#include <openssl/ssl.h>#include <assert.h>#include <string.h>#include <algorithm>#include <utility>#include <openssl/aead.h>#include <openssl/bytestring.h>#include <openssl/digest.h>#include <openssl/hkdf.h>#include <openssl/hmac.h>#include <openssl/mem.h>#include "../crypto/internal.h"#include "internal.h"
Go to the source code of this file.
Variables | |
| static const char | kTLS13LabelApplicationTraffic [] = "traffic upd" |
| static const char | kTLS13LabelClientApplicationTraffic [] = "c ap traffic" |
| static const char | kTLS13LabelClientEarlyTraffic [] = "c e traffic" |
| static const char | kTLS13LabelClientHandshakeTraffic [] = "c hs traffic" |
| static const char | kTLS13LabelDerived [] = "derived" |
| static const char | kTLS13LabelExporter [] = "exp master" |
| static const char | kTLS13LabelExportKeying [] = "exporter" |
| static const char | kTLS13LabelFinished [] = "finished" |
| static const char | kTLS13LabelPSKBinder [] = "res binder" |
| static const char | kTLS13LabelResumption [] = "res master" |
| static const char | kTLS13LabelResumptionPSK [] = "resumption" |
| static const char | kTLS13LabelServerApplicationTraffic [] = "s ap traffic" |
| static const char | kTLS13LabelServerHandshakeTraffic [] = "s hs traffic" |
Function Documentation
◆ derive_secret()
|
static |
Definition at line 151 of file tls13_enc.cc.
◆ derive_secret_with_transcript()
|
static |
Definition at line 137 of file tls13_enc.cc.
◆ hkdf_expand_label()
|
static |
Definition at line 94 of file tls13_enc.cc.
◆ hkdf_extract_to_secret()
|
static |
Definition at line 49 of file tls13_enc.cc.
◆ init_key_schedule()
|
static |
Definition at line 36 of file tls13_enc.cc.
◆ label_to_span()
Definition at line 90 of file tls13_enc.cc.
◆ ssl_ech_accept_confirmation()
| bool ssl_ech_accept_confirmation | ( | const SSL_HANDSHAKE * | hs, |
| Span< uint8_t > | out, | ||
| Span< const uint8_t > | client_random, | ||
| const SSLTranscript & | transcript, | ||
| bool | is_hrr, | ||
| Span< const uint8_t > | msg, | ||
| size_t | offset | ||
| ) |
Definition at line 540 of file tls13_enc.cc.
◆ ssl_ech_confirmation_signal_hello_offset()
Definition at line 531 of file tls13_enc.cc.
◆ tls13_advance_key_schedule()
| bool tls13_advance_key_schedule | ( | SSL_HANDSHAKE * | hs, |
| Span< const uint8_t > | in | ||
| ) |
Definition at line 123 of file tls13_enc.cc.
◆ tls13_derive_application_secrets()
| bool tls13_derive_application_secrets | ( | SSL_HANDSHAKE * | hs | ) |
Definition at line 278 of file tls13_enc.cc.
◆ tls13_derive_early_secret()
| bool tls13_derive_early_secret | ( | SSL_HANDSHAKE * | hs | ) |
Definition at line 245 of file tls13_enc.cc.
◆ tls13_derive_handshake_secrets()
| bool tls13_derive_handshake_secrets | ( | SSL_HANDSHAKE * | hs | ) |
Definition at line 262 of file tls13_enc.cc.
◆ tls13_derive_resumption_secret()
| bool tls13_derive_resumption_secret | ( | SSL_HANDSHAKE * | hs | ) |
Definition at line 323 of file tls13_enc.cc.
◆ tls13_derive_session_psk()
| bool tls13_derive_session_psk | ( | SSL_SESSION * | session, |
| Span< const uint8_t > | nonce | ||
| ) |
Definition at line 374 of file tls13_enc.cc.
