Remove SSL_get_peer_signature_nid and don't compute digests for peer_key.

This is new in OpenSSL 1.0.2 so it isn't used anywhere. Cuts down slightly on connection-global state associated with signature algorithm processing. Repurposing the digest field to mean both "the digest we choose to sign with this key" and "the digest the last signature we saw happened to use" is confusing. Change-Id: Iec4d5078c33e271c8c7b0ab221c356ee8480b89d Reviewed-on: https://boringssl-review.googlesource.com/2281 Reviewed-by: Adam Langley <agl@google.com>
author: David Benjamin <davidben@chromium.org> 2014-11-13 22:51:02 +0300
committer: Adam Langley <agl@google.com> 2014-11-19 01:18:54 +0300
commit: 248f350ed8633ebd1632942c51d51fa74529b4aa (patch)
tree: b952f18e564019da48e10017fdb1c485ed26ebe1 /ssl/s3_lib.c
parent: c20febe17747674ede52072e85fb944cd55637a6 (diff)
1 files changed, 0 insertions, 19 deletions
diff --git a/ssl/s3_lib.c b/ssl/s3_lib.c
index fc92b8ad..0c7307ac 100644
--- a/ssl/s3_lib.c
+++ b/ssl/s3_lib.c
@@ -1358,25 +1358,6 @@ long ssl3_ctrl(SSL *s, int cmd, long larg, void *parg)
 	case SSL_CTRL_SET_CHAIN_CERT_STORE:
 		return ssl_cert_set_cert_store(s->cert, parg, 1, larg);
 
-	case SSL_CTRL_GET_PEER_SIGNATURE_NID:
-		if (SSL_USE_SIGALGS(s))
-			{
-			if (s->session && s->session->sess_cert)
-				{
-				const EVP_MD *sig;
-				sig = s->session->sess_cert->peer_key->digest;
-				if (sig)
-					{
-					*(int *)parg = EVP_MD_type(sig);
-					return 1;
-					}
-				}
-			return 0;
-			}
-		/* Might want to do something here for other versions */
-		else
-			return 0;
-
 	case SSL_CTRL_GET_SERVER_TMP_KEY:
 		if (s->server || !s->session || !s->session->sess_cert)
 			return 0;
author	David Benjamin <davidben@chromium.org>	2014-11-13 22:51:02 +0300
committer	Adam Langley <agl@google.com>	2014-11-19 01:18:54 +0300
commit	248f350ed8633ebd1632942c51d51fa74529b4aa (patch)
tree	b952f18e564019da48e10017fdb1c485ed26ebe1 /ssl/s3_lib.c
parent	c20febe17747674ede52072e85fb944cd55637a6 (diff)