_do_write() Frederik Wedel-Heinen 2024-05-24 11:31:14 +02:00
  • e4771cce5f Place start of ClientHello correctly when calculating binder for DTLS 1.3 Frederik Wedel-Heinen 2024-05-16 20:19:40 +02:00
  • 089b3ef763 Re-enable mtu assertion which previously failed for DTLS 1.3 Frederik Wedel-Heinen 2024-05-29 10:02:18 +02:00
  • 7f9d73e1b4 Refactor code and fix a couple of missing DTLSv1.3 checks. Frederik Wedel-Heinen 2024-05-08 11:19:09 +02:00
  • e6f126bd28 Add design document for DTLS 1.3 implementation Frederik Wedel-Heinen 2023-11-29 10:01:00 +01:00
  • 1275fd9ff5 Run test_cookie() test with DTLS 1.3 Frederik Wedel-Heinen 2024-05-16 20:04:51 +02:00
  • 0529b0046b Adds DTLSv1.3 to protocol_version.pm for additional protocol version tests. Frederik Wedel-Heinen 2024-01-09 07:20:42 +01:00
  • 54aec63b9f Continue processing cookieless client hellos for dtls1.3 Frederik Wedel-Heinen 2023-10-16 14:29:14 +02:00
  • c8d4f8fca5 Fix description of version field of ssl connection struct Frederik Wedel-Heinen 2023-12-04 14:27:23 +01:00
  • 6ee5c4a45c Updates SSL_CONF_cmd.pod to be explicit when features are for both TLS and DTLS Frederik Wedel-Heinen 2023-11-29 10:47:31 +01:00
  • 8ca9a37706 Update documentation for DTLS1.3 Frederik Wedel-Heinen 2023-10-12 14:22:40 +02:00
  • bbdfa7436c Correct traces for certificates in dtls13 Frederik Wedel-Heinen 2023-10-13 12:21:47 +02:00
  • af1addb428 Clear old messages from queues in order to avoid leaks of record layer objects. Frederik Wedel-Heinen 2024-05-07 21:18:44 +02:00
  • aa34197e51 Disable middlebox for dtls Frederik Wedel-Heinen 2024-05-03 14:01:45 +02:00
  • 37514f9890 Check that both tls1.3 and dtls1.3 is disabled before removing code from compilation path. Frederik Wedel-Heinen 2024-05-02 16:21:44 +02:00
  • f87fc041c0 Fix test_ssl_new tests Frederik Wedel-Heinen 2024-04-22 20:14:07 +02:00
  • 5ad8d7f4b8 Run some failing tests with DTLS1.2 Frederik Wedel-Heinen 2024-04-22 19:59:27 +02:00
  • 88ebd68d04 Fix renegotiation check that was added in https://github.com/openssl/openssl/pull/24161 Frederik Wedel-Heinen 2024-04-24 12:03:32 +02:00
  • afd67f23b2 Fix version check to avoid unsupported protocol error in ssl_choose_server_version() Frederik Wedel-Heinen 2024-04-09 12:57:12 +02:00
  • 9bccf188a9 Update DTLS version tests Frederik Wedel-Heinen 2023-12-19 12:51:18 +01:00
  • 8a1925c1d8 Remove obsolete TODO and guards for post handshake authentication in DTLS 1.3 Frederik Wedel-Heinen 2023-11-29 10:05:13 +01:00
  • adf71b56f0 Update dtls max version Frederik Wedel-Heinen 2023-10-04 11:58:06 +02:00
  • f31afa4966 Fix sanity tests for ssl_version_cmp for dtls 1.3 branch Frederik Wedel-Heinen 2024-04-26 21:25:39 +02:00
  • 19dd6d92f4 Sanity tests of inputs to ssl_version_cmp Frederik Wedel-Heinen 2024-04-26 10:44:01 +02:00
  • d70ddf279a Fix ssl_lib functions for dtls 1.3 Frederik Wedel-Heinen 2023-10-13 11:33:02 +02:00
  • d9a6799ac1 tls_post_encryption_processing_default() and tls_validate_record_header() Frederik Wedel-Heinen 2023-10-13 10:06:06 +02:00
