Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(8)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: patches/handshake_cutthrough.patch

Issue 10911247: Upstream openssl to version 1.0.1c (Closed) Base URL: http://src.chromium.org/svn/trunk/deps/third_party/openssl/
Patch Set: Created 8 years, 2 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch | Annotate | Revision Log
« no previous file with comments | « patches/fix-clang-build.patch ('k') | patches/jsse.patch » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 diff -uarp openssl-1.0.0.orig/apps/s_client.c openssl-1.0.0/apps/s_client.c 1 diff -uarp openssl-1.0.0.orig/apps/s_client.c openssl-1.0.0/apps/s_client.c
2 --- openssl-1.0.0.orig/apps/s_client.c 2009-12-16 15:28:28.000000000 -0500 2 --- openssl-1.0.0.orig/apps/s_client.c 2009-12-16 15:28:28.000000000 -0500
3 +++ openssl-1.0.0/apps/s_client.c 2010-04-21 14:39:49.000000000 -0400 3 +++ openssl-1.0.0/apps/s_client.c 2010-04-21 14:39:49.000000000 -0400
4 @@ -248,6 +248,7 @@ static void sc_usage(void) 4 @@ -248,6 +248,7 @@ static void sc_usage(void)
5 BIO_printf(bio_err," -tlsextdebug - hex dump of all TLS extensions received\n"); 5 BIO_printf(bio_err," -tlsextdebug - hex dump of all TLS extensions received\n");
6 BIO_printf(bio_err," -status - request certificate status from server\n"); 6 BIO_printf(bio_err," -status - request certificate status from server\n");
7 BIO_printf(bio_err," -no_ticket - disable use of RFC4507bis sessi on tickets\n"); 7 BIO_printf(bio_err," -no_ticket - disable use of RFC4507bis sessi on tickets\n");
8 + BIO_printf(bio_err," -cutthrough - enable 1-RTT full-handshake for strong ciphers\n"); 8 + BIO_printf(bio_err," -cutthrough - enable 1-RTT full-handshake for strong ciphers\n");
9 #endif 9 # if !defined(OPENSSL_NO_NEXTPROTONEG)
10 » } 10 » BIO_printf(bio_err," -nextprotoneg arg - enable NPN extension, consideri ng named protocols supported (comma-separated list)\n");
11 11 # endif
12 @@ -304,6 +305,7 @@ int MAIN(int argc, char **argv) 12 @@ -304,6 +305,7 @@ int MAIN(int argc, char **argv)
13 EVP_PKEY *key = NULL; 13 EVP_PKEY *key = NULL;
14 char *CApath=NULL,*CAfile=NULL,*cipher=NULL; 14 char *CApath=NULL,*CAfile=NULL,*cipher=NULL;
15 int reconnect=0,badop=0,verify=SSL_VERIFY_NONE,bugs=0; 15 int reconnect=0,badop=0,verify=SSL_VERIFY_NONE,bugs=0;
16 + int cutthrough=0; 16 + int cutthrough=0;
17 int crlf=0; 17 int crlf=0;
18 int write_tty,read_tty,write_ssl,read_ssl,tty_on,ssl_pending; 18 int write_tty,read_tty,write_ssl,read_ssl,tty_on,ssl_pending;
19 SSL_CTX *ctx=NULL; 19 SSL_CTX *ctx=NULL;
20 @@ -533,6 +535,8 @@ int MAIN(int argc, char **argv) 20 @@ -533,6 +535,8 @@ int MAIN(int argc, char **argv)
21 else if (strcmp(*argv,"-no_ticket") == 0) 21 else if (strcmp(*argv,"-no_ticket") == 0)
(...skipping 162 matching lines...) Expand 10 before | Expand all | Expand 10 after
184 * you should not need these */ 184 * you should not need these */
185 Only in openssl-1.0.0/ssl: ssl.h.orig 185 Only in openssl-1.0.0/ssl: ssl.h.orig
186 diff -uarp openssl-1.0.0.orig/ssl/ssl3.h openssl-1.0.0/ssl/ssl3.h 186 diff -uarp openssl-1.0.0.orig/ssl/ssl3.h openssl-1.0.0/ssl/ssl3.h
187 -- openssl-1.0.0.orig/ssl/ssl3.h 2010-01-06 12:37:38.000000000 -0500 187 -- openssl-1.0.0.orig/ssl/ssl3.h 2010-01-06 12:37:38.000000000 -0500
