From: Tobias Brunner <tobias@strongswan.org>
Date: Fri, 12 Oct 2018 08:35:04 +0000 (+0200)
Subject: private-key: Add optional method that returns supported signature schemes
X-Git-Tag: 5.7.2dr1~9^2~12
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=1c4738325db611771595dac2936821a6bab1a200;p=thirdparty%2Fstrongswan.git

private-key: Add optional method that returns supported signature schemes
---

diff --git a/src/libstrongswan/credentials/keys/private_key.h b/src/libstrongswan/credentials/keys/private_key.h
index d7cfdd74df..5cf8641ad8 100644
--- a/src/libstrongswan/credentials/keys/private_key.h
+++ b/src/libstrongswan/credentials/keys/private_key.h
@@ -39,6 +39,19 @@ struct private_key_t {
 	 */
 	key_type_t (*get_type)(private_key_t *this);
 
+	/**
+	 * Get signature schemes supported by this key.
+	 *
+	 * This is useful for keys that only support certain hash algorithms or
+	 * require specific parameters for RSA/PSS signatures.
+	 *
+	 * @note Implementing this method is optional. If multiple schemes are
+	 * returned, they should be ordered by decreasing preference.
+	 *
+	 * @return			enumerator over signature_params_t*
+	 */
+	enumerator_t *(*supported_signature_schemes)(private_key_t *this);
+
 	/**
 	 * Create a signature over a chunk of data.
 	 *