diff options
Diffstat (limited to 'src/lib/libssl/t1_enc.c')
| -rw-r--r-- | src/lib/libssl/t1_enc.c | 19 |
1 files changed, 10 insertions, 9 deletions
diff --git a/src/lib/libssl/t1_enc.c b/src/lib/libssl/t1_enc.c index 05a5b1d953..5d889fa665 100644 --- a/src/lib/libssl/t1_enc.c +++ b/src/lib/libssl/t1_enc.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: t1_enc.c,v 1.133 2021/02/27 14:20:50 jsing Exp $ */ | 1 | /* $OpenBSD: t1_enc.c,v 1.134 2021/03/24 18:40:03 jsing Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -152,9 +152,9 @@ int tls1_PRF(SSL *s, const unsigned char *secret, size_t secret_len, | |||
| 152 | void | 152 | void |
| 153 | tls1_cleanup_key_block(SSL *s) | 153 | tls1_cleanup_key_block(SSL *s) |
| 154 | { | 154 | { |
| 155 | freezero(S3I(s)->hs.key_block, S3I(s)->hs.key_block_len); | 155 | freezero(S3I(s)->hs.tls12.key_block, S3I(s)->hs.tls12.key_block_len); |
| 156 | S3I(s)->hs.key_block = NULL; | 156 | S3I(s)->hs.tls12.key_block = NULL; |
| 157 | S3I(s)->hs.key_block_len = 0; | 157 | S3I(s)->hs.tls12.key_block_len = 0; |
| 158 | } | 158 | } |
| 159 | 159 | ||
| 160 | void | 160 | void |
| @@ -351,7 +351,7 @@ tls1_change_cipher_state(SSL *s, int which) | |||
| 351 | 351 | ||
| 352 | mac_secret_size = S3I(s)->tmp.new_mac_secret_size; | 352 | mac_secret_size = S3I(s)->tmp.new_mac_secret_size; |
| 353 | 353 | ||
| 354 | key_block = S3I(s)->hs.key_block; | 354 | key_block = S3I(s)->hs.tls12.key_block; |
| 355 | client_write_mac_secret = key_block; | 355 | client_write_mac_secret = key_block; |
| 356 | key_block += mac_secret_size; | 356 | key_block += mac_secret_size; |
| 357 | server_write_mac_secret = key_block; | 357 | server_write_mac_secret = key_block; |
| @@ -375,7 +375,8 @@ tls1_change_cipher_state(SSL *s, int which) | |||
| 375 | iv = server_write_iv; | 375 | iv = server_write_iv; |
| 376 | } | 376 | } |
| 377 | 377 | ||
| 378 | if (key_block - S3I(s)->hs.key_block != S3I(s)->hs.key_block_len) { | 378 | if (key_block - S3I(s)->hs.tls12.key_block != |
| 379 | S3I(s)->hs.tls12.key_block_len) { | ||
| 379 | SSLerror(s, ERR_R_INTERNAL_ERROR); | 380 | SSLerror(s, ERR_R_INTERNAL_ERROR); |
| 380 | goto err; | 381 | goto err; |
| 381 | } | 382 | } |
| @@ -410,7 +411,7 @@ tls1_setup_key_block(SSL *s) | |||
| 410 | const EVP_MD *mac_hash = NULL; | 411 | const EVP_MD *mac_hash = NULL; |
| 411 | int ret = 0; | 412 | int ret = 0; |
| 412 | 413 | ||
| 413 | if (S3I(s)->hs.key_block_len != 0) | 414 | if (S3I(s)->hs.tls12.key_block_len != 0) |
| 414 | return (1); | 415 | return (1); |
| 415 | 416 | ||
| 416 | if (s->session->cipher && | 417 | if (s->session->cipher && |
| @@ -451,8 +452,8 @@ tls1_setup_key_block(SSL *s) | |||
| 451 | } | 452 | } |
| 452 | key_block_len = (mac_secret_size + key_len + iv_len) * 2; | 453 | key_block_len = (mac_secret_size + key_len + iv_len) * 2; |
| 453 | 454 | ||
| 454 | S3I(s)->hs.key_block_len = key_block_len; | 455 | S3I(s)->hs.tls12.key_block_len = key_block_len; |
| 455 | S3I(s)->hs.key_block = key_block; | 456 | S3I(s)->hs.tls12.key_block = key_block; |
| 456 | 457 | ||
| 457 | if (!tls1_generate_key_block(s, key_block, key_block_len)) | 458 | if (!tls1_generate_key_block(s, key_block, key_block_len)) |
| 458 | goto err; | 459 | goto err; |