0
0
Fork 0
mirror of https://github.com/matrix-construct/construct synced 2024-06-11 06:28:55 +02:00

ircd::openssl: Add interface to examine cipher lists.

This commit is contained in:
Jason Volk 2019-03-05 10:50:12 -08:00
parent c87b85eefc
commit a29dfb93f5
2 changed files with 40 additions and 0 deletions

View file

@ -15,6 +15,8 @@
// that these are declared in the extern namespace outside of ircd:: but
// match those in the OpenSSL headers and should not be too much trouble.
struct ssl_st;
struct ssl_ctx_st;
struct ssl_cipher_st;
struct rsa_st;
struct x509_st;
struct x509_store_ctx_st;
@ -39,6 +41,8 @@ namespace ircd::openssl
// typedef analogues
using SSL = ::ssl_st;
using SSL_CTX = ::ssl_ctx_st;
using SSL_CIPHER = ::ssl_cipher_st;
using RSA = ::rsa_st;
using X509 = ::x509_st;
using X509_STORE_CTX = ::x509_store_ctx_st;
@ -118,6 +122,12 @@ namespace ircd::openssl
uint get_error_depth(const X509_STORE_CTX &);
const X509 &current_cert(const X509_STORE_CTX &);
X509 &current_cert(X509_STORE_CTX &);
// SSL suite
string_view name(const SSL_CIPHER &);
const SSL_CIPHER *current_cipher(const SSL &);
string_view shared_ciphers(const mutable_buffer &buf, const SSL &);
string_view cipher_list(const SSL &, const int &priority = -1);
}
/// OpenSSL BIO convenience utils and wraps; also secure file IO closures

View file

@ -47,6 +47,36 @@ namespace ircd::openssl
// openssl.h
//
//
// SSL
//
ircd::string_view
ircd::openssl::cipher_list(const SSL &ssl,
const int &priority)
{
return SSL_get_cipher_list(&ssl, priority);
}
ircd::string_view
ircd::openssl::shared_ciphers(const mutable_buffer &buf,
const SSL &ssl)
{
return SSL_get_shared_ciphers(&ssl, data(buf), size(buf));
}
const SSL_CIPHER *
ircd::openssl::current_cipher(const SSL &ssl)
{
return SSL_get_current_cipher(&ssl);
}
ircd::string_view
ircd::openssl::name(const SSL_CIPHER &cipher)
{
return SSL_CIPHER_get_name(&cipher);
}
//
// X509
//