Save Hello random bytes for later use

2019-07-09 12:54:17 +02:00 · 2019-07-09 12:54:17 +02:00 · 96fb0ee9cf
commit 96fb0ee9cf
parent ddf72a1cf6
2 changed files with 13 additions and 1 deletions
--- a/include/mbedtls/ssl_internal.h
+++ b/include/mbedtls/ssl_internal.h
@ -642,6 +642,12 @@ struct mbedtls_ssl_transform
    z_stream ctx_deflate;               /*!<  compression context     */
    z_stream ctx_inflate;               /*!<  decompression context   */
 #endif
+
+#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
+    /* We need the Hello random bytes in order to re-derive keys from the
+     * Master Secret and other session info, see ssl_populate_transform() */
+    unsigned char randbytes[64]; /*!< ServerHello.random+ClientHello.random */
+#endif /* MBEDTLS_SSL_CONTEXT_SERIALIZATION */
 };

 /*