xref: /third_party/openssl/ssl/ssl_conf.c

189 static int cmd_SignatureAlgorithms(SSL_CONF_CTX *cctx, const char *value)
193         rv = SSL_set1_sigalgs_list(cctx->ssl, value);
196         rv = SSL_CTX_set1_sigalgs_list(cctx->ctx, value);
201 static int cmd_ClientSignatureAlgorithms(SSL_CONF_CTX *cctx, const char *value)
205         rv = SSL_set1_client_sigalgs_list(cctx->ssl, value);
208         rv = SSL_CTX_set1_client_sigalgs_list(cctx->ctx, value);
212 static int cmd_Groups(SSL_CONF_CTX *cctx, const char *value)
216         rv = SSL_set1_groups_list(cctx->ssl, value);
219         rv = SSL_CTX_set1_groups_list(cctx->ctx, value);
224 static int cmd_Curves(SSL_CONF_CTX *cctx, const char *value)
226     return cmd_Groups(cctx, value);
230 static int cmd_ECDHParameters(SSL_CONF_CTX *cctx, const char *value)
236             && (OPENSSL_strcasecmp(value, "+automatic") == 0
237                 || OPENSSL_strcasecmp(value, "automatic") == 0))
240         strcmp(value, "auto") == 0)
244     if (strstr(value, ":") != NULL)
248         rv = SSL_CTX_set1_groups_list(cctx->ctx, value);
250         rv = SSL_set1_groups_list(cctx->ssl, value);
255 static int cmd_CipherString(SSL_CONF_CTX *cctx, const char *value)
260         rv = SSL_CTX_set_cipher_list(cctx->ctx, value);
262         rv = SSL_set_cipher_list(cctx->ssl, value);
266 static int cmd_Ciphersuites(SSL_CONF_CTX *cctx, const char *value)
271         rv = SSL_CTX_set_ciphersuites(cctx->ctx, value);
273         rv = SSL_set_ciphersuites(cctx->ssl, value);
277 static int cmd_Protocol(SSL_CONF_CTX *cctx, const char *value)
292     return CONF_parse_list(value, ',', 1, ssl_set_option_list, cctx);
300 static int protocol_from_string(const char *value)
327         if (strcmp(versions[i].name, value) == 0)
332 static int min_max_proto(SSL_CONF_CTX *cctx, const char *value, int *bound)
343     if ((new_version = protocol_from_string(value)) < 0)
351  * @value: The min protocol version in string form
355 static int cmd_MinProtocol(SSL_CONF_CTX *cctx, const char *value)
357     return min_max_proto(cctx, value, cctx->min_version);
363  * @value: The max protocol version in string form
367 static int cmd_MaxProtocol(SSL_CONF_CTX *cctx, const char *value)
369     return min_max_proto(cctx, value, cctx->max_version);
372 static int cmd_Options(SSL_CONF_CTX *cctx, const char *value)
401     if (value == NULL)
405     return CONF_parse_list(value, ',', 1, ssl_set_option_list, cctx);
408 static int cmd_VerifyMode(SSL_CONF_CTX *cctx, const char *value)
422     if (value == NULL)
426     return CONF_parse_list(value, ',', 1, ssl_set_option_list, cctx);
429 static int cmd_Certificate(SSL_CONF_CTX *cctx, const char *value)
434         rv = SSL_CTX_use_certificate_chain_file(cctx->ctx, value);
438         rv = SSL_use_certificate_chain_file(cctx->ssl, value);
444         *pfilename = OPENSSL_strdup(value);
452 static int cmd_PrivateKey(SSL_CONF_CTX *cctx, const char *value)
458         rv = SSL_CTX_use_PrivateKey_file(cctx->ctx, value, SSL_FILETYPE_PEM);
460         rv = SSL_use_PrivateKey_file(cctx->ssl, value, SSL_FILETYPE_PEM);
464 static int cmd_ServerInfoFile(SSL_CONF_CTX *cctx, const char *value)
468         rv = SSL_CTX_use_serverinfo_file(cctx->ctx, value);
512 static int cmd_ChainCAPath(SSL_CONF_CTX *cctx, const char *value)
514     return do_store(cctx, NULL, value, NULL, 0);
517 static int cmd_ChainCAFile(SSL_CONF_CTX *cctx, const char *value)
519     return do_store(cctx, value, NULL, NULL, 0);
522 static int cmd_ChainCAStore(SSL_CONF_CTX *cctx, const char *value)
524     return do_store(cctx, NULL, NULL, value, 0);
527 static int cmd_VerifyCAPath(SSL_CONF_CTX *cctx, const char *value)
529     return do_store(cctx, NULL, value, NULL, 1);
532 static int cmd_VerifyCAFile(SSL_CONF_CTX *cctx, const char *value)
534     return do_store(cctx, value, NULL, NULL, 1);
537 static int cmd_VerifyCAStore(SSL_CONF_CTX *cctx, const char *value)
539     return do_store(cctx, NULL, NULL, value, 1);
542 static int cmd_RequestCAFile(SSL_CONF_CTX *cctx, const char *value)
548     return SSL_add_file_cert_subjects_to_stack(cctx->canames, value);
551 static int cmd_ClientCAFile(SSL_CONF_CTX *cctx, const char *value)
553     return cmd_RequestCAFile(cctx, value);
556 static int cmd_RequestCAPath(SSL_CONF_CTX *cctx, const char *value)
562     return SSL_add_dir_cert_subjects_to_stack(cctx->canames, value);
565 static int cmd_ClientCAPath(SSL_CONF_CTX *cctx, const char *value)
567     return cmd_RequestCAPath(cctx, value);
570 static int cmd_RequestCAStore(SSL_CONF_CTX *cctx, const char *value)
576     return SSL_add_store_cert_subjects_to_stack(cctx->canames, value);
579 static int cmd_ClientCAStore(SSL_CONF_CTX *cctx, const char *value)
581     return cmd_RequestCAStore(cctx, value);
584 static int cmd_DHParameters(SSL_CONF_CTX *cctx, const char *value)
596         if (BIO_read_filename(in, value) <= 0)
634 static int cmd_RecordPadding(SSL_CONF_CTX *cctx, const char *value)
637     int block_size = atoi(value);
640      * All we care about is a non-negative value,
653 static int cmd_NumTickets(SSL_CONF_CTX *cctx, const char *value)
656     int num_tickets = atoi(value);
668     int (*cmd) (SSL_CONF_CTX *cctx, const char *value);
882 int SSL_CONF_cmd(SSL_CONF_CTX *cctx, const char *cmd, const char *value)
900         if (value == NULL)
902         rv = runcmd->cmd(cctx, value);
909                            "cmd=%s, value=%s", cmd, value);

Indexes created Thu Nov 07 10:32:03 CST 2024