Explicit IV update [from HEAD].

This commit is contained in:
Andy Polyakov 2007-09-30 22:03:07 +00:00
parent 0a89c575de
commit 57191f86d9

View file

@ -120,6 +120,7 @@
#include <openssl/evp.h> #include <openssl/evp.h>
#include <openssl/buffer.h> #include <openssl/buffer.h>
#include <openssl/pqueue.h> #include <openssl/pqueue.h>
#include <openssl/rand.h>
static int have_handshake_fragment(SSL *s, int type, unsigned char *buf, static int have_handshake_fragment(SSL *s, int type, unsigned char *buf,
int len, int peek); int len, int peek);
@ -1395,8 +1396,14 @@ int do_dtls1_write(SSL *s, int type, const unsigned char *buf, unsigned int len,
/* ssl3_enc can only have an error on read */ /* ssl3_enc can only have an error on read */
wr->length += bs; /* bs != 0 in case of CBC. The enc fn provides if (bs) /* bs != 0 in case of CBC */
* the randomness */ {
RAND_pseudo_bytes(p,bs);
/* master IV and last CBC residue stand for
* the rest of randomness */
wr->length += bs;
}
s->method->ssl3_enc->enc(s,1); s->method->ssl3_enc->enc(s,1);
/* record length after mac and block padding */ /* record length after mac and block padding */