diff options
author | Nick Mathewson <nickm@torproject.org> | 2011-11-15 11:56:21 -0500 |
---|---|---|
committer | Nick Mathewson <nickm@torproject.org> | 2011-11-15 15:57:46 -0500 |
commit | 69dd993a922fcc65e931d816e1a3c916e98133f2 (patch) | |
tree | 9e9164074c7c867898fdf8ed07302e149a7901f9 /src/common/tortls.h | |
parent | 87622e4c7e1a3b5c80e67141de7947d0304b6f31 (diff) | |
download | tor-69dd993a922fcc65e931d816e1a3c916e98133f2.tar.gz tor-69dd993a922fcc65e931d816e1a3c916e98133f2.zip |
Make certificate skew into a protocol warning
Diffstat (limited to 'src/common/tortls.h')
-rw-r--r-- | src/common/tortls.h | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/src/common/tortls.h b/src/common/tortls.h index 6791586f1d..673f18dfe8 100644 --- a/src/common/tortls.h +++ b/src/common/tortls.h @@ -68,7 +68,8 @@ void tor_tls_free(tor_tls_t *tls); int tor_tls_peer_has_cert(tor_tls_t *tls); tor_cert_t *tor_tls_get_peer_cert(tor_tls_t *tls); int tor_tls_verify(int severity, tor_tls_t *tls, crypto_pk_env_t **identity); -int tor_tls_check_lifetime(tor_tls_t *tls, int past_tolerance, +int tor_tls_check_lifetime(int severity, + tor_tls_t *tls, int past_tolerance, int future_tolerance); int tor_tls_read(tor_tls_t *tls, char *cp, size_t len); int tor_tls_write(tor_tls_t *tls, const char *cp, size_t n); @@ -124,7 +125,8 @@ int tor_tls_get_my_certs(int server, crypto_pk_env_t *tor_tls_get_my_client_auth_key(void); crypto_pk_env_t *tor_tls_cert_get_key(tor_cert_t *cert); int tor_tls_cert_matches_key(const tor_tls_t *tls, const tor_cert_t *cert); -int tor_tls_cert_is_valid(const tor_cert_t *cert, +int tor_tls_cert_is_valid(int severity, + const tor_cert_t *cert, const tor_cert_t *signing_cert, int check_rsa_1024); |