diff options
author | Nick Mathewson <nickm@torproject.org> | 2013-11-18 11:12:24 -0500 |
---|---|---|
committer | Nick Mathewson <nickm@torproject.org> | 2013-11-18 11:12:24 -0500 |
commit | 84458b79a78ea7e26820bf09a3b916acf59a62f3 (patch) | |
tree | 0d0acfb83a7da7df47625e086e14fea0fa4f9778 | |
parent | fe0d1c666135cab1a06ff12e7e954efb17b08aef (diff) | |
download | tor-84458b79a78ea7e26820bf09a3b916acf59a62f3.tar.gz tor-84458b79a78ea7e26820bf09a3b916acf59a62f3.zip |
Log more OpenSSL engine statuses at startup.
Fixes ticket 10043; patch from Joshua Datko.
-rw-r--r-- | changes/ticket10043 | 4 | ||||
-rw-r--r-- | src/common/crypto.c | 14 |
2 files changed, 16 insertions, 2 deletions
diff --git a/changes/ticket10043 b/changes/ticket10043 new file mode 100644 index 0000000000..21541bedbb --- /dev/null +++ b/changes/ticket10043 @@ -0,0 +1,4 @@ + o Minor features: + - When logging OpenSSL engine status at startup, log the status of + more engines. Fixes ticket 10043; patch from Joshua Datko. + diff --git a/src/common/crypto.c b/src/common/crypto.c index c1a2f33935..cbe992ef4e 100644 --- a/src/common/crypto.c +++ b/src/common/crypto.c @@ -307,12 +307,22 @@ crypto_global_init(int useAccel, const char *accelName, const char *accelDir) " setting default ciphers."); ENGINE_set_default(e, ENGINE_METHOD_ALL); } + /* Log, if available, the intersection of the set of algorithms + used by Tor and the set of algorithms available in the engine */ log_engine("RSA", ENGINE_get_default_RSA()); log_engine("DH", ENGINE_get_default_DH()); + log_engine("ECDH", ENGINE_get_default_ECDH()); + log_engine("ECDSA", ENGINE_get_default_ECDSA()); log_engine("RAND", ENGINE_get_default_RAND()); log_engine("SHA1", ENGINE_get_digest_engine(NID_sha1)); - log_engine("3DES", ENGINE_get_cipher_engine(NID_des_ede3_ecb)); - log_engine("AES", ENGINE_get_cipher_engine(NID_aes_128_ecb)); + log_engine("3DES-CBC", ENGINE_get_cipher_engine(NID_des_ede3_cbc)); + log_engine("AES-128-ECB", ENGINE_get_cipher_engine(NID_aes_128_ecb)); + log_engine("AES-128-CBC", ENGINE_get_cipher_engine(NID_aes_128_cbc)); + log_engine("AES-128-CTR", ENGINE_get_cipher_engine(NID_aes_128_ctr)); + log_engine("AES-128-GCM", ENGINE_get_cipher_engine(NID_aes_128_gcm)); + log_engine("AES-256-CBC", ENGINE_get_cipher_engine(NID_aes_256_cbc)); + log_engine("AES-256-GCM", ENGINE_get_cipher_engine(NID_aes_256_gcm)); + #endif } else { log_info(LD_CRYPTO, "NOT using OpenSSL engine support."); |