◆ tls13_export_keying_material()
| bool tls13_export_keying_material | ( | SSL * | ssl, |
| Span< uint8_t > | out, | ||
| Span< const uint8_t > | secret, | ||
| Span< const char > | label, | ||
| Span< const uint8_t > | context | ||
| ) |
Definition at line 385 of file tls13_enc.cc.
◆ tls13_finished_mac()
| bool tls13_finished_mac | ( | SSL_HANDSHAKE * | hs, |
| uint8_t * | out, | ||
| size_t * | out_len, | ||
| bool | is_server | ||
| ) |
Definition at line 356 of file tls13_enc.cc.
◆ tls13_init_early_key_schedule()
| bool tls13_init_early_key_schedule | ( | SSL_HANDSHAKE * | hs, |
| const SSL_SESSION * | session | ||
| ) |
Definition at line 75 of file tls13_enc.cc.
◆ tls13_init_key_schedule()
| bool tls13_init_key_schedule | ( | SSL_HANDSHAKE * | hs, |
| Span< const uint8_t > | psk | ||
| ) |
Definition at line 61 of file tls13_enc.cc.
◆ tls13_psk_binder()
|
static |
Definition at line 420 of file tls13_enc.cc.
◆ tls13_rotate_traffic_key()
| bool tls13_rotate_traffic_key | ( | SSL * | ssl, |
| enum evp_aead_direction_t | direction | ||
| ) |
Definition at line 303 of file tls13_enc.cc.
◆ tls13_set_traffic_key()
| bool tls13_set_traffic_key | ( | SSL * | ssl, |
| enum ssl_encryption_level_t | level, | ||
| enum evp_aead_direction_t | direction, | ||
| const SSL_SESSION * | session, | ||
| Span< const uint8_t > | traffic_secret | ||
| ) |
Definition at line 156 of file tls13_enc.cc.
◆ tls13_verify_data()
|
static |
Definition at line 339 of file tls13_enc.cc.
◆ tls13_verify_psk_binder()
| bool tls13_verify_psk_binder | ( | const SSL_HANDSHAKE * | hs, |
| const SSL_SESSION * | session, | ||
| const SSLMessage & | msg, | ||
| CBS * | binders | ||
| ) |
Definition at line 500 of file tls13_enc.cc.
◆ tls13_write_psk_binder()
| bool tls13_write_psk_binder | ( | const SSL_HANDSHAKE * | hs, |
| const SSLTranscript & | transcript, | ||
| Span< uint8_t > | msg, | ||
| size_t * | out_binder_len | ||
| ) |
Definition at line 473 of file tls13_enc.cc.
Variable Documentation
◆ kTLS13LabelApplicationTraffic
|
static |
Definition at line 301 of file tls13_enc.cc.
◆ kTLS13LabelClientApplicationTraffic
|
static |
Definition at line 242 of file tls13_enc.cc.
◆ kTLS13LabelClientEarlyTraffic
|
static |
Definition at line 239 of file tls13_enc.cc.
◆ kTLS13LabelClientHandshakeTraffic
|
static |
Definition at line 240 of file tls13_enc.cc.
◆ kTLS13LabelDerived
|
static |
Definition at line 121 of file tls13_enc.cc.
◆ kTLS13LabelExporter
|
static |
Definition at line 237 of file tls13_enc.cc.
◆ kTLS13LabelExportKeying
|
static |
Definition at line 383 of file tls13_enc.cc.
◆ kTLS13LabelFinished
|
static |
Definition at line 334 of file tls13_enc.cc.
◆ kTLS13LabelPSKBinder
|
static |
Definition at line 418 of file tls13_enc.cc.
◆ kTLS13LabelResumption
|
static |
Definition at line 321 of file tls13_enc.cc.
◆ kTLS13LabelResumptionPSK
|
static |
Definition at line 372 of file tls13_enc.cc.
◆ kTLS13LabelServerApplicationTraffic
|
static |
Definition at line 243 of file tls13_enc.cc.
◆ kTLS13LabelServerHandshakeTraffic
|
static |
Definition at line 241 of file tls13_enc.cc.