OLD | NEW |
1 diff -uarp openssl-1.0.0.orig/apps/s_client.c openssl-1.0.0/apps/s_client.c | 1 diff -uarp openssl-1.0.0.orig/apps/s_client.c openssl-1.0.0/apps/s_client.c |
2 --- openssl-1.0.0.orig/apps/s_client.c 2009-12-16 15:28:28.000000000 -0500 | 2 --- openssl-1.0.0.orig/apps/s_client.c 2009-12-16 15:28:28.000000000 -0500 |
3 +++ openssl-1.0.0/apps/s_client.c 2010-04-21 14:39:49.000000000 -0400 | 3 +++ openssl-1.0.0/apps/s_client.c 2010-04-21 14:39:49.000000000 -0400 |
4 @@ -248,6 +248,7 @@ static void sc_usage(void) | 4 @@ -248,6 +248,7 @@ static void sc_usage(void) |
5 BIO_printf(bio_err," -tlsextdebug - hex dump of all TLS extensions
received\n"); | 5 BIO_printf(bio_err," -tlsextdebug - hex dump of all TLS extensions
received\n"); |
6 BIO_printf(bio_err," -status - request certificate status from
server\n"); | 6 BIO_printf(bio_err," -status - request certificate status from
server\n"); |
7 BIO_printf(bio_err," -no_ticket - disable use of RFC4507bis sessi
on tickets\n"); | 7 BIO_printf(bio_err," -no_ticket - disable use of RFC4507bis sessi
on tickets\n"); |
8 + BIO_printf(bio_err," -cutthrough - enable 1-RTT full-handshake for
strong ciphers\n"); | 8 + BIO_printf(bio_err," -cutthrough - enable 1-RTT full-handshake for
strong ciphers\n"); |
9 #endif | 9 # if !defined(OPENSSL_NO_NEXTPROTONEG) |
10 » } | 10 » BIO_printf(bio_err," -nextprotoneg arg - enable NPN extension, consideri
ng named protocols supported (comma-separated list)\n"); |
11 | 11 # endif |
12 @@ -304,6 +305,7 @@ int MAIN(int argc, char **argv) | 12 @@ -304,6 +305,7 @@ int MAIN(int argc, char **argv) |
13 EVP_PKEY *key = NULL; | 13 EVP_PKEY *key = NULL; |
14 char *CApath=NULL,*CAfile=NULL,*cipher=NULL; | 14 char *CApath=NULL,*CAfile=NULL,*cipher=NULL; |
15 int reconnect=0,badop=0,verify=SSL_VERIFY_NONE,bugs=0; | 15 int reconnect=0,badop=0,verify=SSL_VERIFY_NONE,bugs=0; |
16 + int cutthrough=0; | 16 + int cutthrough=0; |
17 int crlf=0; | 17 int crlf=0; |
18 int write_tty,read_tty,write_ssl,read_ssl,tty_on,ssl_pending; | 18 int write_tty,read_tty,write_ssl,read_ssl,tty_on,ssl_pending; |
19 SSL_CTX *ctx=NULL; | 19 SSL_CTX *ctx=NULL; |
20 @@ -533,6 +535,8 @@ int MAIN(int argc, char **argv) | 20 @@ -533,6 +535,8 @@ int MAIN(int argc, char **argv) |
21 else if (strcmp(*argv,"-no_ticket") == 0) | 21 else if (strcmp(*argv,"-no_ticket") == 0) |
(...skipping 162 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
184 * you should not need these */ | 184 * you should not need these */ |
185 Only in openssl-1.0.0/ssl: ssl.h.orig | 185 Only in openssl-1.0.0/ssl: ssl.h.orig |
186 diff -uarp openssl-1.0.0.orig/ssl/ssl3.h openssl-1.0.0/ssl/ssl3.h | 186 diff -uarp openssl-1.0.0.orig/ssl/ssl3.h openssl-1.0.0/ssl/ssl3.h |
187 -- openssl-1.0.0.orig/ssl/ssl3.h 2010-01-06 12:37:38.000000000 -0500 | 187 -- openssl-1.0.0.orig/ssl/ssl3.h 2010-01-06 12:37:38.000000000 -0500 |
188 +++ openssl-1.0.0/ssl/ssl3.h 2010-04-21 14:39:49.000000000 -0400 | 188 +++ openssl-1.0.0/ssl/ssl3.h 2010-04-21 14:39:49.000000000 -0400 |
