A library for setting up Secure Socket Layer (SSL) connections and verifying remote hosts using certificates. Contains only the source files for mbed platform implementation of the library.
Dependents: HTTPClient-SSL HTTPClient-SSL HTTPClient-SSL HTTPClient-SSL
cyassl/ssl.h@0:b86d15c6ba29, 2015-01-19 (annotated)
- Committer:
- Vanger
- Date:
- Mon Jan 19 21:45:42 2015 +0000
- Revision:
- 0:b86d15c6ba29
Updated CyaSSL Library to 3.3.0. Changed Settings and functions to be implemented for mbed platforms
Who changed what in which revision?
User | Revision | Line number | New contents of line |
---|---|---|---|
Vanger | 0:b86d15c6ba29 | 1 | /* ssl.h |
Vanger | 0:b86d15c6ba29 | 2 | * |
Vanger | 0:b86d15c6ba29 | 3 | * Copyright (C) 2006-2014 wolfSSL Inc. |
Vanger | 0:b86d15c6ba29 | 4 | * |
Vanger | 0:b86d15c6ba29 | 5 | * This file is part of CyaSSL. |
Vanger | 0:b86d15c6ba29 | 6 | * |
Vanger | 0:b86d15c6ba29 | 7 | * CyaSSL is free software; you can redistribute it and/or modify |
Vanger | 0:b86d15c6ba29 | 8 | * it under the terms of the GNU General Public License as published by |
Vanger | 0:b86d15c6ba29 | 9 | * the Free Software Foundation; either version 2 of the License, or |
Vanger | 0:b86d15c6ba29 | 10 | * (at your option) any later version. |
Vanger | 0:b86d15c6ba29 | 11 | * |
Vanger | 0:b86d15c6ba29 | 12 | * CyaSSL is distributed in the hope that it will be useful, |
Vanger | 0:b86d15c6ba29 | 13 | * but WITHOUT ANY WARRANTY; without even the implied warranty of |
Vanger | 0:b86d15c6ba29 | 14 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
Vanger | 0:b86d15c6ba29 | 15 | * GNU General Public License for more details. |
Vanger | 0:b86d15c6ba29 | 16 | * |
Vanger | 0:b86d15c6ba29 | 17 | * You should have received a copy of the GNU General Public License |
Vanger | 0:b86d15c6ba29 | 18 | * along with this program; if not, write to the Free Software |
Vanger | 0:b86d15c6ba29 | 19 | * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA |
Vanger | 0:b86d15c6ba29 | 20 | */ |
Vanger | 0:b86d15c6ba29 | 21 | |
Vanger | 0:b86d15c6ba29 | 22 | |
Vanger | 0:b86d15c6ba29 | 23 | /* CyaSSL API */ |
Vanger | 0:b86d15c6ba29 | 24 | |
Vanger | 0:b86d15c6ba29 | 25 | #ifndef CYASSL_SSL_H |
Vanger | 0:b86d15c6ba29 | 26 | #define CYASSL_SSL_H |
Vanger | 0:b86d15c6ba29 | 27 | |
Vanger | 0:b86d15c6ba29 | 28 | |
Vanger | 0:b86d15c6ba29 | 29 | /* for users not using preprocessor flags*/ |
Vanger | 0:b86d15c6ba29 | 30 | #include <cyassl/ctaocrypt/settings.h> |
Vanger | 0:b86d15c6ba29 | 31 | #include <cyassl/version.h> |
Vanger | 0:b86d15c6ba29 | 32 | |
Vanger | 0:b86d15c6ba29 | 33 | |
Vanger | 0:b86d15c6ba29 | 34 | #ifndef NO_FILESYSTEM |
Vanger | 0:b86d15c6ba29 | 35 | #ifdef FREESCALE_MQX |
Vanger | 0:b86d15c6ba29 | 36 | #include <fio.h> |
Vanger | 0:b86d15c6ba29 | 37 | #else |
Vanger | 0:b86d15c6ba29 | 38 | #include <stdio.h> /* ERR_printf */ |
Vanger | 0:b86d15c6ba29 | 39 | #endif |
Vanger | 0:b86d15c6ba29 | 40 | #endif |
Vanger | 0:b86d15c6ba29 | 41 | |
Vanger | 0:b86d15c6ba29 | 42 | #ifdef YASSL_PREFIX |
Vanger | 0:b86d15c6ba29 | 43 | #include "prefix_ssl.h" |
Vanger | 0:b86d15c6ba29 | 44 | #endif |
Vanger | 0:b86d15c6ba29 | 45 | |
Vanger | 0:b86d15c6ba29 | 46 | #ifdef LIBCYASSL_VERSION_STRING |
Vanger | 0:b86d15c6ba29 | 47 | #define CYASSL_VERSION LIBCYASSL_VERSION_STRING |
Vanger | 0:b86d15c6ba29 | 48 | #endif |
Vanger | 0:b86d15c6ba29 | 49 | |
Vanger | 0:b86d15c6ba29 | 50 | #ifdef _WIN32 |
Vanger | 0:b86d15c6ba29 | 51 | /* wincrypt.h clashes */ |
Vanger | 0:b86d15c6ba29 | 52 | #undef OCSP_REQUEST |
Vanger | 0:b86d15c6ba29 | 53 | #undef OCSP_RESPONSE |
Vanger | 0:b86d15c6ba29 | 54 | #endif |
Vanger | 0:b86d15c6ba29 | 55 | |
Vanger | 0:b86d15c6ba29 | 56 | |
Vanger | 0:b86d15c6ba29 | 57 | |
Vanger | 0:b86d15c6ba29 | 58 | #ifdef __cplusplus |
Vanger | 0:b86d15c6ba29 | 59 | extern "C" { |
Vanger | 0:b86d15c6ba29 | 60 | #endif |
Vanger | 0:b86d15c6ba29 | 61 | |
Vanger | 0:b86d15c6ba29 | 62 | typedef struct CYASSL CYASSL; |
Vanger | 0:b86d15c6ba29 | 63 | typedef struct CYASSL_SESSION CYASSL_SESSION; |
Vanger | 0:b86d15c6ba29 | 64 | typedef struct CYASSL_METHOD CYASSL_METHOD; |
Vanger | 0:b86d15c6ba29 | 65 | typedef struct CYASSL_CTX CYASSL_CTX; |
Vanger | 0:b86d15c6ba29 | 66 | |
Vanger | 0:b86d15c6ba29 | 67 | typedef struct CYASSL_X509 CYASSL_X509; |
Vanger | 0:b86d15c6ba29 | 68 | typedef struct CYASSL_X509_NAME CYASSL_X509_NAME; |
Vanger | 0:b86d15c6ba29 | 69 | typedef struct CYASSL_X509_CHAIN CYASSL_X509_CHAIN; |
Vanger | 0:b86d15c6ba29 | 70 | |
Vanger | 0:b86d15c6ba29 | 71 | typedef struct CYASSL_CERT_MANAGER CYASSL_CERT_MANAGER; |
Vanger | 0:b86d15c6ba29 | 72 | typedef struct CYASSL_SOCKADDR CYASSL_SOCKADDR; |
Vanger | 0:b86d15c6ba29 | 73 | |
Vanger | 0:b86d15c6ba29 | 74 | /* redeclare guard */ |
Vanger | 0:b86d15c6ba29 | 75 | #define CYASSL_TYPES_DEFINED |
Vanger | 0:b86d15c6ba29 | 76 | |
Vanger | 0:b86d15c6ba29 | 77 | |
Vanger | 0:b86d15c6ba29 | 78 | typedef struct CYASSL_RSA CYASSL_RSA; |
Vanger | 0:b86d15c6ba29 | 79 | typedef struct CYASSL_DSA CYASSL_DSA; |
Vanger | 0:b86d15c6ba29 | 80 | typedef struct CYASSL_CIPHER CYASSL_CIPHER; |
Vanger | 0:b86d15c6ba29 | 81 | typedef struct CYASSL_X509_LOOKUP CYASSL_X509_LOOKUP; |
Vanger | 0:b86d15c6ba29 | 82 | typedef struct CYASSL_X509_LOOKUP_METHOD CYASSL_X509_LOOKUP_METHOD; |
Vanger | 0:b86d15c6ba29 | 83 | typedef struct CYASSL_X509_CRL CYASSL_X509_CRL; |
Vanger | 0:b86d15c6ba29 | 84 | typedef struct CYASSL_BIO CYASSL_BIO; |
Vanger | 0:b86d15c6ba29 | 85 | typedef struct CYASSL_BIO_METHOD CYASSL_BIO_METHOD; |
Vanger | 0:b86d15c6ba29 | 86 | typedef struct CYASSL_X509_EXTENSION CYASSL_X509_EXTENSION; |
Vanger | 0:b86d15c6ba29 | 87 | typedef struct CYASSL_ASN1_TIME CYASSL_ASN1_TIME; |
Vanger | 0:b86d15c6ba29 | 88 | typedef struct CYASSL_ASN1_INTEGER CYASSL_ASN1_INTEGER; |
Vanger | 0:b86d15c6ba29 | 89 | typedef struct CYASSL_ASN1_OBJECT CYASSL_ASN1_OBJECT; |
Vanger | 0:b86d15c6ba29 | 90 | typedef struct CYASSL_ASN1_STRING CYASSL_ASN1_STRING; |
Vanger | 0:b86d15c6ba29 | 91 | typedef struct CYASSL_dynlock_value CYASSL_dynlock_value; |
Vanger | 0:b86d15c6ba29 | 92 | |
Vanger | 0:b86d15c6ba29 | 93 | #define CYASSL_ASN1_UTCTIME CYASSL_ASN1_TIME |
Vanger | 0:b86d15c6ba29 | 94 | |
Vanger | 0:b86d15c6ba29 | 95 | typedef struct CYASSL_EVP_PKEY { |
Vanger | 0:b86d15c6ba29 | 96 | int type; /* openssh dereference */ |
Vanger | 0:b86d15c6ba29 | 97 | int save_type; /* openssh dereference */ |
Vanger | 0:b86d15c6ba29 | 98 | int pkey_sz; |
Vanger | 0:b86d15c6ba29 | 99 | union { |
Vanger | 0:b86d15c6ba29 | 100 | char* ptr; |
Vanger | 0:b86d15c6ba29 | 101 | } pkey; |
Vanger | 0:b86d15c6ba29 | 102 | #ifdef HAVE_ECC |
Vanger | 0:b86d15c6ba29 | 103 | int pkey_curve; |
Vanger | 0:b86d15c6ba29 | 104 | #endif |
Vanger | 0:b86d15c6ba29 | 105 | } CYASSL_EVP_PKEY; |
Vanger | 0:b86d15c6ba29 | 106 | |
Vanger | 0:b86d15c6ba29 | 107 | typedef struct CYASSL_MD4_CTX { |
Vanger | 0:b86d15c6ba29 | 108 | int buffer[32]; /* big enough to hold, check size in Init */ |
Vanger | 0:b86d15c6ba29 | 109 | } CYASSL_MD4_CTX; |
Vanger | 0:b86d15c6ba29 | 110 | |
Vanger | 0:b86d15c6ba29 | 111 | |
Vanger | 0:b86d15c6ba29 | 112 | typedef struct CYASSL_COMP_METHOD { |
Vanger | 0:b86d15c6ba29 | 113 | int type; /* stunnel dereference */ |
Vanger | 0:b86d15c6ba29 | 114 | } CYASSL_COMP_METHOD; |
Vanger | 0:b86d15c6ba29 | 115 | |
Vanger | 0:b86d15c6ba29 | 116 | |
Vanger | 0:b86d15c6ba29 | 117 | typedef struct CYASSL_X509_STORE { |
Vanger | 0:b86d15c6ba29 | 118 | int cache; /* stunnel dereference */ |
Vanger | 0:b86d15c6ba29 | 119 | CYASSL_CERT_MANAGER* cm; |
Vanger | 0:b86d15c6ba29 | 120 | } CYASSL_X509_STORE; |
Vanger | 0:b86d15c6ba29 | 121 | |
Vanger | 0:b86d15c6ba29 | 122 | typedef struct CYASSL_ALERT { |
Vanger | 0:b86d15c6ba29 | 123 | int code; |
Vanger | 0:b86d15c6ba29 | 124 | int level; |
Vanger | 0:b86d15c6ba29 | 125 | } CYASSL_ALERT; |
Vanger | 0:b86d15c6ba29 | 126 | |
Vanger | 0:b86d15c6ba29 | 127 | typedef struct CYASSL_ALERT_HISTORY { |
Vanger | 0:b86d15c6ba29 | 128 | CYASSL_ALERT last_rx; |
Vanger | 0:b86d15c6ba29 | 129 | CYASSL_ALERT last_tx; |
Vanger | 0:b86d15c6ba29 | 130 | } CYASSL_ALERT_HISTORY; |
Vanger | 0:b86d15c6ba29 | 131 | |
Vanger | 0:b86d15c6ba29 | 132 | typedef struct CYASSL_X509_REVOKED { |
Vanger | 0:b86d15c6ba29 | 133 | CYASSL_ASN1_INTEGER* serialNumber; /* stunnel dereference */ |
Vanger | 0:b86d15c6ba29 | 134 | } CYASSL_X509_REVOKED; |
Vanger | 0:b86d15c6ba29 | 135 | |
Vanger | 0:b86d15c6ba29 | 136 | |
Vanger | 0:b86d15c6ba29 | 137 | typedef struct CYASSL_X509_OBJECT { |
Vanger | 0:b86d15c6ba29 | 138 | union { |
Vanger | 0:b86d15c6ba29 | 139 | char* ptr; |
Vanger | 0:b86d15c6ba29 | 140 | CYASSL_X509_CRL* crl; /* stunnel dereference */ |
Vanger | 0:b86d15c6ba29 | 141 | } data; |
Vanger | 0:b86d15c6ba29 | 142 | } CYASSL_X509_OBJECT; |
Vanger | 0:b86d15c6ba29 | 143 | |
Vanger | 0:b86d15c6ba29 | 144 | |
Vanger | 0:b86d15c6ba29 | 145 | typedef struct CYASSL_X509_STORE_CTX { |
Vanger | 0:b86d15c6ba29 | 146 | CYASSL_X509_STORE* store; /* Store full of a CA cert chain */ |
Vanger | 0:b86d15c6ba29 | 147 | CYASSL_X509* current_cert; /* stunnel dereference */ |
Vanger | 0:b86d15c6ba29 | 148 | char* domain; /* subject CN domain name */ |
Vanger | 0:b86d15c6ba29 | 149 | void* ex_data; /* external data, for fortress build */ |
Vanger | 0:b86d15c6ba29 | 150 | void* userCtx; /* user ctx */ |
Vanger | 0:b86d15c6ba29 | 151 | int error; /* current error */ |
Vanger | 0:b86d15c6ba29 | 152 | int error_depth; /* cert depth for this error */ |
Vanger | 0:b86d15c6ba29 | 153 | int discardSessionCerts; /* so verify callback can flag for discard */ |
Vanger | 0:b86d15c6ba29 | 154 | } CYASSL_X509_STORE_CTX; |
Vanger | 0:b86d15c6ba29 | 155 | |
Vanger | 0:b86d15c6ba29 | 156 | |
Vanger | 0:b86d15c6ba29 | 157 | /* Valid Alert types from page 16/17 */ |
Vanger | 0:b86d15c6ba29 | 158 | enum AlertDescription { |
Vanger | 0:b86d15c6ba29 | 159 | close_notify = 0, |
Vanger | 0:b86d15c6ba29 | 160 | unexpected_message = 10, |
Vanger | 0:b86d15c6ba29 | 161 | bad_record_mac = 20, |
Vanger | 0:b86d15c6ba29 | 162 | record_overflow = 22, |
Vanger | 0:b86d15c6ba29 | 163 | decompression_failure = 30, |
