Lines Matching refs:ext
39 if (s->ext.hostname == NULL) in tls_construct_ctos_server_name()
49 || !WPACKET_sub_memcpy_u16(pkt, s->ext.hostname, in tls_construct_ctos_server_name()
50 strlen(s->ext.hostname)) in tls_construct_ctos_server_name()
65 if (s->ext.max_fragment_len_mode == TLSEXT_max_fragment_length_DISABLED) in tls_construct_ctos_maxfragmentlen()
76 || !WPACKET_put_bytes_u8(pkt, s->ext.max_fragment_len_mode) in tls_construct_ctos_maxfragmentlen()
264 && s->session->ext.tick != NULL in tls_construct_ctos_session_ticket()
266 ticklen = s->session->ext.ticklen; in tls_construct_ctos_session_ticket()
267 } else if (s->session && s->ext.session_ticket != NULL in tls_construct_ctos_session_ticket()
268 && s->ext.session_ticket->data != NULL) { in tls_construct_ctos_session_ticket()
269 ticklen = s->ext.session_ticket->length; in tls_construct_ctos_session_ticket()
270 s->session->ext.tick = OPENSSL_malloc(ticklen); in tls_construct_ctos_session_ticket()
271 if (s->session->ext.tick == NULL) { in tls_construct_ctos_session_ticket()
275 memcpy(s->session->ext.tick, in tls_construct_ctos_session_ticket()
276 s->ext.session_ticket->data, ticklen); in tls_construct_ctos_session_ticket()
277 s->session->ext.ticklen = ticklen; in tls_construct_ctos_session_ticket()
282 if (ticklen == 0 && s->ext.session_ticket != NULL && in tls_construct_ctos_session_ticket()
283 s->ext.session_ticket->data == NULL) in tls_construct_ctos_session_ticket()
287 || !WPACKET_sub_memcpy_u16(pkt, s->session->ext.tick, ticklen)) { in tls_construct_ctos_session_ticket()
332 if (s->ext.status_type != TLSEXT_STATUSTYPE_ocsp) in tls_construct_ctos_status_request()
344 for (i = 0; i < sk_OCSP_RESPID_num(s->ext.ocsp.ids); i++) { in tls_construct_ctos_status_request()
346 OCSP_RESPID *id = sk_OCSP_RESPID_value(s->ext.ocsp.ids, i); in tls_construct_ctos_status_request()
362 if (s->ext.ocsp.exts) { in tls_construct_ctos_status_request()
364 int extlen = i2d_X509_EXTENSIONS(s->ext.ocsp.exts, NULL); in tls_construct_ctos_status_request()
371 || i2d_X509_EXTENSIONS(s->ext.ocsp.exts, &extbytes) in tls_construct_ctos_status_request()
390 if (s->ctx->ext.npn_select_cb == NULL || !SSL_IS_FIRST_HANDSHAKE(s)) in tls_construct_ctos_npn()
412 if (s->ext.alpn == NULL || !SSL_IS_FIRST_HANDSHAKE(s)) in tls_construct_ctos_alpn()
419 || !WPACKET_sub_memcpy_u16(pkt, s->ext.alpn, s->ext.alpn_len) in tls_construct_ctos_alpn()
584 s->ext.psk_kex_mode = TLSEXT_KEX_MODE_FLAG_KE_DHE; in tls_construct_ctos_psk_kex_modes()
586 s->ext.psk_kex_mode |= TLSEXT_KEX_MODE_FLAG_KE; in tls_construct_ctos_psk_kex_modes()
717 if (s->ext.tls13_cookie_len == 0) in tls_construct_ctos_cookie()
723 || !WPACKET_sub_memcpy_u16(pkt, s->ext.tls13_cookie, in tls_construct_ctos_cookie()
724 s->ext.tls13_cookie_len) in tls_construct_ctos_cookie()
732 OPENSSL_free(s->ext.tls13_cookie); in tls_construct_ctos_cookie()
733 s->ext.tls13_cookie = NULL; in tls_construct_ctos_cookie()
734 s->ext.tls13_cookie_len = 0; in tls_construct_ctos_cookie()
