projects / openssl.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: f46184b)
Add a function to get the handshake digest for an SSL_CIPHER
authorMatt Caswell <matt@openssl.org>
Mon, 12 Jun 2017 15:56:15 +0000 (16:56 +0100)
committerMatt Caswell <matt@openssl.org>
Wed, 21 Jun 2017 13:45:35 +0000 (14:45 +0100)
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3670)

include/openssl/ssl.h patch | blob | history
ssl/ssl_ciph.c patch | blob | history
util/libssl.num patch | blob | history

diff --git a/include/openssl/ssl.h b/include/openssl/ssl.h
index 9928781f2f285f81848c684071633d1cda34cfe2..e4aa7431411f203559217a2e22dff17bdd4dfd43 100644 (file)
--- a/include/openssl/ssl.h
+++ b/include/openssl/ssl.h
@@ -1418,6 +1418,7 @@ __owur const char *SSL_CIPHER_get_name(const SSL_CIPHER *c);
 __owur uint32_t SSL_CIPHER_get_id(const SSL_CIPHER *c);
 __owur int SSL_CIPHER_get_kx_nid(const SSL_CIPHER *c);
 __owur int SSL_CIPHER_get_auth_nid(const SSL_CIPHER *c);
+__owur const EVP_MD *SSL_CIPHER_get_handshake_digest(const SSL_CIPHER *c);
 __owur int SSL_CIPHER_is_aead(const SSL_CIPHER *c);
 
 __owur int SSL_get_fd(const SSL *s);
diff --git a/ssl/ssl_ciph.c b/ssl/ssl_ciph.c
index f048b34afd2aeb62fc686dee349283af348e15f9..0afdfdaba106aea2d7327d12610d477b2f73ec1f 100644 (file)
--- a/ssl/ssl_ciph.c
+++ b/ssl/ssl_ciph.c
@@ -1931,6 +1931,16 @@ int SSL_CIPHER_get_auth_nid(const SSL_CIPHER *c)
     return ssl_cipher_table_auth[i].nid;
 }
 
+const EVP_MD *SSL_CIPHER_get_handshake_digest(const SSL_CIPHER *c)
+{
+    int idx = c->algorithm2;
+
+    idx &= SSL_HANDSHAKE_MAC_MASK;
+    if (idx < 0 || idx >= SSL_MD_NUM_IDX)
+        return NULL;
+    return ssl_digest_methods[idx];
+}
+
 int SSL_CIPHER_is_aead(const SSL_CIPHER *c)
 {
     return (c->algorithm_mac & SSL_AEAD) ? 1 : 0;
diff --git a/util/libssl.num b/util/libssl.num
index e1c28d00a9652f4fa364c164eb2f6d71e3962e84..959e134ea0938e543e7552d469f6da887d10d44c 100644 (file)
--- a/util/libssl.num
+++ b/util/libssl.num
@@ -455,3 +455,4 @@ SSL_set_psk_find_session_callback       455 1_1_1   EXIST::FUNCTION:
 SSL_set_psk_use_session_callback        456    1_1_1   EXIST::FUNCTION:
 SSL_CTX_set_psk_use_session_callback    457    1_1_1   EXIST::FUNCTION:
 SSL_CTX_set_psk_find_session_callback   458    1_1_1   EXIST::FUNCTION:
+SSL_CIPHER_get_handshake_digest         459    1_1_1   EXIST::FUNCTION:
Unnamed repository; edit this file 'description' to name the repository.