OpenVPN
Data Fields
tls_options Struct Reference

#include <ssl_common.h>

Collaboration diagram for tls_options:
Collaboration graph
[legend]

Data Fields

struct tls_root_ctx ssl_ctx
 
struct key_type key_type
 
bool server
 
bool xmit_hold
 
const char * local_options
 
const char * remote_options
 
int key_method
 
bool replay
 
bool single_session
 
bool disable_occ
 
int mode
 
bool pull
 
int transition_window
 
int handshake_window
 
interval_t packet_timeout
 
int renegotiate_bytes
 
int renegotiate_packets
 
interval_t renegotiate_seconds
 
const char * verify_command
 
const char * verify_export_cert
 
int verify_x509_type
 
const char * verify_x509_name
 
const char * crl_file
 
const char * crl_file_inline
 
int ns_cert_type
 
unsigned remote_cert_ku [MAX_PARMS]
 
const char * remote_cert_eku
 
uint8_tverify_hash
 
hash_algo_type verify_hash_algo
 
char * x509_username_field
 
bool pass_config_info
 
unsigned int crypto_flags
 
int replay_window
 
int replay_time
 
bool tcp_mode
 
const char * config_ciphername
 
const char * config_authname
 
bool ncp_enabled
 
struct tls_wrap_ctx tls_wrap
 TLS handshake wrapping state. More...
 
struct frame frame
 
const char * auth_user_pass_verify_script
 
bool auth_user_pass_verify_script_via_file
 
const char * tmp_dir
 
const char * auth_user_pass_file
 
bool auth_token_generate
 Generate auth-tokens on successful user/pass auth, set via options->auth_token_generate. More...
 
unsigned int auth_token_lifetime
 
const char * client_config_dir_exclusive
 
struct env_setes
 
const struct plugin_listplugins
 
unsigned int ssl_flags
 
const struct x509_trackx509_track
 
int gremlin
 
const char * ekm_label
 
size_t ekm_label_size
 
size_t ekm_size
 

Detailed Description

Definition at line 235 of file ssl_common.h.

Field Documentation

◆ auth_token_generate

bool tls_options::auth_token_generate

Generate auth-tokens on successful user/pass auth, set via options->auth_token_generate.

Definition at line 315 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_user_pass().

◆ auth_token_lifetime

unsigned int tls_options::auth_token_lifetime

Definition at line 317 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_user_pass().

◆ auth_user_pass_file

const char* tls_options::auth_user_pass_file

Definition at line 314 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and key_method_2_write().

◆ auth_user_pass_verify_script

const char* tls_options::auth_user_pass_verify_script

◆ auth_user_pass_verify_script_via_file

bool tls_options::auth_user_pass_verify_script_via_file

Definition at line 312 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_user_pass_script().

◆ client_config_dir_exclusive

const char* tls_options::client_config_dir_exclusive

Definition at line 320 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_final_auth_checks().

◆ config_authname

const char* tls_options::config_authname

Definition at line 301 of file ssl_common.h.

Referenced by do_init_crypto_tls().

◆ config_ciphername

const char* tls_options::config_ciphername

◆ crl_file

const char* tls_options::crl_file

Definition at line 280 of file ssl_common.h.

Referenced by do_init_crypto_tls(), tls_process(), tls_verify_crl_missing(), and verify_cert().

◆ crl_file_inline

const char* tls_options::crl_file_inline

Definition at line 281 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and tls_process().

◆ crypto_flags

unsigned int tls_options::crypto_flags

◆ disable_occ

bool tls_options::disable_occ

Definition at line 261 of file ssl_common.h.

Referenced by do_init_crypto_tls(), key_method_1_read(), and key_method_2_read().

◆ ekm_label

const char* tls_options::ekm_label

Definition at line 358 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and key_state_export_keying_material().

◆ ekm_label_size

size_t tls_options::ekm_label_size

Definition at line 359 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and key_state_export_keying_material().

◆ ekm_size

size_t tls_options::ekm_size

Definition at line 360 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and key_state_export_keying_material().

◆ es

struct env_set* tls_options::es

◆ frame

struct frame tls_options::frame

◆ gremlin

int tls_options::gremlin

Definition at line 355 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and tls_multi_process().

◆ handshake_window

int tls_options::handshake_window

Definition at line 269 of file ssl_common.h.

