5b8f7eaa3e
Merge new security defaults for programs (RC4 disabled, SSL3 disabled)
2015-01-14 16:26:54 +01:00
c82b7e2003
Merge option to disable truncated hmac on the server-side
2015-01-14 16:16:55 +01:00
a852cf4833
Fix issue with non-blocking I/O & record splitting
2015-01-13 20:56:15 +01:00
d5746b36f9
Fix warning
2015-01-13 20:33:24 +01:00
f3561154ff
Merge support for 1/n-1 record splitting
2015-01-13 16:31:34 +01:00
f6080b8557
Merge support for enabling / disabling renegotiation support at compile-time
2015-01-13 16:18:23 +01:00
d7e2483bfc
Merge miscellaneous fixes into development
2015-01-13 16:04:38 +01:00
bd47a58221
Add ssl_set_arc4_support()
...
Rationale: if people want to disable RC4 but otherwise keep the default suite
list, it was cumbersome. Also, since it uses a global array,
ssl_list_ciphersuite() is not a convenient place. So the SSL modules look like
the best place, even if it means temporarily adding one SSL setting.
2015-01-13 13:03:06 +01:00
352143fa1e
Refactor for clearer correctness/security
2015-01-13 12:02:55 +01:00
e117a8fc0d
Make truncated hmac a runtime option server-side
...
Reading the documentation of ssl_set_truncated_hmac() may give the impression
I changed the default for clients but I didn't, the old documentation was
wrong.
2015-01-09 12:52:20 +01:00
cfa477ef2f
Allow disabling record splitting at runtime
2015-01-07 14:56:54 +01:00
d76314c44c
Add 1/n-1 record splitting
2015-01-07 14:56:54 +01:00
837f0fe831
Make renego period configurable
2014-12-02 10:40:55 +01:00
b445805283
Auto-renegotiate before sequence number wrapping
2014-12-02 10:40:55 +01:00
6186019d5d
Save 48 bytes if SSLv3 is not defined
2014-12-02 10:40:54 +01:00
615e677c0b
Make renegotiation a compile-time option
2014-12-02 10:40:54 +01:00
60346be2a3
Improve debugging message.
...
This actually prints only the payload, not the potential IV and/or MAC,
so (to me at least) it's much less confusing
2014-11-27 17:44:46 +01:00
2457fa0915
Create ticket keys only if enabled
2014-11-27 17:44:45 +01:00
d16d1cb96a
Use more #ifdef's on CLI_C and SRV_C in ssl_tls.c
2014-11-27 17:44:45 +01:00
0975ad928d
Merge branch 'etm' into dtls
...
* etm:
Fix some more warnings in reduced configs
Fix typo causing MSVC errors
2014-11-17 15:07:17 +01:00
8e4b3374d7
Fix some more warnings in reduced configs
2014-11-17 15:06:13 +01:00
e5b0fc1847
Make malloc-init script a bit happier
2014-11-13 12:42:12 +01:00
27e3edbe2c
Check key/cert pair in ssl_set_own_cert()
2014-11-06 18:25:51 +01:00
d056ce0e3e
Use seq_num as AEAD nonce by default
2014-11-06 18:23:49 +01:00
f9d778d635
Merge branch 'etm' into dtls
...
* etm:
Fix warning in reduced config
Update Changelog for EtM
Keep EtM state across renegotiations
Adjust minimum length for EtM
Don't send back EtM extension if not using CBC
Fix for the RFC erratum
Implement EtM
Preparation for EtM
Implement initial negotiation of EtM
Conflicts:
include/polarssl/check_config.h
2014-11-06 01:36:32 +01:00
56d985d0a6
Merge branch 'session-hash' into dtls
...
* session-hash:
Update Changelog for session-hash
Make session-hash depend on TLS versions
Forbid extended master secret with SSLv3
compat.sh: allow git version of gnutls
compat.sh: make options a bit more robust
Implement extended master secret
Add negotiation of Extended Master Secret
Conflicts:
include/polarssl/check_config.h
programs/ssl/ssl_server2.c
2014-11-06 01:25:09 +01:00
9d7821d774
Fix warning in reduced config
2014-11-06 01:19:52 +01:00
fedba98ede
Merge branch 'fb-scsv' into dtls
...
* fb-scsv:
Update Changelog for FALLBACK_SCSV
Implement FALLBACK_SCSV server-side
Implement FALLBACK_SCSV client-side
2014-11-05 16:12:09 +01:00
1a03473576
Keep EtM state across renegotiations
2014-11-05 16:00:50 +01:00
169dd6a514
Adjust minimum length for EtM
2014-11-05 16:00:50 +01:00
08558e5b46
Fix for the RFC erratum
2014-11-05 16:00:50 +01:00
313d796e80
Implement EtM
2014-11-05 16:00:50 +01:00
0098e7dc70
Preparation for EtM
2014-11-05 16:00:50 +01:00
699cafaea2
Implement initial negotiation of EtM
...
Not implemented yet:
- actually using EtM
- conditions on renegotiation
2014-11-05 16:00:50 +01:00
ada3030485
Implement extended master secret
2014-11-05 16:00:49 +01:00
1cbd39dbeb
Implement FALLBACK_SCSV client-side
2014-11-05 16:00:49 +01:00
367381fddd
Add negotiation of Extended Master Secret
...
(But not the actual thing yet.)
2014-11-05 16:00:49 +01:00
6b875fc7e5
Fix potential memory leak (from clang-analyzer)
2014-10-21 16:33:00 +02:00
df3acd82e2
Limit HelloRequest retransmission if not enforced
2014-10-21 16:32:58 +02:00
26a4cf63ec
Add retransmission of HelloRequest
2014-10-21 16:32:57 +02:00
74a1378175
Avoid false positive in ssl-opt.sh with memcheck
2014-10-21 16:32:56 +02:00
8e704f0f74
DTLS depends on TIMING_C for now
2014-10-21 16:32:56 +02:00
b0643d152d
Add ssl_set_dtls_badmac_limit()
2014-10-21 16:32:55 +02:00
9b35f18f66
Add ssl_get_record_expansion()
2014-10-21 16:32:55 +02:00
37e08e1689
Fix max_fragment_length with DTLS
2014-10-21 16:32:53 +02:00
23cad339c4
Fail cleanly on unhandled case
2014-10-21 16:32:52 +02:00
fc572dd4f6
Retransmit only on last message from prev flight
...
Be a good network citizen, try to avoid causing congestion by causing a
retransmission explosion.
2014-10-21 16:32:51 +02:00
8a7cf2543a
Add a few #ifdefs
2014-10-21 16:32:51 +02:00
ba958b8bdc
Add test for server-initiated renego
...
Just assuming the HelloRequest isn't lost for now
2014-10-21 16:32:50 +02:00
46fb942046
Fix warning about function that should be static
2014-10-21 16:32:49 +02:00
