diff options
author | jsing <> | 2020-01-24 04:43:09 +0000 |
---|---|---|
committer | jsing <> | 2020-01-24 04:43:09 +0000 |
commit | 964a70381982bd3478237eede73feae9fa32b0e6 (patch) | |
tree | f271583fde3bbe55c9242508f9c0faa3bde9978d /src/lib/libssl/tls13_internal.h | |
parent | 7c51231fdacb3958fb78ae8cfc85984bfd3854d6 (diff) | |
download | openbsd-964a70381982bd3478237eede73feae9fa32b0e6.tar.gz openbsd-964a70381982bd3478237eede73feae9fa32b0e6.tar.bz2 openbsd-964a70381982bd3478237eede73feae9fa32b0e6.zip |
Switch to encrypted records in the TLSv1.3 server.
This adds code to perform key derivation and set the traffic keys once the
ServerHello message has been sent, enabling encrypted records.
ok beck@ tb@
Diffstat (limited to 'src/lib/libssl/tls13_internal.h')
-rw-r--r-- | src/lib/libssl/tls13_internal.h | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/src/lib/libssl/tls13_internal.h b/src/lib/libssl/tls13_internal.h index 7b3670bf45..b42889712f 100644 --- a/src/lib/libssl/tls13_internal.h +++ b/src/lib/libssl/tls13_internal.h | |||
@@ -1,4 +1,4 @@ | |||
1 | /* $OpenBSD: tls13_internal.h,v 1.51 2020/01/24 04:36:29 beck Exp $ */ | 1 | /* $OpenBSD: tls13_internal.h,v 1.52 2020/01/24 04:43:09 jsing Exp $ */ |
2 | /* | 2 | /* |
3 | * Copyright (c) 2018 Bob Beck <beck@openbsd.org> | 3 | * Copyright (c) 2018 Bob Beck <beck@openbsd.org> |
4 | * Copyright (c) 2018 Theo Buehler <tb@openbsd.org> | 4 | * Copyright (c) 2018 Theo Buehler <tb@openbsd.org> |
@@ -280,6 +280,7 @@ int tls13_client_key_update_send(struct tls13_ctx *ctx, CBB *cbb); | |||
280 | int tls13_client_key_update_recv(struct tls13_ctx *ctx, CBS *cbs); | 280 | int tls13_client_key_update_recv(struct tls13_ctx *ctx, CBS *cbs); |
281 | int tls13_server_hello_recv(struct tls13_ctx *ctx, CBS *cbs); | 281 | int tls13_server_hello_recv(struct tls13_ctx *ctx, CBS *cbs); |
282 | int tls13_server_hello_send(struct tls13_ctx *ctx, CBB *cbb); | 282 | int tls13_server_hello_send(struct tls13_ctx *ctx, CBB *cbb); |
283 | int tls13_server_hello_sent(struct tls13_ctx *ctx); | ||
283 | int tls13_server_hello_retry_recv(struct tls13_ctx *ctx, CBS *cbs); | 284 | int tls13_server_hello_retry_recv(struct tls13_ctx *ctx, CBS *cbs); |
284 | int tls13_server_hello_retry_send(struct tls13_ctx *ctx, CBB *cbb); | 285 | int tls13_server_hello_retry_send(struct tls13_ctx *ctx, CBB *cbb); |
285 | int tls13_server_encrypted_extensions_recv(struct tls13_ctx *ctx, CBS *cbs); | 286 | int tls13_server_encrypted_extensions_recv(struct tls13_ctx *ctx, CBS *cbs); |