Add SSL_HANDSHAKE_TLS12 for TLSv1.2 specific handshake data.

Move TLSv1.2 specific components over from SSL_HANDSHAKE. ok inoguchi@ tb@
author: jsing <> 2021-03-24 18:40:03 +0000
committer: jsing <> 2021-03-24 18:40:03 +0000
commit: 3ce9712d99b47c9a9db840f6cf8cc970a5f841dd (patch)
tree: 11571c197cb39ad7863008ce9cfde68d93e4365c /src/lib/libssl/ssl_srvr.c
parent: fe982f909e3eb95563da8f33820ff38d44f1179f (diff)
download: openbsd-3ce9712d99b47c9a9db840f6cf8cc970a5f841dd.tar.gz
openbsd-3ce9712d99b47c9a9db840f6cf8cc970a5f841dd.tar.bz2
openbsd-3ce9712d99b47c9a9db840f6cf8cc970a5f841dd.zip
1 files changed, 9 insertions, 9 deletions
diff --git a/src/lib/libssl/ssl_srvr.c b/src/lib/libssl/ssl_srvr.c
index 19fedde87a..3dc87a00c8 100644
--- a/src/lib/libssl/ssl_srvr.c
+++ b/src/lib/libssl/ssl_srvr.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssl_srvr.c,v 1.97 2021/03/11 17:14:47 jsing Exp $ */
+/* $OpenBSD: ssl_srvr.c,v 1.98 2021/03/24 18:40:03 jsing Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -290,9 +290,9 @@ ssl3_accept(SSL *s)
                        if (ret <= 0)
                                goto end;
                        if (SSL_is_dtls(s))
-                                S3I(s)->hs.next_state = SSL3_ST_SR_CLNT_HELLO_A;
+                                S3I(s)->hs.tls12.next_state = SSL3_ST_SR_CLNT_HELLO_A;
                        else
-                                S3I(s)->hs.next_state = SSL3_ST_SW_HELLO_REQ_C;
+                                S3I(s)->hs.tls12.next_state = SSL3_ST_SW_HELLO_REQ_C;
                        S3I(s)->hs.state = SSL3_ST_SW_FLUSH;
                        s->internal->init_num = 0;
@@ -365,7 +365,7 @@ ssl3_accept(SSL *s)
                        if (ret <= 0)
                                goto end;
                        S3I(s)->hs.state = SSL3_ST_SW_FLUSH;
-                        S3I(s)->hs.next_state = SSL3_ST_SR_CLNT_HELLO_A;
+                        S3I(s)->hs.tls12.next_state = SSL3_ST_SR_CLNT_HELLO_A;
                        /* HelloVerifyRequest resets Finished MAC. */
                        tls1_transcript_reset(s);
@@ -488,7 +488,7 @@ ssl3_accept(SSL *s)
                        ret = ssl3_send_server_done(s);
                        if (ret <= 0)
                                goto end;
-                        S3I(s)->hs.next_state = SSL3_ST_SR_CERT_A;
+                        S3I(s)->hs.tls12.next_state = SSL3_ST_SR_CERT_A;
                        S3I(s)->hs.state = SSL3_ST_SW_FLUSH;
                        s->internal->init_num = 0;
                        break;
@@ -510,14 +510,14 @@ ssl3_accept(SSL *s)
                                        /* If the write error was fatal, stop trying. */
                                        if (!BIO_should_retry(s->wbio)) {
                                                s->internal->rwstate = SSL_NOTHING;
-                                                S3I(s)->hs.state = S3I(s)->hs.next_state;
+                                                S3I(s)->hs.state = S3I(s)->hs.tls12.next_state;
                                        }
                                }
                                ret = -1;
                                goto end;
                        }
                        s->internal->rwstate = SSL_NOTHING;
-                        S3I(s)->hs.state = S3I(s)->hs.next_state;
+                        S3I(s)->hs.state = S3I(s)->hs.tls12.next_state;
                        break;
                case SSL3_ST_SR_CERT_A:
@@ -674,10 +674,10 @@ ssl3_accept(SSL *s)
                                goto end;
                        S3I(s)->hs.state = SSL3_ST_SW_FLUSH;
                        if (s->internal->hit) {
-                                S3I(s)->hs.next_state = SSL3_ST_SR_FINISHED_A;
+                                S3I(s)->hs.tls12.next_state = SSL3_ST_SR_FINISHED_A;
                                tls1_transcript_free(s);
                        } else
-                                S3I(s)->hs.next_state = SSL_ST_OK;
+                                S3I(s)->hs.tls12.next_state = SSL_ST_OK;
                        s->internal->init_num = 0;
                        break;
author	jsing <>	2021-03-24 18:40:03 +0000
committer	jsing <>	2021-03-24 18:40:03 +0000
commit	3ce9712d99b47c9a9db840f6cf8cc970a5f841dd (patch)
tree	11571c197cb39ad7863008ce9cfde68d93e4365c /src/lib/libssl/ssl_srvr.c
parent	fe982f909e3eb95563da8f33820ff38d44f1179f (diff)
download	openbsd-3ce9712d99b47c9a9db840f6cf8cc970a5f841dd.tar.gz openbsd-3ce9712d99b47c9a9db840f6cf8cc970a5f841dd.tar.bz2 openbsd-3ce9712d99b47c9a9db840f6cf8cc970a5f841dd.zip

diff --git a/src/lib/libssl/ssl_srvr.c b/src/lib/libssl/ssl_srvr.c index 19fedde87a..3dc87a00c8 100644 --- a/src/lib/libssl/ssl_srvr.c +++ b/src/lib/libssl/ssl_srvr.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: ssl_srvr.c,v 1.97 2021/03/11 17:14:47 jsing Exp $ */	1	/* $OpenBSD: ssl_srvr.c,v 1.98 2021/03/24 18:40:03 jsing Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.	3	* All rights reserved.
