diff options
author | Adriaan de Jong <dejong@fox-it.com> | 2011-06-29 16:30:38 +0200 |
---|---|---|
committer | David Sommerseth <davids@redhat.com> | 2011-10-19 22:31:46 +0200 |
commit | b5563f1154a4a4e1d4742b7194e4974a3b53b78f (patch) | |
tree | 1a42b4a1ee18a38c67db8cf6f0c9682322a309e4 /ssl_backend.h | |
parent | ac3e8d62ba14d4ee376fd3c9f20bccc3e53e7371 (diff) | |
download | openvpn-b5563f1154a4a4e1d4742b7194e4974a3b53b78f.tar.gz openvpn-b5563f1154a4a4e1d4742b7194e4974a3b53b78f.tar.xz openvpn-b5563f1154a4a4e1d4742b7194e4974a3b53b78f.zip |
Refactored root TLS option settings
- Started merge of new feature (x509_altnames), will continue in a
future patch
Signed-off-by: Adriaan de Jong <dejong@fox-it.com>
Acked-by: Gert Doering <gert@greenie.muc.de>
Signed-off-by: David Sommerseth <davids@redhat.com>
Diffstat (limited to 'ssl_backend.h')
-rw-r--r-- | ssl_backend.h | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/ssl_backend.h b/ssl_backend.h index d974279..f3f7202 100644 --- a/ssl_backend.h +++ b/ssl_backend.h @@ -43,6 +43,17 @@ * Functions implemented in ssl.c for use by the backend SSL library * */ + +/** + * Callback to retrieve the user's password + * + * @param buf Buffer to return the password in + * @param size Size of the buffer + * @param rwflag Unused, needed for OpenSSL compatibility + * @param u Unused, needed for OpenSSL compatibility + */ +int pem_password_callback (char *buf, int size, int rwflag, void *u); + /* * * Functions used in ssl.c which must be implemented by the backend SSL library @@ -95,6 +106,17 @@ void tls_ctx_free(struct tls_root_ctx *ctx); bool tls_ctx_initialised(struct tls_root_ctx *ctx); /** + * Set any library specific options. + * + * Examples include disabling session caching, the password callback to use, + * and session verification parameters. + * + * @param ctx TLS context to set options on + * @param ssl_flags SSL flags to set + */ +void tls_ctx_set_options (struct tls_root_ctx *ctx, unsigned int ssl_flags); + +/* * Load Diffie Hellman Parameters, and load them into the library-specific * TLS context. * |