Tim Perry 972ee925b1 Use empty renegotiate extension instead of SCSV for TLS > 1.0 | há 7 meses atrás | |
---|---|---|
.. | ||
README.md | há 3 anos atrás | |
extensions.c | há 11 meses atrás | |
extensions_clnt.c | há 6 meses atrás | |
extensions_cust.c | há 11 meses atrás | |
extensions_srvr.c | há 10 meses atrás | |
statem.c | há 2 anos atrás | |
statem_clnt.c | há 6 meses atrás | |
statem_dtls.c | há 7 meses atrás | |
statem_lib.c | há 7 meses atrás | |
statem_local.h | há 1 ano atrás | |
statem_srvr.c | há 7 meses atrás |
This file provides some guidance on the thinking behind the design of the state machine code to aid future maintenance.
The state machine code replaces an older state machine present in OpenSSL versions 1.0.2 and below. The new state machine has the following objectives:
The message flow state machine is divided into a reading sub-state machine and a writing sub-state machine. See the source comments in statem.c for a more detailed description of the various states and transitions possible.
Conceptually the state machine component is designed as follows:
libssl
|
-------------------------|-----statem.h------------------------------------
|
_______V____________________
| |
| statem.c |
| |
| Core state machine code |
|____________________________|
statem_local.h ^ ^
_________| |_______
| |
_____________|____________ _____________|____________
| | | |
| statem_clnt.c | | statem_srvr.c |
| | | |
| TLS/DTLS client specific | | TLS/DTLS server specific |
| state machine code | | state machine code |
|__________________________| |__________________________|
| |_______________|__ |
| ________________| | |
| | | |
____________V_______V________ ________V______V_______________
| | | |
| statem_lib.c | | statem_dtls.c |
| | | |
| Non core functions common | | Non core functions common to |
| to both servers and clients | | both DTLS servers and clients |
|_____________________________| |_______________________________|