/openssl/doc/man3/ |
H A D | SSL_COMP_add_compression_method.pod | 7 - handle SSL/TLS integrated compression methods 26 SSL_COMP_add_compression_method() adds the compression method B<cm> with 27 the identifier B<id> to the list of available compression methods. This 32 compression methods or NULL on error. 34 SSL_COMP_get0_name() returns the name of the compression method B<comp>. 36 SSL_COMP_get_id() returns the id of the compression method B<comp>. 39 maintain the internal table of compression methods. 55 restrict the list of compression method on a per connection basis. 58 its own compression methods and will unconditionally activate compression 60 of compression methods supported on a per connection basis. [all …]
|
H A D | SSL_SESSION_get_compress_id.pod | 6 - get details about the compression associated with a session 16 If compression has been negotiated for an ssl session then 17 SSL_SESSION_get_compress_id() will return the id for the compression method or 18 0 otherwise. The only built-in supported compression method is zlib which has an 23 SSL_SESSION_get_compress_id() returns the id of the compression method or 0 if
|
H A D | COMP_CTX_new.pod | 54 the OpenSSL library to support TLS record and certificate compression. 81 COMP_zlib() returns a B<COMP_METHOD> for stream-based ZLIB compression. 85 COMP_zlib_oneshot() returns a B<COMP_METHOD> for one-shot ZLIB compression. 89 COMP_brotli() returns a B<COMP_METHOD> for stream-based Brotli compression. 93 COMP_brotli_oneshot() returns a B<COMP_METHOD> for one-shot Brotli compression. 97 COMP_zstd() returns a B<COMP_METHOD> for stream-based Zstandard compression. 101 COMP_zstd_oneshot() returns a B<COMP_METHOD> for one-shot Zstandard compression. 114 compression and expansion. 116 Compression support and compression algorithms must be enabled and built into 132 Compression is also used to support certificate compression as described [all …]
|
H A D | CMS_compress.pod | 16 is the compression algorithm to use or B<NID_undef> to use the default 17 algorithm (zlib compression). B<in> is the content to be compressed. 20 The only currently supported compression algorithm is zlib using the NID 52 Additional compression parameters such as the zlib compression level cannot
|
H A D | SSL_CTX_set1_cert_comp_preference.pod | 12 SSL_set1_compressed_cert - Certificate compression functions 38 These functions control the certificate compression feature. Certificate 39 compression is only available for TLSv1.3 as defined in RFC8879. 42 to specify the preferred compression algorithms. The B<algs> argument is an array 48 The following compression algorithms (B<alg> arguments) may be used: 85 Each side of the connection sends their compression algorithm preference list 119 =item * If B<alg> is 0 and no compression algorithms are enabled.
|
H A D | CMS_uncompress.pod | 24 The only currently supported compression algorithm is zlib: if the structure
|
H A D | SSL_CTX_set_options.pod | 245 RFC8879 certificate compression option on TLSv1.3 connections. 247 If this option is set, the certificate compression extension is ignored 253 RFC8879 certificate compression option on TLSv1.3 connections. 255 If this option is set, the certificate compression extension will not be sent 260 Do not use TLS record compression even if it is supported. This option is set by 262 compression is not recommended and is not available at security level 2 or
|
H A D | SSL_CTX_set_client_hello_cb.pod | 49 the null compression method, since the SSLv2 format does not include a 50 mechanism by which to negotiate compression.
