Extend tls_construct_extensions() to enable passing of a certificate

    /* Parse extension send from server to client */

    int (*parse_stoc)(SSL *s, PACKET *pkt, int *al);

    /* Construct extension sent from server to client */

    int (*construct_stoc)(SSL *s, WPACKET *pkt, int *al);

    int (*construct_stoc)(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                          int *al);

    /* Construct extension sent from client to server */

    int (*construct_ctos)(SSL *s, WPACKET *pkt, int *al);

    int (*construct_ctos)(SSL *s, WPACKET *pkt, X509 *x, size_t chain, int *al);

    /*

     * Finalise extension after parsing. Always called where an extensions was

     * initialised even if the extension was not present. |sent| is set to 1 if

/*

 * Construct all the extensions relevant to the current |context| and write

 * them to |pkt|. Returns 1 on success or 0 on failure. If a failure occurs then

 * |al| is populated with a suitable alert code. On a failure construction stops

 * at the first extension to fail to construct.

 * them to |pkt|. If this is an extension for a Certificate in a Certificate

 * message, then |x| will be set to the Certificate we are handling, and |chain|

 * will indicate the position in the chain we are processing (with 0 being the

 * first in the chain). Returns 1 on success or 0 on failure. If a failure

 * occurs then |al| is populated with a suitable alert code. On a failure

 * construction stops at the first extension to fail to construct.

 */

int tls_construct_extensions(SSL *s, WPACKET *pkt, unsigned int context,

                             int *al)

                             X509 *x, size_t chain, int *al)

{

    size_t i;

    int addcustom = 0, min_version, max_version = 0, reason, tmpal;

    }

    for (i = 0, thisexd = ext_defs; i < OSSL_NELEM(ext_defs); i++, thisexd++) {

        int (*construct)(SSL *s, WPACKET *pkt, int *al);

        int (*construct)(SSL *s, WPACKET *pkt, X509 *x, size_t chain, int *al);

        /* Skip if not relevant for our context */

        if ((thisexd->context & context) == 0)

                || construct == NULL)

            continue;

        if (!construct(s, pkt, &tmpal))

        if (!construct(s, pkt, x, chain, &tmpal))

            goto err;

    }

#include "../ssl_locl.h"

#include "statem_locl.h"

int tls_construct_ctos_renegotiate(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_renegotiate(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                   int *al)

{

    /* Add RI if renegotiating */

    if (!s->renegotiate)

    return 1;

}

int tls_construct_ctos_server_name(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_server_name(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                   int *al)

{

    if (s->tlsext_hostname == NULL)

        return 1;

}

#ifndef OPENSSL_NO_SRP

int tls_construct_ctos_srp(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_srp(SSL *s, WPACKET *pkt, X509 *x, size_t chain, int *al)

{

    /* Add SRP username if there is one */

    if (s->srp_ctx.login == NULL)

    return i < end;

}

int tls_construct_ctos_ec_pt_formats(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_ec_pt_formats(SSL *s, WPACKET *pkt, X509 *x,

                                     size_t chain, int *al)

{

    const unsigned char *pformats;

    size_t num_formats;

    return 1;

}

int tls_construct_ctos_supported_groups(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_supported_groups(SSL *s, WPACKET *pkt, X509 *x,

                                        size_t chain, int *al)

{

    const unsigned char *pcurves = NULL, *pcurvestmp;

    size_t num_curves = 0, i;

}

#endif

int tls_construct_ctos_session_ticket(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_session_ticket(SSL *s, WPACKET *pkt, X509 *x,

                                      size_t chain, int *al)

{

    size_t ticklen;

    return 1;

}

int tls_construct_ctos_sig_algs(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_sig_algs(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                int *al)

{

    size_t salglen;

    const unsigned char *salg;

}

#ifndef OPENSSL_NO_OCSP

int tls_construct_ctos_status_request(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_status_request(SSL *s, WPACKET *pkt, X509 *x,

                                      size_t chain, int *al)

{

    int i;

#endif

#ifndef OPENSSL_NO_NEXTPROTONEG

int tls_construct_ctos_npn(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_npn(SSL *s, WPACKET *pkt, X509 *x, size_t chain, int *al)

