Lines Matching refs:sc
55 static ossl_inline int received_client_cert(const SSL_CONNECTION *sc) in received_client_cert() argument
57 return sc->session->peer_rpk != NULL || sc->session->peer != NULL; in received_client_cert()
392 static int get_compressed_certificate_alg(SSL_CONNECTION *sc) in get_compressed_certificate_alg() argument
395 int *alg = sc->ext.compress_certificate_from_peer; in get_compressed_certificate_alg()
397 if (sc->s3.tmp.cert == NULL) in get_compressed_certificate_alg()
401 if (sc->s3.tmp.cert->comp_cert[*alg] != NULL) in get_compressed_certificate_alg()
458 static int do_compressed_cert(SSL_CONNECTION *sc) in do_compressed_cert() argument
461 return sc->ext.server_cert_type == TLSEXT_cert_type_x509 in do_compressed_cert()
462 && get_compressed_certificate_alg(sc) != TLSEXT_comp_cert_none; in do_compressed_cert()
3543 MSG_PROCESS_RETURN tls_process_client_rpk(SSL_CONNECTION *sc, PACKET *pkt) in tls_process_client_rpk() argument
3549 if (!tls_process_rpk(sc, pkt, &peer_rpk)) { in tls_process_client_rpk()
3555 if ((sc->verify_mode & SSL_VERIFY_FAIL_IF_NO_PEER_CERT) in tls_process_client_rpk()
3556 && (sc->verify_mode & SSL_VERIFY_PEER)) { in tls_process_client_rpk()
3557 SSLfatal(sc, SSL_AD_CERTIFICATE_REQUIRED, in tls_process_client_rpk()
3562 if (ssl_verify_rpk(sc, peer_rpk) <= 0) { in tls_process_client_rpk()
3563 SSLfatal(sc, ssl_x509err2alert(sc->verify_result), in tls_process_client_rpk()
3577 if (sc->post_handshake_auth == SSL_PHA_REQUESTED) { in tls_process_client_rpk()
3578 if ((new_sess = ssl_session_dup(sc->session, 0)) == NULL) { in tls_process_client_rpk()
3579 SSLfatal(sc, SSL_AD_INTERNAL_ERROR, ERR_R_MALLOC_FAILURE); in tls_process_client_rpk()
3583 SSL_SESSION_free(sc->session); in tls_process_client_rpk()
3584 sc->session = new_sess; in tls_process_client_rpk()
3588 X509_free(sc->session->peer); in tls_process_client_rpk()
3589 sc->session->peer = NULL; in tls_process_client_rpk()
3590 sk_X509_pop_free(sc->session->peer_chain, X509_free); in tls_process_client_rpk()
3591 sc->session->peer_chain = NULL; in tls_process_client_rpk()
3593 EVP_PKEY_free(sc->session->peer_rpk); in tls_process_client_rpk()
3594 sc->session->peer_rpk = peer_rpk; in tls_process_client_rpk()
3597 sc->session->verify_result = sc->verify_result; in tls_process_client_rpk()
3603 if (SSL_CONNECTION_IS_TLS13(sc)) { in tls_process_client_rpk()
3604 if (!ssl3_digest_cached_records(sc, 1)) { in tls_process_client_rpk()
3610 if (!ssl_handshake_hash(sc, sc->cert_verify_hash, in tls_process_client_rpk()
3611 sizeof(sc->cert_verify_hash), in tls_process_client_rpk()
3612 &sc->cert_verify_hash_len)) { in tls_process_client_rpk()
3618 sc->sent_tickets = 0; in tls_process_client_rpk()
3829 MSG_PROCESS_RETURN tls_process_client_compressed_certificate(SSL_CONNECTION *sc, PACKET *pkt) in tls_process_client_compressed_certificate() argument
3835 if (tls13_process_compressed_certificate(sc, pkt, &tmppkt, buf) != MSG_PROCESS_ERROR) in tls_process_client_compressed_certificate()
3836 ret = tls_process_client_certificate(sc, &tmppkt); in tls_process_client_compressed_certificate()
3882 CON_FUNC_RETURN tls_construct_server_compressed_certificate(SSL_CONNECTION *sc, WPACKET *pkt) in tls_construct_server_compressed_certificate() argument
3884 int alg = get_compressed_certificate_alg(sc); in tls_construct_server_compressed_certificate()
3885 OSSL_COMP_CERT *cc = sc->s3.tmp.cert->comp_cert[alg]; in tls_construct_server_compressed_certificate()
3888 SSLfatal(sc, SSL_AD_INTERNAL_ERROR, ERR_R_INTERNAL_ERROR); in tls_construct_server_compressed_certificate()
3902 sc->s3.tmp.cert->cert_comp_used++; in tls_construct_server_compressed_certificate()