mirror of
https://github.com/matrix-construct/construct
synced 2024-11-29 10:12:39 +01:00
ircd::openssl: Add interface to examine cipher lists.
This commit is contained in:
parent
c87b85eefc
commit
a29dfb93f5
2 changed files with 40 additions and 0 deletions
|
@ -15,6 +15,8 @@
|
||||||
// that these are declared in the extern namespace outside of ircd:: but
|
// that these are declared in the extern namespace outside of ircd:: but
|
||||||
// match those in the OpenSSL headers and should not be too much trouble.
|
// match those in the OpenSSL headers and should not be too much trouble.
|
||||||
struct ssl_st;
|
struct ssl_st;
|
||||||
|
struct ssl_ctx_st;
|
||||||
|
struct ssl_cipher_st;
|
||||||
struct rsa_st;
|
struct rsa_st;
|
||||||
struct x509_st;
|
struct x509_st;
|
||||||
struct x509_store_ctx_st;
|
struct x509_store_ctx_st;
|
||||||
|
@ -39,6 +41,8 @@ namespace ircd::openssl
|
||||||
|
|
||||||
// typedef analogues
|
// typedef analogues
|
||||||
using SSL = ::ssl_st;
|
using SSL = ::ssl_st;
|
||||||
|
using SSL_CTX = ::ssl_ctx_st;
|
||||||
|
using SSL_CIPHER = ::ssl_cipher_st;
|
||||||
using RSA = ::rsa_st;
|
using RSA = ::rsa_st;
|
||||||
using X509 = ::x509_st;
|
using X509 = ::x509_st;
|
||||||
using X509_STORE_CTX = ::x509_store_ctx_st;
|
using X509_STORE_CTX = ::x509_store_ctx_st;
|
||||||
|
@ -118,6 +122,12 @@ namespace ircd::openssl
|
||||||
uint get_error_depth(const X509_STORE_CTX &);
|
uint get_error_depth(const X509_STORE_CTX &);
|
||||||
const X509 ¤t_cert(const X509_STORE_CTX &);
|
const X509 ¤t_cert(const X509_STORE_CTX &);
|
||||||
X509 ¤t_cert(X509_STORE_CTX &);
|
X509 ¤t_cert(X509_STORE_CTX &);
|
||||||
|
|
||||||
|
// SSL suite
|
||||||
|
string_view name(const SSL_CIPHER &);
|
||||||
|
const SSL_CIPHER *current_cipher(const SSL &);
|
||||||
|
string_view shared_ciphers(const mutable_buffer &buf, const SSL &);
|
||||||
|
string_view cipher_list(const SSL &, const int &priority = -1);
|
||||||
}
|
}
|
||||||
|
|
||||||
/// OpenSSL BIO convenience utils and wraps; also secure file IO closures
|
/// OpenSSL BIO convenience utils and wraps; also secure file IO closures
|
||||||
|
|
|
@ -47,6 +47,36 @@ namespace ircd::openssl
|
||||||
// openssl.h
|
// openssl.h
|
||||||
//
|
//
|
||||||
|
|
||||||
|
//
|
||||||
|
// SSL
|
||||||
|
//
|
||||||
|
|
||||||
|
ircd::string_view
|
||||||
|
ircd::openssl::cipher_list(const SSL &ssl,
|
||||||
|
const int &priority)
|
||||||
|
{
|
||||||
|
return SSL_get_cipher_list(&ssl, priority);
|
||||||
|
}
|
||||||
|
|
||||||
|
ircd::string_view
|
||||||
|
ircd::openssl::shared_ciphers(const mutable_buffer &buf,
|
||||||
|
const SSL &ssl)
|
||||||
|
{
|
||||||
|
return SSL_get_shared_ciphers(&ssl, data(buf), size(buf));
|
||||||
|
}
|
||||||
|
|
||||||
|
const SSL_CIPHER *
|
||||||
|
ircd::openssl::current_cipher(const SSL &ssl)
|
||||||
|
{
|
||||||
|
return SSL_get_current_cipher(&ssl);
|
||||||
|
}
|
||||||
|
|
||||||
|
ircd::string_view
|
||||||
|
ircd::openssl::name(const SSL_CIPHER &cipher)
|
||||||
|
{
|
||||||
|
return SSL_CIPHER_get_name(&cipher);
|
||||||
|
}
|
||||||
|
|
||||||
//
|
//
|
||||||
// X509
|
// X509
|
||||||
//
|
//
|
||||||
|
|
Loading…
Reference in a new issue