summaryrefslogtreecommitdiff
path: root/src/lib/libssl/tls13_internal.h
diff options
context:
space:
mode:
authorjsing <>2020-01-24 04:43:09 +0000
committerjsing <>2020-01-24 04:43:09 +0000
commit964a70381982bd3478237eede73feae9fa32b0e6 (patch)
treef271583fde3bbe55c9242508f9c0faa3bde9978d /src/lib/libssl/tls13_internal.h
parent7c51231fdacb3958fb78ae8cfc85984bfd3854d6 (diff)
downloadopenbsd-964a70381982bd3478237eede73feae9fa32b0e6.tar.gz
openbsd-964a70381982bd3478237eede73feae9fa32b0e6.tar.bz2
openbsd-964a70381982bd3478237eede73feae9fa32b0e6.zip
Switch to encrypted records in the TLSv1.3 server.
This adds code to perform key derivation and set the traffic keys once the ServerHello message has been sent, enabling encrypted records. ok beck@ tb@
Diffstat (limited to 'src/lib/libssl/tls13_internal.h')
-rw-r--r--src/lib/libssl/tls13_internal.h3
1 files changed, 2 insertions, 1 deletions
diff --git a/src/lib/libssl/tls13_internal.h b/src/lib/libssl/tls13_internal.h
index 7b3670bf45..b42889712f 100644
--- a/src/lib/libssl/tls13_internal.h
+++ b/src/lib/libssl/tls13_internal.h
@@ -1,4 +1,4 @@
1/* $OpenBSD: tls13_internal.h,v 1.51 2020/01/24 04:36:29 beck Exp $ */ 1/* $OpenBSD: tls13_internal.h,v 1.52 2020/01/24 04:43:09 jsing Exp $ */
2/* 2/*
3 * Copyright (c) 2018 Bob Beck <beck@openbsd.org> 3 * Copyright (c) 2018 Bob Beck <beck@openbsd.org>
4 * Copyright (c) 2018 Theo Buehler <tb@openbsd.org> 4 * Copyright (c) 2018 Theo Buehler <tb@openbsd.org>
@@ -280,6 +280,7 @@ int tls13_client_key_update_send(struct tls13_ctx *ctx, CBB *cbb);
280int tls13_client_key_update_recv(struct tls13_ctx *ctx, CBS *cbs); 280int tls13_client_key_update_recv(struct tls13_ctx *ctx, CBS *cbs);
281int tls13_server_hello_recv(struct tls13_ctx *ctx, CBS *cbs); 281int tls13_server_hello_recv(struct tls13_ctx *ctx, CBS *cbs);
282int tls13_server_hello_send(struct tls13_ctx *ctx, CBB *cbb); 282int tls13_server_hello_send(struct tls13_ctx *ctx, CBB *cbb);
283int tls13_server_hello_sent(struct tls13_ctx *ctx);
283int tls13_server_hello_retry_recv(struct tls13_ctx *ctx, CBS *cbs); 284int tls13_server_hello_retry_recv(struct tls13_ctx *ctx, CBS *cbs);
284int tls13_server_hello_retry_send(struct tls13_ctx *ctx, CBB *cbb); 285int tls13_server_hello_retry_send(struct tls13_ctx *ctx, CBB *cbb);
285int tls13_server_encrypted_extensions_recv(struct tls13_ctx *ctx, CBS *cbs); 286int tls13_server_encrypted_extensions_recv(struct tls13_ctx *ctx, CBS *cbs);