Rename uses 'curve' to 'group' and rework tls1 group API.

This reworks various tls1_ curve APIs to indicate success via a boolean return value and move the output to an out parameter. This makes the caller code easier and more consistent. Based on a suggestion by jsing ok jsing
author: tb <> 2022-07-02 16:00:12 +0000
committer: tb <> 2022-07-02 16:00:12 +0000
commit: f7fed9455632a5807e76bd3a28879f5a87857c53 (patch)
tree: 9d374c62eeff973ee0b7721a87b5f66c56832f1e /src/lib/libssl/ssl_locl.h
parent: c757fe9bb6c16f47a415034b69dda698116160ba (diff)
download: openbsd-f7fed9455632a5807e76bd3a28879f5a87857c53.tar.gz
openbsd-f7fed9455632a5807e76bd3a28879f5a87857c53.tar.bz2
openbsd-f7fed9455632a5807e76bd3a28879f5a87857c53.zip
1 files changed, 7 insertions, 7 deletions
diff --git a/src/lib/libssl/ssl_locl.h b/src/lib/libssl/ssl_locl.h
index d3e600b6b7..a2ca99c02d 100644
--- a/src/lib/libssl/ssl_locl.h
+++ b/src/lib/libssl/ssl_locl.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssl_locl.h,v 1.409 2022/06/30 16:05:07 tb Exp $ */
+/* $OpenBSD: ssl_locl.h,v 1.410 2022/07/02 16:00:12 tb Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -1306,7 +1306,7 @@ int ssl_security_cert(const SSL_CTX *ctx, const SSL *ssl, X509 *x509,
    int is_peer, int *out_error);
 int ssl_security_cert_chain(const SSL *ssl, STACK_OF(X509) *sk,
    X509 *x509, int *out_error);
-int ssl_security_supported_group(const SSL *ssl, uint16_t curve_id);
+int ssl_security_supported_group(const SSL *ssl, uint16_t group_id);
 int ssl_get_new_session(SSL *s, int session);
 int ssl_get_prev_session(SSL *s, CBS *session_id, CBS *ext_block,
@@ -1515,11 +1515,11 @@ int tls1_set_groups(uint16_t **out_group_ids, size_t *out_group_ids_len,
 int tls1_set_group_list(uint16_t **out_group_ids, size_t *out_group_ids_len,
    const char *groups);
-int tls1_ec_curve_id2nid(const uint16_t curve_id);
+int tls1_ec_group_id2nid(uint16_t group_id, int *out_nid);
-int tls1_ec_curve_id2bits(const uint16_t curve_id);
+int tls1_ec_group_id2bits(uint16_t group_id, int *out_bits);
-uint16_t tls1_ec_nid2curve_id(const int nid);
+int tls1_ec_nid2group_id(int nid, uint16_t *out_group_id);
-int tls1_check_curve(SSL *s, const uint16_t group_id);
+int tls1_check_group(SSL *s, uint16_t group_id);
-int tls1_get_shared_curve(SSL *s);
+int tls1_get_supported_group(SSL *s, int *group_nid);
 int ssl_check_clienthello_tlsext_early(SSL *s);
 int ssl_check_clienthello_tlsext_late(SSL *s);
author	tb <>	2022-07-02 16:00:12 +0000
committer	tb <>	2022-07-02 16:00:12 +0000
commit	f7fed9455632a5807e76bd3a28879f5a87857c53 (patch)
tree	9d374c62eeff973ee0b7721a87b5f66c56832f1e /src/lib/libssl/ssl_locl.h
parent	c757fe9bb6c16f47a415034b69dda698116160ba (diff)
download	openbsd-f7fed9455632a5807e76bd3a28879f5a87857c53.tar.gz openbsd-f7fed9455632a5807e76bd3a28879f5a87857c53.tar.bz2 openbsd-f7fed9455632a5807e76bd3a28879f5a87857c53.zip

diff --git a/src/lib/libssl/ssl_locl.h b/src/lib/libssl/ssl_locl.h index d3e600b6b7..a2ca99c02d 100644 --- a/src/lib/libssl/ssl_locl.h +++ b/src/lib/libssl/ssl_locl.h
@@ -1,4 +1,4 @@
1	/* $OpenBSD: ssl_locl.h,v 1.409 2022/06/30 16:05:07 tb Exp $ */	1	/* $OpenBSD: ssl_locl.h,v 1.410 2022/07/02 16:00:12 tb Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.	3	* All rights reserved.
4	*	4	*
@@ -1306,7 +1306,7 @@ int ssl_security_cert(const SSL_CTX ctx, const SSL ssl, X509 *x509,
1306	int is_peer, int *out_error);	1306	int is_peer, int *out_error);
1307	int ssl_security_cert_chain(const SSL ssl, STACK_OF(X509) sk,	1307	int ssl_security_cert_chain(const SSL ssl, STACK_OF(X509) sk,
1308	X509 x509, int out_error);	1308	X509 x509, int out_error);
1309	int ssl_security_supported_group(const SSL *ssl, uint16_t curve_id);	1309	int ssl_security_supported_group(const SSL *ssl, uint16_t group_id);
1310		1310
1311	int ssl_get_new_session(SSL *s, int session);	1311	int ssl_get_new_session(SSL *s, int session);
1312	int ssl_get_prev_session(SSL s, CBS session_id, CBS *ext_block,	1312	int ssl_get_prev_session(SSL s, CBS session_id, CBS *ext_block,
@@ -1515,11 +1515,11 @@ int tls1_set_groups(uint16_t *out_group_ids, size_t out_group_ids_len,
1515	int tls1_set_group_list(uint16_t *out_group_ids, size_t out_group_ids_len,	1515	int tls1_set_group_list(uint16_t *out_group_ids, size_t out_group_ids_len,
1516	const char *groups);	1516	const char *groups);
1517		1517
1518	int tls1_ec_curve_id2nid(const uint16_t curve_id);	1518	int tls1_ec_group_id2nid(uint16_t group_id, int *out_nid);
1519	int tls1_ec_curve_id2bits(const uint16_t curve_id);	1519	int tls1_ec_group_id2bits(uint16_t group_id, int *out_bits);
1520	uint16_t tls1_ec_nid2curve_id(const int nid);	1520	int tls1_ec_nid2group_id(int nid, uint16_t *out_group_id);
1521	int tls1_check_curve(SSL *s, const uint16_t group_id);	1521	int tls1_check_group(SSL *s, uint16_t group_id);
1522	int tls1_get_shared_curve(SSL *s);	1522	int tls1_get_supported_group(SSL s, int group_nid);
1523		1523
1524	int ssl_check_clienthello_tlsext_early(SSL *s);	1524	int ssl_check_clienthello_tlsext_early(SSL *s);
1525	int ssl_check_clienthello_tlsext_late(SSL *s);	1525	int ssl_check_clienthello_tlsext_late(SSL *s);