_tls13_derive_secret: define secret argument

TLS 1.3 exporters need to derive a secret from exporter_master_secret or early_exporter_master_secret, not the handshake or application secret stored in temp_secret. Add a new argument @secret to _tls13_derive_secret to specify any secret. Signed-off-by: Daiki Ueno <dueno@redhat.com>
author: Daiki Ueno <dueno@redhat.com> 2017-11-24 10:34:26 +0100
committer: Nikos Mavrogiannopoulos <nmav@redhat.com> 2018-02-19 15:29:35 +0100
commit: fab15d705a024e780493b9c8907a577e7cef838a (patch)
tree: 74cabb4932628769f1bbe3fd02e86c9c22ffb6da /lib/handshake-tls13.c
parent: 0d850655c92e5d52a531c8a958cc5a0c3e125609 (diff)
download: gnutls-fab15d705a024e780493b9c8907a577e7cef838a.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/lib/handshake-tls13.c b/lib/handshake-tls13.c
index 5776d310c4..2c03d7bb71 100644
--- a/lib/handshake-tls13.c
+++ b/lib/handshake-tls13.c
@@ -144,7 +144,8 @@ static int generate_ap_traffic_keys(gnutls_session_t session)
 	uint8_t zero[MAX_HASH_SIZE];
 
 	ret = _tls13_derive_secret(session, DERIVED_LABEL, sizeof(DERIVED_LABEL)-1,
-				   NULL, 0, session->key.temp_secret);
+				   NULL, 0, session->key.temp_secret,
+				   session->key.temp_secret);
 	if (ret < 0)
 		return gnutls_assert_val(ret);
author	Daiki Ueno <dueno@redhat.com>	2017-11-24 10:34:26 +0100
committer	Nikos Mavrogiannopoulos <nmav@redhat.com>	2018-02-19 15:29:35 +0100
commit	fab15d705a024e780493b9c8907a577e7cef838a (patch)
tree	74cabb4932628769f1bbe3fd02e86c9c22ffb6da /lib/handshake-tls13.c
parent	0d850655c92e5d52a531c8a958cc5a0c3e125609 (diff)
download	gnutls-fab15d705a024e780493b9c8907a577e7cef838a.tar.gz