{

    if (s->ctx->next_proto_select_cb == NULL || s->s3->tmp.finish_md_len != 0)

        return 1;

}

#endif

int tls_construct_ctos_alpn(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_alpn(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                            int *al)

{

    s->s3->alpn_sent = 0;

#ifndef OPENSSL_NO_SRTP

int tls_construct_ctos_use_srtp(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_use_srtp(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                int *al)

{

    STACK_OF(SRTP_PROTECTION_PROFILE) *clnt = SSL_get_srtp_profiles(s);

    int i, end;

}

#endif

int tls_construct_ctos_etm(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_etm(SSL *s, WPACKET *pkt, X509 *x, size_t chain, int *al)

{

    if (s->options & SSL_OP_NO_ENCRYPT_THEN_MAC)

        return 1;

}

#ifndef OPENSSL_NO_CT

int tls_construct_ctos_sct(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_sct(SSL *s, WPACKET *pkt, X509 *x, size_t chain, int *al)

{

    if (s->ct_validation_callback == NULL)

        return 1;

}

#endif

int tls_construct_ctos_ems(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_ems(SSL *s, WPACKET *pkt, X509 *x, size_t chain, int *al)

{

    if (!WPACKET_put_bytes_u16(pkt, TLSEXT_TYPE_extended_master_secret)

            || !WPACKET_put_bytes_u16(pkt, 0)) {

    return 1;

}

int tls_construct_ctos_supported_versions(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_supported_versions(SSL *s, WPACKET *pkt, X509 *x,

                                          size_t chain, int *al)

{

    int currv, min_version, max_version, reason;

    return 1;

}

int tls_construct_ctos_key_share(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_key_share(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                 int *al)

{

#ifndef OPENSSL_NO_TLS1_3

    size_t i, sharessent = 0, num_curves = 0;

#define F5_WORKAROUND_MIN_MSG_LEN   0xff

#define F5_WORKAROUND_MAX_MSG_LEN   0x200

int tls_construct_ctos_padding(SSL *s, WPACKET *pkt, int *al)

int tls_construct_ctos_padding(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                               int *al)

{

    unsigned char *padbytes;

    size_t hlen;

/*

 * Add the server's renegotiation binding

 */

int tls_construct_stoc_renegotiate(SSL *s, WPACKET *pkt, int *al)

int tls_construct_stoc_renegotiate(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                   int *al)

{

    if (!s->s3->send_connection_binding)

        return 1;

    return 1;

}

int tls_construct_stoc_server_name(SSL *s, WPACKET *pkt, int *al)

int tls_construct_stoc_server_name(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                   int *al)

{

    if (s->hit || s->servername_done != 1

            || s->session->tlsext_hostname == NULL)

}

#ifndef OPENSSL_NO_EC

int tls_construct_stoc_ec_pt_formats(SSL *s, WPACKET *pkt, int *al)

int tls_construct_stoc_ec_pt_formats(SSL *s, WPACKET *pkt, X509 *x,

                                     size_t chain, int *al)

{

    unsigned long alg_k = s->s3->tmp.new_cipher->algorithm_mkey;

    unsigned long alg_a = s->s3->tmp.new_cipher->algorithm_auth;

}

#endif

int tls_construct_stoc_session_ticket(SSL *s, WPACKET *pkt, int *al)

int tls_construct_stoc_session_ticket(SSL *s, WPACKET *pkt, X509 *x,

                                      size_t chain, int *al)

{

    if (!s->tlsext_ticket_expected || !tls_use_ticket(s)) {

        s->tlsext_ticket_expected = 0;

}

#ifndef OPENSSL_NO_OCSP

int tls_construct_stoc_status_request(SSL *s, WPACKET *pkt, int *al)

int tls_construct_stoc_status_request(SSL *s, WPACKET *pkt, X509 *x,

                                     size_t chain, int *al)

{

    if (!s->tlsext_status_expected)

        return 1;

}

#endif

#ifndef OPENSSL_NO_NEXTPROTONEG

int tls_construct_stoc_next_proto_neg(SSL *s, WPACKET *pkt, int *al)

int tls_construct_stoc_next_proto_neg(SSL *s, WPACKET *pkt, X509 *x,

                                      size_t chain, int *al)

