boringssl

History

David Benjamin 56d280da2f Remove the SSL_R_SESSION_ID_CONTEXT_UNINITIALIZED sanity check. While the sanity check isn't insane (one should arrange for sessions to be invalidated once client auth settings change, and a sid_ctx is one way to do it), this check lives in a poor place to enforce configuration mistakes. To be effective, it needs to happen at the start of the handshake, independent of the ClientHello from the peer. But the benefit this check gives is low compared to the trouble it will be to continually maintain this difference from OpenSSL (our own ssl_test and bssl_shim forget to set a dummy sid_ctx). Instead, remove it so we don't have to duplicate it across TLS 1.2 and TLS 1.3. Also so we don't have weird failures which only manifest once a resuming client connects. Change-Id: Ia7f88711701afde5e26b7782c2264ce78dccc89b Reviewed-on: https://boringssl-review.googlesource.com/9112 Reviewed-by: Adam Langley <agl@google.com> Commit-Queue: Adam Langley <agl@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>		2016-08-03 21:43:50 +00:00
..
test	Test that servers enforce session timeouts.	2016-08-03 21:27:07 +00:00
CMakeLists.txt	Add TLS 1.3 1-RTT.	2016-07-18 09:54:46 +00:00
custom_extensions.c	Send unsupported_extension on unexpected ServerHello extensions.	2016-08-01 18:56:31 +00:00
d1_both.c	Switch finish_handshake to release_current_message.	2016-07-28 22:59:18 +00:00
d1_lib.c	Test that servers enforce session timeouts.	2016-08-03 21:27:07 +00:00
d1_pkt.c	Move post-handshake message handling out of read_app_data.	2016-07-29 21:05:49 +00:00
d1_srtp.c	Make kSRTPProfiles static.	2016-05-13 14:12:22 +00:00
dtls_method.c	Switch finish_handshake to release_current_message.	2016-07-28 22:59:18 +00:00
dtls_record.c	Fix the alias checks in dtls_record.c.	2016-06-09 21:11:22 +00:00
handshake_client.c	Test that servers enforce session timeouts.	2016-08-03 21:27:07 +00:00
handshake_server.c	Test that servers enforce session timeouts.	2016-08-03 21:27:07 +00:00
internal.h	Test that servers enforce session timeouts.	2016-08-03 21:27:07 +00:00
s3_both.c	Splitting SSL session state.	2016-07-29 21:22:46 +00:00
s3_enc.c	Splitting SSL session state.	2016-07-29 21:22:46 +00:00
s3_lib.c	Splitting SSL session state.	2016-07-29 21:22:46 +00:00
s3_pkt.c	Stop pretending to ssl_clear_bad_session.	2016-08-03 21:07:36 +00:00
ssl_aead_ctx.c	Fixing iv_length for TLS 1.3.	2016-06-16 17:04:14 +00:00
ssl_asn1.c	Adding NewSessionTicket.	2016-08-03 20:03:20 +00:00
ssl_buffer.c	Add SSL_is_dtls.	2016-08-02 20:43:58 +00:00
ssl_cert.c	Factor out the client_cert_cb code.	2016-07-20 09:25:52 +00:00
ssl_cipher.c	Forbid PSK ciphers in TLS 1.3 for now.	2016-07-13 16:49:46 +00:00
ssl_ecdh.c	Add BN_rand_range_ex and use internally.	2016-07-29 16:09:26 +00:00
ssl_file.c	Banish SSL_add_dir_cert_subjects_to_stack and OPENSSL_DIR_CTX to decrepit.	2016-04-27 18:40:25 +00:00
ssl_lib.c	Test that servers enforce session timeouts.	2016-08-03 21:27:07 +00:00
ssl_rsa.c	Give SSL_PRIVATE_KEY_METHOD a message-based API.	2016-07-15 18:26:45 +00:00
ssl_session.c	Remove the SSL_R_SESSION_ID_CONTEXT_UNINITIALIZED sanity check.	2016-08-03 21:43:50 +00:00
ssl_stat.c	Factor out the client_cert_cb code.	2016-07-20 09:25:52 +00:00
ssl_test.cc	Test that servers enforce session timeouts.	2016-08-03 21:27:07 +00:00
t1_enc.c	Splitting SSL session state.	2016-07-29 21:22:46 +00:00
t1_lib.c	Add a CBS version of SSL_early_callback_ctx_extension_get.	2016-08-03 20:47:05 +00:00
tls13_both.c	Adding NewSessionTicket.	2016-08-03 20:03:20 +00:00
tls13_client.c	Adding NewSessionTicket.	2016-08-03 20:03:20 +00:00
tls13_enc.c	Adding handling for KeyUpdate post-handshake message.	2016-07-29 23:06:09 +00:00
tls13_server.c	Add a CBS version of SSL_early_callback_ctx_extension_get.	2016-08-03 20:47:05 +00:00
tls_method.c	Switch finish_handshake to release_current_message.	2016-07-28 22:59:18 +00:00
tls_record.c	Stop pretending to ssl_clear_bad_session.	2016-08-03 21:07:36 +00:00