Chiebot-Mirror
/
boringssl
mirror of https://gitee.com/mirrors/boringssl.git
8
0
Fork 0
Code Issues Projects Releases Wiki Activity

Add the "groups" variants of SSL_CTX_set1_curves_list.

Browse Source 
Node calls these. OpenSSL renamed their APIs to align with the IETF
renaming NamedCurve to NamedGroup. (Ironically, with post-quantum
ciphers, that name turns out also to be wrong and it probably should
have been a reference to KEMs.)

To avoid churn for now, I haven't marked the old ones as deprecated, or
renamed any of the internal types yet. We can see about doing that
later.

Change-Id: I5765cea8398f3836611977805bf8ae7d6efc0a70
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/54306
Commit-Queue: Bob Beck <bbe@google.com>
Reviewed-by: Bob Beck <bbe@google.com>
chromium-5359
David Benjamin 2 years ago committed by Boringssl LUCI CQ
parent 1106836aa9
commit e8e6cacca4
2 changed files with 30 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 14
      include/openssl/ssl.h
  2. 16
      ssl/ssl_lib.cc

14
include/openssl/ssl.h
Unescape View File

@ -2352,6 +2352,20 @@ OPENSSL_EXPORT uint16_t SSL_get_curve_id(const SSL *ssl);
// the given TLS curve id, or NULL if the curve is unknown.
OPENSSL_EXPORT const char *SSL_get_curve_name(uint16_t curve_id);
// SSL_CTX_set1_groups calls |SSL_CTX_set1_curves|.
OPENSSL_EXPORT int SSL_CTX_set1_groups(SSL_CTX *ctx, const int *groups,
size_t groups_len);
// SSL_set1_groups calls |SSL_set1_curves|.
OPENSSL_EXPORT int SSL_set1_groups(SSL *ssl, const int *groups,
size_t groups_len);
// SSL_CTX_set1_groups_list calls |SSL_CTX_set1_curves_list|.
OPENSSL_EXPORT int SSL_CTX_set1_groups_list(SSL_CTX *ctx, const char *groups);
// SSL_set1_groups_list calls |SSL_set1_curves_list|.
OPENSSL_EXPORT int SSL_set1_groups_list(SSL *ssl, const char *groups);
// Certificate verification.
//

16
ssl/ssl_lib.cc
Unescape View File

@ -1949,6 +1949,22 @@ int SSL_set1_curves_list(SSL *ssl, const char *curves) {
return tls1_set_curves_list(&ssl->config->supported_group_list, curves);
}
int SSL_CTX_set1_groups(SSL_CTX *ctx, const int *groups, size_t groups_len) {
return SSL_CTX_set1_curves(ctx, groups, groups_len);
}
int SSL_set1_groups(SSL *ssl, const int *groups, size_t groups_len) {
return SSL_set1_curves(ssl, groups, groups_len);
}
int SSL_CTX_set1_groups_list(SSL_CTX *ctx, const char *groups) {
return SSL_CTX_set1_curves_list(ctx, groups);
}
int SSL_set1_groups_list(SSL *ssl, const char *groups) {
return SSL_set1_curves_list(ssl, groups);
}
uint16_t SSL_get_curve_id(const SSL *ssl) {
SSL_SESSION *session = SSL_get_session(ssl);
if (session == NULL) {

Write Preview
Loading…
Cancel
Save