1 files changed, 1 insertions, 57 deletions
diff --git a/src/lib/libssl/ssl.h b/src/lib/libssl/ssl.h
index b0f54100e2..fa1027fa28 100644
--- a/src/lib/libssl/ssl.h
+++ b/src/lib/libssl/ssl.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssl.h,v 1.105 2017/01/22 05:14:42 beck Exp $ */
+/* $OpenBSD: ssl.h,v 1.106 2017/01/22 06:36:49 jsing Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -841,48 +841,6 @@ struct ssl_ctx_st {
        int (*tlsext_status_cb)(SSL *ssl, void *arg);
        void *tlsext_status_arg;
-        /* Next protocol negotiation information */
-        /* (for experimental NPN extension). */
-        /* For a server, this contains a callback function by which the set of
-         * advertised protocols can be provided. */
-        int (*next_protos_advertised_cb)(SSL *s, const unsigned char **buf,
-            unsigned int *len, void *arg);
-        void *next_protos_advertised_cb_arg;
-        /* For a client, this contains a callback function that selects the
-         * next protocol from the list provided by the server. */
-        int (*next_proto_select_cb)(SSL *s, unsigned char **out,
-            unsigned char *outlen, const unsigned char *in,
-            unsigned int inlen, void *arg);
-        void *next_proto_select_cb_arg;
-        /*
-         * ALPN information
-         * (we are in the process of transitioning from NPN to ALPN).
-         */
-        /*
-         * Server callback function that allows the server to select the
-         * protocol for the connection.
-         *   out: on successful return, this must point to the raw protocol
-         *       name (without the length prefix).
-         *   outlen: on successful return, this contains the length of out.
-         *   in: points to the client's list of supported protocols in
-         *       wire-format.
-         *   inlen: the length of in.
-         */
-        int (*alpn_select_cb)(SSL *s, const unsigned char **out,
-            unsigned char *outlen, const unsigned char *in, unsigned int inlen,
-            void *arg);
-        void *alpn_select_cb_arg;
-        /* Client list of supported protocols in wire format. */
-        unsigned char *alpn_client_proto_list;
-        unsigned int alpn_client_proto_list_len;
        /* SRTP profiles we are willing to do from RFC 5764 */
        STACK_OF(SRTP_PROTECTION_PROFILE) *srtp_profiles;
@@ -1194,16 +1152,6 @@ struct ssl_st {
        SSL_CTX * initial_ctx; /* initial ctx, used to store sessions */
 #define session_ctx initial_ctx
-        /* Next protocol negotiation. For the client, this is the protocol that
-         * we sent in NextProtocol and is set when handling ServerHello
-         * extensions.
-         *
-         * For a server, this is the client's selected_protocol from
-         * NextProtocol and is set when handling the NextProtocol message,
-         * before the Finished message. */
-        unsigned char *next_proto_negotiated;
-        unsigned char next_proto_negotiated_len;
        STACK_OF(SRTP_PROTECTION_PROFILE) *srtp_profiles;       /* What we'll do */
        SRTP_PROTECTION_PROFILE *srtp_profile;                  /* What's been chosen */
@@ -1215,10 +1163,6 @@ struct ssl_st {
        unsigned int tlsext_hb_pending; /* Indicates if a HeartbeatRequest is in flight */
        unsigned int tlsext_hb_seq;     /* HeartbeatRequest sequence number */
-        /* Client list of supported protocols in wire format. */
-        unsigned char *alpn_client_proto_list;
-        unsigned int alpn_client_proto_list_len;
        int renegotiate;/* 1 if we are renegotiating.
                         * 2 if we are a server and are inside a handshake
                         * (i.e. not just sending a HelloRequest) */

diff --git a/src/lib/libssl/ssl.h b/src/lib/libssl/ssl.h index b0f54100e2..fa1027fa28 100644 --- a/src/lib/libssl/ssl.h +++ b/src/lib/libssl/ssl.h
@@ -1,4 +1,4 @@
1	/* $OpenBSD: ssl.h,v 1.105 2017/01/22 05:14:42 beck Exp $ */	1	/* $OpenBSD: ssl.h,v 1.106 2017/01/22 06:36:49 jsing Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.	3	* All rights reserved.
