From 5a0891266eb7faa2125a805f4656e8b451e08848 Mon Sep 17 00:00:00 2001 From: tb <> Date: Wed, 8 Sep 2021 17:24:23 +0000 Subject: Prepare to provide API stubs for PHA ok bcook jsing --- src/lib/libssl/ssl.h | 9 ++++++++- src/lib/libssl/ssl_lib.c | 20 +++++++++++++++++++- 2 files changed, 27 insertions(+), 2 deletions(-) (limited to 'src/lib') diff --git a/src/lib/libssl/ssl.h b/src/lib/libssl/ssl.h index b2a576bf55..4117d90e89 100644 --- a/src/lib/libssl/ssl.h +++ b/src/lib/libssl/ssl.h @@ -1,4 +1,4 @@ -/* $OpenBSD: ssl.h,v 1.198 2021/09/08 12:56:14 tb Exp $ */ +/* $OpenBSD: ssl.h,v 1.199 2021/09/08 17:24:23 tb Exp $ */ /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) * All rights reserved. * @@ -853,6 +853,13 @@ size_t SSL_get_peer_finished(const SSL *s, void *buf, size_t count); #define SSL_VERIFY_PEER 0x01 #define SSL_VERIFY_FAIL_IF_NO_PEER_CERT 0x02 #define SSL_VERIFY_CLIENT_ONCE 0x04 +#if defined(LIBRESSL_HAS_TLS1_3) || defined(LIBRESSL_INTERNAL) +#define SSL_VERIFY_POST_HANDSHAKE 0x08 + +int SSL_verify_client_post_handshake(SSL *s); +void SSL_CTX_set_post_handshake_auth(SSL_CTX *ctx, int val); +void SSL_set_post_handshake_auth(SSL *s, int val); +#endif #define OpenSSL_add_ssl_algorithms() SSL_library_init() #define SSLeay_add_ssl_algorithms() SSL_library_init() diff --git a/src/lib/libssl/ssl_lib.c b/src/lib/libssl/ssl_lib.c index ef2a92ffe3..d53bb66b57 100644 --- a/src/lib/libssl/ssl_lib.c +++ b/src/lib/libssl/ssl_lib.c @@ -1,4 +1,4 @@ -/* $OpenBSD: ssl_lib.c,v 1.265 2021/09/08 12:32:07 tb Exp $ */ +/* $OpenBSD: ssl_lib.c,v 1.266 2021/09/08 17:24:23 tb Exp $ */ /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) * All rights reserved. * @@ -2966,6 +2966,24 @@ SSL_get_verify_result(const SSL *ssl) return (ssl->verify_result); } +int +SSL_verify_client_post_handshake(SSL *ssl) +{ + return 0; +} + +void +SSL_CTX_set_post_handshake_auth(SSL_CTX *ctx, int val) +{ + return; +} + +void +SSL_set_post_handshake_auth(SSL *ssl, int val) +{ + return; +} + int SSL_get_ex_new_index(long argl, void *argp, CRYPTO_EX_new *new_func, CRYPTO_EX_dup *dup_func, CRYPTO_EX_free *free_func) -- cgit v1.2.3-55-g6feb