Wire up the servername callback in the TLSv1.3 server.

This makes SNI work correctly with TLSv1.3. Found the hard way by danj@, gonzalo@ and others. ok beck@ inoguchi@ tb@
author: jsing <jsing@openbsd.org> 2020-05-29 17:47:30 +0000
committer: jsing <jsing@openbsd.org> 2020-05-29 17:47:30 +0000
commit: e4de2a75b8d7ed4398f6c5128524d6043eeab667 (patch)
tree: b869b7a7367f6bfe1846aa4b5b6b21c3346de935 /lib/libssl/tls13_internal.h
parent: Mop up servername_done, which is unused. (diff)
download: wireguard-openbsd-e4de2a75b8d7ed4398f6c5128524d6043eeab667.tar.xz
wireguard-openbsd-e4de2a75b8d7ed4398f6c5128524d6043eeab667.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/lib/libssl/tls13_internal.h b/lib/libssl/tls13_internal.h
index 770c18d6ad9..96ed9819594 100644
--- a/lib/libssl/tls13_internal.h
+++ b/lib/libssl/tls13_internal.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: tls13_internal.h,v 1.82 2020/05/23 11:57:41 jsing Exp $ */
+/* $OpenBSD: tls13_internal.h,v 1.83 2020/05/29 17:47:30 jsing Exp $ */
 /*
  * Copyright (c) 2018 Bob Beck <beck@openbsd.org>
  * Copyright (c) 2018 Theo Buehler <tb@openbsd.org>
@@ -311,6 +311,7 @@ int tls13_legacy_read_bytes(SSL *ssl, int type, unsigned char *buf, int len,
     int peek);
 int tls13_legacy_write_bytes(SSL *ssl, int type, const void *buf, int len);
 int tls13_legacy_shutdown(SSL *ssl);
+int tls13_legacy_servername_process(struct tls13_ctx *ctx, uint8_t *alert);
 
 /*
  * Message Types - RFC 8446, Section B.3.
author	jsing <jsing@openbsd.org>	2020-05-29 17:47:30 +0000
committer	jsing <jsing@openbsd.org>	2020-05-29 17:47:30 +0000
commit	e4de2a75b8d7ed4398f6c5128524d6043eeab667 (patch)
tree	b869b7a7367f6bfe1846aa4b5b6b21c3346de935 /lib/libssl/tls13_internal.h
parent	Mop up servername_done, which is unused. (diff)
download	wireguard-openbsd-e4de2a75b8d7ed4398f6c5128524d6043eeab667.tar.xz wireguard-openbsd-e4de2a75b8d7ed4398f6c5128524d6043eeab667.zip