98         if (s->s3.tmp.cert_request) {  in ossl_statem_server13_read_transition()
217             if (s->s3.tmp.cert_request) {  in ossl_statem_server_read_transition()
237         } else if (s->s3.tmp.cert_request) {  in ossl_statem_server_read_transition()
289         if (s->s3.npn_seen) {  in ossl_statem_server_read_transition()
351     unsigned long alg_k = s->s3.tmp.new_cipher->algorithm_mkey;  in send_server_key_exchange()
394     if (sc->s3.tmp.cert == NULL)  in get_compressed_certificate_alg()
398         if (sc->s3.tmp.cert->comp_cert[*alg] != NULL)  in get_compressed_certificate_alg()
435            && (!(s->s3.tmp.new_cipher->algorithm_auth & SSL_aNULL)  in send_certificate_request()
443            && !(s->s3.tmp.new_cipher->algorithm_auth & SSL_aSRP)  in send_certificate_request()
448            && !(s->s3.tmp.new_cipher->algorithm_auth & SSL_aPSK)) {  in send_certificate_request()
671             if (!(s->s3.tmp.new_cipher->algorithm_auth &  in ossl_statem_server_write_transition()
816             s->session->cipher = s->s3.tmp.new_cipher;  in ossl_statem_server_pre_work()
817         } else if (s->session->cipher != s->s3.tmp.new_cipher) {  in ossl_statem_server_pre_work()
838                 && (s->s3.flags & TLS1_FLAGS_STATELESS) == 0)  in ossl_statem_server_pre_work()
1341     if ((s->s3.tmp.new_cipher->algorithm_mkey & SSL_kSRP) &&  in ssl_check_srp_ext_ClientHello()
1463     s->s3.is_probably_safari = PACKET_equal(&tmppkt, kSafariExtensionsBlock,  in ssl_check_for_safari()
1485                 || (!s->s3.send_connection_binding  in tls_process_client_hello()
1719     memcpy(s->s3.client_random, clienthello->random, SSL3_RANDOM_SIZE);  in tls_early_post_process_client_hello()
1789     s->s3.send_connection_binding = 0;  in tls_early_post_process_client_hello()
1801                 s->s3.send_connection_binding = 1;  in tls_early_post_process_client_hello()
1828                 && (s->s3.tmp.new_cipher == NULL  in tls_early_post_process_client_hello()
1829                     || s->s3.tmp.new_cipher->id != cipher->id)) {  in tls_early_post_process_client_hello()
1837         s->s3.tmp.new_cipher = cipher;  in tls_early_post_process_client_hello()
1960         pos = s->s3.server_random;  in tls_early_post_process_client_hello()
2019     s->s3.tmp.new_compression = NULL;  in tls_early_post_process_client_hello()
2048                 s->s3.tmp.new_compression = comp;  in tls_early_post_process_client_hello()
2052         if (s->s3.tmp.new_compression == NULL) {  in tls_early_post_process_client_hello()
2088             s->s3.tmp.new_compression = comp;  in tls_early_post_process_client_hello()
2162         if (s->s3.tmp.cert != NULL) {  in tls_handle_status_request()
2167             s->cert->key = s->s3.tmp.cert;  in tls_handle_status_request()
2202     if (sctx->ext.alpn_select_cb != NULL && s->s3.alpn_proposed != NULL) {  in tls_handle_alpn()
2205                                          s->s3.alpn_proposed,  in tls_handle_alpn()
2206                                          (unsigned int)s->s3.alpn_proposed_len,  in tls_handle_alpn()
2210             OPENSSL_free(s->s3.alpn_selected);  in tls_handle_alpn()
2211             s->s3.alpn_selected = OPENSSL_memdup(selected, selected_len);  in tls_handle_alpn()
2212             if (s->s3.alpn_selected == NULL) {  in tls_handle_alpn()
2213                 s->s3.alpn_selected_len = 0;  in tls_handle_alpn()
2217             s->s3.alpn_selected_len = selected_len;  in tls_handle_alpn()
2220             s->s3.npn_seen = 0;  in tls_handle_alpn()
2318                 s->s3.tmp.new_cipher = cipher;  in tls_post_process_client_hello()
2329                             ((s->s3.tmp.new_cipher->algorithm_mkey  in tls_post_process_client_hello()
2337             s->s3.tmp.new_cipher = s->session->cipher;  in tls_post_process_client_hello()
2412                                    ? hrrrandom : s->s3.server_random,  in tls_construct_server_hello()
