BSD Commit Log Search

   Ensure SSL_set_tlsext_host_name() is given a valid hostname.

   ok inoguchi@ tb@

   Rework SNI hostname regress to be table driven.

   Also adjust for the changes to tlsext_sni_is_valid_hostname() and include
   tests for IPv4 and IPv6 literals.

   ok beck@

   Improve SNI hostname validation.

   For some time now we've validated the hostname provided to the server in
   the SNI extension. Per RFC 6066, an IP literal is invalid as a hostname -
   the current code rejects IPv6 literals, but allows IPv4 literals through.

   Improve this check to explicitly detect both IPv4 and IPv6 literals. Some
   software has been historically known to include IP literals in SNI, so
   rather than rejecting this outright (and failing with a decode error),
   pretend that the SNI extension does not exist (such that we do not break
   some older clients).

   ok inoguchi@ tb@

   Unifdef LIBRESSL_NEW_API. Now that the library is bumped, this is
   no longer needed.

   ok jsing

   Make this test compile again after the damage done in libcrypto

   Bump majors after struct visibility changes, symbol removal and symbol
   addition.

   Update Symbols.list to include API additions

   libssl: stop reaching into the X509 struct and simplify some code by
   using X509_get_key_usage().

   ok beck jsing

   Add explicit CBS_contains_zero_byte() check in CBS_strdup().

   If the CBS data contains a zero byte, then CBS_strdup() is only going to
   return part of the data - add an explicit CBS_contains_zero_byte() and
   treat such data as an error case.

   ok tb@

   openssl-ruby tests: rework for x509_alt.c r1.3 and r1.5.

   ruby can no longer generate certs with bogus wildcards in it to check
   that they will fail to verify when creating TLS connections. It will
   throw an error. This change needs openssl-ruby-tests-20211024p0 or later
   to work.

   Fix HISTORY section: 6.9 -> 7.0

   Free memory on text exit to make asan quieter

   ok tb@

   Revise regress for removal of SSL_SESSION_INTERNAL.

   sort. alphanumerics have lower ASCII values than '_'

   Install SSL_read_early_data.3. I should have done this during the last
   libssl bump.

   Add record processing limit to DTLS code.

   This is effectively the same record processing limit that was previously
   added to the legacy TLS stack - without this a single session can be made
   to spin on a stream of alerts or other similar records.

   ok beck@ tb@

   Use ssl_force_want_read() in the DTLS code.

   Also mop up some mostly unhelpful comments while here.

   ok beck@ tb@

   Fold SSL_SESSION_INTERNAL back into SSL_SESSION.

   ok beck@ tb@

   merge documentation for SSL_read_ex(3), SSL_peek_ex(3), and SSL_write_ex(3)
   from the OpenSSL 1.1.1 branch, which is still under a free license

   Don't leak internal->verfied_chain, clean it up in ssl3_clear and free.

   spotted by and ok jsing@

   Add SSL_get0_verified_chain - needed by some new stuff

   symbol will be exposed with tb@'s forthcoming bump

   ok tb@

   fix wrong and missing return types and wrong macros in the SYNOPSIS;
   while here, also apply some minor wording improvements

   Add new OpenSSL API SSL_CTX_set_num_tickets and friends.

   Since we don't support session tickets in LibreSSL at the moment
   these functions currently do not have any effect.

   Again, symbols will appear with tb@'s reptar sized bump..

   ok tb@

   Unhandroll X509_up_ref()

   ok beck jsing

   oops, wrong dir.

   pointed out by schwarze

   Add new OpenSSL api SSL_write_ex, SSL_read_ex and SSL_peek_ex

   As these still meet the usual expectations for special, I will leave
   it up to ingo to decide to either document separately or in one man
   page like OpenSSL did.

   Will also need Symbols.list additions by tb@ when he starts the rapture

   ok tb@ jsing@

   Import documentation for X509_get_extension_flags, X509_get_key_usage,
   X509_get_extended_key_usage from OpenSSL. Will be linked to the build
   after the bump.

   input/lgtm schwarze

   Import documentation for X509_SIG_get{0,m} from OpenSSL. Will be linked
   to the build after the bump.

   tweak & lgtm schwarze

   Mop up enc_read_ctx and read_hash.

   These are no longer public, so we can mop them up along with the machinery
   needed to set/clear them.

   ok beck@ tb@

   Provide a way to determine our maximum legacy version.

   With the introduction of TLSv1.3, we need the ability to determine our
   maximum legacy version and to track our peer's maximum legacy version.
   This is needed for both the TLS record layer when using TLSv1.3, plus
   it is needed for RSA key exhange in TLS prior to TLSv1.3, where the
   maximum legacy version is incorporated in the pre-master secret to
   avoid downgrade attacks.

   This unbreaks RSA KEX for the TLS client when the non-version specific
   method is used with TLSv1.0 or TLSv1.1 (clearly no one does this).

   ok tb@