Vanger | 0:b86d15c6ba29 | 164 | handshake_failure = 40, |
Vanger | 0:b86d15c6ba29 | 165 | no_certificate = 41, |
Vanger | 0:b86d15c6ba29 | 166 | bad_certificate = 42, |
Vanger | 0:b86d15c6ba29 | 167 | unsupported_certificate = 43, |
Vanger | 0:b86d15c6ba29 | 168 | certificate_revoked = 44, |
Vanger | 0:b86d15c6ba29 | 169 | certificate_expired = 45, |
Vanger | 0:b86d15c6ba29 | 170 | certificate_unknown = 46, |
Vanger | 0:b86d15c6ba29 | 171 | illegal_parameter = 47, |
Vanger | 0:b86d15c6ba29 | 172 | decrypt_error = 51, |
Vanger | 0:b86d15c6ba29 | 173 | protocol_version = 70, |
Vanger | 0:b86d15c6ba29 | 174 | no_renegotiation = 100, |
Vanger | 0:b86d15c6ba29 | 175 | unrecognized_name = 112 |
Vanger | 0:b86d15c6ba29 | 176 | }; |
Vanger | 0:b86d15c6ba29 | 177 | |
Vanger | 0:b86d15c6ba29 | 178 | |
Vanger | 0:b86d15c6ba29 | 179 | enum AlertLevel { |
Vanger | 0:b86d15c6ba29 | 180 | alert_warning = 1, |
Vanger | 0:b86d15c6ba29 | 181 | alert_fatal = 2 |
Vanger | 0:b86d15c6ba29 | 182 | }; |
Vanger | 0:b86d15c6ba29 | 183 | |
Vanger | 0:b86d15c6ba29 | 184 | |
Vanger | 0:b86d15c6ba29 | 185 | CYASSL_API CYASSL_METHOD *CyaSSLv3_server_method(void); |
Vanger | 0:b86d15c6ba29 | 186 | CYASSL_API CYASSL_METHOD *CyaSSLv3_client_method(void); |
Vanger | 0:b86d15c6ba29 | 187 | CYASSL_API CYASSL_METHOD *CyaTLSv1_server_method(void); |
Vanger | 0:b86d15c6ba29 | 188 | CYASSL_API CYASSL_METHOD *CyaTLSv1_client_method(void); |
Vanger | 0:b86d15c6ba29 | 189 | CYASSL_API CYASSL_METHOD *CyaTLSv1_1_server_method(void); |
Vanger | 0:b86d15c6ba29 | 190 | CYASSL_API CYASSL_METHOD *CyaTLSv1_1_client_method(void); |
Vanger | 0:b86d15c6ba29 | 191 | CYASSL_API CYASSL_METHOD *CyaTLSv1_2_server_method(void); |
Vanger | 0:b86d15c6ba29 | 192 | CYASSL_API CYASSL_METHOD *CyaTLSv1_2_client_method(void); |
Vanger | 0:b86d15c6ba29 | 193 | |
Vanger | 0:b86d15c6ba29 | 194 | #ifdef CYASSL_DTLS |
Vanger | 0:b86d15c6ba29 | 195 | CYASSL_API CYASSL_METHOD *CyaDTLSv1_client_method(void); |
Vanger | 0:b86d15c6ba29 | 196 | CYASSL_API CYASSL_METHOD *CyaDTLSv1_server_method(void); |
Vanger | 0:b86d15c6ba29 | 197 | CYASSL_API CYASSL_METHOD *CyaDTLSv1_2_client_method(void); |
Vanger | 0:b86d15c6ba29 | 198 | CYASSL_API CYASSL_METHOD *CyaDTLSv1_2_server_method(void); |
Vanger | 0:b86d15c6ba29 | 199 | #endif |
Vanger | 0:b86d15c6ba29 | 200 | |
Vanger | 0:b86d15c6ba29 | 201 | #if !defined(NO_FILESYSTEM) && !defined(NO_CERTS) |
Vanger | 0:b86d15c6ba29 | 202 | |
Vanger | 0:b86d15c6ba29 | 203 | CYASSL_API int CyaSSL_CTX_use_certificate_file(CYASSL_CTX*, const char*, int); |
Vanger | 0:b86d15c6ba29 | 204 | CYASSL_API int CyaSSL_CTX_use_PrivateKey_file(CYASSL_CTX*, const char*, int); |
Vanger | 0:b86d15c6ba29 | 205 | CYASSL_API int CyaSSL_CTX_load_verify_locations(CYASSL_CTX*, const char*, |
Vanger | 0:b86d15c6ba29 | 206 | const char*); |
Vanger | 0:b86d15c6ba29 | 207 | CYASSL_API int CyaSSL_CTX_use_certificate_chain_file(CYASSL_CTX *, |
Vanger | 0:b86d15c6ba29 | 208 | const char *file); |
Vanger | 0:b86d15c6ba29 | 209 | CYASSL_API int CyaSSL_CTX_use_RSAPrivateKey_file(CYASSL_CTX*, const char*, int); |
Vanger | 0:b86d15c6ba29 | 210 | |
Vanger | 0:b86d15c6ba29 | 211 | CYASSL_API int CyaSSL_use_certificate_file(CYASSL*, const char*, int); |
Vanger | 0:b86d15c6ba29 | 212 | CYASSL_API int CyaSSL_use_PrivateKey_file(CYASSL*, const char*, int); |
Vanger | 0:b86d15c6ba29 | 213 | CYASSL_API int CyaSSL_use_certificate_chain_file(CYASSL*, const char *file); |
Vanger | 0:b86d15c6ba29 | 214 | CYASSL_API int CyaSSL_use_RSAPrivateKey_file(CYASSL*, const char*, int); |
Vanger | 0:b86d15c6ba29 | 215 | |
Vanger | 0:b86d15c6ba29 | 216 | #ifdef CYASSL_DER_LOAD |
Vanger | 0:b86d15c6ba29 | 217 | CYASSL_API int CyaSSL_CTX_der_load_verify_locations(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 218 | const char*, int); |
Vanger | 0:b86d15c6ba29 | 219 | #endif |
Vanger | 0:b86d15c6ba29 | 220 | |
Vanger | 0:b86d15c6ba29 | 221 | #ifdef HAVE_POLY1305 |
Vanger | 0:b86d15c6ba29 | 222 | CYASSL_API int CyaSSL_use_old_poly(CYASSL*, int); |
Vanger | 0:b86d15c6ba29 | 223 | #endif |
Vanger | 0:b86d15c6ba29 | 224 | |
Vanger | 0:b86d15c6ba29 | 225 | #ifdef HAVE_NTRU |
Vanger | 0:b86d15c6ba29 | 226 | CYASSL_API int CyaSSL_CTX_use_NTRUPrivateKey_file(CYASSL_CTX*, const char*); |
Vanger | 0:b86d15c6ba29 | 227 | /* load NTRU private key blob */ |
Vanger | 0:b86d15c6ba29 | 228 | #endif |
Vanger | 0:b86d15c6ba29 | 229 | |
Vanger | 0:b86d15c6ba29 | 230 | #ifndef CYASSL_PEMCERT_TODER_DEFINED |
Vanger | 0:b86d15c6ba29 | 231 | CYASSL_API int CyaSSL_PemCertToDer(const char*, unsigned char*, int); |
Vanger | 0:b86d15c6ba29 | 232 | #define CYASSL_PEMCERT_TODER_DEFINED |
Vanger | 0:b86d15c6ba29 | 233 | #endif |
Vanger | 0:b86d15c6ba29 | 234 | |
Vanger | 0:b86d15c6ba29 | 235 | #endif /* !NO_FILESYSTEM && !NO_CERTS */ |
Vanger | 0:b86d15c6ba29 | 236 | |
Vanger | 0:b86d15c6ba29 | 237 | CYASSL_API CYASSL_CTX* CyaSSL_CTX_new(CYASSL_METHOD*); |
Vanger | 0:b86d15c6ba29 | 238 | CYASSL_API CYASSL* CyaSSL_new(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 239 | CYASSL_API int CyaSSL_set_fd (CYASSL*, int); |
Vanger | 0:b86d15c6ba29 | 240 | CYASSL_API int CyaSSL_get_ciphers(char*, int); |
Vanger | 0:b86d15c6ba29 | 241 | CYASSL_API int CyaSSL_get_fd(const CYASSL*); |
Vanger | 0:b86d15c6ba29 | 242 | CYASSL_API void CyaSSL_set_using_nonblock(CYASSL*, int); |
Vanger | 0:b86d15c6ba29 | 243 | CYASSL_API int CyaSSL_get_using_nonblock(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 244 | CYASSL_API int CyaSSL_connect(CYASSL*); /* please see note at top of README |
Vanger | 0:b86d15c6ba29 | 245 | if you get an error from connect */ |
Vanger | 0:b86d15c6ba29 | 246 | CYASSL_API int CyaSSL_write(CYASSL*, const void*, int); |
Vanger | 0:b86d15c6ba29 | 247 | CYASSL_API int CyaSSL_read(CYASSL*, void*, int); |
Vanger | 0:b86d15c6ba29 | 248 | CYASSL_API int CyaSSL_peek(CYASSL*, void*, int); |
Vanger | 0:b86d15c6ba29 | 249 | CYASSL_API int CyaSSL_accept(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 250 | CYASSL_API void CyaSSL_CTX_free(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 251 | CYASSL_API void CyaSSL_free(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 252 | CYASSL_API int CyaSSL_shutdown(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 253 | CYASSL_API int CyaSSL_send(CYASSL*, const void*, int sz, int flags); |
Vanger | 0:b86d15c6ba29 | 254 | CYASSL_API int CyaSSL_recv(CYASSL*, void*, int sz, int flags); |
Vanger | 0:b86d15c6ba29 | 255 | |
Vanger | 0:b86d15c6ba29 | 256 | CYASSL_API void CyaSSL_CTX_set_quiet_shutdown(CYASSL_CTX*, int); |
Vanger | 0:b86d15c6ba29 | 257 | CYASSL_API void CyaSSL_set_quiet_shutdown(CYASSL*, int); |
Vanger | 0:b86d15c6ba29 | 258 | |
Vanger | 0:b86d15c6ba29 | 259 | CYASSL_API int CyaSSL_get_error(CYASSL*, int); |
Vanger | 0:b86d15c6ba29 | 260 | CYASSL_API int CyaSSL_get_alert_history(CYASSL*, CYASSL_ALERT_HISTORY *); |
Vanger | 0:b86d15c6ba29 | 261 | |
Vanger | 0:b86d15c6ba29 | 262 | CYASSL_API int CyaSSL_set_session(CYASSL* ssl,CYASSL_SESSION* session); |
Vanger | 0:b86d15c6ba29 | 263 | CYASSL_API CYASSL_SESSION* CyaSSL_get_session(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 264 | CYASSL_API void CyaSSL_flush_sessions(CYASSL_CTX *ctx, long tm); |
Vanger | 0:b86d15c6ba29 | 265 | CYASSL_API int CyaSSL_SetServerID(CYASSL* ssl, const unsigned char*, |
Vanger | 0:b86d15c6ba29 | 266 | int, int); |
Vanger | 0:b86d15c6ba29 | 267 | |
Vanger | 0:b86d15c6ba29 | 268 | #ifdef SESSION_INDEX |
Vanger | 0:b86d15c6ba29 | 269 | CYASSL_API int CyaSSL_GetSessionIndex(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 270 | CYASSL_API int CyaSSL_GetSessionAtIndex(int index, CYASSL_SESSION* session); |
Vanger | 0:b86d15c6ba29 | 271 | #endif /* SESSION_INDEX */ |
Vanger | 0:b86d15c6ba29 | 272 | |
Vanger | 0:b86d15c6ba29 | 273 | #if defined(SESSION_INDEX) && defined(SESSION_CERTS) |
Vanger | 0:b86d15c6ba29 | 274 | CYASSL_API |
Vanger | 0:b86d15c6ba29 | 275 | CYASSL_X509_CHAIN* CyaSSL_SESSION_get_peer_chain(CYASSL_SESSION* session); |
Vanger | 0:b86d15c6ba29 | 276 | #endif /* SESSION_INDEX && SESSION_CERTS */ |
Vanger | 0:b86d15c6ba29 | 277 | |
Vanger | 0:b86d15c6ba29 | 278 | typedef int (*VerifyCallback)(int, CYASSL_X509_STORE_CTX*); |
Vanger | 0:b86d15c6ba29 | 279 | typedef int (*pem_password_cb)(char*, int, int, void*); |
Vanger | 0:b86d15c6ba29 | 280 | |
Vanger | 0:b86d15c6ba29 | 281 | CYASSL_API void CyaSSL_CTX_set_verify(CYASSL_CTX*, int, |
Vanger | 0:b86d15c6ba29 | 282 | VerifyCallback verify_callback); |
Vanger | 0:b86d15c6ba29 | 283 | CYASSL_API void CyaSSL_set_verify(CYASSL*, int, VerifyCallback verify_callback); |
Vanger | 0:b86d15c6ba29 | 284 | CYASSL_API void CyaSSL_SetCertCbCtx(CYASSL*, void*); |
Vanger | 0:b86d15c6ba29 | 285 | |
Vanger | 0:b86d15c6ba29 | 286 | CYASSL_API int CyaSSL_pending(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 287 | |
Vanger | 0:b86d15c6ba29 | 288 | CYASSL_API void CyaSSL_load_error_strings(void); |
Vanger | 0:b86d15c6ba29 | 289 | CYASSL_API int CyaSSL_library_init(void); |
Vanger | 0:b86d15c6ba29 | 290 | CYASSL_API long CyaSSL_CTX_set_session_cache_mode(CYASSL_CTX*, long); |
Vanger | 0:b86d15c6ba29 | 291 | |
Vanger | 0:b86d15c6ba29 | 292 | #ifdef HAVE_SECRET_CALLBACK |
Vanger | 0:b86d15c6ba29 | 293 | typedef int (*SessionSecretCb)(CYASSL* ssl, |
Vanger | 0:b86d15c6ba29 | 294 | void* secret, int* secretSz, void* ctx); |
Vanger | 0:b86d15c6ba29 | 295 | CYASSL_API int CyaSSL_set_session_secret_cb(CYASSL*, SessionSecretCb, void*); |
Vanger | 0:b86d15c6ba29 | 296 | #endif /* HAVE_SECRET_CALLBACK */ |
Vanger | 0:b86d15c6ba29 | 297 | |
Vanger | 0:b86d15c6ba29 | 298 | /* session cache persistence */ |
Vanger | 0:b86d15c6ba29 | 299 | CYASSL_API int CyaSSL_save_session_cache(const char*); |
Vanger | 0:b86d15c6ba29 | 300 | CYASSL_API int CyaSSL_restore_session_cache(const char*); |
Vanger | 0:b86d15c6ba29 | 301 | CYASSL_API int CyaSSL_memsave_session_cache(void*, int); |
Vanger | 0:b86d15c6ba29 | 302 | CYASSL_API int CyaSSL_memrestore_session_cache(const void*, int); |
Vanger | 0:b86d15c6ba29 | 303 | CYASSL_API int CyaSSL_get_session_cache_memsize(void); |
Vanger | 0:b86d15c6ba29 | 304 | |
