CVSROOT: /cvs
Module name: src
Changes by: js...@cvs.openbsd.org 2018/01/27 08:30:05
Modified files:
lib/libssl : ssl_locl.h ssl_srvr.c ssl_tlsext.c ssl_tlsext.h
t1_lib.c
Log message:
Complete the TLS extension handling rewrite for the server-side.
This removes ssl_parse_clienthello_tlsext() and allows the CBS to be
passed all the way through from ssl3_get_client_hello(). The renegotation
check gets pulled up into ssl3_get_client_hello() which is where other
such checks exist.
The TLS extension parsing now also ensures that we do not get duplicates
of any known extensions (the old pre-rewrite code only did this for some
extensions).
ok inoguchi@