  • a30d7e5eef Fix session print for dtls1.3 Frederik Wedel-Heinen 2023-10-16 09:57:00 +02:00
  • 9401a20486 Update session id and ticket logic for dtls13 Frederik Wedel-Heinen 2023-10-13 13:57:43 +02:00
  • 4b2c40d71d Removes an mtu assertion that fails Frederik Wedel-Heinen 2023-10-16 14:34:36 +02:00
  • a9dfb815fd Support TLS1.3 sigalg logic in DTLS1.3 Frederik Wedel-Heinen 2023-10-13 13:08:42 +02:00
  • ecd72174b6 Handle alerts similarly in dtls1_read_bytes() as done in ssl3_read_bytes() Frederik Wedel-Heinen 2023-12-19 10:37:53 +01:00
  • 3374c83219 Make similar changes to dtls1_do_write() for dtls1.3 as in ssl3_do_write() for tls1.3 Frederik Wedel-Heinen 2023-10-16 10:43:17 +02:00
  • 74d5b02c70 Adds some more changes dtls specific functions to make them more in sync with their tls counterparts. Frederik Wedel-Heinen 2023-10-16 10:02:32 +02:00
  • 9076747c07 Make dtls1.3 changes to dtls1_read_bytes and do_dtls1_write which matches ssl3_read_bytes and ssl3_write_bytes Frederik Wedel-Heinen 2023-10-12 13:19:50 +02:00
  • b1a2053a61 Don't allow renegotiation for DTLS 1.3 Frederik Wedel-Heinen 2023-10-12 13:55:32 +02:00
  • ad2147fa6c Adds dtls 1.3 support in TLS::Proxy Frederik Wedel-Heinen 2024-01-23 15:11:03 +01:00
  • 6a7a3de2bd Support TLS 1.3 kexs and groups with DTLS 1.3 Frederik Wedel-Heinen 2023-10-12 14:35:37 +02:00
  • e19c96886c Fix wrong dtls 1 and 1.2 version check Frederik Wedel-Heinen 2024-03-26 19:39:30 +01:00
  • 6fcc5b3fd1 Do DTLS13 and TLS13 connection version check in one macro Frederik Wedel-Heinen 2024-03-25 22:43:06 +01:00
  • 260d5cac01 Fix sending session ids in DTLS-1.3 Frederik Wedel-Heinen 2024-01-17 14:29:17 +01:00
  • 158f34385c Update tls state machine logic to support dtls1.3 alongside tls1.3 Frederik Wedel-Heinen 2023-10-12 15:01:23 +02:00
  • b8063ec5c4 Fix protocol list for cmd_Protocol() Frederik Wedel-Heinen 2023-10-13 11:26:35 +02:00
  • 6081fabcb2 Add dtls1.3 to ssl_protocol_to_string() Frederik Wedel-Heinen 2023-10-04 11:37:10 +02:00
  • ee2e76b68e Adds DTLS1.3 to ssl protocol to text structs Frederik Wedel-Heinen 2023-10-04 10:03:45 +02:00
  • d73909854d Determine which label prefix to use based on if the connection is dtls Frederik Wedel-Heinen 2023-12-17 20:46:20 +01:00
  • b6169af8ee Use dtls1.3 cryptographic label prefix as dictated by RFC 9147 section 5.9 Frederik Wedel-Heinen 2023-10-18 10:02:32 +02:00
  • c504cdb65f Support TLS1.3 extensions with DTLS1.3 Frederik Wedel-Heinen 2023-10-03 13:19:42 +02:00
  • dcafb53886 Print session ticket for dtls 1.3 as well. Frederik Wedel-Heinen 2024-01-23 14:58:31 +01:00
  • 1c11c28981 Adds DTLS 1.3 functionality to s_client and s_server documentation. Frederik Wedel-Heinen 2023-11-24 11:03:32 +01:00
  • ab70404258 Integrate dtls1.3 in s_client and s_server Frederik Wedel-Heinen 2023-10-03 12:43:19 +02:00
  • 007ad67ef7 Remove compile guards for dtls1.3 method implementations Frederik Wedel-Heinen 2023-10-04 09:41:14 +02:00
