diff options
| author | jsing <> | 2017-03-05 14:39:53 +0000 |
|---|---|---|
| committer | jsing <> | 2017-03-05 14:39:53 +0000 |
| commit | e04ca894aa08b4b01dbc7ead7524d8026ce8f3be (patch) | |
| tree | 4868a41992758cf1a7f9ffdaf1b940ee7bcceb4c /src/lib/libssl/ssl_clnt.c | |
| parent | b7e97f3829f43765f12691c1665b5e6017d75d28 (diff) | |
| download | openbsd-e04ca894aa08b4b01dbc7ead7524d8026ce8f3be.tar.gz openbsd-e04ca894aa08b4b01dbc7ead7524d8026ce8f3be.tar.bz2 openbsd-e04ca894aa08b4b01dbc7ead7524d8026ce8f3be.zip | |
Provide a rolling handshake hash that commences as soon as the cipher
suite has been selected, and convert the final finish MAC to use this
handshake hash.
This is a first step towards cleaning up the current handshake
buffer/digest code.
ok beck@ inoguchi@
Diffstat (limited to 'src/lib/libssl/ssl_clnt.c')
| -rw-r--r-- | src/lib/libssl/ssl_clnt.c | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/src/lib/libssl/ssl_clnt.c b/src/lib/libssl/ssl_clnt.c index f46b66c372..8dd30e87fb 100644 --- a/src/lib/libssl/ssl_clnt.c +++ b/src/lib/libssl/ssl_clnt.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ssl_clnt.c,v 1.9 2017/03/05 14:24:12 jsing Exp $ */ | 1 | /* $OpenBSD: ssl_clnt.c,v 1.10 2017/03/05 14:39:53 jsing Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -901,6 +901,9 @@ ssl3_get_server_hello(SSL *s) | |||
| 901 | } | 901 | } |
| 902 | S3I(s)->tmp.new_cipher = cipher; | 902 | S3I(s)->tmp.new_cipher = cipher; |
| 903 | 903 | ||
| 904 | if (!tls1_handshake_hash_init(s)) | ||
| 905 | goto err; | ||
| 906 | |||
| 904 | /* | 907 | /* |
| 905 | * Don't digest cached records if no sigalgs: we may need them for | 908 | * Don't digest cached records if no sigalgs: we may need them for |
| 906 | * client authentication. | 909 | * client authentication. |