Vanger | 0:b86d15c6ba29 | 305 | /* certificate cache persistence, uses ctx since certs are per ctx */ |
Vanger | 0:b86d15c6ba29 | 306 | CYASSL_API int CyaSSL_CTX_save_cert_cache(CYASSL_CTX*, const char*); |
Vanger | 0:b86d15c6ba29 | 307 | CYASSL_API int CyaSSL_CTX_restore_cert_cache(CYASSL_CTX*, const char*); |
Vanger | 0:b86d15c6ba29 | 308 | CYASSL_API int CyaSSL_CTX_memsave_cert_cache(CYASSL_CTX*, void*, int, int*); |
Vanger | 0:b86d15c6ba29 | 309 | CYASSL_API int CyaSSL_CTX_memrestore_cert_cache(CYASSL_CTX*, const void*, int); |
Vanger | 0:b86d15c6ba29 | 310 | CYASSL_API int CyaSSL_CTX_get_cert_cache_memsize(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 311 | |
Vanger | 0:b86d15c6ba29 | 312 | /* only supports full name from cipher_name[] delimited by : */ |
Vanger | 0:b86d15c6ba29 | 313 | CYASSL_API int CyaSSL_CTX_set_cipher_list(CYASSL_CTX*, const char*); |
Vanger | 0:b86d15c6ba29 | 314 | CYASSL_API int CyaSSL_set_cipher_list(CYASSL*, const char*); |
Vanger | 0:b86d15c6ba29 | 315 | |
Vanger | 0:b86d15c6ba29 | 316 | /* Nonblocking DTLS helper functions */ |
Vanger | 0:b86d15c6ba29 | 317 | CYASSL_API int CyaSSL_dtls_get_current_timeout(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 318 | CYASSL_API int CyaSSL_dtls_set_timeout_init(CYASSL* ssl, int); |
Vanger | 0:b86d15c6ba29 | 319 | CYASSL_API int CyaSSL_dtls_set_timeout_max(CYASSL* ssl, int); |
Vanger | 0:b86d15c6ba29 | 320 | CYASSL_API int CyaSSL_dtls_got_timeout(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 321 | CYASSL_API int CyaSSL_dtls(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 322 | |
Vanger | 0:b86d15c6ba29 | 323 | CYASSL_API int CyaSSL_dtls_set_peer(CYASSL*, void*, unsigned int); |
Vanger | 0:b86d15c6ba29 | 324 | CYASSL_API int CyaSSL_dtls_get_peer(CYASSL*, void*, unsigned int*); |
Vanger | 0:b86d15c6ba29 | 325 | |
Vanger | 0:b86d15c6ba29 | 326 | CYASSL_API int CyaSSL_ERR_GET_REASON(int err); |
Vanger | 0:b86d15c6ba29 | 327 | CYASSL_API char* CyaSSL_ERR_error_string(unsigned long,char*); |
Vanger | 0:b86d15c6ba29 | 328 | CYASSL_API void CyaSSL_ERR_error_string_n(unsigned long e, char* buf, |
Vanger | 0:b86d15c6ba29 | 329 | unsigned long sz); |
Vanger | 0:b86d15c6ba29 | 330 | CYASSL_API const char* CyaSSL_ERR_reason_error_string(unsigned long); |
Vanger | 0:b86d15c6ba29 | 331 | |
Vanger | 0:b86d15c6ba29 | 332 | /* extras */ |
Vanger | 0:b86d15c6ba29 | 333 | |
Vanger | 0:b86d15c6ba29 | 334 | #define STACK_OF(x) x |
Vanger | 0:b86d15c6ba29 | 335 | |
Vanger | 0:b86d15c6ba29 | 336 | CYASSL_API int CyaSSL_set_ex_data(CYASSL*, int, void*); |
Vanger | 0:b86d15c6ba29 | 337 | CYASSL_API int CyaSSL_get_shutdown(const CYASSL*); |
Vanger | 0:b86d15c6ba29 | 338 | CYASSL_API int CyaSSL_set_rfd(CYASSL*, int); |
Vanger | 0:b86d15c6ba29 | 339 | CYASSL_API int CyaSSL_set_wfd(CYASSL*, int); |
Vanger | 0:b86d15c6ba29 | 340 | CYASSL_API void CyaSSL_set_shutdown(CYASSL*, int); |
Vanger | 0:b86d15c6ba29 | 341 | CYASSL_API int CyaSSL_set_session_id_context(CYASSL*, const unsigned char*, |
Vanger | 0:b86d15c6ba29 | 342 | unsigned int); |
Vanger | 0:b86d15c6ba29 | 343 | CYASSL_API void CyaSSL_set_connect_state(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 344 | CYASSL_API void CyaSSL_set_accept_state(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 345 | CYASSL_API int CyaSSL_session_reused(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 346 | CYASSL_API void CyaSSL_SESSION_free(CYASSL_SESSION* session); |
Vanger | 0:b86d15c6ba29 | 347 | CYASSL_API int CyaSSL_is_init_finished(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 348 | |
Vanger | 0:b86d15c6ba29 | 349 | CYASSL_API const char* CyaSSL_get_version(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 350 | CYASSL_API int CyaSSL_get_current_cipher_suite(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 351 | CYASSL_API CYASSL_CIPHER* CyaSSL_get_current_cipher(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 352 | CYASSL_API char* CyaSSL_CIPHER_description(CYASSL_CIPHER*, char*, int); |
Vanger | 0:b86d15c6ba29 | 353 | CYASSL_API const char* CyaSSL_CIPHER_get_name(const CYASSL_CIPHER* cipher); |
Vanger | 0:b86d15c6ba29 | 354 | CYASSL_API const char* CyaSSL_get_cipher(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 355 | CYASSL_API CYASSL_SESSION* CyaSSL_get1_session(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 356 | /* what's ref count */ |
Vanger | 0:b86d15c6ba29 | 357 | |
Vanger | 0:b86d15c6ba29 | 358 | CYASSL_API void CyaSSL_X509_free(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 359 | CYASSL_API void CyaSSL_OPENSSL_free(void*); |
Vanger | 0:b86d15c6ba29 | 360 | |
Vanger | 0:b86d15c6ba29 | 361 | CYASSL_API int CyaSSL_OCSP_parse_url(char* url, char** host, char** port, |
Vanger | 0:b86d15c6ba29 | 362 | char** path, int* ssl); |
Vanger | 0:b86d15c6ba29 | 363 | |
Vanger | 0:b86d15c6ba29 | 364 | CYASSL_API CYASSL_METHOD* CyaSSLv23_client_method(void); |
Vanger | 0:b86d15c6ba29 | 365 | CYASSL_API CYASSL_METHOD* CyaSSLv2_client_method(void); |
Vanger | 0:b86d15c6ba29 | 366 | CYASSL_API CYASSL_METHOD* CyaSSLv2_server_method(void); |
Vanger | 0:b86d15c6ba29 | 367 | |
Vanger | 0:b86d15c6ba29 | 368 | CYASSL_API void CyaSSL_MD4_Init(CYASSL_MD4_CTX*); |
Vanger | 0:b86d15c6ba29 | 369 | CYASSL_API void CyaSSL_MD4_Update(CYASSL_MD4_CTX*, const void*, unsigned long); |
Vanger | 0:b86d15c6ba29 | 370 | CYASSL_API void CyaSSL_MD4_Final(unsigned char*, CYASSL_MD4_CTX*); |
Vanger | 0:b86d15c6ba29 | 371 | |
Vanger | 0:b86d15c6ba29 | 372 | |
Vanger | 0:b86d15c6ba29 | 373 | CYASSL_API CYASSL_BIO* CyaSSL_BIO_new(CYASSL_BIO_METHOD*); |
Vanger | 0:b86d15c6ba29 | 374 | CYASSL_API int CyaSSL_BIO_free(CYASSL_BIO*); |
Vanger | 0:b86d15c6ba29 | 375 | CYASSL_API int CyaSSL_BIO_free_all(CYASSL_BIO*); |
Vanger | 0:b86d15c6ba29 | 376 | CYASSL_API int CyaSSL_BIO_read(CYASSL_BIO*, void*, int); |
Vanger | 0:b86d15c6ba29 | 377 | CYASSL_API int CyaSSL_BIO_write(CYASSL_BIO*, const void*, int); |
Vanger | 0:b86d15c6ba29 | 378 | CYASSL_API CYASSL_BIO* CyaSSL_BIO_push(CYASSL_BIO*, CYASSL_BIO* append); |
Vanger | 0:b86d15c6ba29 | 379 | CYASSL_API CYASSL_BIO* CyaSSL_BIO_pop(CYASSL_BIO*); |
Vanger | 0:b86d15c6ba29 | 380 | CYASSL_API int CyaSSL_BIO_flush(CYASSL_BIO*); |
Vanger | 0:b86d15c6ba29 | 381 | CYASSL_API int CyaSSL_BIO_pending(CYASSL_BIO*); |
Vanger | 0:b86d15c6ba29 | 382 | |
Vanger | 0:b86d15c6ba29 | 383 | CYASSL_API CYASSL_BIO_METHOD* CyaSSL_BIO_f_buffer(void); |
Vanger | 0:b86d15c6ba29 | 384 | CYASSL_API long CyaSSL_BIO_set_write_buffer_size(CYASSL_BIO*, long size); |
Vanger | 0:b86d15c6ba29 | 385 | CYASSL_API CYASSL_BIO_METHOD* CyaSSL_BIO_f_ssl(void); |
Vanger | 0:b86d15c6ba29 | 386 | CYASSL_API CYASSL_BIO* CyaSSL_BIO_new_socket(int sfd, int flag); |
Vanger | 0:b86d15c6ba29 | 387 | CYASSL_API int CyaSSL_BIO_eof(CYASSL_BIO*); |
Vanger | 0:b86d15c6ba29 | 388 | |
Vanger | 0:b86d15c6ba29 | 389 | CYASSL_API CYASSL_BIO_METHOD* CyaSSL_BIO_s_mem(void); |
Vanger | 0:b86d15c6ba29 | 390 | CYASSL_API CYASSL_BIO_METHOD* CyaSSL_BIO_f_base64(void); |
Vanger | 0:b86d15c6ba29 | 391 | CYASSL_API void CyaSSL_BIO_set_flags(CYASSL_BIO*, int); |
Vanger | 0:b86d15c6ba29 | 392 | |
Vanger | 0:b86d15c6ba29 | 393 | CYASSL_API int CyaSSL_BIO_get_mem_data(CYASSL_BIO* bio,const unsigned char** p); |
Vanger | 0:b86d15c6ba29 | 394 | CYASSL_API CYASSL_BIO* CyaSSL_BIO_new_mem_buf(void* buf, int len); |
Vanger | 0:b86d15c6ba29 | 395 | |
Vanger | 0:b86d15c6ba29 | 396 | |
Vanger | 0:b86d15c6ba29 | 397 | CYASSL_API long CyaSSL_BIO_set_ssl(CYASSL_BIO*, CYASSL*, int flag); |
Vanger | 0:b86d15c6ba29 | 398 | CYASSL_API void CyaSSL_set_bio(CYASSL*, CYASSL_BIO* rd, CYASSL_BIO* wr); |
Vanger | 0:b86d15c6ba29 | 399 | |
Vanger | 0:b86d15c6ba29 | 400 | CYASSL_API int CyaSSL_add_all_algorithms(void); |
Vanger | 0:b86d15c6ba29 | 401 | |
Vanger | 0:b86d15c6ba29 | 402 | CYASSL_API void CyaSSL_RAND_screen(void); |
Vanger | 0:b86d15c6ba29 | 403 | CYASSL_API const char* CyaSSL_RAND_file_name(char*, unsigned long); |
Vanger | 0:b86d15c6ba29 | 404 | CYASSL_API int CyaSSL_RAND_write_file(const char*); |
Vanger | 0:b86d15c6ba29 | 405 | CYASSL_API int CyaSSL_RAND_load_file(const char*, long); |
Vanger | 0:b86d15c6ba29 | 406 | CYASSL_API int CyaSSL_RAND_egd(const char*); |
Vanger | 0:b86d15c6ba29 | 407 | CYASSL_API int CyaSSL_RAND_seed(const void*, int); |
Vanger | 0:b86d15c6ba29 | 408 | CYASSL_API void CyaSSL_RAND_add(const void*, int, double); |
Vanger | 0:b86d15c6ba29 | 409 | |
Vanger | 0:b86d15c6ba29 | 410 | CYASSL_API CYASSL_COMP_METHOD* CyaSSL_COMP_zlib(void); |
Vanger | 0:b86d15c6ba29 | 411 | CYASSL_API CYASSL_COMP_METHOD* CyaSSL_COMP_rle(void); |
Vanger | 0:b86d15c6ba29 | 412 | CYASSL_API int CyaSSL_COMP_add_compression_method(int, void*); |
Vanger | 0:b86d15c6ba29 | 413 | |
Vanger | 0:b86d15c6ba29 | 414 | CYASSL_API int CyaSSL_get_ex_new_index(long, void*, void*, void*, void*); |
Vanger | 0:b86d15c6ba29 | 415 | |
Vanger | 0:b86d15c6ba29 | 416 | CYASSL_API void CyaSSL_set_id_callback(unsigned long (*f)(void)); |
Vanger | 0:b86d15c6ba29 | 417 | CYASSL_API void CyaSSL_set_locking_callback(void (*f)(int, int, const char*, |
Vanger | 0:b86d15c6ba29 | 418 | int)); |
Vanger | 0:b86d15c6ba29 | 419 | CYASSL_API void CyaSSL_set_dynlock_create_callback(CYASSL_dynlock_value* (*f) |
Vanger | 0:b86d15c6ba29 | 420 | (const char*, int)); |
Vanger | 0:b86d15c6ba29 | 421 | CYASSL_API void CyaSSL_set_dynlock_lock_callback(void (*f)(int, |
Vanger | 0:b86d15c6ba29 | 422 | CYASSL_dynlock_value*, const char*, int)); |
Vanger | 0:b86d15c6ba29 | 423 | CYASSL_API void CyaSSL_set_dynlock_destroy_callback(void (*f) |
Vanger | 0:b86d15c6ba29 | 424 | (CYASSL_dynlock_value*, const char*, int)); |
Vanger | 0:b86d15c6ba29 | 425 | CYASSL_API int CyaSSL_num_locks(void); |
Vanger | 0:b86d15c6ba29 | 426 | |
Vanger | 0:b86d15c6ba29 | 427 | CYASSL_API CYASSL_X509* CyaSSL_X509_STORE_CTX_get_current_cert( |
Vanger | 0:b86d15c6ba29 | 428 | CYASSL_X509_STORE_CTX*); |
Vanger | 0:b86d15c6ba29 | 429 | CYASSL_API int CyaSSL_X509_STORE_CTX_get_error(CYASSL_X509_STORE_CTX*); |
Vanger | 0:b86d15c6ba29 | 430 | CYASSL_API int CyaSSL_X509_STORE_CTX_get_error_depth(CYASSL_X509_STORE_CTX*); |
