Add client cert engine to SSL routines.

author: Dr. Stephen Henson <steve@openssl.org> 2008-06-01 22:33:24 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2008-06-01 22:33:24 +0000
commit: 368888bcb6192b96638c3d6dd706103be52eac89 (patch)
tree: 8dd1f0a48976e76117fdb806cec27f76917f7c07 /ssl/ssl_sess.c
parent: eafd6e5110b2e180ee449ac3bfb16952aa55a664 (diff)
1 files changed, 22 insertions, 0 deletions
diff --git a/ssl/ssl_sess.c b/ssl/ssl_sess.c
index 33d302aa41..12cc486b1b 100644
--- a/ssl/ssl_sess.c
+++ b/ssl/ssl_sess.c
@@ -138,6 +138,9 @@
 #include <stdio.h>
 #include <openssl/lhash.h>
 #include <openssl/rand.h>
+#ifndef OPENSSL_NO_ENGINE
+#include <openssl/engine.h>
+#endif
 #include "ssl_locl.h"
 
 static void SSL_SESSION_list_remove(SSL_CTX *ctx, SSL_SESSION *s);
@@ -998,6 +1001,25 @@ int (*SSL_CTX_get_client_cert_cb(SSL_CTX *ctx))(SSL * ssl, X509 ** x509 , EVP_PK
 	return ctx->client_cert_cb;
 	}
 
+#ifndef OPENSSL_NO_ENGINE
+int SSL_CTX_set_client_cert_engine(SSL_CTX *ctx, ENGINE *e)
+	{
+	if (!ENGINE_init(e))
+		{
+		SSLerr(SSL_F_SSL_CTX_SET_CLIENT_CERT_ENGINE, ERR_R_ENGINE_LIB);
+		return 0;
+		}
+	if(!ENGINE_get_ssl_client_cert_function(e))
+		{
+		SSLerr(SSL_F_SSL_CTX_SET_CLIENT_CERT_ENGINE, SSL_R_NO_CLIENT_CERT_METHOD);
+		ENGINE_finish(e);
+		return 0;
+		}
+	ctx->client_cert_engine = e;
+	return 1;
+	}
+#endif
+
 void SSL_CTX_set_cookie_generate_cb(SSL_CTX *ctx,
 	int (*cb)(SSL *ssl, unsigned char *cookie, unsigned int *cookie_len))
 	{
author	Dr. Stephen Henson <steve@openssl.org>	2008-06-01 22:33:24 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2008-06-01 22:33:24 +0000
commit	368888bcb6192b96638c3d6dd706103be52eac89 (patch)
tree	8dd1f0a48976e76117fdb806cec27f76917f7c07 /ssl/ssl_sess.c
parent	eafd6e5110b2e180ee449ac3bfb16952aa55a664 (diff)