From 400df4ca7c659d2f371129d18c6dedf82840c2ea Mon Sep 17 00:00:00 2001
From: Martin Willi <martin@revosec.ch>
Date: Tue, 9 Feb 2010 18:19:25 +0100
Subject: Implemented EAP-TLS server functionality

---
 src/charon/plugins/eap_tls/tls/tls_crypto.h | 15 +++++++++++++--
 1 file changed, 13 insertions(+), 2 deletions(-)

(limited to 'src/charon/plugins/eap_tls/tls/tls_crypto.h')

diff --git a/src/charon/plugins/eap_tls/tls/tls_crypto.h b/src/charon/plugins/eap_tls/tls/tls_crypto.h
index 49bc09c99..69b8da742 100644
--- a/src/charon/plugins/eap_tls/tls/tls_crypto.h
+++ b/src/charon/plugins/eap_tls/tls/tls_crypto.h
@@ -116,10 +116,21 @@ struct tls_crypto_t {
 	 * Create a signature of the handshake data using a given private key.
 	 *
 	 * @param key			private key to use for signature
-	 * @param sig			allocated signature
+	 * @param writer		TLS writer to write signature to
 	 * @return				TRUE if signature create successfully
 	 */
-	bool (*sign_handshake)(tls_crypto_t *this, private_key_t *key, chunk_t *sig);
+	bool (*sign_handshake)(tls_crypto_t *this, private_key_t *key,
+						   tls_writer_t *writer);
+
+	/**
+	 * Verify the signature over handshake data using a given public key.
+	 *
+	 * @param key			public key to verify signature with
+	 * @param reader		TLS reader to read signature from
+	 * @return				TRUE if signature valid
+	 */
+	bool (*verify_handshake)(tls_crypto_t *this, public_key_t *key,
+							 tls_reader_t *reader);
 
 	/**
 	 * Calculate the data of a TLS finished message.
-- 
cgit v1.2.3