Add tls_peer_cert_chain_pem - To retreive the peer certificate and chain

as PEM format. This allows for it to be used or examined with tools external to libtls bump minor ok jsing@
author: beck <> 2017-04-05 03:19:22 +0000
committer: beck <> 2017-04-05 03:19:22 +0000
commit: 9290adf6754a1cc7020fd33160501d9c82e5d0dd (patch)
tree: 3c6a03473ecfe3397dd6444eb474c3ac576ab36d /src/lib/libtls/tls_peer.c
parent: f5eb17185d6269ff2a9ad8980b6ec5a8f508dcdd (diff)
download: openbsd-9290adf6754a1cc7020fd33160501d9c82e5d0dd.tar.gz
openbsd-9290adf6754a1cc7020fd33160501d9c82e5d0dd.tar.bz2
openbsd-9290adf6754a1cc7020fd33160501d9c82e5d0dd.zip
1 files changed, 12 insertions, 1 deletions
diff --git a/src/lib/libtls/tls_peer.c b/src/lib/libtls/tls_peer.c
index 802a9c2780..1a9065dfb1 100644
--- a/src/lib/libtls/tls_peer.c
+++ b/src/lib/libtls/tls_peer.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: tls_peer.c,v 1.6 2016/08/22 17:08:10 jsing Exp $ */
+/* $OpenBSD: tls_peer.c,v 1.7 2017/04/05 03:19:22 beck Exp $ */
 /*
 * Copyright (c) 2015 Joel Sing <jsing@openbsd.org>
 * Copyright (c) 2015 Bob Beck <beck@openbsd.org>
@@ -81,3 +81,14 @@ tls_peer_cert_notafter(struct tls *ctx)
        return (ctx->conninfo->notafter);
 }
+const uint8_t *
+tls_peer_cert_chain_pem(struct tls *ctx, size_t *size)
+{
+        if (ctx->ssl_peer_cert == NULL)
+                return (NULL);
+        if (ctx->conninfo == NULL)
+                return (NULL);
+        *size = ctx->conninfo->peer_cert_len;
+        return (ctx->conninfo->peer_cert);
+}
author	beck <>	2017-04-05 03:19:22 +0000
committer	beck <>	2017-04-05 03:19:22 +0000
commit	9290adf6754a1cc7020fd33160501d9c82e5d0dd (patch)
tree	3c6a03473ecfe3397dd6444eb474c3ac576ab36d /src/lib/libtls/tls_peer.c
parent	f5eb17185d6269ff2a9ad8980b6ec5a8f508dcdd (diff)
download	openbsd-9290adf6754a1cc7020fd33160501d9c82e5d0dd.tar.gz openbsd-9290adf6754a1cc7020fd33160501d9c82e5d0dd.tar.bz2 openbsd-9290adf6754a1cc7020fd33160501d9c82e5d0dd.zip

diff --git a/src/lib/libtls/tls_peer.c b/src/lib/libtls/tls_peer.c index 802a9c2780..1a9065dfb1 100644 --- a/src/lib/libtls/tls_peer.c +++ b/src/lib/libtls/tls_peer.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: tls_peer.c,v 1.6 2016/08/22 17:08:10 jsing Exp $ */	1	/* $OpenBSD: tls_peer.c,v 1.7 2017/04/05 03:19:22 beck Exp $ */
2	/*	2	/*
3	* Copyright (c) 2015 Joel Sing <jsing@openbsd.org>	3	* Copyright (c) 2015 Joel Sing <jsing@openbsd.org>
4	* Copyright (c) 2015 Bob Beck <beck@openbsd.org>	4	* Copyright (c) 2015 Bob Beck <beck@openbsd.org>
@@ -81,3 +81,14 @@ tls_peer_cert_notafter(struct tls *ctx)
81	return (ctx->conninfo->notafter);	81	return (ctx->conninfo->notafter);
82	}	82	}
83		83
		84	const uint8_t *
		85	tls_peer_cert_chain_pem(struct tls ctx, size_t size)
		86	{
		87	if (ctx->ssl_peer_cert == NULL)
		88	return (NULL);
		89	if (ctx->conninfo == NULL)
		90	return (NULL);
		91	*size = ctx->conninfo->peer_cert_len;
		92	return (ctx->conninfo->peer_cert);
		93	}
		94