|
H A D | SSL_CONF_cmd.pod | 40 Disables support for SSL/TLS compression, same as setting 42 As of OpenSSL 1.1.0, compression is off by default. 46 Enables support for SSL/TLS compression, same as clearing 49 As of OpenSSL 1.1.0, compression is off by default. TLS compression can only be 508 B<Compression>: SSL/TLS compression support, disabled by default. Inverse 774 Enable compression:
|
H A D | OPENSSL_malloc.pod | 125 If the storage controller uses write compression, then it's possible
|
/openssl/test/helpers/ |
H A D | handshake.h | 47 int compression; member
|
H A D | handshake.c | 1658 ret->compression = (SSL_get_current_compression(client.ssl) == NULL) in do_handshake_internal()
|
/openssl/crypto/err/ |
H A D | openssl.txt | 612 EC_R_INVALID_COMPRESSION_BIT:109:invalid compression bit 1331 SSL_R_BAD_COMPRESSION_ALGORITHM:326:bad compression algorithm 1382 SSL_R_COMPRESSION_DISABLED:343:compression disabled 1383 SSL_R_COMPRESSION_FAILURE:141:compression failure 1385 compression id not within private range 1386 SSL_R_COMPRESSION_LIBRARY_ERROR:142:compression library error 1415 SSL_R_DUPLICATE_COMPRESSION_ID:309:duplicate compression id 1441 SSL_R_INCONSISTENT_COMPRESSION:340:inconsistent compression 1504 SSL_R_NO_COMPRESSION_SPECIFIED:187:no compression specified 1531 old session compression algorithm not returned [all …]
|
/openssl/ssl/statem/ |
H A D | statem_clnt.c | 1462 unsigned int compression; in tls_process_server_hello() local 1520 if (!PACKET_get_1(pkt, &compression)) { in tls_process_server_hello() 1550 if (compression != 0) { in tls_process_server_hello() 1707 if (compression != 0) { in tls_process_server_hello() 1721 if (s->hit && compression != s->session->compress_meth) { in tls_process_server_hello() 1726 if (compression == 0) in tls_process_server_hello() 1733 compression); in tls_process_server_hello() 1736 if (compression != 0 && comp == NULL) { in tls_process_server_hello()
|
H A D | statem_srvr.c | 1474 PACKET session_id, compression, extensions, cookie; in tls_process_client_hello() local 1593 || !PACKET_buf_init(&compression, &null_compression, 1)) { in tls_process_client_hello() 1639 if (!PACKET_get_length_prefixed_1(pkt, &compression)) { in tls_process_client_hello() 1656 if (!PACKET_copy_all(&compression, clienthello->compressions, in tls_process_client_hello()
|
/openssl/doc/man1/ |
H A D | openssl-s_server.pod.in | 627 Disable negotiation of TLS compression. 628 TLS compression is not recommended and is off by default as of 633 Enables support for SSL/TLS compression. 635 TLS compression is not recommended and is off by default as of 636 OpenSSL 1.1.0. TLS compression can only be used in security level 1 or
|
H A D | openssl-s_client.pod.in | 635 Enables support for SSL/TLS compression. 637 TLS compression is not recommended and is off by default as of 638 OpenSSL 1.1.0. TLS compression can only be used in security level 1 or 646 Disables support for SSL/TLS compression. 647 TLS compression is not recommended and is off by default as of
|
/openssl/test/ |
H A D | ssl_test.c | 164 if (!TEST_int_eq(result->compression, test_ctx->compression_expected)) in check_compression()
|
/openssl/ |
H A D | INSTALL.md | 22 - [Compression Algorithm Flags](#compression-algorithm-flags) 659 Build with support for brotli compression/decompression. 727 Don't build support for SSL/TLS compression. 729 If this option is enabled (the default), then compression will only work if 1129 Build with support for zlib compression/decompression. 1140 Build with support for Zstd compression/decompression.
|
H A D | NEWS.md | 343 * Support for TLS certificate compression, including library 1407 * Zlib compression usage fixes. 1436 * Changed the ZLIB compression method to be stateful. 1825 * Extended support for compression inside the SSL record layer 1839 * Initial support for compression inside the SSL record layer
|
H A D | CHANGES.md | 852 * Add support for certificate compression (RFC8879), including 853 library support for Brotli and Zstandard compression. 5449 using the SSL_CONF library to configure compression. 11172 restarting) then use compression (e.g. SSL with compression) later. 12643 * Change the ZLIB compression method to be stateful, and make it 12645 draft-ietf-tls-compression-04.txt. 12794 Point compression for binary fields is disabled by default for 13411 extra data after the compression methods not only for TLS 1.0 14389 * Add configuration choices to get zlib compression for TLS. 15691 extra data after the compression methods not only for TLS 1.0 [all …]
|
/openssl/doc/man7/ |
H A D | EVP_PKEY-EC.pod | 118 Note, in particular, that the choice of point compression format used for
|
/openssl/crypto/objects/ |
H A D | objects.txt | 1010 !Cname zlib-compression 1011 id-smime-alg 8 : ZLIB : zlib compression 1869 # NID for compression 1870 : brotli : Brotli compression 1871 : zstd : Zstandard compression
|
/openssl/doc/designs/quic-design/ |
H A D | record-layer.md | 238 `get_compression()`: to obtain information about the compression method 243 any expansion that might occur during compression. Currently this is only
|
/openssl/include/openssl/ |
H A D | ssl.h.in | 368 /* Don't use compression even if supported */ 416 * Disable RFC8879 certificate compression 2675 /* Use to see if compression is allowed */ 2798 /* RFC8879 Certificate compression APIs */
|