Vanger | 0:b86d15c6ba29 | 431 | |
Vanger | 0:b86d15c6ba29 | 432 | CYASSL_API char* CyaSSL_X509_NAME_oneline(CYASSL_X509_NAME*, char*, int); |
Vanger | 0:b86d15c6ba29 | 433 | CYASSL_API CYASSL_X509_NAME* CyaSSL_X509_get_issuer_name(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 434 | CYASSL_API CYASSL_X509_NAME* CyaSSL_X509_get_subject_name(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 435 | CYASSL_API int CyaSSL_X509_ext_isSet_by_NID(CYASSL_X509*, int); |
Vanger | 0:b86d15c6ba29 | 436 | CYASSL_API int CyaSSL_X509_ext_get_critical_by_NID(CYASSL_X509*, int); |
Vanger | 0:b86d15c6ba29 | 437 | CYASSL_API int CyaSSL_X509_get_isCA(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 438 | CYASSL_API int CyaSSL_X509_get_isSet_pathLength(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 439 | CYASSL_API unsigned int CyaSSL_X509_get_pathLength(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 440 | CYASSL_API unsigned int CyaSSL_X509_get_keyUsage(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 441 | CYASSL_API unsigned char* CyaSSL_X509_get_authorityKeyID( |
Vanger | 0:b86d15c6ba29 | 442 | CYASSL_X509*, unsigned char*, int*); |
Vanger | 0:b86d15c6ba29 | 443 | CYASSL_API unsigned char* CyaSSL_X509_get_subjectKeyID( |
Vanger | 0:b86d15c6ba29 | 444 | CYASSL_X509*, unsigned char*, int*); |
Vanger | 0:b86d15c6ba29 | 445 | CYASSL_API int CyaSSL_X509_NAME_entry_count(CYASSL_X509_NAME*); |
Vanger | 0:b86d15c6ba29 | 446 | CYASSL_API int CyaSSL_X509_NAME_get_text_by_NID( |
Vanger | 0:b86d15c6ba29 | 447 | CYASSL_X509_NAME*, int, char*, int); |
Vanger | 0:b86d15c6ba29 | 448 | CYASSL_API int CyaSSL_X509_verify_cert(CYASSL_X509_STORE_CTX*); |
Vanger | 0:b86d15c6ba29 | 449 | CYASSL_API const char* CyaSSL_X509_verify_cert_error_string(long); |
Vanger | 0:b86d15c6ba29 | 450 | CYASSL_API int CyaSSL_X509_get_signature_type(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 451 | CYASSL_API int CyaSSL_X509_get_signature(CYASSL_X509*, unsigned char*, int*); |
Vanger | 0:b86d15c6ba29 | 452 | |
Vanger | 0:b86d15c6ba29 | 453 | CYASSL_API int CyaSSL_X509_LOOKUP_add_dir(CYASSL_X509_LOOKUP*,const char*,long); |
Vanger | 0:b86d15c6ba29 | 454 | CYASSL_API int CyaSSL_X509_LOOKUP_load_file(CYASSL_X509_LOOKUP*, const char*, |
Vanger | 0:b86d15c6ba29 | 455 | long); |
Vanger | 0:b86d15c6ba29 | 456 | CYASSL_API CYASSL_X509_LOOKUP_METHOD* CyaSSL_X509_LOOKUP_hash_dir(void); |
Vanger | 0:b86d15c6ba29 | 457 | CYASSL_API CYASSL_X509_LOOKUP_METHOD* CyaSSL_X509_LOOKUP_file(void); |
Vanger | 0:b86d15c6ba29 | 458 | |
Vanger | 0:b86d15c6ba29 | 459 | CYASSL_API CYASSL_X509_LOOKUP* CyaSSL_X509_STORE_add_lookup(CYASSL_X509_STORE*, |
Vanger | 0:b86d15c6ba29 | 460 | CYASSL_X509_LOOKUP_METHOD*); |
Vanger | 0:b86d15c6ba29 | 461 | CYASSL_API CYASSL_X509_STORE* CyaSSL_X509_STORE_new(void); |
Vanger | 0:b86d15c6ba29 | 462 | CYASSL_API void CyaSSL_X509_STORE_free(CYASSL_X509_STORE*); |
Vanger | 0:b86d15c6ba29 | 463 | CYASSL_API int CyaSSL_X509_STORE_add_cert( |
Vanger | 0:b86d15c6ba29 | 464 | CYASSL_X509_STORE*, CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 465 | CYASSL_API int CyaSSL_X509_STORE_set_default_paths(CYASSL_X509_STORE*); |
Vanger | 0:b86d15c6ba29 | 466 | CYASSL_API int CyaSSL_X509_STORE_get_by_subject(CYASSL_X509_STORE_CTX*, |
Vanger | 0:b86d15c6ba29 | 467 | int, CYASSL_X509_NAME*, CYASSL_X509_OBJECT*); |
Vanger | 0:b86d15c6ba29 | 468 | CYASSL_API CYASSL_X509_STORE_CTX* CyaSSL_X509_STORE_CTX_new(void); |
Vanger | 0:b86d15c6ba29 | 469 | CYASSL_API int CyaSSL_X509_STORE_CTX_init(CYASSL_X509_STORE_CTX*, |
Vanger | 0:b86d15c6ba29 | 470 | CYASSL_X509_STORE*, CYASSL_X509*, STACK_OF(CYASSL_X509)*); |
Vanger | 0:b86d15c6ba29 | 471 | CYASSL_API void CyaSSL_X509_STORE_CTX_free(CYASSL_X509_STORE_CTX*); |
Vanger | 0:b86d15c6ba29 | 472 | CYASSL_API void CyaSSL_X509_STORE_CTX_cleanup(CYASSL_X509_STORE_CTX*); |
Vanger | 0:b86d15c6ba29 | 473 | |
Vanger | 0:b86d15c6ba29 | 474 | CYASSL_API CYASSL_ASN1_TIME* CyaSSL_X509_CRL_get_lastUpdate(CYASSL_X509_CRL*); |
Vanger | 0:b86d15c6ba29 | 475 | CYASSL_API CYASSL_ASN1_TIME* CyaSSL_X509_CRL_get_nextUpdate(CYASSL_X509_CRL*); |
Vanger | 0:b86d15c6ba29 | 476 | |
Vanger | 0:b86d15c6ba29 | 477 | CYASSL_API CYASSL_EVP_PKEY* CyaSSL_X509_get_pubkey(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 478 | CYASSL_API int CyaSSL_X509_CRL_verify(CYASSL_X509_CRL*, CYASSL_EVP_PKEY*); |
Vanger | 0:b86d15c6ba29 | 479 | CYASSL_API void CyaSSL_X509_STORE_CTX_set_error(CYASSL_X509_STORE_CTX*, |
Vanger | 0:b86d15c6ba29 | 480 | int); |
Vanger | 0:b86d15c6ba29 | 481 | CYASSL_API void CyaSSL_X509_OBJECT_free_contents(CYASSL_X509_OBJECT*); |
Vanger | 0:b86d15c6ba29 | 482 | CYASSL_API void CyaSSL_EVP_PKEY_free(CYASSL_EVP_PKEY*); |
Vanger | 0:b86d15c6ba29 | 483 | CYASSL_API int CyaSSL_X509_cmp_current_time(const CYASSL_ASN1_TIME*); |
Vanger | 0:b86d15c6ba29 | 484 | CYASSL_API int CyaSSL_sk_X509_REVOKED_num(CYASSL_X509_REVOKED*); |
Vanger | 0:b86d15c6ba29 | 485 | |
Vanger | 0:b86d15c6ba29 | 486 | CYASSL_API CYASSL_X509_REVOKED* CyaSSL_X509_CRL_get_REVOKED(CYASSL_X509_CRL*); |
Vanger | 0:b86d15c6ba29 | 487 | CYASSL_API CYASSL_X509_REVOKED* CyaSSL_sk_X509_REVOKED_value( |
Vanger | 0:b86d15c6ba29 | 488 | CYASSL_X509_REVOKED*,int); |
Vanger | 0:b86d15c6ba29 | 489 | CYASSL_API CYASSL_ASN1_INTEGER* CyaSSL_X509_get_serialNumber(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 490 | |
Vanger | 0:b86d15c6ba29 | 491 | CYASSL_API int CyaSSL_ASN1_TIME_print(CYASSL_BIO*, const CYASSL_ASN1_TIME*); |
Vanger | 0:b86d15c6ba29 | 492 | |
Vanger | 0:b86d15c6ba29 | 493 | CYASSL_API int CyaSSL_ASN1_INTEGER_cmp(const CYASSL_ASN1_INTEGER*, |
Vanger | 0:b86d15c6ba29 | 494 | const CYASSL_ASN1_INTEGER*); |
Vanger | 0:b86d15c6ba29 | 495 | CYASSL_API long CyaSSL_ASN1_INTEGER_get(const CYASSL_ASN1_INTEGER*); |
Vanger | 0:b86d15c6ba29 | 496 | |
Vanger | 0:b86d15c6ba29 | 497 | CYASSL_API STACK_OF(CYASSL_X509_NAME)* CyaSSL_load_client_CA_file(const char*); |
Vanger | 0:b86d15c6ba29 | 498 | |
Vanger | 0:b86d15c6ba29 | 499 | CYASSL_API void CyaSSL_CTX_set_client_CA_list(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 500 | STACK_OF(CYASSL_X509_NAME)*); |
Vanger | 0:b86d15c6ba29 | 501 | CYASSL_API void* CyaSSL_X509_STORE_CTX_get_ex_data(CYASSL_X509_STORE_CTX*, int); |
Vanger | 0:b86d15c6ba29 | 502 | CYASSL_API int CyaSSL_get_ex_data_X509_STORE_CTX_idx(void); |
Vanger | 0:b86d15c6ba29 | 503 | CYASSL_API void* CyaSSL_get_ex_data(const CYASSL*, int); |
Vanger | 0:b86d15c6ba29 | 504 | |
Vanger | 0:b86d15c6ba29 | 505 | CYASSL_API void CyaSSL_CTX_set_default_passwd_cb_userdata(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 506 | void* userdata); |
Vanger | 0:b86d15c6ba29 | 507 | CYASSL_API void CyaSSL_CTX_set_default_passwd_cb(CYASSL_CTX*, pem_password_cb); |
Vanger | 0:b86d15c6ba29 | 508 | |
Vanger | 0:b86d15c6ba29 | 509 | |
Vanger | 0:b86d15c6ba29 | 510 | CYASSL_API void CyaSSL_CTX_set_info_callback(CYASSL_CTX*, void (*)(void)); |
Vanger | 0:b86d15c6ba29 | 511 | |
Vanger | 0:b86d15c6ba29 | 512 | CYASSL_API unsigned long CyaSSL_ERR_peek_error(void); |
Vanger | 0:b86d15c6ba29 | 513 | CYASSL_API int CyaSSL_GET_REASON(int); |
Vanger | 0:b86d15c6ba29 | 514 | |
Vanger | 0:b86d15c6ba29 | 515 | CYASSL_API char* CyaSSL_alert_type_string_long(int); |
Vanger | 0:b86d15c6ba29 | 516 | CYASSL_API char* CyaSSL_alert_desc_string_long(int); |
Vanger | 0:b86d15c6ba29 | 517 | CYASSL_API char* CyaSSL_state_string_long(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 518 | |
Vanger | 0:b86d15c6ba29 | 519 | CYASSL_API CYASSL_RSA* CyaSSL_RSA_generate_key(int, unsigned long, |
Vanger | 0:b86d15c6ba29 | 520 | void(*)(int, int, void*), void*); |
Vanger | 0:b86d15c6ba29 | 521 | CYASSL_API void CyaSSL_CTX_set_tmp_rsa_callback(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 522 | CYASSL_RSA*(*)(CYASSL*, int, int)); |
Vanger | 0:b86d15c6ba29 | 523 | |
Vanger | 0:b86d15c6ba29 | 524 | CYASSL_API int CyaSSL_PEM_def_callback(char*, int num, int w, void* key); |
Vanger | 0:b86d15c6ba29 | 525 | |
Vanger | 0:b86d15c6ba29 | 526 | CYASSL_API long CyaSSL_CTX_sess_accept(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 527 | CYASSL_API long CyaSSL_CTX_sess_connect(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 528 | CYASSL_API long CyaSSL_CTX_sess_accept_good(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 529 | CYASSL_API long CyaSSL_CTX_sess_connect_good(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 530 | CYASSL_API long CyaSSL_CTX_sess_accept_renegotiate(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 531 | CYASSL_API long CyaSSL_CTX_sess_connect_renegotiate(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 532 | CYASSL_API long CyaSSL_CTX_sess_hits(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 533 | CYASSL_API long CyaSSL_CTX_sess_cb_hits(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 534 | CYASSL_API long CyaSSL_CTX_sess_cache_full(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 535 | CYASSL_API long CyaSSL_CTX_sess_misses(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 536 | CYASSL_API long CyaSSL_CTX_sess_timeouts(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 537 | CYASSL_API long CyaSSL_CTX_sess_number(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 538 | CYASSL_API long CyaSSL_CTX_sess_get_cache_size(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 539 | |
Vanger | 0:b86d15c6ba29 | 540 | #define CYASSL_DEFAULT_CIPHER_LIST "" /* default all */ |
Vanger | 0:b86d15c6ba29 | 541 | #define CYASSL_RSA_F4 0x10001L |
Vanger | 0:b86d15c6ba29 | 542 | |
Vanger | 0:b86d15c6ba29 | 543 | enum { |
Vanger | 0:b86d15c6ba29 | 544 | OCSP_NOCERTS = 1, |
Vanger | 0:b86d15c6ba29 | 545 | OCSP_NOINTERN = 2, |
Vanger | 0:b86d15c6ba29 | 546 | OCSP_NOSIGS = 4, |
Vanger | 0:b86d15c6ba29 | 547 | OCSP_NOCHAIN = 8, |
Vanger | 0:b86d15c6ba29 | 548 | OCSP_NOVERIFY = 16, |
Vanger | 0:b86d15c6ba29 | 549 | OCSP_NOEXPLICIT = 32, |
Vanger | 0:b86d15c6ba29 | 550 | OCSP_NOCASIGN = 64, |
Vanger | 0:b86d15c6ba29 | 551 | OCSP_NODELEGATED = 128, |
Vanger | 0:b86d15c6ba29 | 552 | OCSP_NOCHECKS = 256, |
Vanger | 0:b86d15c6ba29 | 553 | OCSP_TRUSTOTHER = 512, |
