dany/luasec
1
0
Fork 0
mirror of https://github.com/brunoos/luasec.git synced 2025-07-20 07:49:52 +02:00
Code Issues Packages Projects Releases Wiki Activity

Add support for the new curve selection API.

Browse Source 
Signed-off-by: W-Mark Kubacki <wmark@hurrikane.de>
This commit is contained in:
Mark Kubacki
2015-06-16 20:06:42 +00:00
committed by W-Mark Kubacki
parent 98f8872743
commit 231563682a
3 changed files with 84 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
src/context.c
View File

@ -574,6 +574,24 @@ static int set_curve(lua_State *L)
long ret;
SSL_CTX *ctx = lsec_checkcontext(L, 1);
const char *str = luaL_checkstring(L, 2);
SSL_CTX_set_options(ctx, SSL_OP_SINGLE_ECDH_USE);
#if defined(SSL_CTRL_SET_ECDH_AUTO) || defined(SSL_CTRL_SET_CURVES_LIST)
if (SSL_CTX_set1_curves_list(ctx, str) != 1) {
lua_pushboolean(L, 0);
lua_pushfstring(L, "unknown elliptic curve in \"%s\"", str);
return 2;
}
#ifdef SSL_CTRL_SET_ECDH_AUTO
SSL_CTX_set_ecdh_auto(ctx, 1);
#endif
lua_pushboolean(L, 1);
return 1;
#else /* !defined(SSL_CTRL_SET_CURVES_LIST) */
EC_KEY *key = find_ec_key(str);
if (!key) {
@ -594,6 +612,7 @@ static int set_curve(lua_State *L)
}
lua_pushboolean(L, 1);
return 1;
#endif /* defined(SSL_CTRL_SET_CURVES_LIST) */
}
#endif