{

    const unsigned char *npa;

    unsigned int npalen;

}

#endif

int tls_construct_stoc_alpn(SSL *s, WPACKET *pkt, int *al)

int tls_construct_stoc_alpn(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                            int *al)

{

    if (s->s3->alpn_selected == NULL)

        return 1;

}

#ifndef OPENSSL_NO_SRTP

int tls_construct_stoc_use_srtp(SSL *s, WPACKET *pkt, int *al)

int tls_construct_stoc_use_srtp(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                int *al)

{

    if (s->srtp_profile == NULL)

        return 1;

}

#endif

int tls_construct_stoc_etm(SSL *s, WPACKET *pkt, int *al)

int tls_construct_stoc_etm(SSL *s, WPACKET *pkt, X509 *x, size_t chain, int *al)

{

    if ((s->s3->flags & TLS1_FLAGS_ENCRYPT_THEN_MAC) == 0)

        return 1;

    return 1;

}

int tls_construct_stoc_ems(SSL *s, WPACKET *pkt, int *al)

int tls_construct_stoc_ems(SSL *s, WPACKET *pkt, X509 *x, size_t chain, int *al)

{

    if ((s->s3->flags & TLS1_FLAGS_RECEIVED_EXTMS) == 0)

        return 1;

    return 1;

}

int tls_construct_stoc_key_share(SSL *s, WPACKET *pkt, int *al)

int tls_construct_stoc_key_share(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                 int *al)

{

#ifndef OPENSSL_NO_TLS1_3

    unsigned char *encodedPoint;

    return 1;

}

int tls_construct_stoc_cryptopro_bug(SSL *s, WPACKET *pkt, int *al)

int tls_construct_stoc_cryptopro_bug(SSL *s, WPACKET *pkt, X509 *x,

                                     size_t chain, int *al)

{

    const unsigned char cryptopro_ext[36] = {

        0xfd, 0xe8,         /* 65000 */

    }

    /* TLS extensions */

    if (!tls_construct_extensions(s, pkt, EXT_CLIENT_HELLO, &al)) {

    if (!tls_construct_extensions(s, pkt, EXT_CLIENT_HELLO, NULL, 0, &al)) {

        ssl3_send_alert(s, SSL3_AL_FATAL, al);

        SSLerr(SSL_F_TLS_CONSTRUCT_CLIENT_HELLO, ERR_R_INTERNAL_ERROR);

        return 0;

__owur int tls_parse_all_extensions(SSL *s, int context, RAW_EXTENSION *exts,

                                    int *al);

__owur int tls_construct_extensions(SSL *s, WPACKET *pkt, unsigned int context,

                                    int *al);

                                    X509 *x, size_t chain, int *al);

/* Server Extension processing */

int tls_parse_ctos_renegotiate(SSL *s, PACKET *pkt, int *al);

int tls_parse_ctos_key_share(SSL *s, PACKET *pkt, int *al);

int tls_parse_ctos_ems(SSL *s, PACKET *pkt, int *al);

int tls_construct_stoc_renegotiate(SSL *s, WPACKET *pkt, int *al);

int tls_construct_stoc_server_name(SSL *s, WPACKET *pkt, int *al);

int tls_construct_stoc_renegotiate(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                   int *al);

int tls_construct_stoc_server_name(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                   int *al);

#ifndef OPENSSL_NO_EC

int tls_construct_stoc_ec_pt_formats(SSL *s, WPACKET *pkt, int *al);

int tls_construct_stoc_ec_pt_formats(SSL *s, WPACKET *pkt, X509 *x,

                                     size_t chain, int *al);

#endif

int tls_construct_stoc_session_ticket(SSL *s, WPACKET *pkt, int *al);

int tls_construct_stoc_session_ticket(SSL *s, WPACKET *pkt, X509 *x,

                                      size_t chain, int *al);

#ifndef OPENSSL_NO_OCSP

int tls_construct_stoc_status_request(SSL *s, WPACKET *pkt, int *al);

int tls_construct_stoc_status_request(SSL *s, WPACKET *pkt, X509 *x,

                                      size_t chain, int *al);

