cherry pick bugfixes for http://www.openssl.org/news/secadv_20130205.txt

from the openssl git (changes between openssl 1.0.1c and 1.0.1d). ok djm@
author: markus <> 2013-02-14 15:11:44 +0000
committer: markus <> 2013-02-14 15:11:44 +0000
commit: 9822d929c08eed1446dc09464293449326730af2 (patch)
tree: cd2035e8f8ac3d4ade1ee779dcaabbe671c2003a /src/lib/libssl/ssl_locl.h
parent: 692574e51be904b35cfcb2609fd641e93dc8cef7 (diff)
download: openbsd-9822d929c08eed1446dc09464293449326730af2.tar.gz
openbsd-9822d929c08eed1446dc09464293449326730af2.tar.bz2
openbsd-9822d929c08eed1446dc09464293449326730af2.zip
1 files changed, 38 insertions, 0 deletions
diff --git a/src/lib/libssl/ssl_locl.h b/src/lib/libssl/ssl_locl.h
index d87fd51cfa..7fc110df64 100644
--- a/src/lib/libssl/ssl_locl.h
+++ b/src/lib/libssl/ssl_locl.h
@@ -215,6 +215,15 @@
                         *((c)++)=(unsigned char)(((l)>> 8)&0xff), \
                         *((c)++)=(unsigned char)(((l)    )&0xff))
+#define l2n8(l,c)       (*((c)++)=(unsigned char)(((l)>>56)&0xff), \
+                         *((c)++)=(unsigned char)(((l)>>48)&0xff), \
+                         *((c)++)=(unsigned char)(((l)>>40)&0xff), \
+                         *((c)++)=(unsigned char)(((l)>>32)&0xff), \
+                         *((c)++)=(unsigned char)(((l)>>24)&0xff), \
+                         *((c)++)=(unsigned char)(((l)>>16)&0xff), \
+                         *((c)++)=(unsigned char)(((l)>> 8)&0xff), \
+                         *((c)++)=(unsigned char)(((l)    )&0xff))
 #define n2l6(c,l)       (l =((BN_ULLONG)(*((c)++)))<<40, \
                         l|=((BN_ULLONG)(*((c)++)))<<32, \
                         l|=((BN_ULLONG)(*((c)++)))<<24, \
@@ -1131,4 +1140,33 @@ int ssl_parse_clienthello_use_srtp_ext(SSL *s, unsigned char *d, int len,int *al
 int ssl_add_serverhello_use_srtp_ext(SSL *s, unsigned char *p, int *len, int maxlen);
 int ssl_parse_serverhello_use_srtp_ext(SSL *s, unsigned char *d, int len,int *al);
+/* s3_cbc.c */
+void ssl3_cbc_copy_mac(unsigned char* out,
+                       const SSL3_RECORD *rec,
+                       unsigned md_size,unsigned orig_len);
+int ssl3_cbc_remove_padding(const SSL* s,
+                            SSL3_RECORD *rec,
+                            unsigned block_size,
+                            unsigned mac_size);
+int tls1_cbc_remove_padding(const SSL* s,
+                            SSL3_RECORD *rec,
+                            unsigned block_size,
+                            unsigned mac_size);
+char ssl3_cbc_record_digest_supported(const EVP_MD_CTX *ctx);
+void ssl3_cbc_digest_record(
+        const EVP_MD_CTX *ctx,
+        unsigned char* md_out,
+        size_t* md_out_size,
+        const unsigned char header[13],
+        const unsigned char *data,
+        size_t data_plus_mac_size,
+        size_t data_plus_mac_plus_padding_size,
+        const unsigned char *mac_secret,
+        unsigned mac_secret_length,
+        char is_sslv3);
+void tls_fips_digest_extra(
+        const EVP_CIPHER_CTX *cipher_ctx, EVP_MD_CTX *mac_ctx,