4	*	4	*
@@ -841,48 +841,6 @@ struct ssl_ctx_st {
841	int (tlsext_status_cb)(SSL ssl, void *arg);	841	int (tlsext_status_cb)(SSL ssl, void *arg);
842	void *tlsext_status_arg;	842	void *tlsext_status_arg;
843		843
844
845
846
847	/* Next protocol negotiation information */
848	/* (for experimental NPN extension). */
849
850	/* For a server, this contains a callback function by which the set of
851	* advertised protocols can be provided. */
852	int (next_protos_advertised_cb)(SSL s, const unsigned char **buf,
853	unsigned int len, void arg);
854	void *next_protos_advertised_cb_arg;
855	/* For a client, this contains a callback function that selects the
856	* next protocol from the list provided by the server. */
857	int (next_proto_select_cb)(SSL s, unsigned char **out,
858	unsigned char outlen, const unsigned char in,
859	unsigned int inlen, void *arg);
860	void *next_proto_select_cb_arg;
861
862	/*
863	* ALPN information
864	* (we are in the process of transitioning from NPN to ALPN).
865	*/
866
867	/*
868	* Server callback function that allows the server to select the
869	* protocol for the connection.
870	* out: on successful return, this must point to the raw protocol
871	* name (without the length prefix).
872	* outlen: on successful return, this contains the length of out.
873	* in: points to the client's list of supported protocols in
874	* wire-format.
875	* inlen: the length of in.
876	*/
877	int (alpn_select_cb)(SSL s, const unsigned char **out,
878	unsigned char outlen, const unsigned char in, unsigned int inlen,
879	void *arg);
880	void *alpn_select_cb_arg;
881
882	/* Client list of supported protocols in wire format. */
883	unsigned char *alpn_client_proto_list;
884	unsigned int alpn_client_proto_list_len;
885
886	/* SRTP profiles we are willing to do from RFC 5764 */	844	/* SRTP profiles we are willing to do from RFC 5764 */
887	STACK_OF(SRTP_PROTECTION_PROFILE) *srtp_profiles;	845	STACK_OF(SRTP_PROTECTION_PROFILE) *srtp_profiles;
888		846
@@ -1194,16 +1152,6 @@ struct ssl_st {
1194	SSL_CTX * initial_ctx; /* initial ctx, used to store sessions */	1152	SSL_CTX * initial_ctx; /* initial ctx, used to store sessions */
1195	#define session_ctx initial_ctx	1153	#define session_ctx initial_ctx
1196		1154
1197	/* Next protocol negotiation. For the client, this is the protocol that
1198	* we sent in NextProtocol and is set when handling ServerHello
1199	* extensions.
1200	*
1201	* For a server, this is the client's selected_protocol from
1202	* NextProtocol and is set when handling the NextProtocol message,
1203	* before the Finished message. */
1204	unsigned char *next_proto_negotiated;
1205	unsigned char next_proto_negotiated_len;
1206
1207	STACK_OF(SRTP_PROTECTION_PROFILE) srtp_profiles; / What we'll do */	1155	STACK_OF(SRTP_PROTECTION_PROFILE) srtp_profiles; / What we'll do */
1208	SRTP_PROTECTION_PROFILE srtp_profile; / What's been chosen */	1156	SRTP_PROTECTION_PROFILE srtp_profile; / What's been chosen */
1209		1157
@@ -1215,10 +1163,6 @@ struct ssl_st {
1215	unsigned int tlsext_hb_pending; /* Indicates if a HeartbeatRequest is in flight */	1163	unsigned int tlsext_hb_pending; /* Indicates if a HeartbeatRequest is in flight */
1216	unsigned int tlsext_hb_seq; /* HeartbeatRequest sequence number */	1164	unsigned int tlsext_hb_seq; /* HeartbeatRequest sequence number */
1217		1165
1218	/* Client list of supported protocols in wire format. */
1219	unsigned char *alpn_client_proto_list;
1220	unsigned int alpn_client_proto_list_len;
1221
1222	int renegotiate;/* 1 if we are renegotiating.	1166	int renegotiate;/* 1 if we are renegotiating.
1223	* 2 if we are a server and are inside a handshake	1167	* 2 if we are a server and are inside a handshake
1224	* (i.e. not just sending a HelloRequest) */	1168	* (i.e. not just sending a HelloRequest) */