Lines Matching refs:ssl
25 #include <openssl/ssl.h>
34 ssl_security_normalize_level(const SSL_CTX *ctx, const SSL *ssl, int *out_level)
41 security_level = SSL_get_security_level(ssl);
76 ssl_security_level_and_minimum_bits(const SSL_CTX *ctx, const SSL *ssl,
81 if (!ssl_security_normalize_level(ctx, ssl, &security_level))
95 ssl_security_secop_cipher(const SSL_CTX *ctx, const SSL *ssl, int bits,
101 if (!ssl_security_level_and_minimum_bits(ctx, ssl, &security_level,
142 ssl_security_secop_version(const SSL_CTX *ctx, const SSL *ssl, int version)
147 if (!ssl_security_level_and_minimum_bits(ctx, ssl, &security_level, NULL))
159 ssl_security_secop_compression(const SSL_CTX *ctx, const SSL *ssl)
165 ssl_security_secop_tickets(const SSL_CTX *ctx, const SSL *ssl)
169 if (!ssl_security_level_and_minimum_bits(ctx, ssl, &security_level, NULL))
176 ssl_security_secop_tmp_dh(const SSL_CTX *ctx, const SSL *ssl, int bits)
180 if (!ssl_security_level_and_minimum_bits(ctx, ssl, &security_level,
192 ssl_security_secop_default(const SSL_CTX *ctx, const SSL *ssl, int bits)
196 if (!ssl_security_level_and_minimum_bits(ctx, ssl, NULL, &minimum_bits))
203 ssl_security_default_cb(const SSL *ssl, const SSL_CTX *ctx, int secop, int bits,
210 return ssl_security_secop_cipher(ctx, ssl, bits, cipher);
212 return ssl_security_secop_version(ctx, ssl, version);
214 return ssl_security_secop_compression(ctx, ssl);
216 return ssl_security_secop_tickets(ctx, ssl);
218 return ssl_security_secop_tmp_dh(ctx, ssl, bits);
220 return ssl_security_secop_default(ctx, ssl, bits);
232 ssl_security(const SSL *ssl, int secop, int bits, int nid, void *other)
234 return ssl->cert->security_cb(ssl, NULL, secop, bits, nid, other,
235 ssl->cert->security_ex_data);
239 ssl_security_sigalg_check(const SSL *ssl, const EVP_PKEY *pkey)
245 return ssl_security(ssl, SSL_SECOP_SIGALG_CHECK, bits, 0, NULL);
249 ssl_security_tickets(const SSL *ssl)
251 return ssl_security(ssl, SSL_SECOP_TICKET, 0, 0, NULL);
255 ssl_security_version(const SSL *ssl, int version)
257 return ssl_security(ssl, SSL_SECOP_VERSION, 0, version, NULL);
261 ssl_security_cipher(const SSL *ssl, SSL_CIPHER *cipher, int secop)
263 return ssl_security(ssl, secop, cipher->strength_bits, 0, cipher);
267 ssl_security_cipher_check(const SSL *ssl, SSL_CIPHER *cipher)
269 return ssl_security_cipher(ssl, cipher, SSL_SECOP_CIPHER_CHECK);
273 ssl_security_shared_cipher(const SSL *ssl, SSL_CIPHER *cipher)
275 return ssl_security_cipher(ssl, cipher, SSL_SECOP_CIPHER_SHARED);
279 ssl_security_supported_cipher(const SSL *ssl, SSL_CIPHER *cipher)
281 return ssl_security_cipher(ssl, cipher, SSL_SECOP_CIPHER_SUPPORTED);
295 ssl_security_dh(const SSL *ssl, DH *dh)
301 return ssl_security(ssl, SSL_SECOP_TMP_DH, bits, 0, dh);
316 ssl_security_cert_key(const SSL_CTX *ctx, const SSL *ssl, X509 *x509, int secop)
322 if (ssl != NULL)
323 return ssl_security(ssl, secop, security_bits, 0, x509);
359 ssl_security_cert_sig(const SSL_CTX *ctx, const SSL *ssl, X509 *x509, int secop)
373 if (ssl != NULL)
374 return ssl_security(ssl, secop, security_bits, md_nid, x509);
380 ssl_security_cert(const SSL_CTX *ctx, const SSL *ssl, X509 *x509,
395 if (!ssl_security_cert_key(ctx, ssl, x509, operation)) {
400 if (!ssl_security_cert_sig(ctx, ssl, x509, SSL_SECOP_CA_MD)) {
413 ssl_security_cert_chain(const SSL *ssl, STACK_OF(X509) *sk, X509 *x509,
426 if (!ssl_security_cert(NULL, ssl, x509, is_ee, out_error))
433 if (!ssl_security_cert(NULL, ssl, x509, is_ee, out_error))
441 ssl_security_group(const SSL *ssl, uint16_t group_id, int secop)
461 return ssl_security(ssl, secop, bits, nid, group);
470 ssl_security_shared_group(const SSL *ssl, uint16_t group_id)
472 return ssl_security_group(ssl, group_id, SSL_SECOP_CURVE_SHARED);
476 ssl_security_supported_group(const SSL *ssl, uint16_t group_id)
478 return ssl_security_group(ssl, group_id, SSL_SECOP_CURVE_SUPPORTED);