825 || (s->session->ext.max_early_data == 0 in tls_construct_ctos_early_data()
826 && (psksess == NULL || psksess->ext.max_early_data == 0))) { in tls_construct_ctos_early_data()
830 edsess = s->session->ext.max_early_data != 0 ? s->session : psksess; in tls_construct_ctos_early_data()
831 s->max_early_data = edsess->ext.max_early_data; in tls_construct_ctos_early_data()
833 if (edsess->ext.hostname != NULL) { in tls_construct_ctos_early_data()
834 if (s->ext.hostname == NULL in tls_construct_ctos_early_data()
835 || (s->ext.hostname != NULL in tls_construct_ctos_early_data()
836 && strcmp(s->ext.hostname, edsess->ext.hostname) != 0)) { in tls_construct_ctos_early_data()
843 if ((s->ext.alpn == NULL && edsess->ext.alpn_selected != NULL)) { in tls_construct_ctos_early_data()
852 if (edsess->ext.alpn_selected != NULL) { in tls_construct_ctos_early_data()
856 if (!PACKET_buf_init(&prots, s->ext.alpn, s->ext.alpn_len)) { in tls_construct_ctos_early_data()
861 if (PACKET_equal(&alpnpkt, edsess->ext.alpn_selected, in tls_construct_ctos_early_data()
862 edsess->ext.alpn_selected_len)) { in tls_construct_ctos_early_data()
885 s->ext.early_data = SSL_EARLY_DATA_REJECTED; in tls_construct_ctos_early_data()
886 s->ext.early_data_ok = 1; in tls_construct_ctos_early_data()
934 && s->session->ext.ticklen != 0 in tls_construct_ctos_padding()
943 hlen += PSK_PRE_BINDER_OVERHEAD + s->session->ext.ticklen in tls_construct_ctos_padding()
987 s->ext.tick_identity = 0; in tls_construct_ctos_psk()
1000 || (s->session->ext.ticklen == 0 && s->psksession == NULL)) in tls_construct_ctos_psk()
1006 if (s->session->ext.ticklen != 0) { in tls_construct_ctos_psk()
1049 if (s->session->ext.tick_lifetime_hint < agesec) { in tls_construct_ctos_psk()
1072 agems += s->session->ext.tick_age_add; in tls_construct_ctos_psk()
1075 s->ext.tick_identity++; in tls_construct_ctos_psk()
1115 if (!WPACKET_sub_memcpy_u16(pkt, s->session->ext.tick, in tls_construct_ctos_psk()
1116 s->session->ext.ticklen) in tls_construct_ctos_psk()
1130 s->ext.tick_identity++; in tls_construct_ctos_psk()
1280 if (value != s->ext.max_fragment_len_mode) { in tls_parse_stoc_maxfragmentlen()
1290 s->session->ext.max_fragment_len_mode = value; in tls_parse_stoc_maxfragmentlen()
1298 if (s->ext.hostname == NULL) { in tls_parse_stoc_server_name()
1309 if (s->session->ext.hostname != NULL) { in tls_parse_stoc_server_name()
1313 s->session->ext.hostname = OPENSSL_strdup(s->ext.hostname); in tls_parse_stoc_server_name()
1314 if (s->session->ext.hostname == NULL) { in tls_parse_stoc_server_name()
1340 s->ext.peer_ecpointformats_len = 0; in tls_parse_stoc_ec_pt_formats()
1341 OPENSSL_free(s->ext.peer_ecpointformats); in tls_parse_stoc_ec_pt_formats()
1342 s->ext.peer_ecpointformats = OPENSSL_malloc(ecpointformats_len); in tls_parse_stoc_ec_pt_formats()
1343 if (s->ext.peer_ecpointformats == NULL) { in tls_parse_stoc_ec_pt_formats()
1344 s->ext.peer_ecpointformats_len = 0; in tls_parse_stoc_ec_pt_formats()
1349 s->ext.peer_ecpointformats_len = ecpointformats_len; in tls_parse_stoc_ec_pt_formats()
