OpenVPN
Public Types | Data Fields
tls_wrap_ctx Struct Reference

Control channel wrapping (–tls-auth/–tls-crypt) context. More...

#include <ssl_common.h>

Collaboration diagram for tls_wrap_ctx:
Collaboration graph
[legend]

Public Types

enum  { TLS_WRAP_NONE = 0, TLS_WRAP_AUTH, TLS_WRAP_CRYPT }
 

Data Fields

enum tls_wrap_ctx:: { ... }  mode
 Control channel wrapping mode. More...
 
struct crypto_options opt
 Crypto state. More...
 
struct buffer work
 Work buffer (only for –tls-crypt) More...
 
struct key_ctx tls_crypt_v2_server_key
 Decrypts client keys. More...
 
const struct buffertls_crypt_v2_wkc
 Wrapped client key, sent to server. More...
 
struct buffer tls_crypt_v2_metadata
 Received from client. More...
 
bool cleanup_key_ctx
 opt.key_ctx_bi is owned by this context More...
 

Detailed Description

Control channel wrapping (–tls-auth/–tls-crypt) context.

Definition at line 220 of file ssl_common.h.

Member Enumeration Documentation

◆ anonymous enum

anonymous enum
Enumerator
TLS_WRAP_NONE 

No control channel wrapping.

TLS_WRAP_AUTH 

Control channel authentication.

TLS_WRAP_CRYPT 

Control channel encryption and authentication.

Definition at line 222 of file ssl_common.h.

Field Documentation

◆ cleanup_key_ctx

bool tls_wrap_ctx::cleanup_key_ctx

opt.key_ctx_bi is owned by this context

Definition at line 233 of file ssl_common.h.

Referenced by tls_crypt_v2_extract_client_key(), tls_pre_decrypt_lite(), and tls_wrap_free().

◆ mode

enum { ... } tls_wrap_ctx::mode

◆ opt

struct crypto_options tls_wrap_ctx::opt

◆ tls_crypt_v2_metadata

struct buffer tls_wrap_ctx::tls_crypt_v2_metadata

Received from client.

Definition at line 232 of file ssl_common.h.

Referenced by tls_crypt_v2_extract_client_key(), tls_crypt_v2_verify_metadata(), tls_pre_decrypt_lite(), and tls_wrap_free().

◆ tls_crypt_v2_server_key

struct key_ctx tls_wrap_ctx::tls_crypt_v2_server_key

Decrypts client keys.

Definition at line 229 of file ssl_common.h.

Referenced by do_init_crypto_tls(), read_control_auth(), and tls_crypt_v2_extract_client_key().

◆ tls_crypt_v2_wkc

const struct buffer* tls_wrap_ctx::tls_crypt_v2_wkc

Wrapped client key, sent to server.

Definition at line 230 of file ssl_common.h.

Referenced by do_init_crypto_tls(), and write_control_auth().

◆ work

struct buffer tls_wrap_ctx::work

Work buffer (only for –tls-crypt)

Definition at line 228 of file ssl_common.h.

Referenced by tls_session_init(), tls_wrap_free(), and write_control_auth().


The documentation for this struct was generated from the following file: