kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
5b7b09cfca
boringssl/ssl
History
David Benjamin 5b7b09cfca Remove weird special-cases around times in SSL_SESSION. 
These don't make sense and mean some SSL_SESSIONs serialize and
deserialize as different values. If we ever managed to create an
SSL_SESSION without a time, it would never expire because time always
gets set to time(NULL). If we ever created an SSL_SESSION with a zero
timeout, the timeout would be... three? Once we start adjusting
time/timeout to issuance time, driving timeout to zero is actually
plausible, so it should work properly.

Instead, make neither field optional. We always fill both out, so this
shouldn't have any effects. If it does, the only effect would be to
decline to resume some existing tickets which must have been so old that
we'd want them to have expired anyway.

Change-Id: Iee3620658c467dd6d96a2b695fec831721b03b5b
Reviewed-on: https://boringssl-review.googlesource.com/12101
Commit-Queue: David Benjamin <davidben@google.com>
Reviewed-by: Adam Langley <agl@google.com>
2016-11-08 22:59:27 +00:00
..
test Don't access SSL internals in bssl_shim. 2016-11-03 16:40:58 +00:00
CMakeLists.txt
custom_extensions.c Move extensions bitmasks into SSL_HANDSHAKE. 2016-10-09 16:48:52 +00:00
d1_both.c Take the version parameter out of ssl_do_msg_callback. 2016-09-21 18:55:27 +00:00
d1_lib.c Remove RC4 from TLS for real. 2016-09-16 03:06:36 +00:00
d1_pkt.c Take the version parameter out of ssl_do_msg_callback. 2016-09-21 18:55:27 +00:00
d1_srtp.c Fix ssl_ctx_make_profiles error handling. 2016-09-27 13:27:06 +00:00
dtls_method.c Don't return invalid versions in version_from_wire. 2016-09-21 19:51:45 +00:00
dtls_record.c Take the version parameter out of ssl_do_msg_callback. 2016-09-21 18:55:27 +00:00
handshake_client.c Remove cipher_list_by_id. 2016-11-03 16:43:56 +00:00
handshake_server.c Negotiate the cipher suite before ALPN. 2016-11-02 18:06:23 +00:00
internal.h Remove cipher_list_by_id. 2016-11-03 16:43:56 +00:00
s3_both.c Implement draft 16 HelloRetryRequest and cookie. 2016-10-13 19:12:30 +00:00
s3_enc.c
s3_lib.c Detach TLS 1.3 cipher configuration from the cipher language. 2016-11-02 20:47:55 +00:00
s3_pkt.c Check SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER before touching wpend_buf. 2016-10-25 20:15:45 +00:00
ssl_aead_ctx.c Validate input iv/mac sizes in SSL_AEAD_CTX_new. 2016-10-28 21:25:35 +00:00
ssl_asn1.c Remove weird special-cases around times in SSL_SESSION. 2016-11-08 22:59:27 +00:00
ssl_buffer.c Add SSL_is_dtls. 2016-08-02 20:43:58 +00:00
ssl_cert.c Inline tls1_check_ec_cert. 2016-10-09 17:14:50 +00:00
ssl_cipher.c Trim ssl_create_cipher_list slightly. 2016-11-03 22:19:53 +00:00
ssl_ecdh.c Implement SSL_CTX_set1_curves_list() 2016-09-30 00:45:19 +00:00
ssl_file.c Check for sk_X509_NAME_push failures. 2016-09-27 13:18:37 +00:00
ssl_lib.c Remove cipher_list_by_id. 2016-11-03 16:43:56 +00:00
ssl_rsa.c Fix memory leak in set_signing_algorithm_prefs. 2016-10-18 14:13:53 +00:00
ssl_session.c Reject tickets from the future. 2016-10-27 22:32:19 +00:00
ssl_stat.c Add the certificate_required alert. 2016-10-10 15:48:06 +00:00
ssl_test.cc Test that session renewals interact with lifetimes correctly. 2016-11-03 21:42:00 +00:00
t1_enc.c Forbid using exporters during a renego. 2016-11-02 18:59:02 +00:00
t1_lib.c Negotiate the cipher suite before ALPN. 2016-11-02 18:06:23 +00:00
tls13_both.c Implement ChannelID for TLS 1.3. 2016-10-20 20:57:10 +00:00
tls13_client.c Detach TLS 1.3 cipher configuration from the cipher language. 2016-11-02 20:47:55 +00:00
tls13_enc.c Validate input iv/mac sizes in SSL_AEAD_CTX_new. 2016-10-28 21:25:35 +00:00
tls13_server.c Detach TLS 1.3 cipher configuration from the cipher language. 2016-11-02 20:47:55 +00:00
tls_method.c Moving TLS 1.3 version negotiation into extension. 2016-09-27 20:12:22 +00:00
tls_record.c Take the version parameter out of ssl_do_msg_callback. 2016-09-21 18:55:27 +00:00