Backport more ENGINE SSL client auth code to 0.9.8.

author: Dr. Stephen Henson <steve@openssl.org> 2008-06-04 18:35:27 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2008-06-04 18:35:27 +0000
commit: 4aefb1dd984bcc93475de2608be5bd7d567910b5 (patch)
tree: 97e8b71041f384a5ec4d4fd25c13f360bdd721ba /ssl/ssl_sess.c
parent: aa03989791edb8c724b18aba7ac6355e5f7ed74a (diff)
1 files changed, 22 insertions, 0 deletions
diff --git a/ssl/ssl_sess.c b/ssl/ssl_sess.c
index ee88be2b88..8391d62212 100644
--- a/ssl/ssl_sess.c
+++ b/ssl/ssl_sess.c
@@ -59,6 +59,9 @@
 #include <stdio.h>
 #include <openssl/lhash.h>
 #include <openssl/rand.h>
+#ifndef OPENSSL_NO_ENGINE
+#include <openssl/engine.h>
+#endif
 #include "ssl_locl.h"
 
 static void SSL_SESSION_list_remove(SSL_CTX *ctx, SSL_SESSION *s);
@@ -870,6 +873,25 @@ int (*SSL_CTX_get_client_cert_cb(SSL_CTX *ctx))(SSL * ssl, X509 ** x509 , EVP_PK
 	return ctx->client_cert_cb;
 	}
 
+#ifndef OPENSSL_NO_ENGINE
+int SSL_CTX_set_client_cert_engine(SSL_CTX *ctx, ENGINE *e)
+	{
+	if (!ENGINE_init(e))
+		{
+		SSLerr(SSL_F_SSL_CTX_SET_CLIENT_CERT_ENGINE, ERR_R_ENGINE_LIB);
+		return 0;
+		}
+	if(!ENGINE_get_ssl_client_cert_function(e))
+		{
+		SSLerr(SSL_F_SSL_CTX_SET_CLIENT_CERT_ENGINE, SSL_R_NO_CLIENT_CERT_METHOD);
+		ENGINE_finish(e);
+		return 0;
+		}
+	ctx->client_cert_engine = e;
+	return 1;
+	}
+#endif
+
 void SSL_CTX_set_cookie_generate_cb(SSL_CTX *ctx,
 	int (*cb)(SSL *ssl, unsigned char *cookie, unsigned int *cookie_len))
 	{
author	Dr. Stephen Henson <steve@openssl.org>	2008-06-04 18:35:27 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2008-06-04 18:35:27 +0000
commit	4aefb1dd984bcc93475de2608be5bd7d567910b5 (patch)
tree	97e8b71041f384a5ec4d4fd25c13f360bdd721ba /ssl/ssl_sess.c
parent	aa03989791edb8c724b18aba7ac6355e5f7ed74a (diff)