  • eaee1ddc01 Adds initial dtls 1.3 structs and definitions Frederik Wedel-Heinen 2023-10-03 09:39:47 +02:00
  • c28576e784 Add removed EVP_PKEY_meth* functions to ossl-removed-api.pod Matt Caswell 2025-12-12 16:26:14 +00:00
  • d7a4f81aed Remove all EVP_PKEY_meth_* functions from the documentation Matt Caswell 2025-12-12 16:12:48 +00:00
  • 60d4b986e7 Clean up some final vistigial remnants of EVP_PKEY_METHOD Matt Caswell 2025-12-12 12:01:56 +00:00
  • 00022fdfad Remove references to the pmeth field in an EVP_PKEY_CTX Matt Caswell 2025-12-11 16:14:13 +00:00
  • a570f1a09b Delete the EC EVP_PKEY_METHOD Matt Caswell 2025-12-11 16:05:05 +00:00
  • 90bb6e2c93 Delete the DSA EVP_PKEY_METHOD Matt Caswell 2025-12-11 16:01:56 +00:00
  • b7d69bad17 Delete the RSA EVP_PKEY_METHOD Matt Caswell 2025-12-11 15:58:53 +00:00
  • 7fd85ef726 Delete the ECX EVP_PKEY_METHOD Matt Caswell 2025-12-11 15:54:54 +00:00
  • ce6a336128 Delete the DH EVP_PKEY_METHOD Matt Caswell 2025-12-11 15:44:15 +00:00
  • f3f70e170f Remove custom EVP_PKEY_METHODs Matt Caswell 2025-12-11 12:29:29 +00:00
  • ac3b44faf3 ECH: Properly apply libctx and propq from SSL_CTX feature/ech Tomas Mraz 2025-12-18 11:43:41 +01:00
  • 7e9cac9832 Check return code of UTF8_putc Norbert Pocs 2025-12-11 12:49:00 +01:00
  • ad3c3c17f8 Harden ASN1_mbstring_ncopy Norbert Pocs 2025-12-11 12:38:16 +01:00
  • ff62893375 Check return code of UTF8_putc Norbert Pocs 2025-12-11 12:49:00 +01:00
  • d4f988ca4b Harden ASN1_mbstring_ncopy Norbert Pocs 2025-12-11 12:38:16 +01:00
  • cda12de3bc Check return code of UTF8_putc Norbert Pocs 2025-12-11 12:49:00 +01:00
  • 6ea99add1f Harden ASN1_mbstring_ncopy Norbert Pocs 2025-12-11 12:38:16 +01:00
  • a26a90d38e Check return code of UTF8_putc Norbert Pocs 2025-12-11 12:49:00 +01:00
  • 4f13ba39c9 Harden ASN1_mbstring_ncopy Norbert Pocs 2025-12-11 12:38:16 +01:00
  • 41be0f2164 Check return code of UTF8_putc Norbert Pocs 2025-12-11 12:49:00 +01:00
  • fc70e91ce5 Harden ASN1_mbstring_ncopy Norbert Pocs 2025-12-11 12:38:16 +01:00
  • 53b78f2a49 Check return code of UTF8_putc Norbert Pocs 2025-12-11 12:49:00 +01:00
  • 51e8f70ba3 Harden ASN1_mbstring_ncopy Norbert Pocs 2025-12-11 12:38:16 +01:00
  • bcf75912c5 The stream garbage collector loop in ossl_quic_stream_map_gc() is never entered Alexandr Nedvedicky 2025-12-16 11:01:43 +01:00
  • b5861cac48 The stream garbage collector loop in ossl_quic_stream_map_gc() is never entered Alexandr Nedvedicky 2025-12-16 11:01:43 +01:00
  • aaeb46d93a The stream garbage collector loop in ossl_quic_stream_map_gc() is never entered Alexandr Nedvedicky 2025-12-16 11:01:43 +01:00
  • 83f21a9974 The stream garbage collector loop in ossl_quic_stream_map_gc() is never entered Alexandr Nedvedicky 2025-12-16 11:01:43 +01:00
  • 5a45547c8e The stream garbage collector loop in ossl_quic_stream_map_gc() is never entered Alexandr Nedvedicky 2025-12-16 11:01:43 +01:00
  • e547988940 Revert "tests: temporarily skip MLDSA pkcs11-provider test" Ondrej Moris 2025-12-16 16:08:53 +01:00