diff options
| author | Joel Sing <jsing@cvs.openbsd.org> | 2016-08-22 14:56:00 +0000 |
|---|---|---|
| committer | Joel Sing <jsing@cvs.openbsd.org> | 2016-08-22 14:56:00 +0000 |
| commit | 46831400e57220bc21374209a8c171ea715ce269 (patch) | |
| tree | a8f7789e6acef99330639d391e301625f793b487 /lib/libtls/tls_conninfo.c | |
| parent | ac71baeab4adecbe7281786561cf09110ca5ee32 (diff) | |
Provide an API that enables server side SNI support - add the ability to
provide additional keypairs (via tls_config_add_keypair_{file,mem}()) and
allow the server to determine what servername the client requested (via
tls_conn_servername()).
ok beck@
Diffstat (limited to 'lib/libtls/tls_conninfo.c')
| -rw-r--r-- | lib/libtls/tls_conninfo.c | 15 |
1 files changed, 14 insertions, 1 deletions
diff --git a/lib/libtls/tls_conninfo.c b/lib/libtls/tls_conninfo.c index 523b2798d36..281af798665 100644 --- a/lib/libtls/tls_conninfo.c +++ b/lib/libtls/tls_conninfo.c @@ -1,4 +1,4 @@ -/* $OpenBSD: tls_conninfo.c,v 1.9 2016/08/15 14:47:41 jsing Exp $ */ +/* $OpenBSD: tls_conninfo.c,v 1.10 2016/08/22 14:55:59 jsing Exp $ */ /* * Copyright (c) 2015 Joel Sing <jsing@openbsd.org> * Copyright (c) 2015 Bob Beck <beck@openbsd.org> @@ -199,6 +199,11 @@ tls_get_conninfo(struct tls *ctx) goto err; if (tls_conninfo_alpn_proto(ctx) == -1) goto err; + if (ctx->servername != NULL) { + if ((ctx->conninfo->servername = + strdup(ctx->servername)) == NULL) + goto err; + } return (0); err: @@ -242,6 +247,14 @@ tls_conn_cipher(struct tls *ctx) } const char * +tls_conn_servername(struct tls *ctx) +{ + if (ctx->conninfo == NULL) + return (NULL); + return (ctx->conninfo->servername); +} + +const char * tls_conn_version(struct tls *ctx) { if (ctx->conninfo == NULL) |