diff options
| author | claudio <> | 2017-08-09 21:27:24 +0000 |
|---|---|---|
| committer | claudio <> | 2017-08-09 21:27:24 +0000 |
| commit | 71babe0972b1aeead9b7f54acb4814fb9695d8ad (patch) | |
| tree | 3fe6a59e04489e4fff11a15572903b1a13783ae0 /src/lib/libtls/tls_internal.h | |
| parent | 4b42daf331a8d82ddb90f60167a489d82d29b804 (diff) | |
| download | openbsd-71babe0972b1aeead9b7f54acb4814fb9695d8ad.tar.gz openbsd-71babe0972b1aeead9b7f54acb4814fb9695d8ad.tar.bz2 openbsd-71babe0972b1aeead9b7f54acb4814fb9695d8ad.zip | |
Don't use tls_cert_hash for the hashing used by the engine offloading magic
for the TLS privsep code. Instead use X509_pubkey_digest() because only the
key should be used as identifier. Relayd is rewriting certificates and then
the hash would change. Rename the hash is struct tls_keypair to pubkey_hash
to make clear what this hash is about.
With input and OK jsing@
Diffstat (limited to '')
| -rw-r--r-- | src/lib/libtls/tls_internal.h | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/src/lib/libtls/tls_internal.h b/src/lib/libtls/tls_internal.h index bed9d6e7f4..6079babccf 100644 --- a/src/lib/libtls/tls_internal.h +++ b/src/lib/libtls/tls_internal.h | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: tls_internal.h,v 1.62 2017/07/06 17:12:22 jsing Exp $ */ | 1 | /* $OpenBSD: tls_internal.h,v 1.63 2017/08/09 21:27:24 claudio Exp $ */ |
| 2 | /* | 2 | /* |
| 3 | * Copyright (c) 2014 Jeremie Courreges-Anglas <jca@openbsd.org> | 3 | * Copyright (c) 2014 Jeremie Courreges-Anglas <jca@openbsd.org> |
| 4 | * Copyright (c) 2014 Joel Sing <jsing@openbsd.org> | 4 | * Copyright (c) 2014 Joel Sing <jsing@openbsd.org> |
| @@ -53,7 +53,7 @@ struct tls_keypair { | |||
| 53 | size_t key_len; | 53 | size_t key_len; |
| 54 | char *ocsp_staple; | 54 | char *ocsp_staple; |
| 55 | size_t ocsp_staple_len; | 55 | size_t ocsp_staple_len; |
| 56 | char *cert_hash; | 56 | char *pubkey_hash; |
| 57 | }; | 57 | }; |
| 58 | 58 | ||
| 59 | #define TLS_MIN_SESSION_TIMEOUT (4) | 59 | #define TLS_MIN_SESSION_TIMEOUT (4) |