diff --git a/lib/mbedtls_wrapper/include/openssl/ssl.h b/lib/mbedtls_wrapper/include/openssl/ssl.h index f33b02d4..d9f8b4c9 100755 --- a/lib/mbedtls_wrapper/include/openssl/ssl.h +++ b/lib/mbedtls_wrapper/include/openssl/ssl.h @@ -1513,6 +1513,15 @@ long SSL_get_timeout(const SSL *ssl); */ int SSL_get_verify_mode(const SSL *ssl); +/** + * @brief get SSL verify parameters + * + * @param ssl - SSL point + * + * @return verify parameters + */ +X509_VERIFY_PARAM *SSL_get0_param(SSL *ssl); + /** * @brief get SSL write only IO handle * diff --git a/lib/mbedtls_wrapper/library/ssl_x509.c b/lib/mbedtls_wrapper/library/ssl_x509.c index 73f4c16c..58e7bfab 100644 --- a/lib/mbedtls_wrapper/library/ssl_x509.c +++ b/lib/mbedtls_wrapper/library/ssl_x509.c @@ -117,6 +117,15 @@ failed1: return NULL; } +/** + * @brief return SSL X509 verify parameters + */ + +X509_VERIFY_PARAM *SSL_get0_param(SSL *ssl) +{ + return &ssl->param; +} + /** * @brief set SSL context client CA certification */