diff options
| author | jsing <> | 2021-11-29 16:00:32 +0000 |
|---|---|---|
| committer | jsing <> | 2021-11-29 16:00:32 +0000 |
| commit | a0d7805041037ed2978f81fb42281572ecf06ba5 (patch) | |
| tree | a67c634e81e938a386fd858c39b174adb55c4703 /src/lib/libssl/ssl_locl.h | |
| parent | fa78f5478a96728245b0da9e87927ad51540d124 (diff) | |
| download | openbsd-a0d7805041037ed2978f81fb42281572ecf06ba5.tar.gz openbsd-a0d7805041037ed2978f81fb42281572ecf06ba5.tar.bz2 openbsd-a0d7805041037ed2978f81fb42281572ecf06ba5.zip | |
Factor out/rewrite DHE key exchange.
This follows what was done previously for ECDHE EC point key exchange and
will allow for deduplication and further code improvement.
Convert the TLSv1.2 client to use the new DHE key exchange functions.
ok inoguchi@ tb@
Diffstat (limited to 'src/lib/libssl/ssl_locl.h')
| -rw-r--r-- | src/lib/libssl/ssl_locl.h | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/src/lib/libssl/ssl_locl.h b/src/lib/libssl/ssl_locl.h index 27bf5ec41f..7810bcd05e 100644 --- a/src/lib/libssl/ssl_locl.h +++ b/src/lib/libssl/ssl_locl.h | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ssl_locl.h,v 1.368 2021/10/25 10:09:28 jsing Exp $ */ | 1 | /* $OpenBSD: ssl_locl.h,v 1.369 2021/11/29 16:00:32 jsing Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -1447,6 +1447,14 @@ int ssl3_get_client_certificate(SSL *s); | |||
| 1447 | int ssl3_get_client_key_exchange(SSL *s); | 1447 | int ssl3_get_client_key_exchange(SSL *s); |
| 1448 | int ssl3_get_cert_verify(SSL *s); | 1448 | int ssl3_get_cert_verify(SSL *s); |
| 1449 | 1449 | ||
| 1450 | int ssl_kex_generate_dhe(DH *dh, DH *dh_params); | ||
| 1451 | int ssl_kex_params_dhe(DH *dh, CBB *cbb); | ||
| 1452 | int ssl_kex_public_dhe(DH *dh, CBB *cbb); | ||
| 1453 | int ssl_kex_peer_params_dhe(DH *dh, CBS *cbs); | ||
| 1454 | int ssl_kex_peer_public_dhe(DH *dh, CBS *cbs); | ||
| 1455 | int ssl_kex_derive_dhe(DH *dh, DH *dh_peer, | ||
| 1456 | uint8_t **shared_key, size_t *shared_key_len); | ||
| 1457 | |||
| 1450 | int ssl_kex_dummy_ecdhe_x25519(EVP_PKEY *pkey); | 1458 | int ssl_kex_dummy_ecdhe_x25519(EVP_PKEY *pkey); |
| 1451 | int ssl_kex_generate_ecdhe_ecp(EC_KEY *ecdh, int nid); | 1459 | int ssl_kex_generate_ecdhe_ecp(EC_KEY *ecdh, int nid); |
| 1452 | int ssl_kex_public_ecdhe_ecp(EC_KEY *ecdh, CBB *cbb); | 1460 | int ssl_kex_public_ecdhe_ecp(EC_KEY *ecdh, CBB *cbb); |