diff options
| author | jsing <> | 2021-05-05 10:05:27 +0000 |
|---|---|---|
| committer | jsing <> | 2021-05-05 10:05:27 +0000 |
| commit | 61ec18da26d0571bc925e8f60b9f8b60ce5ca1fb (patch) | |
| tree | 07f64696b23229ab3deb8b5ecb2d4da5b3116265 /src/lib/libssl/Makefile | |
| parent | c157b585ad23f1585c90daafcbac523ea9685e35 (diff) | |
| download | openbsd-61ec18da26d0571bc925e8f60b9f8b60ce5ca1fb.tar.gz openbsd-61ec18da26d0571bc925e8f60b9f8b60ce5ca1fb.tar.bz2 openbsd-61ec18da26d0571bc925e8f60b9f8b60ce5ca1fb.zip | |
Rewrite TLSv1.2 key block handling.
For TLSv1.2 a single key block is generated, then partitioned into
individual secrets for use as IVs and keys. The previous implementation
splits this across two functions tls1_setup_key_block() and
tls1_change_cipher_state(), which means that the IV and key sizes have to
be known in multiple places.
This implementation generates and partitions the key block in a single
step, meaning that the secrets are then simply handed out when requested.
ok inoguchi@ tb@
Diffstat (limited to 'src/lib/libssl/Makefile')
| -rw-r--r-- | src/lib/libssl/Makefile | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/src/lib/libssl/Makefile b/src/lib/libssl/Makefile index d6730a5e04..6171194629 100644 --- a/src/lib/libssl/Makefile +++ b/src/lib/libssl/Makefile | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | # $OpenBSD: Makefile,v 1.69 2021/04/25 13:15:22 jsing Exp $ | 1 | # $OpenBSD: Makefile,v 1.70 2021/05/05 10:05:27 jsing Exp $ |
| 2 | 2 | ||
| 3 | .include <bsd.own.mk> | 3 | .include <bsd.own.mk> |
| 4 | .ifndef NOMAN | 4 | .ifndef NOMAN |
| @@ -67,6 +67,7 @@ SRCS= \ | |||
| 67 | ssl_versions.c \ | 67 | ssl_versions.c \ |
| 68 | t1_enc.c \ | 68 | t1_enc.c \ |
| 69 | t1_lib.c \ | 69 | t1_lib.c \ |
| 70 | tls12_key_schedule.c \ | ||
| 70 | tls12_lib.c \ | 71 | tls12_lib.c \ |
| 71 | tls12_record_layer.c \ | 72 | tls12_record_layer.c \ |
| 72 | tls13_buffer.c \ | 73 | tls13_buffer.c \ |