summaryrefslogtreecommitdiff
path: root/src/lib/libssl/ssl_methods.c
diff options
context:
space:
mode:
authortb <>2024-08-28 07:15:04 +0000
committertb <>2024-08-28 07:15:04 +0000
commitf822543d6a7043acc1d14a3e0b44eddc1051b097 (patch)
treebb2a05a5261bd27ee87b1f4c8d85ebba6042d17d /src/lib/libssl/ssl_methods.c
parentd11fe5b2062a23e69f721c28b3f515c5bec8a3aa (diff)
downloadopenbsd-f822543d6a7043acc1d14a3e0b44eddc1051b097.tar.gz
openbsd-f822543d6a7043acc1d14a3e0b44eddc1051b097.tar.bz2
openbsd-f822543d6a7043acc1d14a3e0b44eddc1051b097.zip
Implement X509_get_signature_info()
This is a slightly strange combination of OBJ_find_sigid_algs() and the security level API necessary because OBJ_find_sigid_algs() on its own isn't smart enough for the special needs of RSA-PSS and EdDSA. The API extracts the hash's NID and the pubkey's NID from the certificate's signatureAlgorithm and invokes special handlers for RSA-PSS and EdDSA for retrieving the corresponding information. This isn't entirely free for RSA-PSS, but for now we don't cache this information. The security bits calculation is a bit hand-wavy, but that's something that comes along with this sort of numerology. ok jsing
Diffstat (limited to 'src/lib/libssl/ssl_methods.c')
0 files changed, 0 insertions, 0 deletions