root
/
openssl
mirror of https://github.com/openssl/openssl.git
1
0
Fork 0
Code Issues Actions 7 Packages Projects Releases Wiki Activity
openssl/ssl
History
Matt Caswell 017e54183b Add ALPN validation in the client 
The ALPN protocol selected by the server must be one that we originally
advertised. We should verify that it is.

Follow on from CVE-2024-5535

Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24718)
 		2024-06-27 10:37:54 +01:00
..
record Copyright year updates 2024-06-04 16:18:59 +02:00
statem Add ALPN validation in the client 2024-06-27 10:37:54 +01:00
bio_ssl.c bio_ssl.c: Do not call SSL_shutdown if not inited 2024-06-25 16:08:05 +02:00
build.info Do not duplicate symbols between libcrypto and libssl in static builds 2021-06-14 09:21:05 +10:00
d1_lib.c Move freeing of an old enc_write_ctx/write_hash to dtls1_clear_sent_buffer 2023-11-24 10:49:10 +00:00
d1_msg.c Update copyright year 2020-11-26 14:18:57 +00:00
d1_srtp.c Convert all {NAME}err() in ssl/ to their corresponding ERR_raise() call 2020-11-11 12:12:11 +01:00
ktls.c Update copyright year 2022-10-11 13:20:27 +01:00
methods.c Update some inclusions of <openssl/macros.h> 2019-11-07 11:37:25 +01:00
pqueue.c Update copyright year 2020-11-26 14:18:57 +00:00
s3_cbc.c fips module header inclusion fine-tunning 2021-07-06 10:52:27 +10:00
s3_enc.c Don't attempt to set provider params on an ENGINE based cipher 2023-12-12 16:18:56 +00:00
s3_lib.c Fix a bad backport 2023-11-09 16:59:40 +00:00
s3_msg.c Update copyright year 2021-05-20 14:22:33 +01:00
ssl_asn1.c Make the -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION pass tests 2021-08-31 12:20:12 +02:00
ssl_cert.c Fix regression of no-posix-io builds 2023-04-25 11:32:49 +02:00
ssl_cert_table.h Following the license change, modify the boilerplates in ssl/ 2018-12-06 14:20:59 +01:00
ssl_ciph.c Fix a possible memory leak in load_builtin_compressions 2023-11-02 08:17:42 +00:00
ssl_conf.c Consolidate raising errors in SSL_CONF_cmd() 2023-12-19 12:06:48 +01:00
ssl_err.c Add reason codes with the correct offset for two alerts 2024-05-14 15:30:49 +02:00
ssl_err_legacy.c Update copyright year 2021-06-17 13:24:59 +01:00
ssl_init.c Move e_os.h to include/internal 2022-11-11 10:03:45 +01:00
ssl_lib.c Fix SSL_select_next_proto 2024-06-27 10:37:54 +01:00
ssl_local.h Add deprecation macro for 3.1 and deprecate OPENSSL_LH_stats 2022-11-21 10:49:52 +01:00
ssl_mcnf.c Consolidate raising errors in SSL_CONF_cmd() 2023-12-19 12:06:48 +01:00
ssl_rsa.c Convert serverinfo in SSL_CTX_use_serverinfo() to v2. 2022-08-26 13:11:01 +10:00
ssl_rsa_legacy.c Deprecate RSA harder 2020-11-18 23:38:34 +01:00
ssl_sess.c Fix handling of max_fragment_length extension for PSK 2024-06-20 16:51:55 +02:00
ssl_stat.c Update copyright year 2021-09-07 13:29:33 +02:00
ssl_txt.c Cast values to match printf format strings. 2022-12-08 11:09:12 +11:00
ssl_utst.c Reorganize local header files 2019-09-28 20:26:35 +02:00
sslerr.h err: rename err_load_xxx_strings_int functions 2021-05-26 13:01:47 +10:00
t1_enc.c Don't attempt to set provider params on an ENGINE based cipher 2023-12-12 16:18:56 +00:00
t1_lib.c Fix handling of max_fragment_length extension for PSK 2024-06-20 16:51:55 +02:00
t1_trce.c Cast values to match printf format strings. 2022-12-08 11:09:12 +11:00
tls13_enc.c Cleanup EBCDIC string defintions 2022-11-23 18:21:43 +01:00
tls_depr.c Replace the AES-128-CBC-HMAC-SHA1 cipher in e_ossltest.c 2021-10-11 16:25:17 +02:00
tls_srp.c ssl/tls_srp.c: Add check for BN_dup 2022-07-08 13:11:26 -04:00