OpenVPN
|
Control channel wrapping (–tls-auth/–tls-crypt) context. More...
#include <ssl_common.h>
Public Types | |
enum | { TLS_WRAP_NONE = 0, TLS_WRAP_AUTH, TLS_WRAP_CRYPT } |
Data Fields | |
enum tls_wrap_ctx:: { ... } | mode |
Control channel wrapping mode. More... | |
struct crypto_options | opt |
Crypto state. More... | |
struct buffer | work |
Work buffer (only for –tls-crypt) More... | |
struct key_ctx | tls_crypt_v2_server_key |
Decrypts client keys. More... | |
const struct buffer * | tls_crypt_v2_wkc |
Wrapped client key, sent to server. More... | |
struct buffer | tls_crypt_v2_metadata |
Received from client. More... | |
bool | cleanup_key_ctx |
opt.key_ctx_bi is owned by this context More... | |
Control channel wrapping (–tls-auth/–tls-crypt) context.
Definition at line 261 of file ssl_common.h.
anonymous enum |
Enumerator | |
---|---|
TLS_WRAP_NONE | No control channel wrapping. |
TLS_WRAP_AUTH | Control channel authentication. |
TLS_WRAP_CRYPT | Control channel encryption and authentication. |
Definition at line 263 of file ssl_common.h.
bool tls_wrap_ctx::cleanup_key_ctx |
opt.key_ctx_bi is owned by this context
Definition at line 274 of file ssl_common.h.
Referenced by tls_crypt_v2_extract_client_key(), tls_pre_decrypt_lite(), and tls_wrap_free().
enum { ... } tls_wrap_ctx::mode |
Control channel wrapping mode.
Referenced by do_init_crypto_tls(), read_control_auth(), tls_crypt_v2_extract_client_key(), tls_crypt_v2_wrap_unwrap_max_metadata(), and write_control_auth().
struct crypto_options tls_wrap_ctx::opt |
Crypto state.
Definition at line 268 of file ssl_common.h.
Referenced by do_init_crypto_tls(), read_control_auth(), tls_auth_standalone_init(), tls_crypt_v2_extract_client_key(), tls_pre_decrypt_lite(), tls_session_init(), tls_wrap_free(), and write_control_auth().
struct buffer tls_wrap_ctx::tls_crypt_v2_metadata |
Received from client.
Definition at line 273 of file ssl_common.h.
Referenced by tls_crypt_v2_extract_client_key(), tls_crypt_v2_verify_metadata(), tls_pre_decrypt_lite(), and tls_wrap_free().
struct key_ctx tls_wrap_ctx::tls_crypt_v2_server_key |
Decrypts client keys.
Definition at line 270 of file ssl_common.h.
Referenced by do_init_crypto_tls(), read_control_auth(), and tls_crypt_v2_extract_client_key().
const struct buffer* tls_wrap_ctx::tls_crypt_v2_wkc |
Wrapped client key, sent to server.
Definition at line 271 of file ssl_common.h.
Referenced by do_init_crypto_tls(), and write_control_auth().
struct buffer tls_wrap_ctx::work |
Work buffer (only for –tls-crypt)
Definition at line 269 of file ssl_common.h.
Referenced by tls_session_init(), tls_wrap_free(), and write_control_auth().