1352 s->ext.peer_ecpointformats, in tls_parse_stoc_ec_pt_formats()
1365 if (s->ext.session_ticket_cb != NULL && in tls_parse_stoc_session_ticket()
1366 !s->ext.session_ticket_cb(s, PACKET_data(pkt), in tls_parse_stoc_session_ticket()
1368 s->ext.session_ticket_cb_arg)) { in tls_parse_stoc_session_ticket()
1382 s->ext.ticket_expected = 1; in tls_parse_stoc_session_ticket()
1400 if (s->ext.status_type != TLSEXT_STATUSTYPE_ocsp) { in tls_parse_stoc_status_request()
1421 s->ext.status_expected = 1; in tls_parse_stoc_status_request()
1446 OPENSSL_free(s->ext.scts); in tls_parse_stoc_sct()
1447 s->ext.scts = NULL; in tls_parse_stoc_sct()
1449 s->ext.scts_len = (uint16_t)size; in tls_parse_stoc_sct()
1451 s->ext.scts = OPENSSL_malloc(size); in tls_parse_stoc_sct()
1452 if (s->ext.scts == NULL) { in tls_parse_stoc_sct()
1453 s->ext.scts_len = 0; in tls_parse_stoc_sct()
1457 if (!PACKET_copy_bytes(pkt, s->ext.scts, size)) { in tls_parse_stoc_sct()
1524 if (s->ctx->ext.npn_select_cb == NULL) { in tls_parse_stoc_npn()
1535 if (s->ctx->ext.npn_select_cb(s, &selected, &selected_len, in tls_parse_stoc_npn()
1538 s->ctx->ext.npn_select_cb_arg) != in tls_parse_stoc_npn()
1548 OPENSSL_free(s->ext.npn); in tls_parse_stoc_npn()
1549 s->ext.npn = OPENSSL_malloc(selected_len); in tls_parse_stoc_npn()
1550 if (s->ext.npn == NULL) { in tls_parse_stoc_npn()
1551 s->ext.npn_len = 0; in tls_parse_stoc_npn()
1556 memcpy(s->ext.npn, selected, selected_len); in tls_parse_stoc_npn()
1557 s->ext.npn_len = selected_len; in tls_parse_stoc_npn()
1599 if (s->session->ext.alpn_selected == NULL in tls_parse_stoc_alpn()
1600 || s->session->ext.alpn_selected_len != len in tls_parse_stoc_alpn()
1601 || memcmp(s->session->ext.alpn_selected, s->s3.alpn_selected, len) in tls_parse_stoc_alpn()
1604 s->ext.early_data_ok = 0; in tls_parse_stoc_alpn()
1611 if (!ossl_assert(s->session->ext.alpn_selected == NULL)) { in tls_parse_stoc_alpn()
1615 s->session->ext.alpn_selected = in tls_parse_stoc_alpn()
1617 if (s->session->ext.alpn_selected == NULL) { in tls_parse_stoc_alpn()
1618 s->session->ext.alpn_selected_len = 0; in tls_parse_stoc_alpn()
1622 s->session->ext.alpn_selected_len = s->s3.alpn_selected_len; in tls_parse_stoc_alpn()
1689 s->ext.use_etm = 1; in tls_parse_stoc_etm()
1881 || !PACKET_memdup(&cookie, &s->ext.tls13_cookie, in tls_parse_stoc_cookie()
1882 &s->ext.tls13_cookie_len)) { in tls_parse_stoc_cookie()
1902 s->session->ext.max_early_data = max_early_data; in tls_parse_stoc_early_data()
1912 if (!s->ext.early_data_ok in tls_parse_stoc_early_data()
1923 s->ext.early_data = SSL_EARLY_DATA_ACCEPTED; in tls_parse_stoc_early_data()
1939 if (identity >= (unsigned int)s->ext.tick_identity) { in tls_parse_stoc_psk()
1949 if (identity == 0 && (s->psksession == NULL || s->ext.tick_identity == 2)) { in tls_parse_stoc_psk()
1969 || s->session->ext.max_early_data > 0 in tls_parse_stoc_psk()
1970 || s->psksession->ext.max_early_data == 0) in tls_parse_stoc_psk()
1979 s->ext.early_data_ok = 0; in tls_parse_stoc_psk()