summaryrefslogtreecommitdiff
path: root/src/lib/libssl/s3_lib.c
diff options
context:
space:
mode:
authorjsing <>2021-06-30 18:07:50 +0000
committerjsing <>2021-06-30 18:07:50 +0000
commit4d5427125387cb1cb51a22fc68ee6aaf9f6dcd65 (patch)
treeb4db4f2c1ecc3502b42799e3f0d49bf2f55bbdd5 /src/lib/libssl/s3_lib.c
parentf10208a76db206460e96c8cf49a915d09538ab21 (diff)
downloadopenbsd-4d5427125387cb1cb51a22fc68ee6aaf9f6dcd65.tar.gz
openbsd-4d5427125387cb1cb51a22fc68ee6aaf9f6dcd65.tar.bz2
openbsd-4d5427125387cb1cb51a22fc68ee6aaf9f6dcd65.zip
Prepare to provide SSL_get_signature_nid() and friends.
This adds functionality for SSL_get_signature_nid(), SSL_get_peer_signature_nid(), SSL_get_signature_type_nid() and SSL_get_peer_signature_type_nid(). This is not currently publicly visible and will be exposed at a later date. ok inoguchi@ tb@
Diffstat (limited to 'src/lib/libssl/s3_lib.c')
-rw-r--r--src/lib/libssl/s3_lib.c67
1 files changed, 66 insertions, 1 deletions
diff --git a/src/lib/libssl/s3_lib.c b/src/lib/libssl/s3_lib.c
index f056c3bae4..0cdf9edd2f 100644
--- a/src/lib/libssl/s3_lib.c
+++ b/src/lib/libssl/s3_lib.c
@@ -1,4 +1,4 @@
1/* $OpenBSD: s3_lib.c,v 1.210 2021/05/16 13:56:30 jsing Exp $ */ 1/* $OpenBSD: s3_lib.c,v 1.211 2021/06/30 18:07:50 jsing Exp $ */
2/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 2/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3 * All rights reserved. 3 * All rights reserved.
4 * 4 *
@@ -161,6 +161,7 @@
161#include "bytestring.h" 161#include "bytestring.h"
162#include "dtls_locl.h" 162#include "dtls_locl.h"
163#include "ssl_locl.h" 163#include "ssl_locl.h"
164#include "ssl_sigalgs.h"
164 165
165#define SSL3_NUM_CIPHERS (sizeof(ssl3_ciphers) / sizeof(SSL_CIPHER)) 166#define SSL3_NUM_CIPHERS (sizeof(ssl3_ciphers) / sizeof(SSL_CIPHER))
166 167
@@ -1929,6 +1930,64 @@ SSL_set1_groups_list(SSL *s, const char *groups)
1929 &s->internal->tlsext_supportedgroups_length, groups); 1930 &s->internal->tlsext_supportedgroups_length, groups);
1930} 1931}
1931 1932
1933static int
1934_SSL_get_signature_nid(SSL *s, int *nid)
1935{
1936 const struct ssl_sigalg *sigalg;
1937
1938 if ((sigalg = S3I(s)->hs.our_sigalg) == NULL)
1939 return 0;
1940
1941 *nid = EVP_MD_type(sigalg->md());
1942
1943 return 1;
1944}
1945
1946static int
1947_SSL_get_peer_signature_nid(SSL *s, int *nid)
1948{
1949 const struct ssl_sigalg *sigalg;
1950
1951 if ((sigalg = S3I(s)->hs.peer_sigalg) == NULL)
1952 return 0;
1953
1954 *nid = EVP_MD_type(sigalg->md());
1955
1956 return 1;
1957}
1958
1959int
1960SSL_get_signature_type_nid(const SSL *s, int *nid)
1961{
1962 const struct ssl_sigalg *sigalg;
1963
1964 if ((sigalg = S3I(s)->hs.our_sigalg) == NULL)
1965 return 0;
1966
1967 *nid = sigalg->key_type;
1968 if (sigalg->key_type == EVP_PKEY_RSA &&
1969 (sigalg->flags & SIGALG_FLAG_RSA_PSS))
1970 *nid = EVP_PKEY_RSA_PSS;
1971
1972 return 1;
1973}
1974
1975int
1976SSL_get_peer_signature_type_nid(const SSL *s, int *nid)
1977{
1978 const struct ssl_sigalg *sigalg;
1979
1980 if ((sigalg = S3I(s)->hs.peer_sigalg) == NULL)
1981 return 0;
1982
1983 *nid = sigalg->key_type;
1984 if (sigalg->key_type == EVP_PKEY_RSA &&
1985 (sigalg->flags & SIGALG_FLAG_RSA_PSS))
1986 *nid = EVP_PKEY_RSA_PSS;
1987
1988 return 1;
1989}
1990
1932long 1991long
1933ssl3_ctrl(SSL *s, int cmd, long larg, void *parg) 1992ssl3_ctrl(SSL *s, int cmd, long larg, void *parg)
1934{ 1993{
@@ -2039,6 +2098,12 @@ ssl3_ctrl(SSL *s, int cmd, long larg, void *parg)
2039 return 0; 2098 return 0;
2040 return SSL_set_max_proto_version(s, larg); 2099 return SSL_set_max_proto_version(s, larg);
2041 2100
2101 case SSL_CTRL_GET_SIGNATURE_NID:
2102 return _SSL_get_signature_nid(s, parg);
2103
2104 case SSL_CTRL_GET_PEER_SIGNATURE_NID:
2105 return _SSL_get_peer_signature_nid(s, parg);
2106
2042 /* 2107 /*
2043 * Legacy controls that should eventually be removed. 2108 * Legacy controls that should eventually be removed.
2044 */ 2109 */
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-04-25 23:07:15 +0000