[or-cvs] Add prototypes for functions to check whether the peer cert...

Nick Mathewson nickm at seul.org
Wed Sep 10 00:10:39 UTC 2003


Update of /home/or/cvsroot/src/common
In directory moria.mit.edu:/tmp/cvs-serv19271/src/common

Modified Files:
	tortls.h 
Log Message:
Add prototypes for functions to check whether the peer certificate is
valid (if it is present); and to get a public key from a peer
certificate (in order to identify the peer).


Index: tortls.h
===================================================================
RCS file: /home/or/cvsroot/src/common/tortls.h,v
retrieving revision 1.3
retrieving revision 1.4
diff -u -d -r1.3 -r1.4
--- tortls.h	8 Sep 2003 10:46:19 -0000	1.3
+++ tortls.h	10 Sep 2003 00:10:37 -0000	1.4
@@ -20,15 +20,11 @@
 int tor_tls_context_new(char *certfile, crypto_pk_env_t *rsa, int isServer);
 tor_tls *tor_tls_new(int sock, int isServer);
 void tor_tls_free(tor_tls *tls);
+int tor_tls_peer_is_valid(tor_tls *tls);
+crypto_pk_env_t *tor_tls_get_peer_pk(tor_tls *tls);
 int tor_tls_read(tor_tls *tls, char *cp, int len);
 int tor_tls_write(tor_tls *tls, char *cp, int n);
 int tor_tls_handshake(tor_tls *tls);
-/* XXXX we need a function to check for validated, verified peer certs. */
-/* XXXX i would also very much like a function to tell me who i just
- * handshaked with. maybe a nickname, and from there i can look
- * up a router entry? and maybe one day a function to make sure the cert
- * doesn't disagree too much with the router entry.
- */
 int tor_tls_shutdown(tor_tls *tls);
 
 #endif



More information about the tor-commits mailing list