Vanger | 0:b86d15c6ba29 | 554 | OCSP_RESPID_KEY = 1024, |
Vanger | 0:b86d15c6ba29 | 555 | OCSP_NOTIME = 2048, |
Vanger | 0:b86d15c6ba29 | 556 | |
Vanger | 0:b86d15c6ba29 | 557 | OCSP_CERTID = 2, |
Vanger | 0:b86d15c6ba29 | 558 | OCSP_REQUEST = 4, |
Vanger | 0:b86d15c6ba29 | 559 | OCSP_RESPONSE = 8, |
Vanger | 0:b86d15c6ba29 | 560 | OCSP_BASICRESP = 16, |
Vanger | 0:b86d15c6ba29 | 561 | |
Vanger | 0:b86d15c6ba29 | 562 | CYASSL_OCSP_URL_OVERRIDE = 1, |
Vanger | 0:b86d15c6ba29 | 563 | CYASSL_OCSP_NO_NONCE = 2, |
Vanger | 0:b86d15c6ba29 | 564 | |
Vanger | 0:b86d15c6ba29 | 565 | CYASSL_CRL_CHECKALL = 1, |
Vanger | 0:b86d15c6ba29 | 566 | |
Vanger | 0:b86d15c6ba29 | 567 | ASN1_GENERALIZEDTIME = 4, |
Vanger | 0:b86d15c6ba29 | 568 | |
Vanger | 0:b86d15c6ba29 | 569 | SSL_OP_MICROSOFT_SESS_ID_BUG = 1, |
Vanger | 0:b86d15c6ba29 | 570 | SSL_OP_NETSCAPE_CHALLENGE_BUG = 2, |
Vanger | 0:b86d15c6ba29 | 571 | SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG = 3, |
Vanger | 0:b86d15c6ba29 | 572 | SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG = 4, |
Vanger | 0:b86d15c6ba29 | 573 | SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER = 5, |
Vanger | 0:b86d15c6ba29 | 574 | SSL_OP_MSIE_SSLV2_RSA_PADDING = 6, |
Vanger | 0:b86d15c6ba29 | 575 | SSL_OP_SSLEAY_080_CLIENT_DH_BUG = 7, |
Vanger | 0:b86d15c6ba29 | 576 | SSL_OP_TLS_D5_BUG = 8, |
Vanger | 0:b86d15c6ba29 | 577 | SSL_OP_TLS_BLOCK_PADDING_BUG = 9, |
Vanger | 0:b86d15c6ba29 | 578 | SSL_OP_TLS_ROLLBACK_BUG = 10, |
Vanger | 0:b86d15c6ba29 | 579 | SSL_OP_ALL = 11, |
Vanger | 0:b86d15c6ba29 | 580 | SSL_OP_EPHEMERAL_RSA = 12, |
Vanger | 0:b86d15c6ba29 | 581 | SSL_OP_NO_SSLv3 = 13, |
Vanger | 0:b86d15c6ba29 | 582 | SSL_OP_NO_TLSv1 = 14, |
Vanger | 0:b86d15c6ba29 | 583 | SSL_OP_PKCS1_CHECK_1 = 15, |
Vanger | 0:b86d15c6ba29 | 584 | SSL_OP_PKCS1_CHECK_2 = 16, |
Vanger | 0:b86d15c6ba29 | 585 | SSL_OP_NETSCAPE_CA_DN_BUG = 17, |
Vanger | 0:b86d15c6ba29 | 586 | SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG = 18, |
Vanger | 0:b86d15c6ba29 | 587 | SSL_OP_SINGLE_DH_USE = 19, |
Vanger | 0:b86d15c6ba29 | 588 | SSL_OP_NO_TICKET = 20, |
Vanger | 0:b86d15c6ba29 | 589 | SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS = 21, |
Vanger | 0:b86d15c6ba29 | 590 | SSL_OP_NO_QUERY_MTU = 22, |
Vanger | 0:b86d15c6ba29 | 591 | SSL_OP_COOKIE_EXCHANGE = 23, |
Vanger | 0:b86d15c6ba29 | 592 | SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION = 24, |
Vanger | 0:b86d15c6ba29 | 593 | SSL_OP_SINGLE_ECDH_USE = 25, |
Vanger | 0:b86d15c6ba29 | 594 | SSL_OP_CIPHER_SERVER_PREFERENCE = 26, |
Vanger | 0:b86d15c6ba29 | 595 | |
Vanger | 0:b86d15c6ba29 | 596 | SSL_MAX_SSL_SESSION_ID_LENGTH = 32, |
Vanger | 0:b86d15c6ba29 | 597 | |
Vanger | 0:b86d15c6ba29 | 598 | EVP_R_BAD_DECRYPT = 2, |
Vanger | 0:b86d15c6ba29 | 599 | |
Vanger | 0:b86d15c6ba29 | 600 | SSL_CB_LOOP = 4, |
Vanger | 0:b86d15c6ba29 | 601 | SSL_ST_CONNECT = 5, |
Vanger | 0:b86d15c6ba29 | 602 | SSL_ST_ACCEPT = 6, |
Vanger | 0:b86d15c6ba29 | 603 | SSL_CB_ALERT = 7, |
Vanger | 0:b86d15c6ba29 | 604 | SSL_CB_READ = 8, |
Vanger | 0:b86d15c6ba29 | 605 | SSL_CB_HANDSHAKE_DONE = 9, |
Vanger | 0:b86d15c6ba29 | 606 | |
Vanger | 0:b86d15c6ba29 | 607 | SSL_MODE_ENABLE_PARTIAL_WRITE = 2, |
Vanger | 0:b86d15c6ba29 | 608 | |
Vanger | 0:b86d15c6ba29 | 609 | BIO_FLAGS_BASE64_NO_NL = 1, |
Vanger | 0:b86d15c6ba29 | 610 | BIO_CLOSE = 1, |
Vanger | 0:b86d15c6ba29 | 611 | BIO_NOCLOSE = 0, |
Vanger | 0:b86d15c6ba29 | 612 | |
Vanger | 0:b86d15c6ba29 | 613 | NID_undef = 0, |
Vanger | 0:b86d15c6ba29 | 614 | |
Vanger | 0:b86d15c6ba29 | 615 | X509_FILETYPE_PEM = 8, |
Vanger | 0:b86d15c6ba29 | 616 | X509_LU_X509 = 9, |
Vanger | 0:b86d15c6ba29 | 617 | X509_LU_CRL = 12, |
Vanger | 0:b86d15c6ba29 | 618 | |
Vanger | 0:b86d15c6ba29 | 619 | X509_V_ERR_CRL_SIGNATURE_FAILURE = 13, |
Vanger | 0:b86d15c6ba29 | 620 | X509_V_ERR_ERROR_IN_CRL_NEXT_UPDATE_FIELD = 14, |
Vanger | 0:b86d15c6ba29 | 621 | X509_V_ERR_CRL_HAS_EXPIRED = 15, |
Vanger | 0:b86d15c6ba29 | 622 | X509_V_ERR_CERT_REVOKED = 16, |
Vanger | 0:b86d15c6ba29 | 623 | X509_V_ERR_CERT_CHAIN_TOO_LONG = 17, |
Vanger | 0:b86d15c6ba29 | 624 | X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT = 18, |
Vanger | 0:b86d15c6ba29 | 625 | X509_V_ERR_CERT_NOT_YET_VALID = 19, |
Vanger | 0:b86d15c6ba29 | 626 | X509_V_ERR_ERROR_IN_CERT_NOT_BEFORE_FIELD = 20, |
Vanger | 0:b86d15c6ba29 | 627 | X509_V_ERR_CERT_HAS_EXPIRED = 21, |
Vanger | 0:b86d15c6ba29 | 628 | X509_V_ERR_ERROR_IN_CERT_NOT_AFTER_FIELD = 22, |
Vanger | 0:b86d15c6ba29 | 629 | |
Vanger | 0:b86d15c6ba29 | 630 | X509_V_OK = 0, |
Vanger | 0:b86d15c6ba29 | 631 | |
Vanger | 0:b86d15c6ba29 | 632 | CRYPTO_LOCK = 1, |
Vanger | 0:b86d15c6ba29 | 633 | CRYPTO_NUM_LOCKS = 10 |
Vanger | 0:b86d15c6ba29 | 634 | }; |
Vanger | 0:b86d15c6ba29 | 635 | |
Vanger | 0:b86d15c6ba29 | 636 | /* extras end */ |
Vanger | 0:b86d15c6ba29 | 637 | |
Vanger | 0:b86d15c6ba29 | 638 | #if !defined(NO_FILESYSTEM) && !defined(NO_STDIO_FILESYSTEM) |
Vanger | 0:b86d15c6ba29 | 639 | /* CyaSSL extension, provide last error from SSL_get_error |
Vanger | 0:b86d15c6ba29 | 640 | since not using thread storage error queue */ |
Vanger | 0:b86d15c6ba29 | 641 | CYASSL_API void CyaSSL_ERR_print_errors_fp(FILE*, int err); |
Vanger | 0:b86d15c6ba29 | 642 | #endif |
Vanger | 0:b86d15c6ba29 | 643 | |
Vanger | 0:b86d15c6ba29 | 644 | enum { /* ssl Constants */ |
Vanger | 0:b86d15c6ba29 | 645 | SSL_ERROR_NONE = 0, /* for most functions */ |
Vanger | 0:b86d15c6ba29 | 646 | SSL_FAILURE = 0, /* for some functions */ |
Vanger | 0:b86d15c6ba29 | 647 | SSL_SUCCESS = 1, |
Vanger | 0:b86d15c6ba29 | 648 | |
Vanger | 0:b86d15c6ba29 | 649 | SSL_BAD_CERTTYPE = -8, |
Vanger | 0:b86d15c6ba29 | 650 | SSL_BAD_STAT = -7, |
Vanger | 0:b86d15c6ba29 | 651 | SSL_BAD_PATH = -6, |
Vanger | 0:b86d15c6ba29 | 652 | SSL_BAD_FILETYPE = -5, |
Vanger | 0:b86d15c6ba29 | 653 | SSL_BAD_FILE = -4, |
Vanger | 0:b86d15c6ba29 | 654 | SSL_NOT_IMPLEMENTED = -3, |
Vanger | 0:b86d15c6ba29 | 655 | SSL_UNKNOWN = -2, |
Vanger | 0:b86d15c6ba29 | 656 | SSL_FATAL_ERROR = -1, |
Vanger | 0:b86d15c6ba29 | 657 | |
Vanger | 0:b86d15c6ba29 | 658 | SSL_FILETYPE_ASN1 = 2, |
Vanger | 0:b86d15c6ba29 | 659 | SSL_FILETYPE_PEM = 1, |
Vanger | 0:b86d15c6ba29 | 660 | SSL_FILETYPE_DEFAULT = 2, /* ASN1 */ |
Vanger | 0:b86d15c6ba29 | 661 | SSL_FILETYPE_RAW = 3, /* NTRU raw key blob */ |
Vanger | 0:b86d15c6ba29 | 662 | |
Vanger | 0:b86d15c6ba29 | 663 | SSL_VERIFY_NONE = 0, |
Vanger | 0:b86d15c6ba29 | 664 | SSL_VERIFY_PEER = 1, |
Vanger | 0:b86d15c6ba29 | 665 | SSL_VERIFY_FAIL_IF_NO_PEER_CERT = 2, |
Vanger | 0:b86d15c6ba29 | 666 | SSL_VERIFY_CLIENT_ONCE = 4, |
Vanger | 0:b86d15c6ba29 | 667 | |
Vanger | 0:b86d15c6ba29 | 668 | SSL_SESS_CACHE_OFF = 30, |
Vanger | 0:b86d15c6ba29 | 669 | SSL_SESS_CACHE_CLIENT = 31, |
Vanger | 0:b86d15c6ba29 | 670 | SSL_SESS_CACHE_SERVER = 32, |
Vanger | 0:b86d15c6ba29 | 671 | SSL_SESS_CACHE_BOTH = 33, |
Vanger | 0:b86d15c6ba29 | 672 | SSL_SESS_CACHE_NO_AUTO_CLEAR = 34, |
Vanger | 0:b86d15c6ba29 | 673 | SSL_SESS_CACHE_NO_INTERNAL_LOOKUP = 35, |
Vanger | 0:b86d15c6ba29 | 674 | |
Vanger | 0:b86d15c6ba29 | 675 | SSL_ERROR_WANT_READ = 2, |
Vanger | 0:b86d15c6ba29 | 676 | SSL_ERROR_WANT_WRITE = 3, |
Vanger | 0:b86d15c6ba29 | 677 | SSL_ERROR_WANT_CONNECT = 7, |
Vanger | 0:b86d15c6ba29 | 678 | SSL_ERROR_WANT_ACCEPT = 8, |
Vanger | 0:b86d15c6ba29 | 679 | SSL_ERROR_SYSCALL = 5, |
Vanger | 0:b86d15c6ba29 | 680 | SSL_ERROR_WANT_X509_LOOKUP = 83, |
Vanger | 0:b86d15c6ba29 | 681 | SSL_ERROR_ZERO_RETURN = 6, |
Vanger | 0:b86d15c6ba29 | 682 | SSL_ERROR_SSL = 85, |
Vanger | 0:b86d15c6ba29 | 683 | |
Vanger | 0:b86d15c6ba29 | 684 | SSL_SENT_SHUTDOWN = 1, |
Vanger | 0:b86d15c6ba29 | 685 | SSL_RECEIVED_SHUTDOWN = 2, |
Vanger | 0:b86d15c6ba29 | 686 | SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER = 4, |
Vanger | 0:b86d15c6ba29 | 687 | SSL_OP_NO_SSLv2 = 8, |
Vanger | 0:b86d15c6ba29 | 688 | |
Vanger | 0:b86d15c6ba29 | 689 | SSL_R_SSL_HANDSHAKE_FAILURE = 101, |
Vanger | 0:b86d15c6ba29 | 690 | SSL_R_TLSV1_ALERT_UNKNOWN_CA = 102, |
Vanger | 0:b86d15c6ba29 | 691 | SSL_R_SSLV3_ALERT_CERTIFICATE_UNKNOWN = 103, |
Vanger | 0:b86d15c6ba29 | 692 | SSL_R_SSLV3_ALERT_BAD_CERTIFICATE = 104, |
Vanger | 0:b86d15c6ba29 | 693 | |
Vanger | 0:b86d15c6ba29 | 694 | PEM_BUFSIZE = 1024 |
Vanger | 0:b86d15c6ba29 | 695 | }; |
Vanger | 0:b86d15c6ba29 | 696 | |
Vanger | 0:b86d15c6ba29 | 697 | |
Vanger | 0:b86d15c6ba29 | 698 | #ifndef NO_PSK |
Vanger | 0:b86d15c6ba29 | 699 | typedef unsigned int (*psk_client_callback)(CYASSL*, const char*, char*, |
Vanger | 0:b86d15c6ba29 | 700 | unsigned int, unsigned char*, unsigned int); |
Vanger | 0:b86d15c6ba29 | 701 | CYASSL_API void CyaSSL_CTX_set_psk_client_callback(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 702 | psk_client_callback); |
Vanger | 0:b86d15c6ba29 | 703 | CYASSL_API void CyaSSL_set_psk_client_callback(CYASSL*,psk_client_callback); |
Vanger | 0:b86d15c6ba29 | 704 | |
Vanger | 0:b86d15c6ba29 | 705 | CYASSL_API const char* CyaSSL_get_psk_identity_hint(const CYASSL*); |
Vanger | 0:b86d15c6ba29 | 706 | CYASSL_API const char* CyaSSL_get_psk_identity(const CYASSL*); |
Vanger | 0:b86d15c6ba29 | 707 | |
Vanger | 0:b86d15c6ba29 | 708 | CYASSL_API int CyaSSL_CTX_use_psk_identity_hint(CYASSL_CTX*, const char*); |
Vanger | 0:b86d15c6ba29 | 709 | CYASSL_API int CyaSSL_use_psk_identity_hint(CYASSL*, const char*); |
Vanger | 0:b86d15c6ba29 | 710 | |
Vanger | 0:b86d15c6ba29 | 711 | typedef unsigned int (*psk_server_callback)(CYASSL*, const char*, |
Vanger | 0:b86d15c6ba29 | 712 | unsigned char*, unsigned int); |
Vanger | 0:b86d15c6ba29 | 713 | CYASSL_API void CyaSSL_CTX_set_psk_server_callback(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 714 | psk_server_callback); |
Vanger | 0:b86d15c6ba29 | 715 | CYASSL_API void CyaSSL_set_psk_server_callback(CYASSL*,psk_server_callback); |
Vanger | 0:b86d15c6ba29 | 716 | |
Vanger | 0:b86d15c6ba29 | 717 | #define PSK_TYPES_DEFINED |
Vanger | 0:b86d15c6ba29 | 718 | #endif /* NO_PSK */ |
Vanger | 0:b86d15c6ba29 | 719 | |
Vanger | 0:b86d15c6ba29 | 720 | |
Vanger | 0:b86d15c6ba29 | 721 | #ifdef HAVE_ANON |
