git.ipfire.org Git - thirdparty/openssl.git/commit

author	Dr. Stephen Henson <steve@openssl.org>
	Fri, 23 Jan 2015 02:49:16 +0000 (02:49 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Tue, 3 Feb 2015 14:50:07 +0000 (14:50 +0000)
commit	0cfb0e75b9dbf1a605c47e1b79c76d43a1f8344d
tree	cc9908361d4c930687b29e0457d46ea73a48e7de	tree \| snapshot
parent	ddc06b35565d9f2888e8d946ee7ae292bc902afd	commit \| diff

Add extms support to master key generation.

Update master secret calculation to support extended master secret.
TLS 1.2 client authentication adds a complication because we need to
cache the handshake messages. This is simpllified however because
the point at which the handshake hashes are calculated for extended
master secret is identical to that required for TLS 1.2 client
authentication (immediately after client key exchange which is also
immediately before certificate verify).
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>

ssl/d1_srvr.c		diff \| blob \| blame \| history
ssl/s3_clnt.c		diff \| blob \| blame \| history
ssl/s3_srvr.c		diff \| blob \| blame \| history
ssl/t1_enc.c		diff \| blob \| blame \| history
ssl/tls1.h		diff \| blob \| blame \| history