artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9115c01) | patch
Convert legacy TLS client to tls_key_share.
authorjsing <jsing@openbsd.org>
Thu, 6 Jan 2022 18:23:56 +0000 (18:23 +0000)
committerjsing <jsing@openbsd.org>
Thu, 6 Jan 2022 18:23:56 +0000 (18:23 +0000)
commit892af70e9e2e90ba9497fb5bbfa3bb1ab6e60d31
tree33a61f2cca6717d4d0c9c6acb3d42e5dd5609ebctree | snapshot
parent9115c013a940c9fd229f5f3e680aa67f602859bacommit | diff
Convert legacy TLS client to tls_key_share.

This requires adding DHE support to tls_key_share. In doing so,
tls_key_share_peer_public() has to lose the group argument and gains
an invalid_key argument. The one place that actually needs the group
check is tlsext_keyshare_client_parse(), so add code to do this.

ok inoguchi@ tb@
lib/libssl/s3_lib.c diff | blob | history
lib/libssl/ssl_cert.c diff | blob | history
lib/libssl/ssl_clnt.c diff | blob | history
lib/libssl/ssl_locl.h diff | blob | history
lib/libssl/ssl_tlsext.c diff | blob | history
lib/libssl/tls_internal.h diff | blob | history
lib/libssl/tls_key_share.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim