Security parameter state for processing data channel packets. More...
#include <crypto.h>
Data Fields | |
| struct key_ctx_bi | key_ctx_bi |
| OpenSSL cipher and HMAC contexts for both sending and receiving directions. More... | |
| struct packet_id | packet_id |
| Current packet ID state for both sending and receiving directions. More... | |
| struct packet_id_persist * | pid_persist |
| Persistent packet ID state for keeping state between successive OpenVPN process startups. More... | |
| unsigned int | flags |
| Bit-flags determining behavior of security operation functions. More... | |
Detailed Description
Security parameter state for processing data channel packets.
Field Documentation
◆ flags
| unsigned int crypto_options::flags |
Bit-flags determining behavior of security operation functions.
Definition at line 283 of file crypto.h.
Referenced by cc_exit_notify_enabled(), control_packet_needs_wkc(), crypto_check_replay(), do_init_crypto_static(), do_init_crypto_tls(), do_pre_decrypt_check(), init_tas_auth(), init_tas_crypt(), openvpn_decrypt_v1(), openvpn_encrypt_v1(), parse_early_negotiation_tlvs(), tls_auth_standalone_init(), tls_crypt_ignore_replay(), tls_crypt_unwrap(), tls_crypt_v2_extract_client_key(), and tls_session_generate_data_channel_keys().
◆ key_ctx_bi
| struct key_ctx_bi crypto_options::key_ctx_bi |
OpenSSL cipher and HMAC contexts for both sending and receiving directions.
Definition at line 232 of file crypto.h.
Referenced by do_init_crypto_static(), do_init_crypto_tls(), free_tas(), free_tls_pre_decrypt_state(), generate_key_expansion(), handle_data_channel_packet(), init_key_contexts(), init_tas_auth(), init_tas_crypt(), key_state_free(), multi_client_set_protocol_options(), openvpn_decrypt(), openvpn_decrypt_aead(), openvpn_decrypt_v1(), openvpn_encrypt(), openvpn_encrypt_aead(), openvpn_encrypt_v1(), swap_hmac(), test_crypto(), test_tls_crypt_setup(), test_tls_crypt_teardown(), test_tls_decrypt_lite_auth(), test_tls_decrypt_lite_crypt(), tls_crypt_fail_invalid_key(), tls_crypt_unwrap(), tls_crypt_v2_extract_client_key(), tls_crypt_wrap(), tls_select_encryption_key(), and tls_wrap_free().
◆ packet_id
| struct packet_id crypto_options::packet_id |
Current packet ID state for both sending and receiving directions.
This contains the packet id that is used for replay protection.
The packet id also used as the IV for AEAD/OFB/CFG ciphers.
Definition at line 236 of file crypto.h.
Referenced by crypto_check_replay(), do_close_packet_id(), do_init_crypto_static(), key_state_free(), key_state_init(), openvpn_decrypt_aead(), openvpn_decrypt_v1(), openvpn_encrypt_aead(), openvpn_encrypt_v1(), send_hmac_reset_packet(), test_crypto_thread(), test_generate_reset_packet_tls_auth(), test_tls_crypt_setup(), tls_auth_standalone_free(), tls_auth_standalone_init(), tls_crypt_unwrap(), tls_crypt_wrap(), tls_process(), and tls_wrap_free().
◆ pid_persist
| struct packet_id_persist* crypto_options::pid_persist |
Persistent packet ID state for keeping state between successive OpenVPN process startups.
Definition at line 245 of file crypto.h.
Referenced by crypto_check_replay(), do_init_crypto_static(), do_init_crypto_tls(), and key_state_init().
The documentation for this struct was generated from the following file:
- src/openvpn/crypto.h