#endif

#ifndef OPENSSL_NO_NEXTPROTONEG

int tls_construct_stoc_next_proto_neg(SSL *s, WPACKET *pkt, int *al);

int tls_construct_stoc_next_proto_neg(SSL *s, WPACKET *pkt, X509 *x,

                                      size_t chain, int *al);

#endif

int tls_construct_stoc_alpn(SSL *s, WPACKET *pkt, int *al);

int tls_construct_stoc_alpn(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                            int *al);

#ifndef OPENSSL_NO_SRTP

int tls_construct_stoc_use_srtp(SSL *s, WPACKET *pkt, int *al);

int tls_construct_stoc_use_srtp(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                int *al);

#endif

int tls_construct_stoc_etm(SSL *s, WPACKET *pkt, int *al);

int tls_construct_stoc_ems(SSL *s, WPACKET *pkt, int *al);

int tls_construct_stoc_key_share(SSL *s, WPACKET *pkt, int *al);

int tls_construct_stoc_etm(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                           int *al);

int tls_construct_stoc_ems(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                           int *al);

int tls_construct_stoc_key_share(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                 int *al);

/*

 * Not in public headers as this is not an official extension. Only used when

 * SSL_OP_CRYPTOPRO_TLSEXT_BUG is set.

 */

#define TLSEXT_TYPE_cryptopro_bug      0xfde8

int tls_construct_stoc_cryptopro_bug(SSL *s, WPACKET *pkt, int *al);

int tls_construct_stoc_cryptopro_bug(SSL *s, WPACKET *pkt, X509 *x,

                                     size_t chain, int *al);

/* Client Extension processing */

int tls_construct_ctos_renegotiate(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_server_name(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_renegotiate(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                   int *al);

int tls_construct_ctos_server_name(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                   int *al);

#ifndef OPENSSL_NO_SRP

int tls_construct_ctos_srp(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_srp(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                   int *al);

#endif

#ifndef OPENSSL_NO_EC

int tls_construct_ctos_ec_pt_formats(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_supported_groups(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_ec_pt_formats(SSL *s, WPACKET *pkt, X509 *x,

                                     size_t chain, int *al);

int tls_construct_ctos_supported_groups(SSL *s, WPACKET *pkt, X509 *x,

                                        size_t chain, int *al);

#endif

int tls_construct_ctos_session_ticket(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_sig_algs(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_session_ticket(SSL *s, WPACKET *pkt, X509 *x,

                                      size_t chain, int *al);

int tls_construct_ctos_sig_algs(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                int *al);

#ifndef OPENSSL_NO_OCSP

int tls_construct_ctos_status_request(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_status_request(SSL *s, WPACKET *pkt, X509 *x,

                                      size_t chain, int *al);

#endif

#ifndef OPENSSL_NO_NEXTPROTONEG

int tls_construct_ctos_npn(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_npn(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                           int *al);

#endif

int tls_construct_ctos_alpn(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_alpn(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                            int *al);

#ifndef OPENSSL_NO_SRTP

int tls_construct_ctos_use_srtp(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_use_srtp(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                int *al);

#endif

int tls_construct_ctos_etm(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_etm(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                           int *al);

#ifndef OPENSSL_NO_CT

int tls_construct_ctos_sct(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_sct(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                           int *al);

#endif

int tls_construct_ctos_ems(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_supported_versions(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_key_share(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_padding(SSL *s, WPACKET *pkt, int *al);

int tls_construct_ctos_ems(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                           int *al);

int tls_construct_ctos_supported_versions(SSL *s, WPACKET *pkt, X509 *x,

                                          size_t chain, int *al);

int tls_construct_ctos_key_share(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                                 int *al);

int tls_construct_ctos_padding(SSL *s, WPACKET *pkt, X509 *x, size_t chain,

                               int *al);

int tls_parse_stoc_renegotiate(SSL *s, PACKET *pkt, int *al);

int tls_parse_stoc_server_name(SSL *s, PACKET *pkt, int *al);

#ifndef OPENSSL_NO_EC