move the extensions_seen into the handshake struct

ok jsing@
author: beck <> 2019-01-24 01:50:41 +0000
committer: beck <> 2019-01-24 01:50:41 +0000
commit: 354172b127820c0f48cb417d4d46746e2122f87b (patch)
tree: 545d5a4b3595d94dfb4578269077b87cbcf48afb /src
parent: 9e01a2b9fc249398f995e0d00bee55d7e3c31be0 (diff)
download: openbsd-354172b127820c0f48cb417d4d46746e2122f87b.tar.gz
openbsd-354172b127820c0f48cb417d4d46746e2122f87b.tar.bz2
openbsd-354172b127820c0f48cb417d4d46746e2122f87b.zip
3 files changed, 12 insertions, 6 deletions
diff --git a/src/lib/libssl/s3_lib.c b/src/lib/libssl/s3_lib.c
index 496bf7394c..36142f0415 100644
--- a/src/lib/libssl/s3_lib.c
+++ b/src/lib/libssl/s3_lib.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: s3_lib.c,v 1.180 2019/01/23 18:24:40 beck Exp $ */
+/* $OpenBSD: s3_lib.c,v 1.181 2019/01/24 01:50:41 beck Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -1606,6 +1606,8 @@ ssl3_clear(SSL *s)
        freezero(S3I(s)->hs_tls13.x25519_public, X25519_KEY_LENGTH);
        freezero(S3I(s)->hs_tls13.x25519_peer_public, X25519_KEY_LENGTH);
+        S3I(s)->hs.extensions_seen = 0;
        rp = S3I(s)->rbuf.buf;
        wp = S3I(s)->wbuf.buf;
        rlen = S3I(s)->rbuf.len;
diff --git a/src/lib/libssl/ssl_locl.h b/src/lib/libssl/ssl_locl.h
index 8447484ec7..5d560f5935 100644
--- a/src/lib/libssl/ssl_locl.h
+++ b/src/lib/libssl/ssl_locl.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssl_locl.h,v 1.231 2019/01/23 18:39:28 beck Exp $ */
+/* $OpenBSD: ssl_locl.h,v 1.232 2019/01/24 01:50:41 beck Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -429,6 +429,9 @@ typedef struct ssl_handshake_st {
        /* key_block is the record-layer key block for TLS 1.2 and earlier. */
        int key_block_len;
        unsigned char *key_block;
+        /* Extensions seen in this handshake. */
+        uint32_t extensions_seen;
 } SSL_HANDSHAKE;
 typedef struct ssl_handshake_tls13_st {
diff --git a/src/lib/libssl/ssl_tlsext.c b/src/lib/libssl/ssl_tlsext.c
index 2214a61ed3..35c764f646 100644
--- a/src/lib/libssl/ssl_tlsext.c
+++ b/src/lib/libssl/ssl_tlsext.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssl_tlsext.c,v 1.34 2019/01/23 18:39:28 beck Exp $ */
+/* $OpenBSD: ssl_tlsext.c,v 1.35 2019/01/24 01:50:41 beck Exp $ */
 /*
 * Copyright (c) 2016, 2017, 2019 Joel Sing <jsing@openbsd.org>
 * Copyright (c) 2017 Doug Hogan <doug@openbsd.org>
@@ -1675,11 +1675,12 @@ tlsext_parse(SSL *s, CBS *cbs, int *alert, int is_server, uint16_t msg_type)
        struct tls_extension_funcs *ext;
        struct tls_extension *tlsext;
        CBS extensions, extension_data;
-        uint32_t extensions_seen = 0;
        uint16_t type;
        size_t idx;
        uint16_t version;
+        S3I(s)->hs.extensions_seen = 0;
        if (is_server)
                version = s->version;
        else
@@ -1718,9 +1719,9 @@ tlsext_parse(SSL *s, CBS *cbs, int *alert, int is_server, uint16_t msg_type)
                }
                /* Check for duplicate known extensions. */
-                if ((extensions_seen & (1 << idx)) != 0)
+                if ((S3I(s)->hs.extensions_seen & (1 << idx)) != 0)
                        return 0;
-                extensions_seen |= (1 << idx);
+                S3I(s)->hs.extensions_seen |= (1 << idx);
                ext = tlsext_funcs(tlsext, is_server);
                if (!ext->parse(s, &extension_data, alert))
author	beck <>	2019-01-24 01:50:41 +0000
committer	beck <>	2019-01-24 01:50:41 +0000
commit	354172b127820c0f48cb417d4d46746e2122f87b (patch)
tree	545d5a4b3595d94dfb4578269077b87cbcf48afb /src
parent	9e01a2b9fc249398f995e0d00bee55d7e3c31be0 (diff)
download	openbsd-354172b127820c0f48cb417d4d46746e2122f87b.tar.gz openbsd-354172b127820c0f48cb417d4d46746e2122f87b.tar.bz2 openbsd-354172b127820c0f48cb417d4d46746e2122f87b.zip