projects
/
openssl.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
WIP: Convert ui,v3ext,verify_extra_test
[openssl.git]
/
ssl
/
s3_msg.c
diff --git
a/ssl/s3_msg.c
b/ssl/s3_msg.c
index a39994eaff27fa311eab2e9a363a677096ccf514..7af2f99e05a12c34642420f6657296eca97ae2d9 100644
(file)
--- a/
ssl/s3_msg.c
+++ b/
ssl/s3_msg.c
@@
-13,8
+13,9
@@
int ssl3_do_change_cipher_spec(SSL *s)
{
int i;
int ssl3_do_change_cipher_spec(SSL *s)
{
int i;
+ size_t finish_md_len;
const char *sender;
const char *sender;
-
in
t slen;
+
size_
t slen;
if (s->server)
i = SSL3_CHANGE_CIPHER_SERVER_READ;
if (s->server)
i = SSL3_CHANGE_CIPHER_SERVER_READ;
@@
-48,14
+49,13
@@
int ssl3_do_change_cipher_spec(SSL *s)
slen = s->method->ssl3_enc->client_finished_label_len;
}
slen = s->method->ssl3_enc->client_finished_label_len;
}
- i = s->method->ssl3_enc->final_finish_mac(s,
- sender, slen,
- s->s3->tmp.peer_finish_md);
- if (i == 0) {
+ finish_md_len = s->method->ssl3_enc->final_finish_mac(s, sender, slen,
+ s->s3->tmp.peer_finish_md);
+ if (finish_md_len == 0) {
SSLerr(SSL_F_SSL3_DO_CHANGE_CIPHER_SPEC, ERR_R_INTERNAL_ERROR);
return 0;
}
SSLerr(SSL_F_SSL3_DO_CHANGE_CIPHER_SPEC, ERR_R_INTERNAL_ERROR);
return 0;
}
- s->s3->tmp.peer_finish_md_len =
i
;
+ s->s3->tmp.peer_finish_md_len =
finish_md_len
;
return (1);
}
return (1);
}
@@
-63,7
+63,10
@@
int ssl3_do_change_cipher_spec(SSL *s)
int ssl3_send_alert(SSL *s, int level, int desc)
{
/* Map tls/ssl alert value to correct one */
int ssl3_send_alert(SSL *s, int level, int desc)
{
/* Map tls/ssl alert value to correct one */
- desc = s->method->ssl3_enc->alert_value(desc);
+ if (SSL_TREAT_AS_TLS13(s))
+ desc = tls13_alert_code(desc);
+ else
+ desc = s->method->ssl3_enc->alert_value(desc);
if (s->version == SSL3_VERSION && desc == SSL_AD_PROTOCOL_VERSION)
desc = SSL_AD_HANDSHAKE_FAILURE; /* SSL 3.0 does not have
* protocol_version alerts */
if (s->version == SSL3_VERSION && desc == SSL_AD_PROTOCOL_VERSION)
desc = SSL_AD_HANDSHAKE_FAILURE; /* SSL 3.0 does not have
* protocol_version alerts */