git.openssl.org Git - openssl.git/commit

author	Christian Heimes <christian@python.org>
	Thu, 14 Sep 2017 07:28:39 +0000 (09:28 +0200)
committer	Benjamin Kaduk <kaduk@mit.edu>
	Fri, 15 Sep 2017 15:04:47 +0000 (10:04 -0500)
commit	3edabd3ccb7aac89af5a63cfb2378e33a8be05d7
tree	aeaf93157d17cb8d368032917429b606359c411a	tree \| snapshot
parent	53a73768a7f17dba012615ea79960d724b310856	commit \| diff

Provide getters for min/max proto version

OpenSSL 1.1.0 made SSL_CTX and SSL structs opaque and introduced a new
API to set the minimum and maximum protocol version for SSL_CTX with
TLS_method(). Add getters to introspect the configured versions:

  int SSL_CTX_get_min_proto_version(SSL_CTX *ctx);
  int SSL_CTX_get_max_proto_version(SSL_CTX *ctx);
  int SSL_get_min_proto_version(SSL *ssl);
  int SSL_get_max_proto_version(SSL *ssl);

NOTE: The getters do not resolv the version in case when the minimum or
maxium version are configured as '0' (meaning auto-select lowest and
highst version number).

Signed-off-by: Christian Heimes <christian@python.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Ben Kaduk <kaduk@mit.edu>
(Merged from https://github.com/openssl/openssl/pull/4364)

doc/man3/SSL_CTX_set_min_proto_version.pod		diff \| blob \| history
include/openssl/ssl.h		diff \| blob \| history
ssl/ssl_lib.c		diff \| blob \| history
util/private.num		diff \| blob \| history