188 +++ openssl-1.0.0/ssl/ssl3.h 2010-04-21 14:39:49.000000000 -0400 188 +++ openssl-1.0.0/ssl/ssl3.h 2010-04-21 14:39:49.000000000 -0400
189 @@ -456,6 +456,7 @@ typedef struct ssl3_state_st 189 @@ -456,6 +456,7 @@ typedef struct ssl3_state_st
190 /*client */ 190 /*client */
191 /* extra state */ 191 /* extra state */
192 #define SSL3_ST_CW_FLUSH (0x100|SSL_ST_CONNECT) 192 #define SSL3_ST_CW_FLUSH (0x100|SSL_ST_CONNECT)
193 +#define SSL3_ST_CUTTHROUGH_COMPLETE (0x101|SSL_ST_CONNECT) 193 +#define SSL3_ST_CUTTHROUGH_COMPLETE (0x101|SSL_ST_CONNECT)
194 /* write to server */ 194 #ifndef OPENSSL_NO_SCTP
195 #define SSL3_ST_CW_CLNT_HELLO_A» » (0x110|SSL_ST_CONNECT) 195 #define DTLS1_SCTP_ST_CW_WRITE_SOCK» » » (0x310|SSL_ST_CONNECT)
196 #define SSL3_ST_CW_CLNT_HELLO_B» » (0x111|SSL_ST_CONNECT) 196 #define DTLS1_SCTP_ST_CR_READ_SOCK» » » (0x320|SSL_ST_CONNECT)
197 diff -uarp openssl-1.0.0.orig/ssl/ssl_lib.c openssl-1.0.0/ssl/ssl_lib.c 197 diff -uarp openssl-1.0.0.orig/ssl/ssl_lib.c openssl-1.0.0/ssl/ssl_lib.c
198 --- openssl-1.0.0.orig/ssl/ssl_lib.c 2010-02-17 14:43:46.000000000 -0500 198 --- openssl-1.0.0.orig/ssl/ssl_lib.c 2010-02-17 14:43:46.000000000 -0500
199 +++ openssl-1.0.0/ssl/ssl_lib.c 2010-04-21 17:02:45.000000000 -0400 199 +++ openssl-1.0.0/ssl/ssl_lib.c 2010-04-21 17:02:45.000000000 -0400
200 @@ -3031,6 +3031,19 @@ void SSL_set_msg_callback(SSL *ssl, void 200 @@ -3031,6 +3031,19 @@ void SSL_set_msg_callback(SSL *ssl, void
201 SSL_callback_ctrl(ssl, SSL_CTRL_SET_MSG_CALLBACK, (void (*)(void))cb); 201 SSL_callback_ctrl(ssl, SSL_CTRL_SET_MSG_CALLBACK, (void (*)(void))cb);
202 } 202 }
203 203
204 +int SSL_cutthrough_complete(const SSL *s) 204 +int SSL_cutthrough_complete(const SSL *s)
205 + { 205 + {
206 + return (!s->server && /* cutthrough only applies to clie nts */ 206 + return (!s->server && /* cutthrough only applies to clie nts */
(...skipping 59 matching lines...) Expand 10 before | Expand all | Expand 10 after
266 +++ openssl-1.0.0/test/testssl 2010-04-21 16:50:13.000000000 -0400 266 +++ openssl-1.0.0/test/testssl 2010-04-21 16:50:13.000000000 -0400
267 @@ -79,6 +79,8 @@ $ssltest -server_auth -client_auth -s_sm 267 @@ -79,6 +79,8 @@ $ssltest -server_auth -client_auth -s_sm
268 echo test sslv2/sslv3 with both client and server authentication and small clie nt and server buffers 268 echo test sslv2/sslv3 with both client and server authentication and small clie nt and server buffers
269 $ssltest -server_auth -client_auth -c_small_records -s_small_records $CA $extra || exit 1 269 $ssltest -server_auth -client_auth -c_small_records -s_small_records $CA $extra || exit 1
270 270
271 +echo test sslv2/sslv3 with both client and server authentication and handshake cutthrough 271 +echo test sslv2/sslv3 with both client and server authentication and handshake cutthrough
272 +$ssltest -server_auth -client_auth -cutthrough $CA $extra || exit 1 272 +$ssltest -server_auth -client_auth -cutthrough $CA $extra || exit 1
273 273
274 echo test sslv2 via BIO pair 274 echo test sslv2 via BIO pair
275 $ssltest -bio_pair -ssl2 $extra || exit 1 275 $ssltest -bio_pair -ssl2 $extra || exit 1
OLDNEW
« no previous file with comments | « patches/fix-clang-build.patch ('k') | patches/jsse.patch » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698