2457     if (usetls13 || s->s3.tmp.new_compression == NULL)  in tls_construct_server_hello()
2460         compm = s->s3.tmp.new_compression->id;  in tls_construct_server_hello()
2464             || !SSL_CONNECTION_GET_SSL(s)->method->put_cipher_by_char(s->s3.tmp.new_cipher,  in tls_construct_server_hello()
2507     if (!s->s3.tmp.cert_request) {  in tls_construct_server_done()
2523     const SIGALG_LOOKUP *lu = s->s3.tmp.sigalg;  in tls_construct_server_key_exchange()
2544     type = s->s3.tmp.new_cipher->algorithm_mkey;  in tls_construct_server_key_exchange()
2586         if (s->s3.tmp.pkey != NULL) {  in tls_construct_server_key_exchange()
2591         s->s3.tmp.pkey = ssl_generate_pkey(s, pkdhp);  in tls_construct_server_key_exchange()
2592         if (s->s3.tmp.pkey == NULL) {  in tls_construct_server_key_exchange()
2602         if (!EVP_PKEY_get_bn_param(s->s3.tmp.pkey, OSSL_PKEY_PARAM_FFC_P,  in tls_construct_server_key_exchange()
2604                 || !EVP_PKEY_get_bn_param(s->s3.tmp.pkey, OSSL_PKEY_PARAM_FFC_G,  in tls_construct_server_key_exchange()
2606                 || !EVP_PKEY_get_bn_param(s->s3.tmp.pkey,  in tls_construct_server_key_exchange()
2613         if (s->s3.tmp.pkey != NULL) {  in tls_construct_server_key_exchange()
2628         s->s3.tmp.pkey = ssl_generate_pkey_group(s, curve_id);  in tls_construct_server_key_exchange()
2629         if (s->s3.tmp.pkey == NULL) {  in tls_construct_server_key_exchange()
2635         encodedlen = EVP_PKEY_get1_encoded_public_key(s->s3.tmp.pkey,  in tls_construct_server_key_exchange()
2670     if (((s->s3.tmp.new_cipher->algorithm_auth & (SSL_aNULL | SSL_aSRP)) != 0)  in tls_construct_server_key_exchange()
2671         || ((s->s3.tmp.new_cipher->algorithm_mkey & SSL_PSK)) != 0) {  in tls_construct_server_key_exchange()
2758         EVP_PKEY *pkey = s->s3.tmp.cert->privatekey;  in tls_construct_server_key_exchange()
2895     s->s3.tmp.cert_request = 1;  in tls_construct_certificate_request()
2939     OPENSSL_free(s->s3.tmp.psk);  in tls_process_cke_psk_preamble()
2940     s->s3.tmp.psk = OPENSSL_memdup(psk, psklen);  in tls_process_cke_psk_preamble()
2943     if (s->s3.tmp.psk == NULL) {  in tls_process_cke_psk_preamble()
2944         s->s3.tmp.psklen = 0;  in tls_process_cke_psk_preamble()
2949     s->s3.tmp.psklen = psklen;  in tls_process_cke_psk_preamble()
3068     skey = s->s3.tmp.pkey;  in tls_process_cke_dhe()
3100     EVP_PKEY_free(s->s3.tmp.pkey);  in tls_process_cke_dhe()
3101     s->s3.tmp.pkey = NULL;  in tls_process_cke_dhe()
3109     EVP_PKEY *skey = s->s3.tmp.pkey;  in tls_process_cke_ecdhe()
3155     EVP_PKEY_free(s->s3.tmp.pkey);  in tls_process_cke_ecdhe()
3156     s->s3.tmp.pkey = NULL;  in tls_process_cke_ecdhe()
3217     alg_a = s->s3.tmp.new_cipher->algorithm_auth;  in tls_process_cke_gost()
3388     alg_k = s->s3.tmp.new_cipher->algorithm_mkey;  in tls_process_client_key_exchange()
3445     OPENSSL_clear_free(s->s3.tmp.psk, s->s3.tmp.psklen);  in tls_process_client_key_exchange()
3446     s->s3.tmp.psk = NULL;  in tls_process_client_key_exchange()
3447     s->s3.tmp.psklen = 0;  in tls_process_client_key_exchange()
3499         if (!s->s3.handshake_buffer) {  in tls_post_process_client_key_exchange()
3717         if (s->s3.handshake_buffer && !ssl3_digest_cached_records(s, 0)) {  in tls_process_client_certificate()
3818     CERT_PKEY *cpk = s->s3.tmp.cert;  in tls_construct_server_certificate()
3858     OSSL_COMP_CERT *cc = sc->s3.tmp.cert->comp_cert[alg];  in tls_construct_server_compressed_certificate()
3875     sc->s3.tmp.cert->cert_comp_used++;  in tls_construct_server_compressed_certificate()
4238         if (s->s3.alpn_selected != NULL) {  in tls_construct_new_session_ticket()
4241                 OPENSSL_memdup(s->s3.alpn_selected, s->s3.alpn_selected_len);  in tls_construct_new_session_ticket()
4247             s->session->ext.alpn_selected_len = s->s3.alpn_selected_len;  in tls_construct_new_session_ticket()

Last Index update Tue Nov 26 22:08:55 UTC 2024

Dedicated to & Maintained by Room-11