Vanger | 0:b86d15c6ba29 | 722 | CYASSL_API int CyaSSL_CTX_allow_anon_cipher(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 723 | #endif /* HAVE_ANON */ |
Vanger | 0:b86d15c6ba29 | 724 | |
Vanger | 0:b86d15c6ba29 | 725 | |
Vanger | 0:b86d15c6ba29 | 726 | /* extra begins */ |
Vanger | 0:b86d15c6ba29 | 727 | |
Vanger | 0:b86d15c6ba29 | 728 | enum { /* ERR Constants */ |
Vanger | 0:b86d15c6ba29 | 729 | ERR_TXT_STRING = 1 |
Vanger | 0:b86d15c6ba29 | 730 | }; |
Vanger | 0:b86d15c6ba29 | 731 | |
Vanger | 0:b86d15c6ba29 | 732 | CYASSL_API unsigned long CyaSSL_ERR_get_error_line_data(const char**, int*, |
Vanger | 0:b86d15c6ba29 | 733 | const char**, int *); |
Vanger | 0:b86d15c6ba29 | 734 | |
Vanger | 0:b86d15c6ba29 | 735 | CYASSL_API unsigned long CyaSSL_ERR_get_error(void); |
Vanger | 0:b86d15c6ba29 | 736 | CYASSL_API void CyaSSL_ERR_clear_error(void); |
Vanger | 0:b86d15c6ba29 | 737 | |
Vanger | 0:b86d15c6ba29 | 738 | |
Vanger | 0:b86d15c6ba29 | 739 | CYASSL_API int CyaSSL_RAND_status(void); |
Vanger | 0:b86d15c6ba29 | 740 | CYASSL_API int CyaSSL_RAND_bytes(unsigned char* buf, int num); |
Vanger | 0:b86d15c6ba29 | 741 | CYASSL_API CYASSL_METHOD *CyaSSLv23_server_method(void); |
Vanger | 0:b86d15c6ba29 | 742 | CYASSL_API long CyaSSL_CTX_set_options(CYASSL_CTX*, long); |
Vanger | 0:b86d15c6ba29 | 743 | #ifndef NO_CERTS |
Vanger | 0:b86d15c6ba29 | 744 | CYASSL_API int CyaSSL_CTX_check_private_key(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 745 | #endif /* !NO_CERTS */ |
Vanger | 0:b86d15c6ba29 | 746 | |
Vanger | 0:b86d15c6ba29 | 747 | CYASSL_API void CyaSSL_ERR_free_strings(void); |
Vanger | 0:b86d15c6ba29 | 748 | CYASSL_API void CyaSSL_ERR_remove_state(unsigned long); |
Vanger | 0:b86d15c6ba29 | 749 | CYASSL_API void CyaSSL_EVP_cleanup(void); |
Vanger | 0:b86d15c6ba29 | 750 | |
Vanger | 0:b86d15c6ba29 | 751 | CYASSL_API void CyaSSL_cleanup_all_ex_data(void); |
Vanger | 0:b86d15c6ba29 | 752 | CYASSL_API long CyaSSL_CTX_set_mode(CYASSL_CTX* ctx, long mode); |
Vanger | 0:b86d15c6ba29 | 753 | CYASSL_API long CyaSSL_CTX_get_mode(CYASSL_CTX* ctx); |
Vanger | 0:b86d15c6ba29 | 754 | CYASSL_API void CyaSSL_CTX_set_default_read_ahead(CYASSL_CTX* ctx, int m); |
Vanger | 0:b86d15c6ba29 | 755 | |
Vanger | 0:b86d15c6ba29 | 756 | CYASSL_API long CyaSSL_CTX_sess_set_cache_size(CYASSL_CTX*, long); |
Vanger | 0:b86d15c6ba29 | 757 | |
Vanger | 0:b86d15c6ba29 | 758 | CYASSL_API int CyaSSL_CTX_set_default_verify_paths(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 759 | CYASSL_API int CyaSSL_CTX_set_session_id_context(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 760 | const unsigned char*, unsigned int); |
Vanger | 0:b86d15c6ba29 | 761 | CYASSL_API CYASSL_X509* CyaSSL_get_peer_certificate(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 762 | |
Vanger | 0:b86d15c6ba29 | 763 | CYASSL_API int CyaSSL_want_read(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 764 | CYASSL_API int CyaSSL_want_write(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 765 | |
Vanger | 0:b86d15c6ba29 | 766 | CYASSL_API int CyaSSL_BIO_printf(CYASSL_BIO*, const char*, ...); |
Vanger | 0:b86d15c6ba29 | 767 | CYASSL_API int CyaSSL_ASN1_UTCTIME_print(CYASSL_BIO*, |
Vanger | 0:b86d15c6ba29 | 768 | const CYASSL_ASN1_UTCTIME*); |
Vanger | 0:b86d15c6ba29 | 769 | CYASSL_API int CyaSSL_sk_num(CYASSL_X509_REVOKED*); |
Vanger | 0:b86d15c6ba29 | 770 | CYASSL_API void* CyaSSL_sk_value(CYASSL_X509_REVOKED*, int); |
Vanger | 0:b86d15c6ba29 | 771 | |
Vanger | 0:b86d15c6ba29 | 772 | /* stunnel 4.28 needs */ |
Vanger | 0:b86d15c6ba29 | 773 | CYASSL_API void* CyaSSL_CTX_get_ex_data(const CYASSL_CTX*, int); |
Vanger | 0:b86d15c6ba29 | 774 | CYASSL_API int CyaSSL_CTX_set_ex_data(CYASSL_CTX*, int, void*); |
Vanger | 0:b86d15c6ba29 | 775 | CYASSL_API void CyaSSL_CTX_sess_set_get_cb(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 776 | CYASSL_SESSION*(*f)(CYASSL*, unsigned char*, int, int*)); |
Vanger | 0:b86d15c6ba29 | 777 | CYASSL_API void CyaSSL_CTX_sess_set_new_cb(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 778 | int (*f)(CYASSL*, CYASSL_SESSION*)); |
Vanger | 0:b86d15c6ba29 | 779 | CYASSL_API void CyaSSL_CTX_sess_set_remove_cb(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 780 | void (*f)(CYASSL_CTX*, CYASSL_SESSION*)); |
Vanger | 0:b86d15c6ba29 | 781 | |
Vanger | 0:b86d15c6ba29 | 782 | CYASSL_API int CyaSSL_i2d_SSL_SESSION(CYASSL_SESSION*,unsigned char**); |
Vanger | 0:b86d15c6ba29 | 783 | CYASSL_API CYASSL_SESSION* CyaSSL_d2i_SSL_SESSION(CYASSL_SESSION**, |
Vanger | 0:b86d15c6ba29 | 784 | const unsigned char**, long); |
Vanger | 0:b86d15c6ba29 | 785 | |
Vanger | 0:b86d15c6ba29 | 786 | CYASSL_API long CyaSSL_SESSION_get_timeout(const CYASSL_SESSION*); |
Vanger | 0:b86d15c6ba29 | 787 | CYASSL_API long CyaSSL_SESSION_get_time(const CYASSL_SESSION*); |
Vanger | 0:b86d15c6ba29 | 788 | CYASSL_API int CyaSSL_CTX_get_ex_new_index(long, void*, void*, void*, void*); |
Vanger | 0:b86d15c6ba29 | 789 | |
Vanger | 0:b86d15c6ba29 | 790 | /* extra ends */ |
Vanger | 0:b86d15c6ba29 | 791 | |
Vanger | 0:b86d15c6ba29 | 792 | |
Vanger | 0:b86d15c6ba29 | 793 | /* CyaSSL extensions */ |
Vanger | 0:b86d15c6ba29 | 794 | |
Vanger | 0:b86d15c6ba29 | 795 | /* call before SSL_connect, if verifying will add name check to |
Vanger | 0:b86d15c6ba29 | 796 | date check and signature check */ |
Vanger | 0:b86d15c6ba29 | 797 | CYASSL_API int CyaSSL_check_domain_name(CYASSL* ssl, const char* dn); |
Vanger | 0:b86d15c6ba29 | 798 | |
Vanger | 0:b86d15c6ba29 | 799 | /* need to call once to load library (session cache) */ |
Vanger | 0:b86d15c6ba29 | 800 | CYASSL_API int CyaSSL_Init(void); |
Vanger | 0:b86d15c6ba29 | 801 | /* call when done to cleanup/free session cache mutex / resources */ |
Vanger | 0:b86d15c6ba29 | 802 | CYASSL_API int CyaSSL_Cleanup(void); |
Vanger | 0:b86d15c6ba29 | 803 | |
Vanger | 0:b86d15c6ba29 | 804 | /* turn logging on, only if compiled in */ |
Vanger | 0:b86d15c6ba29 | 805 | CYASSL_API int CyaSSL_Debugging_ON(void); |
Vanger | 0:b86d15c6ba29 | 806 | /* turn logging off */ |
Vanger | 0:b86d15c6ba29 | 807 | CYASSL_API void CyaSSL_Debugging_OFF(void); |
Vanger | 0:b86d15c6ba29 | 808 | |
Vanger | 0:b86d15c6ba29 | 809 | /* do accept or connect depedning on side */ |
Vanger | 0:b86d15c6ba29 | 810 | CYASSL_API int CyaSSL_negotiate(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 811 | /* turn on CyaSSL data compression */ |
Vanger | 0:b86d15c6ba29 | 812 | CYASSL_API int CyaSSL_set_compression(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 813 | |
Vanger | 0:b86d15c6ba29 | 814 | CYASSL_API int CyaSSL_set_timeout(CYASSL*, unsigned int); |
Vanger | 0:b86d15c6ba29 | 815 | CYASSL_API int CyaSSL_CTX_set_timeout(CYASSL_CTX*, unsigned int); |
Vanger | 0:b86d15c6ba29 | 816 | |
Vanger | 0:b86d15c6ba29 | 817 | /* get CyaSSL peer X509_CHAIN */ |
Vanger | 0:b86d15c6ba29 | 818 | CYASSL_API CYASSL_X509_CHAIN* CyaSSL_get_peer_chain(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 819 | /* peer chain count */ |
Vanger | 0:b86d15c6ba29 | 820 | CYASSL_API int CyaSSL_get_chain_count(CYASSL_X509_CHAIN* chain); |
Vanger | 0:b86d15c6ba29 | 821 | /* index cert length */ |
Vanger | 0:b86d15c6ba29 | 822 | CYASSL_API int CyaSSL_get_chain_length(CYASSL_X509_CHAIN*, int idx); |
Vanger | 0:b86d15c6ba29 | 823 | /* index cert */ |
Vanger | 0:b86d15c6ba29 | 824 | CYASSL_API unsigned char* CyaSSL_get_chain_cert(CYASSL_X509_CHAIN*, int idx); |
Vanger | 0:b86d15c6ba29 | 825 | /* index cert in X509 */ |
Vanger | 0:b86d15c6ba29 | 826 | CYASSL_API CYASSL_X509* CyaSSL_get_chain_X509(CYASSL_X509_CHAIN*, int idx); |
Vanger | 0:b86d15c6ba29 | 827 | /* free X509 */ |
Vanger | 0:b86d15c6ba29 | 828 | CYASSL_API void CyaSSL_FreeX509(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 829 | /* get index cert in PEM */ |
Vanger | 0:b86d15c6ba29 | 830 | CYASSL_API int CyaSSL_get_chain_cert_pem(CYASSL_X509_CHAIN*, int idx, |
Vanger | 0:b86d15c6ba29 | 831 | unsigned char* buffer, int inLen, int* outLen); |
Vanger | 0:b86d15c6ba29 | 832 | CYASSL_API const unsigned char* CyaSSL_get_sessionID(const CYASSL_SESSION* s); |
Vanger | 0:b86d15c6ba29 | 833 | CYASSL_API int CyaSSL_X509_get_serial_number(CYASSL_X509*,unsigned char*,int*); |
Vanger | 0:b86d15c6ba29 | 834 | CYASSL_API char* CyaSSL_X509_get_subjectCN(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 835 | CYASSL_API const unsigned char* CyaSSL_X509_get_der(CYASSL_X509*, int*); |
Vanger | 0:b86d15c6ba29 | 836 | CYASSL_API const unsigned char* CyaSSL_X509_notBefore(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 837 | CYASSL_API const unsigned char* CyaSSL_X509_notAfter(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 838 | CYASSL_API int CyaSSL_X509_version(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 839 | CYASSL_API |
Vanger | 0:b86d15c6ba29 | 840 | |
Vanger | 0:b86d15c6ba29 | 841 | CYASSL_API int CyaSSL_cmp_peer_cert_to_file(CYASSL*, const char*); |
Vanger | 0:b86d15c6ba29 | 842 | |
Vanger | 0:b86d15c6ba29 | 843 | CYASSL_API char* CyaSSL_X509_get_next_altname(CYASSL_X509*); |
Vanger | 0:b86d15c6ba29 | 844 | |
Vanger | 0:b86d15c6ba29 | 845 | CYASSL_API CYASSL_X509* |
Vanger | 0:b86d15c6ba29 | 846 | CyaSSL_X509_d2i(CYASSL_X509** x509, const unsigned char* in, int len); |
Vanger | 0:b86d15c6ba29 | 847 | #ifndef NO_FILESYSTEM |
Vanger | 0:b86d15c6ba29 | 848 | #ifndef NO_STDIO_FILESYSTEM |
Vanger | 0:b86d15c6ba29 | 849 | CYASSL_API CYASSL_X509* |
Vanger | 0:b86d15c6ba29 | 850 | CyaSSL_X509_d2i_fp(CYASSL_X509** x509, FILE* file); |
Vanger | 0:b86d15c6ba29 | 851 | #endif |
Vanger | 0:b86d15c6ba29 | 852 | CYASSL_API CYASSL_X509* |
Vanger | 0:b86d15c6ba29 | 853 | CyaSSL_X509_load_certificate_file(const char* fname, int format); |
Vanger | 0:b86d15c6ba29 | 854 | #endif |
Vanger | 0:b86d15c6ba29 | 855 | |
Vanger | 0:b86d15c6ba29 | 856 | #ifdef CYASSL_SEP |
Vanger | 0:b86d15c6ba29 | 857 | CYASSL_API unsigned char* |
Vanger | 0:b86d15c6ba29 | 858 | CyaSSL_X509_get_device_type(CYASSL_X509*, unsigned char*, int*); |
Vanger | 0:b86d15c6ba29 | 859 | CYASSL_API unsigned char* |
Vanger | 0:b86d15c6ba29 | 860 | CyaSSL_X509_get_hw_type(CYASSL_X509*, unsigned char*, int*); |
