Structure that wraps the TLS context. More...
#include <ssl_mbedtls.h>
Data Fields | |
| bool | initialised |
| True if the context has been initialised. More... | |
| int | endpoint |
| Whether or not this is a server or a client. More... | |
| mbedtls_dhm_context * | dhm_ctx |
| Diffie-Helmann-Merkle context. More... | |
| mbedtls_x509_crt * | crt_chain |
| Local Certificate chain. More... | |
| mbedtls_x509_crt * | ca_chain |
| CA chain for remote verification. More... | |
| mbedtls_pk_context * | priv_key |
| Local private key. More... | |
| mbedtls_x509_crl * | crl |
| Certificate Revocation List. More... | |
| time_t | crl_last_mtime |
| CRL last modification time. More... | |
| off_t | crl_last_size |
| size of last loaded CRL More... | |
| struct external_context | external_key |
| External key context. More... | |
| int * | allowed_ciphers |
| List of allowed ciphers for this connection. More... | |
| mbedtls_ecp_group_id * | groups |
| List of allowed groups for this connection. More... | |
| mbedtls_x509_crt_profile | cert_profile |
| Allowed certificate types. More... | |
| SSL_CTX * | ctx |
Detailed Description
Structure that wraps the TLS context.
Contents differ depending on the SSL library used.
Either priv_key_pkcs11 or priv_key must be filled in.
Contents differ depending on the SSL library used.
Definition at line 104 of file ssl_mbedtls.h.
Field Documentation
◆ allowed_ciphers
| int* tls_root_ctx::allowed_ciphers |
List of allowed ciphers for this connection.
Definition at line 120 of file ssl_mbedtls.h.
◆ ca_chain
| mbedtls_x509_crt* tls_root_ctx::ca_chain |
CA chain for remote verification.
Definition at line 111 of file ssl_mbedtls.h.
◆ cert_profile
| mbedtls_x509_crt_profile tls_root_ctx::cert_profile |
Allowed certificate types.
Definition at line 122 of file ssl_mbedtls.h.
◆ crl
| mbedtls_x509_crl* tls_root_ctx::crl |
Certificate Revocation List.
Definition at line 113 of file ssl_mbedtls.h.
◆ crl_last_mtime
| time_t tls_root_ctx::crl_last_mtime |
CRL last modification time.
Definition at line 114 of file ssl_mbedtls.h.
Referenced by tls_ctx_reload_crl().
◆ crl_last_size
| off_t tls_root_ctx::crl_last_size |
size of last loaded CRL
Definition at line 115 of file ssl_mbedtls.h.
Referenced by tls_ctx_reload_crl().
◆ crt_chain
| mbedtls_x509_crt* tls_root_ctx::crt_chain |
Local Certificate chain.
Definition at line 110 of file ssl_mbedtls.h.
◆ ctx
| SSL_CTX* tls_root_ctx::ctx |
Definition at line 40 of file ssl_openssl.h.
Referenced by backend_tls_ctx_reload_crl(), crypto_pem_encode_certificate(), get_highest_preference_tls_cipher(), key_state_ssl_init(), show_available_tls_ciphers_list(), test_tls_ctx_use_pkcs11(), tls_ctx_add_extra_certs(), tls_ctx_check_cert_time(), tls_ctx_client_new(), tls_ctx_free(), tls_ctx_initialised(), tls_ctx_load_ca(), tls_ctx_load_cert_file(), tls_ctx_load_cryptoapi(), tls_ctx_load_dh_params(), tls_ctx_load_ecdh_params(), tls_ctx_load_pkcs12(), tls_ctx_load_priv_file(), tls_ctx_restrict_ciphers(), tls_ctx_restrict_ciphers_tls13(), tls_ctx_server_new(), tls_ctx_set_cert_profile(), tls_ctx_set_options(), tls_ctx_set_tls_groups(), tls_ctx_set_tls_versions(), tls_ctx_use_external_rsa_key(), tls_ctx_use_management_external_key(), and tls_verify_crl_missing().
◆ dhm_ctx
| mbedtls_dhm_context* tls_root_ctx::dhm_ctx |
Diffie-Helmann-Merkle context.
Definition at line 109 of file ssl_mbedtls.h.
◆ endpoint
| int tls_root_ctx::endpoint |
Whether or not this is a server or a client.
Definition at line 107 of file ssl_mbedtls.h.
◆ external_key
| struct external_context tls_root_ctx::external_key |
External key context.
Definition at line 119 of file ssl_mbedtls.h.
◆ groups
| mbedtls_ecp_group_id* tls_root_ctx::groups |
List of allowed groups for this connection.
Definition at line 121 of file ssl_mbedtls.h.
◆ initialised
| bool tls_root_ctx::initialised |
True if the context has been initialised.
Definition at line 105 of file ssl_mbedtls.h.
◆ priv_key
| mbedtls_pk_context* tls_root_ctx::priv_key |
Local private key.
Definition at line 112 of file ssl_mbedtls.h.
The documentation for this struct was generated from the following files:
- src/openvpn/ssl_mbedtls.h
- src/openvpn/ssl_openssl.h