4	*	4	*
@@ -290,9 +290,9 @@ ssl3_accept(SSL *s)
290	if (ret <= 0)	290	if (ret <= 0)
291	goto end;	291	goto end;
292	if (SSL_is_dtls(s))	292	if (SSL_is_dtls(s))
293	S3I(s)->hs.next_state = SSL3_ST_SR_CLNT_HELLO_A;	293	S3I(s)->hs.tls12.next_state = SSL3_ST_SR_CLNT_HELLO_A;
294	else	294	else
295	S3I(s)->hs.next_state = SSL3_ST_SW_HELLO_REQ_C;	295	S3I(s)->hs.tls12.next_state = SSL3_ST_SW_HELLO_REQ_C;
296	S3I(s)->hs.state = SSL3_ST_SW_FLUSH;	296	S3I(s)->hs.state = SSL3_ST_SW_FLUSH;
297	s->internal->init_num = 0;	297	s->internal->init_num = 0;
298		298
@@ -365,7 +365,7 @@ ssl3_accept(SSL *s)
365	if (ret <= 0)	365	if (ret <= 0)
366	goto end;	366	goto end;
367	S3I(s)->hs.state = SSL3_ST_SW_FLUSH;	367	S3I(s)->hs.state = SSL3_ST_SW_FLUSH;
368	S3I(s)->hs.next_state = SSL3_ST_SR_CLNT_HELLO_A;	368	S3I(s)->hs.tls12.next_state = SSL3_ST_SR_CLNT_HELLO_A;
369		369
370	/* HelloVerifyRequest resets Finished MAC. */	370	/* HelloVerifyRequest resets Finished MAC. */
371	tls1_transcript_reset(s);	371	tls1_transcript_reset(s);
@@ -488,7 +488,7 @@ ssl3_accept(SSL *s)
488	ret = ssl3_send_server_done(s);	488	ret = ssl3_send_server_done(s);
489	if (ret <= 0)	489	if (ret <= 0)
490	goto end;	490	goto end;
491	S3I(s)->hs.next_state = SSL3_ST_SR_CERT_A;	491	S3I(s)->hs.tls12.next_state = SSL3_ST_SR_CERT_A;
492	S3I(s)->hs.state = SSL3_ST_SW_FLUSH;	492	S3I(s)->hs.state = SSL3_ST_SW_FLUSH;
493	s->internal->init_num = 0;	493	s->internal->init_num = 0;
494	break;	494	break;
@@ -510,14 +510,14 @@ ssl3_accept(SSL *s)
510	/* If the write error was fatal, stop trying. */	510	/* If the write error was fatal, stop trying. */
511	if (!BIO_should_retry(s->wbio)) {	511	if (!BIO_should_retry(s->wbio)) {
512	s->internal->rwstate = SSL_NOTHING;	512	s->internal->rwstate = SSL_NOTHING;
513	S3I(s)->hs.state = S3I(s)->hs.next_state;	513	S3I(s)->hs.state = S3I(s)->hs.tls12.next_state;
514	}	514	}
515	}	515	}
516	ret = -1;	516	ret = -1;
517	goto end;	517	goto end;
518	}	518	}
519	s->internal->rwstate = SSL_NOTHING;	519	s->internal->rwstate = SSL_NOTHING;
520	S3I(s)->hs.state = S3I(s)->hs.next_state;	520	S3I(s)->hs.state = S3I(s)->hs.tls12.next_state;
521	break;	521	break;
522		522
523	case SSL3_ST_SR_CERT_A:	523	case SSL3_ST_SR_CERT_A:
@@ -674,10 +674,10 @@ ssl3_accept(SSL *s)
674	goto end;	674	goto end;
675	S3I(s)->hs.state = SSL3_ST_SW_FLUSH;	675	S3I(s)->hs.state = SSL3_ST_SW_FLUSH;
676	if (s->internal->hit) {	676	if (s->internal->hit) {
677	S3I(s)->hs.next_state = SSL3_ST_SR_FINISHED_A;	677	S3I(s)->hs.tls12.next_state = SSL3_ST_SR_FINISHED_A;
678	tls1_transcript_free(s);	678	tls1_transcript_free(s);
679	} else	679	} else
680	S3I(s)->hs.next_state = SSL_ST_OK;	680	S3I(s)->hs.tls12.next_state = SSL_ST_OK;
681	s->internal->init_num = 0;	681	s->internal->init_num = 0;
682	break;	682	break;
683		683