Vanger | 0:b86d15c6ba29 | 861 | CYASSL_API unsigned char* |
Vanger | 0:b86d15c6ba29 | 862 | CyaSSL_X509_get_hw_serial_number(CYASSL_X509*, unsigned char*, int*); |
Vanger | 0:b86d15c6ba29 | 863 | #endif |
Vanger | 0:b86d15c6ba29 | 864 | |
Vanger | 0:b86d15c6ba29 | 865 | /* connect enough to get peer cert */ |
Vanger | 0:b86d15c6ba29 | 866 | CYASSL_API int CyaSSL_connect_cert(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 867 | |
Vanger | 0:b86d15c6ba29 | 868 | /* XXX This should be #ifndef NO_DH */ |
Vanger | 0:b86d15c6ba29 | 869 | #ifndef NO_CERTS |
Vanger | 0:b86d15c6ba29 | 870 | /* server Diffie-Hellman parameters */ |
Vanger | 0:b86d15c6ba29 | 871 | CYASSL_API int CyaSSL_SetTmpDH(CYASSL*, const unsigned char* p, int pSz, |
Vanger | 0:b86d15c6ba29 | 872 | const unsigned char* g, int gSz); |
Vanger | 0:b86d15c6ba29 | 873 | CYASSL_API int CyaSSL_SetTmpDH_buffer(CYASSL*, const unsigned char* b, long sz, |
Vanger | 0:b86d15c6ba29 | 874 | int format); |
Vanger | 0:b86d15c6ba29 | 875 | CYASSL_API int CyaSSL_SetTmpEC_DHE_Sz(CYASSL*, unsigned short); |
Vanger | 0:b86d15c6ba29 | 876 | #ifndef NO_FILESYSTEM |
Vanger | 0:b86d15c6ba29 | 877 | CYASSL_API int CyaSSL_SetTmpDH_file(CYASSL*, const char* f, int format); |
Vanger | 0:b86d15c6ba29 | 878 | #endif |
Vanger | 0:b86d15c6ba29 | 879 | |
Vanger | 0:b86d15c6ba29 | 880 | /* server ctx Diffie-Hellman parameters */ |
Vanger | 0:b86d15c6ba29 | 881 | CYASSL_API int CyaSSL_CTX_SetTmpDH(CYASSL_CTX*, const unsigned char* p, |
Vanger | 0:b86d15c6ba29 | 882 | int pSz, const unsigned char* g, int gSz); |
Vanger | 0:b86d15c6ba29 | 883 | CYASSL_API int CyaSSL_CTX_SetTmpDH_buffer(CYASSL_CTX*, const unsigned char* b, |
Vanger | 0:b86d15c6ba29 | 884 | long sz, int format); |
Vanger | 0:b86d15c6ba29 | 885 | CYASSL_API int CyaSSL_CTX_SetTmpEC_DHE_Sz(CYASSL_CTX*, unsigned short); |
Vanger | 0:b86d15c6ba29 | 886 | |
Vanger | 0:b86d15c6ba29 | 887 | #ifndef NO_FILESYSTEM |
Vanger | 0:b86d15c6ba29 | 888 | CYASSL_API int CyaSSL_CTX_SetTmpDH_file(CYASSL_CTX*, const char* f, |
Vanger | 0:b86d15c6ba29 | 889 | int format); |
Vanger | 0:b86d15c6ba29 | 890 | #endif |
Vanger | 0:b86d15c6ba29 | 891 | #endif |
Vanger | 0:b86d15c6ba29 | 892 | |
Vanger | 0:b86d15c6ba29 | 893 | /* keyblock size in bytes or -1 */ |
Vanger | 0:b86d15c6ba29 | 894 | /* need to call CyaSSL_KeepArrays before handshake to save keys */ |
Vanger | 0:b86d15c6ba29 | 895 | CYASSL_API int CyaSSL_get_keyblock_size(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 896 | CYASSL_API int CyaSSL_get_keys(CYASSL*,unsigned char** ms, unsigned int* msLen, |
Vanger | 0:b86d15c6ba29 | 897 | unsigned char** sr, unsigned int* srLen, |
Vanger | 0:b86d15c6ba29 | 898 | unsigned char** cr, unsigned int* crLen); |
Vanger | 0:b86d15c6ba29 | 899 | |
Vanger | 0:b86d15c6ba29 | 900 | /* Computes EAP-TLS and EAP-TTLS keying material from the master_secret. */ |
Vanger | 0:b86d15c6ba29 | 901 | CYASSL_API int CyaSSL_make_eap_keys(CYASSL*, void* key, unsigned int len, |
Vanger | 0:b86d15c6ba29 | 902 | const char* label); |
Vanger | 0:b86d15c6ba29 | 903 | |
Vanger | 0:b86d15c6ba29 | 904 | |
Vanger | 0:b86d15c6ba29 | 905 | #ifndef _WIN32 |
Vanger | 0:b86d15c6ba29 | 906 | #ifndef NO_WRITEV |
Vanger | 0:b86d15c6ba29 | 907 | #ifdef __PPU |
Vanger | 0:b86d15c6ba29 | 908 | #include <sys/types.h> |
Vanger | 0:b86d15c6ba29 | 909 | #include <sys/socket.h> |
Vanger | 0:b86d15c6ba29 | 910 | #elif !defined(CYASSL_MDK_ARM) && !defined(CYASSL_IAR_ARM) |
Vanger | 0:b86d15c6ba29 | 911 | #include <sys/uio.h> |
Vanger | 0:b86d15c6ba29 | 912 | #endif |
Vanger | 0:b86d15c6ba29 | 913 | /* allow writev style writing */ |
Vanger | 0:b86d15c6ba29 | 914 | CYASSL_API int CyaSSL_writev(CYASSL* ssl, const struct iovec* iov, |
Vanger | 0:b86d15c6ba29 | 915 | int iovcnt); |
Vanger | 0:b86d15c6ba29 | 916 | #endif |
Vanger | 0:b86d15c6ba29 | 917 | #endif |
Vanger | 0:b86d15c6ba29 | 918 | |
Vanger | 0:b86d15c6ba29 | 919 | |
Vanger | 0:b86d15c6ba29 | 920 | #ifndef NO_CERTS |
Vanger | 0:b86d15c6ba29 | 921 | /* SSL_CTX versions */ |
Vanger | 0:b86d15c6ba29 | 922 | CYASSL_API int CyaSSL_CTX_UnloadCAs(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 923 | CYASSL_API int CyaSSL_CTX_load_verify_buffer(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 924 | const unsigned char*, long, int); |
Vanger | 0:b86d15c6ba29 | 925 | CYASSL_API int CyaSSL_CTX_use_certificate_buffer(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 926 | const unsigned char*, long, int); |
Vanger | 0:b86d15c6ba29 | 927 | CYASSL_API int CyaSSL_CTX_use_PrivateKey_buffer(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 928 | const unsigned char*, long, int); |
Vanger | 0:b86d15c6ba29 | 929 | CYASSL_API int CyaSSL_CTX_use_certificate_chain_buffer(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 930 | const unsigned char*, long); |
Vanger | 0:b86d15c6ba29 | 931 | |
Vanger | 0:b86d15c6ba29 | 932 | /* SSL versions */ |
Vanger | 0:b86d15c6ba29 | 933 | CYASSL_API int CyaSSL_use_certificate_buffer(CYASSL*, const unsigned char*, |
Vanger | 0:b86d15c6ba29 | 934 | long, int); |
Vanger | 0:b86d15c6ba29 | 935 | CYASSL_API int CyaSSL_use_PrivateKey_buffer(CYASSL*, const unsigned char*, |
Vanger | 0:b86d15c6ba29 | 936 | long, int); |
Vanger | 0:b86d15c6ba29 | 937 | CYASSL_API int CyaSSL_use_certificate_chain_buffer(CYASSL*, |
Vanger | 0:b86d15c6ba29 | 938 | const unsigned char*, long); |
Vanger | 0:b86d15c6ba29 | 939 | CYASSL_API int CyaSSL_UnloadCertsKeys(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 940 | #endif |
Vanger | 0:b86d15c6ba29 | 941 | |
Vanger | 0:b86d15c6ba29 | 942 | CYASSL_API int CyaSSL_CTX_set_group_messages(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 943 | CYASSL_API int CyaSSL_set_group_messages(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 944 | |
Vanger | 0:b86d15c6ba29 | 945 | /* I/O callbacks */ |
Vanger | 0:b86d15c6ba29 | 946 | typedef int (*CallbackIORecv)(CYASSL *ssl, char *buf, int sz, void *ctx); |
Vanger | 0:b86d15c6ba29 | 947 | typedef int (*CallbackIOSend)(CYASSL *ssl, char *buf, int sz, void *ctx); |
Vanger | 0:b86d15c6ba29 | 948 | |
Vanger | 0:b86d15c6ba29 | 949 | #ifdef HAVE_FUZZER |
Vanger | 0:b86d15c6ba29 | 950 | enum fuzzer_type { |
Vanger | 0:b86d15c6ba29 | 951 | FUZZ_HMAC = 0, |
Vanger | 0:b86d15c6ba29 | 952 | FUZZ_ENCRYPT = 1, |
Vanger | 0:b86d15c6ba29 | 953 | FUZZ_SIGNATURE = 2, |
Vanger | 0:b86d15c6ba29 | 954 | FUZZ_HASH = 3, |
Vanger | 0:b86d15c6ba29 | 955 | FUZZ_HEAD = 4 |
Vanger | 0:b86d15c6ba29 | 956 | }; |
Vanger | 0:b86d15c6ba29 | 957 | |
Vanger | 0:b86d15c6ba29 | 958 | typedef int (*CallbackFuzzer)(CYASSL* ssl, const unsigned char* buf, int sz, |
Vanger | 0:b86d15c6ba29 | 959 | int type, void* fuzzCtx); |
Vanger | 0:b86d15c6ba29 | 960 | |
Vanger | 0:b86d15c6ba29 | 961 | CYASSL_API void CyaSSL_SetFuzzerCb(CYASSL* ssl, CallbackFuzzer cbf, void* fCtx); |
Vanger | 0:b86d15c6ba29 | 962 | #endif |
Vanger | 0:b86d15c6ba29 | 963 | |
Vanger | 0:b86d15c6ba29 | 964 | CYASSL_API void CyaSSL_SetIORecv(CYASSL_CTX*, CallbackIORecv); |
Vanger | 0:b86d15c6ba29 | 965 | CYASSL_API void CyaSSL_SetIOSend(CYASSL_CTX*, CallbackIOSend); |
Vanger | 0:b86d15c6ba29 | 966 | |
Vanger | 0:b86d15c6ba29 | 967 | CYASSL_API void CyaSSL_SetIOReadCtx( CYASSL* ssl, void *ctx); |
Vanger | 0:b86d15c6ba29 | 968 | CYASSL_API void CyaSSL_SetIOWriteCtx(CYASSL* ssl, void *ctx); |
Vanger | 0:b86d15c6ba29 | 969 | |
Vanger | 0:b86d15c6ba29 | 970 | CYASSL_API void* CyaSSL_GetIOReadCtx( CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 971 | CYASSL_API void* CyaSSL_GetIOWriteCtx(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 972 | |
Vanger | 0:b86d15c6ba29 | 973 | CYASSL_API void CyaSSL_SetIOReadFlags( CYASSL* ssl, int flags); |
Vanger | 0:b86d15c6ba29 | 974 | CYASSL_API void CyaSSL_SetIOWriteFlags(CYASSL* ssl, int flags); |
Vanger | 0:b86d15c6ba29 | 975 | |
Vanger | 0:b86d15c6ba29 | 976 | |
Vanger | 0:b86d15c6ba29 | 977 | #ifndef CYASSL_USER_IO |
Vanger | 0:b86d15c6ba29 | 978 | /* default IO callbacks */ |
Vanger | 0:b86d15c6ba29 | 979 | CYASSL_API int EmbedReceive(CYASSL* ssl, char* buf, int sz, void* ctx); |
Vanger | 0:b86d15c6ba29 | 980 | CYASSL_API int EmbedSend(CYASSL* ssl, char* buf, int sz, void* ctx); |
Vanger | 0:b86d15c6ba29 | 981 | |
Vanger | 0:b86d15c6ba29 | 982 | #ifdef HAVE_OCSP |
Vanger | 0:b86d15c6ba29 | 983 | CYASSL_API int EmbedOcspLookup(void*, const char*, int, unsigned char*, |
Vanger | 0:b86d15c6ba29 | 984 | int, unsigned char**); |
Vanger | 0:b86d15c6ba29 | 985 | CYASSL_API void EmbedOcspRespFree(void*, unsigned char*); |
Vanger | 0:b86d15c6ba29 | 986 | #endif |
Vanger | 0:b86d15c6ba29 | 987 | |
Vanger | 0:b86d15c6ba29 | 988 | #ifdef CYASSL_DTLS |
Vanger | 0:b86d15c6ba29 | 989 | CYASSL_API int EmbedReceiveFrom(CYASSL* ssl, char* buf, int sz, void*); |
Vanger | 0:b86d15c6ba29 | 990 | CYASSL_API int EmbedSendTo(CYASSL* ssl, char* buf, int sz, void* ctx); |
Vanger | 0:b86d15c6ba29 | 991 | CYASSL_API int EmbedGenerateCookie(CYASSL* ssl, unsigned char* buf, |
Vanger | 0:b86d15c6ba29 | 992 | int sz, void*); |
Vanger | 0:b86d15c6ba29 | 993 | #endif /* CYASSL_DTLS */ |
Vanger | 0:b86d15c6ba29 | 994 | #endif /* CYASSL_USER_IO */ |
Vanger | 0:b86d15c6ba29 | 995 | |
Vanger | 0:b86d15c6ba29 | 996 | |
Vanger | 0:b86d15c6ba29 | 997 | #ifdef HAVE_NETX |
Vanger | 0:b86d15c6ba29 | 998 | CYASSL_API void CyaSSL_SetIO_NetX(CYASSL* ssl, NX_TCP_SOCKET* nxsocket, |
Vanger | 0:b86d15c6ba29 | 999 | ULONG waitoption); |
Vanger | 0:b86d15c6ba29 | 1000 | #endif |
Vanger | 0:b86d15c6ba29 | 1001 | |
Vanger | 0:b86d15c6ba29 | 1002 | typedef int (*CallbackGenCookie)(CYASSL* ssl, unsigned char* buf, int sz, |
Vanger | 0:b86d15c6ba29 | 1003 | void* ctx); |
Vanger | 0:b86d15c6ba29 | 1004 | CYASSL_API void CyaSSL_CTX_SetGenCookie(CYASSL_CTX*, CallbackGenCookie); |
Vanger | 0:b86d15c6ba29 | 1005 | CYASSL_API void CyaSSL_SetCookieCtx(CYASSL* ssl, void *ctx); |
Vanger | 0:b86d15c6ba29 | 1006 | CYASSL_API void* CyaSSL_GetCookieCtx(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1007 | |
Vanger | 0:b86d15c6ba29 | 1008 | |
Vanger | 0:b86d15c6ba29 | 1009 | /* I/O Callback default errors */ |
Vanger | 0:b86d15c6ba29 | 1010 | enum IOerrors { |
