OpenVPN
crypto_openssl.h
Go to the documentation of this file.
1 /*
2  * OpenVPN -- An application to securely tunnel IP networks
3  * over a single TCP/UDP port, with support for SSL/TLS-based
4  * session authentication and key exchange,
5  * packet encryption, packet authentication, and
6  * packet compression.
7  *
8  * Copyright (C) 2002-2021 OpenVPN Inc <sales@openvpn.net>
9  * Copyright (C) 2010-2021 Fox Crypto B.V. <openvpn@foxcrypto.com>
10  *
11  * This program is free software; you can redistribute it and/or modify
12  * it under the terms of the GNU General Public License version 2
13  * as published by the Free Software Foundation.
14  *
15  * This program is distributed in the hope that it will be useful,
16  * but WITHOUT ANY WARRANTY; without even the implied warranty of
17  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18  * GNU General Public License for more details.
19  *
20  * You should have received a copy of the GNU General Public License along
21  * with this program; if not, write to the Free Software Foundation, Inc.,
22  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
23  */
24 
29 #ifndef CRYPTO_OPENSSL_H_
30 #define CRYPTO_OPENSSL_H_
31 
32 #include <openssl/evp.h>
33 #include <openssl/hmac.h>
34 #include <openssl/md5.h>
35 #include <openssl/sha.h>
36 
38 typedef EVP_CIPHER cipher_kt_t;
39 
41 typedef EVP_MD md_kt_t;
42 
44 typedef EVP_CIPHER_CTX cipher_ctx_t;
45 
47 typedef EVP_MD_CTX md_ctx_t;
48 
50 typedef HMAC_CTX hmac_ctx_t;
51 
53 #define OPENVPN_MAX_IV_LENGTH EVP_MAX_IV_LENGTH
54 
56 #define OPENVPN_MODE_CBC EVP_CIPH_CBC_MODE
57 
59 #define OPENVPN_MODE_OFB EVP_CIPH_OFB_MODE
60 
62 #define OPENVPN_MODE_CFB EVP_CIPH_CFB_MODE
63 
65 #define OPENVPN_MODE_GCM EVP_CIPH_GCM_MODE
66 
68 #define OPENVPN_OP_ENCRYPT 1
69 
71 #define OPENVPN_OP_DECRYPT 0
72 
73 #define DES_KEY_LENGTH 8
74 #define MD4_DIGEST_LENGTH 16
75 
83 void crypto_print_openssl_errors(const unsigned int flags);
84 
94 #define crypto_msg(flags, ...) \
95  do { \
96  crypto_print_openssl_errors(nonfatal(flags)); \
97  msg((flags), __VA_ARGS__); \
98  } while (false)
99 
100 static inline bool
101 cipher_kt_var_key_size(const cipher_kt_t *cipher)
102 {
103  return EVP_CIPHER_flags(cipher) & EVP_CIPH_VARIABLE_LENGTH;
104 }
105 
115 EVP_PKEY *
116 engine_load_key(const char *file, SSL_CTX *ctx);
117 
118 #endif /* CRYPTO_OPENSSL_H_ */
md_ctx_t
EVP_MD_CTX md_ctx_t
Generic message digest context.
Definition: crypto_openssl.h:47
md_kt_t
EVP_MD md_kt_t
Generic message digest key type context.
Definition: crypto_openssl.h:41
flags
list flags
Definition: .ycm_extra_conf.py:4
cipher_kt_t
mbedtls_cipher_info_t cipher_kt_t
Generic cipher key type context.
Definition: crypto_mbedtls.h:37
hmac_ctx_t
HMAC_CTX hmac_ctx_t
Generic HMAC context.
Definition: crypto_openssl.h:50
cipher_kt_t
EVP_CIPHER cipher_kt_t
Generic cipher key type context.
Definition: crypto_openssl.h:38
crypto_print_openssl_errors
void crypto_print_openssl_errors(const unsigned int flags)
Retrieve any occurred OpenSSL errors and print those errors.
Definition: crypto_openssl.c:202
cipher_ctx_t
EVP_CIPHER_CTX cipher_ctx_t
Generic cipher context.
Definition: crypto_openssl.h:44
cipher_kt_var_key_size
static bool cipher_kt_var_key_size(const cipher_kt_t *cipher)
Definition: crypto_openssl.h:101
engine_load_key
EVP_PKEY * engine_load_key(const char *file, SSL_CTX *ctx)
Load a key file from an engine.
Definition: crypto_openssl.c:1098
Generated by   doxygen 1.8.13