"Fossies" - the Fresh Open Source Software Archive  

Source code changes of the file "nss/lib/ssl/sslsock.c" between
nss-3.61.tar.gz and nss-3.62.tar.gz

About: NSS is a set of libraries, APIs, utilities, and documentation designed to support cross-platform development of security-enabled client and server applications. It provides a complete implementation of the crypto libraries used by Mozilla and other companies.

sslsock.c  (nss-3.61):sslsock.c  (nss-3.62)
skipping to change at line 96 skipping to change at line 96
.enableSignedCertTimestamps = PR_FALSE, .enableSignedCertTimestamps = PR_FALSE,
.requireDHENamedGroups = PR_FALSE, .requireDHENamedGroups = PR_FALSE,
.enable0RttData = PR_FALSE, .enable0RttData = PR_FALSE,
.enableTls13CompatMode = PR_FALSE, .enableTls13CompatMode = PR_FALSE,
.enableDtls13VersionCompat = PR_FALSE, .enableDtls13VersionCompat = PR_FALSE,
.enableDtlsShortHeader = PR_FALSE, .enableDtlsShortHeader = PR_FALSE,
.enableHelloDowngradeCheck = PR_FALSE, .enableHelloDowngradeCheck = PR_FALSE,
.enableV2CompatibleHello = PR_FALSE, .enableV2CompatibleHello = PR_FALSE,
.enablePostHandshakeAuth = PR_FALSE, .enablePostHandshakeAuth = PR_FALSE,
.suppressEndOfEarlyData = PR_FALSE, .suppressEndOfEarlyData = PR_FALSE,
.enableTls13GreaseEch = PR_FALSE .enableTls13GreaseEch = PR_FALSE,
.enableTls13BackendEch = PR_FALSE
}; };
/* /*
* default range of enabled SSL/TLS protocols * default range of enabled SSL/TLS protocols
*/ */
static SSLVersionRange versions_defaults_stream = { static SSLVersionRange versions_defaults_stream = {
SSL_LIBRARY_VERSION_TLS_1_0, SSL_LIBRARY_VERSION_TLS_1_0,
SSL_LIBRARY_VERSION_TLS_1_3 SSL_LIBRARY_VERSION_TLS_1_3
}; };
skipping to change at line 4296 skipping to change at line 4297
EXP(CipherSuiteOrderGet), EXP(CipherSuiteOrderGet),
EXP(CipherSuiteOrderSet), EXP(CipherSuiteOrderSet),
EXP(CreateAntiReplayContext), EXP(CreateAntiReplayContext),
EXP(CreateMask), EXP(CreateMask),
EXP(CreateMaskingContext), EXP(CreateMaskingContext),
EXP(CreateVariantMaskingContext), EXP(CreateVariantMaskingContext),
EXP(DelegateCredential), EXP(DelegateCredential),
EXP(DestroyAead), EXP(DestroyAead),
EXP(DestroyMaskingContext), EXP(DestroyMaskingContext),
EXP(DestroyResumptionTokenInfo), EXP(DestroyResumptionTokenInfo),
EXP(EnableTls13BackendEch),
EXP(EnableTls13GreaseEch), EXP(EnableTls13GreaseEch),
EXP(EncodeEchConfig), EXP(EncodeEchConfig),
EXP(GetCurrentEpoch), EXP(GetCurrentEpoch),
EXP(GetEchRetryConfigs), EXP(GetEchRetryConfigs),
EXP(GetExtensionSupport), EXP(GetExtensionSupport),
EXP(GetResumptionTokenInfo), EXP(GetResumptionTokenInfo),
EXP(HelloRetryRequestCallback), EXP(HelloRetryRequestCallback),
EXP(InstallExtensionHooks), EXP(InstallExtensionHooks),
EXP(HkdfExtract), EXP(HkdfExtract),
EXP(HkdfExpandLabel), EXP(HkdfExpandLabel),
skipping to change at line 4375 skipping to change at line 4377
{ {
sslSocket *ss = ssl_FindSocket(fd); sslSocket *ss = ssl_FindSocket(fd);
if (!ss) { if (!ss) {
return SECFailure; return SECFailure;
} }
ss->opt.enableTls13GreaseEch = enabled; ss->opt.enableTls13GreaseEch = enabled;
return SECSuccess; return SECSuccess;
} }
SECStatus SECStatus
SSLExp_EnableTls13BackendEch(PRFileDesc *fd, PRBool enabled)
{
sslSocket *ss = ssl_FindSocket(fd);
if (!ss) {
return SECFailure;
}
ss->opt.enableTls13BackendEch = enabled;
return SECSuccess;
}
SECStatus
SSLExp_SetDtls13VersionWorkaround(PRFileDesc *fd, PRBool enabled) SSLExp_SetDtls13VersionWorkaround(PRFileDesc *fd, PRBool enabled)
{ {
sslSocket *ss = ssl_FindSocket(fd); sslSocket *ss = ssl_FindSocket(fd);
if (!ss) { if (!ss) {
return SECFailure; return SECFailure;
} }
ss->opt.enableDtls13VersionCompat = enabled; ss->opt.enableDtls13VersionCompat = enabled;
return SECSuccess; return SECSuccess;
} }
 End of changes. 3 change blocks. 
1 lines changed or deleted 14 lines changed or added

Home  |  About  |  Features  |  All  |  Newest  |  Dox  |  Diffs  |  RSS Feeds  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTP(S)