1- diff -upr openssl-1.1.1d_orig/include/openssl/tls1.h openssl-1.1.1d/include/openssl/tls1.h
2- --- openssl-1.1.1d_orig/include/openssl/tls1.h 2019-09-10 16:13:07.000000000 +0300
3- +++ openssl-1.1.1d/include/openssl/tls1.h 2020-11-10 19:31:11.139757273 +0300
4- @@ -131,6 +131,11 @@ extern "C" {
1+ diff --git a/include/openssl/tls1.h b/include/openssl/tls1.h
2+ index 2e46cf80d3..cf43f544ad 100644
3+ --- a/include/openssl/tls1.h
4+ +++ b/include/openssl/tls1.h
5+ @@ -131,6 +131,15 @@ extern "C" {
56 /* ExtensionType value from RFC7627 */
67 # define TLSEXT_TYPE_extended_master_secret 23
78
89+ /* [draft-ietf-tls-certificate-compression] */
910+ # define TLSEXT_TYPE_compress_certificate 27
1011+ /* ExtensionType value from RFC8449 */
1112+ # define TLSEXT_TYPE_record_size_limit 28
13+ +
14+ + /* Extension Type application_settings 17513 */
15+ + // https://www.ietf.org/archive/id/draft-vvv-tls-alps-00.html
16+ + # define TLSEXT_TYPE_application_settings 17513
1217+
1318 /* ExtensionType value from RFC4507 */
1419 # define TLSEXT_TYPE_session_ticket 35
1520
16- diff -upr openssl-1.1.1d_orig/ssl/statem/extensions.c openssl-1.1.1d/ssl/statem/extensions.c
17- --- openssl-1.1.1d_orig/ssl/statem/extensions.c 2019-09-10 16:13:07.000000000 +0300
18- +++ openssl-1.1.1d/ssl/statem/extensions.c 2020-11-10 19:31:11.139757273 +0300
19- @@ -374,6 +374,22 @@ static const EXTENSION_DEFINITION ext_de
21+ @@ -145,6 +154,7 @@ extern "C" {
22+ # define TLSEXT_TYPE_signature_algorithms_cert 50
23+ # define TLSEXT_TYPE_key_share 51
24+
25+ +
26+ /* Temporary extension type */
27+ # define TLSEXT_TYPE_renegotiate 0xff01
28+
29+ diff --git a/ssl/ssl_locl.h b/ssl/ssl_locl.h
30+ index e8819e7a28..3b49018cf4 100644
31+ --- a/ssl/ssl_locl.h
32+ +++ b/ssl/ssl_locl.h
33+ @@ -719,6 +719,9 @@ typedef enum tlsext_index_en {
34+ TLSEXT_IDX_cryptopro_bug,
35+ TLSEXT_IDX_early_data,
36+ TLSEXT_IDX_certificate_authorities,
37+ + TLSEXT_IDX_compress_certificate,
38+ + TLSEXT_IDX_record_size_limit,
39+ + TLSEXT_IDX_application_settings,
40+ TLSEXT_IDX_padding,
41+ TLSEXT_IDX_psk,
42+ /* Dummy index - must always be the last entry */
43+ diff --git a/ssl/statem/extensions.c b/ssl/statem/extensions.c
44+ index 8422161dc1..4979b58467 100644
45+ --- a/ssl/statem/extensions.c
46+ +++ b/ssl/statem/extensions.c
47+ @@ -371,6 +371,30 @@ static const EXTENSION_DEFINITION ext_defs[] = {
48+ tls_construct_certificate_authorities,
2049 tls_construct_certificate_authorities, NULL,
2150 },
22- {
51+ + {
2352+ TLSEXT_TYPE_compress_certificate,
2453+ SSL_EXT_CLIENT_HELLO,
2554+ NULL,
@@ -36,18 +65,13 @@ diff -upr openssl-1.1.1d_orig/ssl/statem/extensions.c openssl-1.1.1d/ssl/statem/
3665+ NULL, NULL,
3766+ },
3867+ {
68+ + TLSEXT_TYPE_application_settings,
69+ + SSL_EXT_CLIENT_HELLO,
70+ + NULL,
71+ + NULL, NULL,
72+ + NULL,
73+ + NULL, NULL,
74+ + },
75+ {
3976 /* Must be immediately before pre_shared_key */
4077 TLSEXT_TYPE_padding,
41- SSL_EXT_CLIENT_HELLO,
42- diff -upr openssl-1.1.1d_orig/ssl/ssl_locl.h openssl-1.1.1d/ssl/ssl_locl.h
43- --- openssl-1.1.1d_orig/ssl/ssl_locl.h 2020-10-26 18:19:43.157168940 +0300
44- +++ openssl-1.1.1d/ssl/ssl_locl.h 2020-11-10 18:49:14.150574957 +0300
45- @@ -715,6 +715,8 @@ typedef enum tlsext_index_en {
46- TLSEXT_IDX_cryptopro_bug,
47- TLSEXT_IDX_early_data,
48- TLSEXT_IDX_certificate_authorities,
49- + TLSEXT_IDX_compress_certificate,
50- + TLSEXT_IDX_record_size_limit,
51- TLSEXT_IDX_padding,
52- TLSEXT_IDX_psk,
53- /* Dummy index - must always be the last entry */
0 commit comments