boringssl

History

David Benjamin bc118ee64c Add SSL_get0_peer_verify_algorithms. Callers who use SSL_get0_certificate_types today will find an empty list in TLS 1.3, which removed it. To provide feature parity, add an accessor for the signature algorithms list. SSL_get_signature_algorithm_key_type can be used to map it to a key type. "Peer signature algorithms" was already taken in the public API by SSL_get_peer_signature_algorithm to refer to which the peer selected, so I named this matching SSL_CTX_set_verify_algorithm_prefs. Change-Id: I12d411d7350e744ed9f88c610df48e0d9fc13256 Reviewed-on: https://boringssl-review.googlesource.com/29684 Commit-Queue: David Benjamin <davidben@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Reviewed-by: Adam Vartanian <flooey@google.com> Reviewed-by: Steven Valdez <svaldez@google.com>	2018-07-14 03:50:40 +00:00
..
openssl	Add SSL_get0_peer_verify_algorithms.	2018-07-14 03:50:40 +00:00

David Benjamin bc118ee64c Add SSL_get0_peer_verify_algorithms.

Callers who use SSL_get0_certificate_types today will find an empty list
in TLS 1.3, which removed it. To provide feature parity, add an accessor
for the signature algorithms list. SSL_get_signature_algorithm_key_type
can be used to map it to a key type.

"Peer signature algorithms" was already taken in the public API by
SSL_get_peer_signature_algorithm to refer to which the peer selected, so
I named this matching SSL_CTX_set_verify_algorithm_prefs.

Change-Id: I12d411d7350e744ed9f88c610df48e0d9fc13256
Reviewed-on: https://boringssl-review.googlesource.com/29684
Commit-Queue: David Benjamin <davidben@google.com>
CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
Reviewed-by: Adam Vartanian <flooey@google.com>
Reviewed-by: Steven Valdez <svaldez@google.com>

2018-07-14 03:50:40 +00:00

openssl

Add SSL_get0_peer_verify_algorithms.

2018-07-14 03:50:40 +00:00