+        const unsigned char *data, size_t data_len, size_t orig_len);
 #endif
author	markus <>	2013-02-14 15:11:44 +0000
committer	markus <>	2013-02-14 15:11:44 +0000
commit	9822d929c08eed1446dc09464293449326730af2 (patch)
tree	cd2035e8f8ac3d4ade1ee779dcaabbe671c2003a /src/lib/libssl/ssl_locl.h
parent	692574e51be904b35cfcb2609fd641e93dc8cef7 (diff)
download	openbsd-9822d929c08eed1446dc09464293449326730af2.tar.gz openbsd-9822d929c08eed1446dc09464293449326730af2.tar.bz2 openbsd-9822d929c08eed1446dc09464293449326730af2.zip

diff --git a/src/lib/libssl/ssl_locl.h b/src/lib/libssl/ssl_locl.h index d87fd51cfa..7fc110df64 100644 --- a/src/lib/libssl/ssl_locl.h +++ b/src/lib/libssl/ssl_locl.h
@@ -215,6 +215,15 @@
215	*((c)++)=(unsigned char)(((l)>> 8)&0xff), \	215	*((c)++)=(unsigned char)(((l)>> 8)&0xff), \
216	*((c)++)=(unsigned char)(((l) )&0xff))	216	*((c)++)=(unsigned char)(((l) )&0xff))
217		217
		218	#define l2n8(l,c) (*((c)++)=(unsigned char)(((l)>>56)&0xff), \
		219	*((c)++)=(unsigned char)(((l)>>48)&0xff), \
		220	*((c)++)=(unsigned char)(((l)>>40)&0xff), \
		221	*((c)++)=(unsigned char)(((l)>>32)&0xff), \
		222	*((c)++)=(unsigned char)(((l)>>24)&0xff), \
		223	*((c)++)=(unsigned char)(((l)>>16)&0xff), \
		224	*((c)++)=(unsigned char)(((l)>> 8)&0xff), \
		225	*((c)++)=(unsigned char)(((l) )&0xff))
		226
218	#define n2l6(c,l) (l =((BN_ULLONG)(*((c)++)))<<40, \	227	#define n2l6(c,l) (l =((BN_ULLONG)(*((c)++)))<<40, \
219	l\|=((BN_ULLONG)(*((c)++)))<<32, \	228	l\|=((BN_ULLONG)(*((c)++)))<<32, \
220	l\|=((BN_ULLONG)(*((c)++)))<<24, \	229	l\|=((BN_ULLONG)(*((c)++)))<<24, \
@@ -1131,4 +1140,33 @@ int ssl_parse_clienthello_use_srtp_ext(SSL s, unsigned char d, int len,int *al
1131	int ssl_add_serverhello_use_srtp_ext(SSL s, unsigned char p, int *len, int maxlen);	1140	int ssl_add_serverhello_use_srtp_ext(SSL s, unsigned char p, int *len, int maxlen);
1132	int ssl_parse_serverhello_use_srtp_ext(SSL s, unsigned char d, int len,int *al);	1141	int ssl_parse_serverhello_use_srtp_ext(SSL s, unsigned char d, int len,int *al);
1133		1142
		1143	/* s3_cbc.c */
		1144	void ssl3_cbc_copy_mac(unsigned char* out,
		1145	const SSL3_RECORD *rec,
		1146	unsigned md_size,unsigned orig_len);
		1147	int ssl3_cbc_remove_padding(const SSL* s,
		1148	SSL3_RECORD *rec,
		1149	unsigned block_size,
		1150	unsigned mac_size);
		1151	int tls1_cbc_remove_padding(const SSL* s,
		1152	SSL3_RECORD *rec,
		1153	unsigned block_size,
		1154	unsigned mac_size);
		1155	char ssl3_cbc_record_digest_supported(const EVP_MD_CTX *ctx);
		1156	void ssl3_cbc_digest_record(
		1157	const EVP_MD_CTX *ctx,
		1158	unsigned char* md_out,
		1159	size_t* md_out_size,
		1160	const unsigned char header[13],
		1161	const unsigned char *data,
		1162	size_t data_plus_mac_size,
		1163	size_t data_plus_mac_plus_padding_size,
		1164	const unsigned char *mac_secret,
		1165	unsigned mac_secret_length,
		1166	char is_sslv3);
		1167
		1168	void tls_fips_digest_extra(
		1169	const EVP_CIPHER_CTX cipher_ctx, EVP_MD_CTX mac_ctx,
		1170	const unsigned char *data, size_t data_len, size_t orig_len);
		1171
1134	#endif	1172	#endif