Control channel wrapping (–tls-auth/–tls-crypt) context. More...
#include <ssl_common.h>
Public Types | |
| enum | { TLS_WRAP_NONE = 0, TLS_WRAP_AUTH, TLS_WRAP_CRYPT } |
Data Fields | |
| enum tls_wrap_ctx:: { ... } | mode |
| Control channel wrapping mode. More... | |
| struct crypto_options | opt |
| Crypto state. More... | |
| struct buffer | work |
| Work buffer (only for –tls-crypt) More... | |
| struct key_ctx | tls_crypt_v2_server_key |
| Decrypts client keys. More... | |
| const struct buffer * | tls_crypt_v2_wkc |
| Wrapped client key, sent to server. More... | |
| struct buffer | tls_crypt_v2_metadata |
| Received from client. More... | |
| bool | cleanup_key_ctx |
| opt.key_ctx_bi is owned by this context More... | |
Detailed Description
Control channel wrapping (–tls-auth/–tls-crypt) context.
Definition at line 250 of file ssl_common.h.
Member Enumeration Documentation
◆ anonymous enum
| anonymous enum |
| Enumerator | |
|---|---|
| TLS_WRAP_NONE | No control channel wrapping. |
| TLS_WRAP_AUTH | Control channel authentication. |
| TLS_WRAP_CRYPT | Control channel encryption and authentication. |
Definition at line 252 of file ssl_common.h.
Field Documentation
◆ cleanup_key_ctx
| bool tls_wrap_ctx::cleanup_key_ctx |
opt.key_ctx_bi is owned by this context
Definition at line 263 of file ssl_common.h.
Referenced by tls_crypt_v2_extract_client_key(), tls_pre_decrypt_lite(), and tls_wrap_free().
◆ mode
| enum { ... } tls_wrap_ctx::mode |
Control channel wrapping mode.
Referenced by do_init_crypto_tls(), read_control_auth(), tls_crypt_v2_extract_client_key(), tls_crypt_v2_wrap_unwrap_max_metadata(), and write_control_auth().
◆ opt
| struct crypto_options tls_wrap_ctx::opt |
Crypto state.
Definition at line 257 of file ssl_common.h.
Referenced by do_init_crypto_tls(), read_control_auth(), tls_auth_standalone_init(), tls_crypt_v2_extract_client_key(), tls_pre_decrypt_lite(), tls_session_init(), tls_wrap_free(), and write_control_auth().
◆ tls_crypt_v2_metadata
| struct buffer tls_wrap_ctx::tls_crypt_v2_metadata |
Received from client.
Definition at line 262 of file ssl_common.h.
Referenced by tls_crypt_v2_extract_client_key(), tls_crypt_v2_verify_metadata(), tls_pre_decrypt_lite(), and tls_wrap_free().
◆ tls_crypt_v2_server_key
| struct key_ctx tls_wrap_ctx::tls_crypt_v2_server_key |
Decrypts client keys.
Definition at line 259 of file ssl_common.h.
Referenced by do_init_crypto_tls(), read_control_auth(), and tls_crypt_v2_extract_client_key().
◆ tls_crypt_v2_wkc
| const struct buffer* tls_wrap_ctx::tls_crypt_v2_wkc |
Wrapped client key, sent to server.
Definition at line 260 of file ssl_common.h.
Referenced by do_init_crypto_tls(), and write_control_auth().
◆ work
| struct buffer tls_wrap_ctx::work |
Work buffer (only for –tls-crypt)
Definition at line 258 of file ssl_common.h.
Referenced by tls_session_init(), tls_wrap_free(), and write_control_auth().
The documentation for this struct was generated from the following file:
- src/openvpn/ssl_common.h