189 @@ -456,6 +456,7 @@ typedef struct ssl3_state_st | 189 @@ -456,6 +456,7 @@ typedef struct ssl3_state_st |
190 /*client */ | 190 /*client */ |
191 /* extra state */ | 191 /* extra state */ |
192 #define SSL3_ST_CW_FLUSH (0x100|SSL_ST_CONNECT) | 192 #define SSL3_ST_CW_FLUSH (0x100|SSL_ST_CONNECT) |
193 +#define SSL3_ST_CUTTHROUGH_COMPLETE (0x101|SSL_ST_CONNECT) | 193 +#define SSL3_ST_CUTTHROUGH_COMPLETE (0x101|SSL_ST_CONNECT) |
194 /* write to server */ | 194 #ifndef OPENSSL_NO_SCTP |
195 #define SSL3_ST_CW_CLNT_HELLO_A» » (0x110|SSL_ST_CONNECT) | 195 #define DTLS1_SCTP_ST_CW_WRITE_SOCK» » » (0x310|SSL_ST_CONNECT) |
196 #define SSL3_ST_CW_CLNT_HELLO_B» » (0x111|SSL_ST_CONNECT) | 196 #define DTLS1_SCTP_ST_CR_READ_SOCK» » » (0x320|SSL_ST_CONNECT) |
197 diff -uarp openssl-1.0.0.orig/ssl/ssl_lib.c openssl-1.0.0/ssl/ssl_lib.c | 197 diff -uarp openssl-1.0.0.orig/ssl/ssl_lib.c openssl-1.0.0/ssl/ssl_lib.c |
198 --- openssl-1.0.0.orig/ssl/ssl_lib.c 2010-02-17 14:43:46.000000000 -0500 | 198 --- openssl-1.0.0.orig/ssl/ssl_lib.c 2010-02-17 14:43:46.000000000 -0500 |
199 +++ openssl-1.0.0/ssl/ssl_lib.c 2010-04-21 17:02:45.000000000 -0400 | 199 +++ openssl-1.0.0/ssl/ssl_lib.c 2010-04-21 17:02:45.000000000 -0400 |
200 @@ -3031,6 +3031,19 @@ void SSL_set_msg_callback(SSL *ssl, void | 200 @@ -3031,6 +3031,19 @@ void SSL_set_msg_callback(SSL *ssl, void |
201 SSL_callback_ctrl(ssl, SSL_CTRL_SET_MSG_CALLBACK, (void (*)(void))cb); | 201 SSL_callback_ctrl(ssl, SSL_CTRL_SET_MSG_CALLBACK, (void (*)(void))cb); |
202 } | 202 } |
203 | 203 |
204 +int SSL_cutthrough_complete(const SSL *s) | 204 +int SSL_cutthrough_complete(const SSL *s) |
205 + { | 205 + { |
206 + return (!s->server && /* cutthrough only applies to clie
nts */ | 206 + return (!s->server && /* cutthrough only applies to clie
nts */ |
(...skipping 59 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
266 +++ openssl-1.0.0/test/testssl 2010-04-21 16:50:13.000000000 -0400 | 266 +++ openssl-1.0.0/test/testssl 2010-04-21 16:50:13.000000000 -0400 |
267 @@ -79,6 +79,8 @@ $ssltest -server_auth -client_auth -s_sm | 267 @@ -79,6 +79,8 @@ $ssltest -server_auth -client_auth -s_sm |
268 echo test sslv2/sslv3 with both client and server authentication and small clie
nt and server buffers | 268 echo test sslv2/sslv3 with both client and server authentication and small clie
nt and server buffers |
269 $ssltest -server_auth -client_auth -c_small_records -s_small_records $CA $extra
|| exit 1 | 269 $ssltest -server_auth -client_auth -c_small_records -s_small_records $CA $extra
|| exit 1 |
270 | 270 |
271 +echo test sslv2/sslv3 with both client and server authentication and handshake
cutthrough | 271 +echo test sslv2/sslv3 with both client and server authentication and handshake
cutthrough |
272 +$ssltest -server_auth -client_auth -cutthrough $CA $extra || exit 1 | 272 +$ssltest -server_auth -client_auth -cutthrough $CA $extra || exit 1 |
273 | 273 |
274 echo test sslv2 via BIO pair | 274 echo test sslv2 via BIO pair |
275 $ssltest -bio_pair -ssl2 $extra || exit 1 | 275 $ssltest -bio_pair -ssl2 $extra || exit 1 |
OLD | NEW |