Referenced by auth_deferred_expire_window(), do_init_crypto_tls(), and tls_process().

◆ key_method

int tls_options::key_method

◆ key_type

struct key_type tls_options::key_type

◆ local_options

const char* tls_options::local_options

Definition at line 252 of file ssl_common.h.

Referenced by local_options_string(), and tls_multi_init_set_options().

◆ mode

int tls_options::mode

Definition at line 263 of file ssl_common.h.

Referenced by do_init_crypto_tls(), key_method_2_write(), and push_peer_info().

◆ ncp_enabled

bool tls_options::ncp_enabled

◆ ns_cert_type

int tls_options::ns_cert_type

Definition at line 282 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_peer_cert().

◆ packet_timeout

interval_t tls_options::packet_timeout

Definition at line 270 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and key_state_init().

◆ pass_config_info

bool tls_options::pass_config_info

Definition at line 291 of file ssl_common.h.

◆ plugins

const struct plugin_list* tls_options::plugins

◆ pull

bool tls_options::pull

Definition at line 264 of file ssl_common.h.

Referenced by do_init_crypto_tls(), key_method_2_read(), and push_peer_info().

◆ remote_cert_eku

const char* tls_options::remote_cert_eku

Definition at line 284 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_peer_cert().

◆ remote_cert_ku

unsigned tls_options::remote_cert_ku[MAX_PARMS]

Definition at line 283 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_peer_cert().

◆ remote_options

const char* tls_options::remote_options

Definition at line 253 of file ssl_common.h.

Referenced by key_method_1_read(), key_method_2_read(), and tls_multi_init_set_options().

◆ renegotiate_bytes

int tls_options::renegotiate_bytes

◆ renegotiate_packets

int tls_options::renegotiate_packets

Definition at line 272 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and tls_process().

◆ renegotiate_seconds

interval_t tls_options::renegotiate_seconds

Definition at line 273 of file ssl_common.h.

Referenced by auth_deferred_expire_window(), do_init_crypto_tls(), and tls_process().

◆ replay

bool tls_options::replay

Definition at line 258 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and key_state_init().

◆ replay_time

int tls_options::replay_time

Definition at line 297 of file ssl_common.h.

Referenced by do_init_crypto_tls(), key_state_init(), and tls_session_init().

◆ replay_window

int tls_options::replay_window

Definition at line 296 of file ssl_common.h.

Referenced by do_init_crypto_tls(), key_state_init(), and tls_session_init().

◆ server

bool tls_options::server

◆ single_session

bool tls_options::single_session

◆ ssl_ctx

struct tls_root_ctx tls_options::ssl_ctx

◆ ssl_flags

unsigned int tls_options::ssl_flags

◆ tcp_mode

bool tls_options::tcp_mode

Definition at line 298 of file ssl_common.h.

Referenced by do_init_crypto_tls().

◆ tls_wrap

struct tls_wrap_ctx tls_options::tls_wrap

TLS handshake wrapping state.

Definition at line 305 of file ssl_common.h.

Referenced by do_init_crypto_tls(), tls_auth_standalone_init(), and tls_session_init().

◆ tmp_dir

const char* tls_options::tmp_dir

Definition at line 313 of file ssl_common.h.

Referenced by do_init_crypto_tls(), verify_cert(), and verify_user_pass_script().

◆ transition_window

int tls_options::transition_window

Definition at line 268 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and key_state_soft_reset().

◆ verify_command

const char* tls_options::verify_command

Definition at line 276 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_cert().

◆ verify_export_cert

const char* tls_options::verify_export_cert

Definition at line 277 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_cert().

◆ verify_hash

uint8_t* tls_options::verify_hash

Definition at line 285 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_cert().

◆ verify_hash_algo

hash_algo_type tls_options::verify_hash_algo

Definition at line 286 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_cert().

◆ verify_x509_name

const char* tls_options::verify_x509_name

Definition at line 279 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_peer_cert().

◆ verify_x509_type

int tls_options::verify_x509_type

Definition at line 278 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_peer_cert().

◆ x509_track

const struct x509_track* tls_options::x509_track

Definition at line 348 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_cert().

◆ x509_username_field

char* tls_options::x509_username_field

Definition at line 287 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and verify_cert().

◆ xmit_hold

bool tls_options::xmit_hold

Definition at line 247 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and key_state_init().


The documentation for this struct was generated from the following file: