Add support for application defined signature algorithms for use with

TLS v1.2. These are sent as an extension for clients and during a certificate request for servers. TODO: add support for shared signature algorithms, respect shared algorithms when deciding which ciphersuites and certificates to permit. (backport from HEAD)
author: Dr. Stephen Henson <steve@openssl.org> 2012-12-26 14:25:29 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2012-12-26 14:25:29 +0000
commit: 0b362de5f57547b31eddef5f8a0d298c4b7e0fd3 (patch)
tree: d46bf3897439c4a2f0246c0be2f1ae89f1f1c5ea /ssl/tls1.h
parent: d312f7be37622aa478a323adc26f7e1ab30d86ec (diff)
1 files changed, 8 insertions, 0 deletions
diff --git a/ssl/tls1.h b/ssl/tls1.h
index dd1b4fb22d..2f6a34c481 100644
--- a/ssl/tls1.h
+++ b/ssl/tls1.h
@@ -267,6 +267,9 @@ extern "C" {
 #define TLSEXT_signature_dsa				2
 #define TLSEXT_signature_ecdsa				3
 
+/* Total number of different signature algorithms */
+#define TLSEXT_signature_num				4
+
 #define TLSEXT_hash_none				0
 #define TLSEXT_hash_md5					1
 #define TLSEXT_hash_sha1				2
@@ -274,6 +277,11 @@ extern "C" {
 #define TLSEXT_hash_sha256				4
 #define TLSEXT_hash_sha384				5
 #define TLSEXT_hash_sha512				6
+
+/* Total number of different digest algorithms */
+
+#define TLSEXT_hash_num					7
+
 /* Flag set for unrecognised algorithms */
 #define TLSEXT_nid_unknown				0x1000000
author	Dr. Stephen Henson <steve@openssl.org>	2012-12-26 14:25:29 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2012-12-26 14:25:29 +0000
commit	0b362de5f57547b31eddef5f8a0d298c4b7e0fd3 (patch)
tree	d46bf3897439c4a2f0246c0be2f1ae89f1f1c5ea /ssl/tls1.h
parent	d312f7be37622aa478a323adc26f7e1ab30d86ec (diff)