Provide a rolling handshake hash that commences as soon as the cipher

suite has been selected, and convert the final finish MAC to use this handshake hash. This is a first step towards cleaning up the current handshake buffer/digest code. ok beck@ inoguchi@
author: jsing <jsing@openbsd.org> 2017-03-05 14:39:53 +0000
committer: jsing <jsing@openbsd.org> 2017-03-05 14:39:53 +0000
commit: 366dc2a2e9ef223ce3418b3d76bba648547d45ef (patch)
tree: d9fd995f7169f30e2e7cdc7ee6ee0edc127c064f /lib/libssl/ssl_clnt.c
parent: Convert various handshake message generation functions to CBB. (diff)
download: wireguard-openbsd-366dc2a2e9ef223ce3418b3d76bba648547d45ef.tar.xz
wireguard-openbsd-366dc2a2e9ef223ce3418b3d76bba648547d45ef.zip
1 files changed, 4 insertions, 1 deletions
diff --git a/lib/libssl/ssl_clnt.c b/lib/libssl/ssl_clnt.c
index f46b66c3721..8dd30e87fba 100644
--- a/lib/libssl/ssl_clnt.c
+++ b/lib/libssl/ssl_clnt.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssl_clnt.c,v 1.9 2017/03/05 14:24:12 jsing Exp $ */
+/* $OpenBSD: ssl_clnt.c,v 1.10 2017/03/05 14:39:53 jsing Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
  * All rights reserved.
  *
@@ -901,6 +901,9 @@ ssl3_get_server_hello(SSL *s)
 	}
 	S3I(s)->tmp.new_cipher = cipher;
 
+	if (!tls1_handshake_hash_init(s))
+		goto err;
+
 	/*
 	 * Don't digest cached records if no sigalgs: we may need them for
 	 * client authentication.
author	jsing <jsing@openbsd.org>	2017-03-05 14:39:53 +0000
committer	jsing <jsing@openbsd.org>	2017-03-05 14:39:53 +0000
commit	366dc2a2e9ef223ce3418b3d76bba648547d45ef (patch)
tree	d9fd995f7169f30e2e7cdc7ee6ee0edc127c064f /lib/libssl/ssl_clnt.c
parent	Convert various handshake message generation functions to CBB. (diff)
download	wireguard-openbsd-366dc2a2e9ef223ce3418b3d76bba648547d45ef.tar.xz wireguard-openbsd-366dc2a2e9ef223ce3418b3d76bba648547d45ef.zip