Add SSL_get_tls_unique. SSL_get_tls_unique returns the tls-unique channel-binding value as defined in https://tools.ietf.org/html/rfc5929#section-3.1. Change-Id: Id9644328a7db8a91cf3ff0deee9dd6ce0d3e00ba Reviewed-on: https://boringssl-review.googlesource.com/4984 Reviewed-by: Adam Langley <agl@google.com>

commit: af0e32cb84f0c9cc65b9233a3414d2562642b342 [log] [tgz]
author: Adam Langley <alangley@gmail.com> Wed Jun 03 09:57:23 2015 -0700
committer: Adam Langley <agl@google.com> Thu Jun 04 22:10:22 2015 +0000
tree: 9de52bcf47cf8e844b22c379913516c6c600cf81
parent: 691992b0eac6d6e8502751bfbc1d5ec1c73100a7 [diff] [blame]
diff --git a/ssl/test/runner/conn.go b/ssl/test/runner/conn.go
index ec7a4a0..adbc1c3 100644
--- a/ssl/test/runner/conn.go
+++ b/ssl/test/runner/conn.go

@@ -44,7 +44,11 @@
 	// opposed to the ones presented by the server.
 	verifiedChains [][]*x509.Certificate
 	// serverName contains the server name indicated by the client, if any.
-	serverName                 string
+	serverName string
+	// firstFinished contains the first Finished hash sent during the
+	// handshake. This is the "tls-unique" channel binding value.
+	firstFinished [12]byte
+
 	clientRandom, serverRandom [32]byte
 	masterSecret               [48]byte
 
@@ -1299,6 +1303,7 @@
 		state.ServerName = c.serverName
 		state.ChannelID = c.channelID
 		state.SRTPProtectionProfile = c.srtpProtectionProfile
+		state.TLSUnique = c.firstFinished[:]
 	}
 
 	return state
commit	af0e32cb84f0c9cc65b9233a3414d2562642b342	[log] [tgz]
author	Adam Langley <alangley@gmail.com>	Wed Jun 03 09:57:23 2015 -0700
committer	Adam Langley <agl@google.com>	Thu Jun 04 22:10:22 2015 +0000
tree	9de52bcf47cf8e844b22c379913516c6c600cf81
parent	691992b0eac6d6e8502751bfbc1d5ec1c73100a7 [diff] [blame]