Move state machine knowledge out of the record layer
The record layer was making decisions that should really be left to the state machine around unexpected handshake messages that are received after the initial handshake (i.e. renegotiation related messages). This commit removes that code from the record layer and updates the state machine accordingly. This simplifies the state machine and paves the way for handling other messages post-handshake such as the NewSessionTicket in TLSv1.3. Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/2259)
Showing
- include/openssl/ssl.h 5 additions, 2 deletionsinclude/openssl/ssl.h
- ssl/record/rec_layer_d1.c 16 additions, 68 deletionsssl/record/rec_layer_d1.c
- ssl/record/rec_layer_s3.c 18 additions, 71 deletionsssl/record/rec_layer_s3.c
- ssl/s3_lib.c 13 additions, 5 deletionsssl/s3_lib.c
- ssl/ssl_err.c 2 additions, 0 deletionsssl/ssl_err.c
- ssl/ssl_lib.c 1 addition, 1 deletionssl/ssl_lib.c
- ssl/ssl_locl.h 5 additions, 2 deletionsssl/ssl_locl.h
- ssl/statem/extensions_clnt.c 3 additions, 7 deletionsssl/statem/extensions_clnt.c
- ssl/statem/extensions_srvr.c 2 additions, 15 deletionsssl/statem/extensions_srvr.c
- ssl/statem/statem.c 10 additions, 58 deletionsssl/statem/statem.c
- ssl/statem/statem.h 5 additions, 2 deletionsssl/statem/statem.h
- ssl/statem/statem_clnt.c 61 additions, 0 deletionsssl/statem/statem_clnt.c
- ssl/statem/statem_dtls.c 3 additions, 2 deletionsssl/statem/statem_dtls.c
- ssl/statem/statem_lib.c 47 additions, 2 deletionsssl/statem/statem_lib.c
- ssl/statem/statem_locl.h 1 addition, 0 deletionsssl/statem/statem_locl.h
- ssl/statem/statem_srvr.c 14 additions, 1 deletionssl/statem/statem_srvr.c
Please register or sign in to comment