Vanger | 0:b86d15c6ba29 | 1011 | CYASSL_CBIO_ERR_GENERAL = -1, /* general unexpected err */ |
Vanger | 0:b86d15c6ba29 | 1012 | CYASSL_CBIO_ERR_WANT_READ = -2, /* need to call read again */ |
Vanger | 0:b86d15c6ba29 | 1013 | CYASSL_CBIO_ERR_WANT_WRITE = -2, /* need to call write again */ |
Vanger | 0:b86d15c6ba29 | 1014 | CYASSL_CBIO_ERR_CONN_RST = -3, /* connection reset */ |
Vanger | 0:b86d15c6ba29 | 1015 | CYASSL_CBIO_ERR_ISR = -4, /* interrupt */ |
Vanger | 0:b86d15c6ba29 | 1016 | CYASSL_CBIO_ERR_CONN_CLOSE = -5, /* connection closed or epipe */ |
Vanger | 0:b86d15c6ba29 | 1017 | CYASSL_CBIO_ERR_TIMEOUT = -6 /* socket timeout */ |
Vanger | 0:b86d15c6ba29 | 1018 | }; |
Vanger | 0:b86d15c6ba29 | 1019 | |
Vanger | 0:b86d15c6ba29 | 1020 | |
Vanger | 0:b86d15c6ba29 | 1021 | /* CA cache callbacks */ |
Vanger | 0:b86d15c6ba29 | 1022 | enum { |
Vanger | 0:b86d15c6ba29 | 1023 | CYASSL_SSLV3 = 0, |
Vanger | 0:b86d15c6ba29 | 1024 | CYASSL_TLSV1 = 1, |
Vanger | 0:b86d15c6ba29 | 1025 | CYASSL_TLSV1_1 = 2, |
Vanger | 0:b86d15c6ba29 | 1026 | CYASSL_TLSV1_2 = 3, |
Vanger | 0:b86d15c6ba29 | 1027 | CYASSL_USER_CA = 1, /* user added as trusted */ |
Vanger | 0:b86d15c6ba29 | 1028 | CYASSL_CHAIN_CA = 2 /* added to cache from trusted chain */ |
Vanger | 0:b86d15c6ba29 | 1029 | }; |
Vanger | 0:b86d15c6ba29 | 1030 | |
Vanger | 0:b86d15c6ba29 | 1031 | CYASSL_API int CyaSSL_SetMinVersion(CYASSL* ssl, int version); |
Vanger | 0:b86d15c6ba29 | 1032 | CYASSL_API int CyaSSL_GetObjectSize(void); /* object size based on build */ |
Vanger | 0:b86d15c6ba29 | 1033 | CYASSL_API int CyaSSL_SetVersion(CYASSL* ssl, int version); |
Vanger | 0:b86d15c6ba29 | 1034 | CYASSL_API int CyaSSL_KeyPemToDer(const unsigned char*, int sz, unsigned char*, |
Vanger | 0:b86d15c6ba29 | 1035 | int, const char*); |
Vanger | 0:b86d15c6ba29 | 1036 | CYASSL_API int CyaSSL_CertPemToDer(const unsigned char*, int sz, unsigned char*, |
Vanger | 0:b86d15c6ba29 | 1037 | int, int); |
Vanger | 0:b86d15c6ba29 | 1038 | |
Vanger | 0:b86d15c6ba29 | 1039 | typedef void (*CallbackCACache)(unsigned char* der, int sz, int type); |
Vanger | 0:b86d15c6ba29 | 1040 | typedef void (*CbMissingCRL)(const char* url); |
Vanger | 0:b86d15c6ba29 | 1041 | typedef int (*CbOCSPIO)(void*, const char*, int, |
Vanger | 0:b86d15c6ba29 | 1042 | unsigned char*, int, unsigned char**); |
Vanger | 0:b86d15c6ba29 | 1043 | typedef void (*CbOCSPRespFree)(void*,unsigned char*); |
Vanger | 0:b86d15c6ba29 | 1044 | |
Vanger | 0:b86d15c6ba29 | 1045 | /* User Atomic Record Layer CallBacks */ |
Vanger | 0:b86d15c6ba29 | 1046 | typedef int (*CallbackMacEncrypt)(CYASSL* ssl, unsigned char* macOut, |
Vanger | 0:b86d15c6ba29 | 1047 | const unsigned char* macIn, unsigned int macInSz, int macContent, |
Vanger | 0:b86d15c6ba29 | 1048 | int macVerify, unsigned char* encOut, const unsigned char* encIn, |
Vanger | 0:b86d15c6ba29 | 1049 | unsigned int encSz, void* ctx); |
Vanger | 0:b86d15c6ba29 | 1050 | CYASSL_API void CyaSSL_CTX_SetMacEncryptCb(CYASSL_CTX*, CallbackMacEncrypt); |
Vanger | 0:b86d15c6ba29 | 1051 | CYASSL_API void CyaSSL_SetMacEncryptCtx(CYASSL* ssl, void *ctx); |
Vanger | 0:b86d15c6ba29 | 1052 | CYASSL_API void* CyaSSL_GetMacEncryptCtx(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1053 | |
Vanger | 0:b86d15c6ba29 | 1054 | typedef int (*CallbackDecryptVerify)(CYASSL* ssl, |
Vanger | 0:b86d15c6ba29 | 1055 | unsigned char* decOut, const unsigned char* decIn, |
Vanger | 0:b86d15c6ba29 | 1056 | unsigned int decSz, int content, int verify, unsigned int* padSz, |
Vanger | 0:b86d15c6ba29 | 1057 | void* ctx); |
Vanger | 0:b86d15c6ba29 | 1058 | CYASSL_API void CyaSSL_CTX_SetDecryptVerifyCb(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 1059 | CallbackDecryptVerify); |
Vanger | 0:b86d15c6ba29 | 1060 | CYASSL_API void CyaSSL_SetDecryptVerifyCtx(CYASSL* ssl, void *ctx); |
Vanger | 0:b86d15c6ba29 | 1061 | CYASSL_API void* CyaSSL_GetDecryptVerifyCtx(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1062 | |
Vanger | 0:b86d15c6ba29 | 1063 | CYASSL_API const unsigned char* CyaSSL_GetMacSecret(CYASSL*, int); |
Vanger | 0:b86d15c6ba29 | 1064 | CYASSL_API const unsigned char* CyaSSL_GetClientWriteKey(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1065 | CYASSL_API const unsigned char* CyaSSL_GetClientWriteIV(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1066 | CYASSL_API const unsigned char* CyaSSL_GetServerWriteKey(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1067 | CYASSL_API const unsigned char* CyaSSL_GetServerWriteIV(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1068 | CYASSL_API int CyaSSL_GetKeySize(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1069 | CYASSL_API int CyaSSL_GetIVSize(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1070 | CYASSL_API int CyaSSL_GetSide(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1071 | CYASSL_API int CyaSSL_IsTLSv1_1(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1072 | CYASSL_API int CyaSSL_GetBulkCipher(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1073 | CYASSL_API int CyaSSL_GetCipherBlockSize(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1074 | CYASSL_API int CyaSSL_GetAeadMacSize(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1075 | CYASSL_API int CyaSSL_GetHmacSize(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1076 | CYASSL_API int CyaSSL_GetHmacType(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1077 | CYASSL_API int CyaSSL_GetCipherType(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1078 | CYASSL_API int CyaSSL_SetTlsHmacInner(CYASSL*, unsigned char*, |
Vanger | 0:b86d15c6ba29 | 1079 | unsigned int, int, int); |
Vanger | 0:b86d15c6ba29 | 1080 | |
Vanger | 0:b86d15c6ba29 | 1081 | /* Atomic User Needs */ |
Vanger | 0:b86d15c6ba29 | 1082 | enum { |
Vanger | 0:b86d15c6ba29 | 1083 | CYASSL_SERVER_END = 0, |
Vanger | 0:b86d15c6ba29 | 1084 | CYASSL_CLIENT_END = 1, |
Vanger | 0:b86d15c6ba29 | 1085 | CYASSL_BLOCK_TYPE = 2, |
Vanger | 0:b86d15c6ba29 | 1086 | CYASSL_STREAM_TYPE = 3, |
Vanger | 0:b86d15c6ba29 | 1087 | CYASSL_AEAD_TYPE = 4, |
Vanger | 0:b86d15c6ba29 | 1088 | CYASSL_TLS_HMAC_INNER_SZ = 13 /* SEQ_SZ + ENUM + VERSION_SZ + LEN_SZ */ |
Vanger | 0:b86d15c6ba29 | 1089 | }; |
Vanger | 0:b86d15c6ba29 | 1090 | |
Vanger | 0:b86d15c6ba29 | 1091 | /* for GetBulkCipher and internal use */ |
Vanger | 0:b86d15c6ba29 | 1092 | enum BulkCipherAlgorithm { |
Vanger | 0:b86d15c6ba29 | 1093 | cyassl_cipher_null, |
Vanger | 0:b86d15c6ba29 | 1094 | cyassl_rc4, |
Vanger | 0:b86d15c6ba29 | 1095 | cyassl_rc2, |
Vanger | 0:b86d15c6ba29 | 1096 | cyassl_des, |
Vanger | 0:b86d15c6ba29 | 1097 | cyassl_triple_des, /* leading 3 (3des) not valid identifier */ |
Vanger | 0:b86d15c6ba29 | 1098 | cyassl_des40, |
Vanger | 0:b86d15c6ba29 | 1099 | cyassl_idea, |
Vanger | 0:b86d15c6ba29 | 1100 | cyassl_aes, |
Vanger | 0:b86d15c6ba29 | 1101 | cyassl_aes_gcm, |
Vanger | 0:b86d15c6ba29 | 1102 | cyassl_aes_ccm, |
Vanger | 0:b86d15c6ba29 | 1103 | cyassl_chacha, |
Vanger | 0:b86d15c6ba29 | 1104 | cyassl_camellia, |
Vanger | 0:b86d15c6ba29 | 1105 | cyassl_hc128, /* CyaSSL extensions */ |
Vanger | 0:b86d15c6ba29 | 1106 | cyassl_rabbit |
Vanger | 0:b86d15c6ba29 | 1107 | }; |
Vanger | 0:b86d15c6ba29 | 1108 | |
Vanger | 0:b86d15c6ba29 | 1109 | |
Vanger | 0:b86d15c6ba29 | 1110 | /* for KDF TLS 1.2 mac types */ |
Vanger | 0:b86d15c6ba29 | 1111 | enum KDF_MacAlgorithm { |
Vanger | 0:b86d15c6ba29 | 1112 | cyassl_sha256 = 4, /* needs to match internal MACAlgorithm */ |
Vanger | 0:b86d15c6ba29 | 1113 | cyassl_sha384, |
Vanger | 0:b86d15c6ba29 | 1114 | cyassl_sha512 |
Vanger | 0:b86d15c6ba29 | 1115 | }; |
Vanger | 0:b86d15c6ba29 | 1116 | |
Vanger | 0:b86d15c6ba29 | 1117 | |
Vanger | 0:b86d15c6ba29 | 1118 | /* Public Key Callback support */ |
Vanger | 0:b86d15c6ba29 | 1119 | typedef int (*CallbackEccSign)(CYASSL* ssl, |
Vanger | 0:b86d15c6ba29 | 1120 | const unsigned char* in, unsigned int inSz, |
Vanger | 0:b86d15c6ba29 | 1121 | unsigned char* out, unsigned int* outSz, |
Vanger | 0:b86d15c6ba29 | 1122 | const unsigned char* keyDer, unsigned int keySz, |
Vanger | 0:b86d15c6ba29 | 1123 | void* ctx); |
Vanger | 0:b86d15c6ba29 | 1124 | CYASSL_API void CyaSSL_CTX_SetEccSignCb(CYASSL_CTX*, CallbackEccSign); |
Vanger | 0:b86d15c6ba29 | 1125 | CYASSL_API void CyaSSL_SetEccSignCtx(CYASSL* ssl, void *ctx); |
Vanger | 0:b86d15c6ba29 | 1126 | CYASSL_API void* CyaSSL_GetEccSignCtx(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1127 | |
Vanger | 0:b86d15c6ba29 | 1128 | typedef int (*CallbackEccVerify)(CYASSL* ssl, |
Vanger | 0:b86d15c6ba29 | 1129 | const unsigned char* sig, unsigned int sigSz, |
Vanger | 0:b86d15c6ba29 | 1130 | const unsigned char* hash, unsigned int hashSz, |
Vanger | 0:b86d15c6ba29 | 1131 | const unsigned char* keyDer, unsigned int keySz, |
Vanger | 0:b86d15c6ba29 | 1132 | int* result, void* ctx); |
Vanger | 0:b86d15c6ba29 | 1133 | CYASSL_API void CyaSSL_CTX_SetEccVerifyCb(CYASSL_CTX*, CallbackEccVerify); |
Vanger | 0:b86d15c6ba29 | 1134 | CYASSL_API void CyaSSL_SetEccVerifyCtx(CYASSL* ssl, void *ctx); |
Vanger | 0:b86d15c6ba29 | 1135 | CYASSL_API void* CyaSSL_GetEccVerifyCtx(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1136 | |
Vanger | 0:b86d15c6ba29 | 1137 | typedef int (*CallbackRsaSign)(CYASSL* ssl, |
Vanger | 0:b86d15c6ba29 | 1138 | const unsigned char* in, unsigned int inSz, |
Vanger | 0:b86d15c6ba29 | 1139 | unsigned char* out, unsigned int* outSz, |
Vanger | 0:b86d15c6ba29 | 1140 | const unsigned char* keyDer, unsigned int keySz, |
Vanger | 0:b86d15c6ba29 | 1141 | void* ctx); |
Vanger | 0:b86d15c6ba29 | 1142 | CYASSL_API void CyaSSL_CTX_SetRsaSignCb(CYASSL_CTX*, CallbackRsaSign); |
Vanger | 0:b86d15c6ba29 | 1143 | CYASSL_API void CyaSSL_SetRsaSignCtx(CYASSL* ssl, void *ctx); |
Vanger | 0:b86d15c6ba29 | 1144 | CYASSL_API void* CyaSSL_GetRsaSignCtx(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1145 | |
Vanger | 0:b86d15c6ba29 | 1146 | typedef int (*CallbackRsaVerify)(CYASSL* ssl, |
Vanger | 0:b86d15c6ba29 | 1147 | unsigned char* sig, unsigned int sigSz, |
Vanger | 0:b86d15c6ba29 | 1148 | unsigned char** out, |
Vanger | 0:b86d15c6ba29 | 1149 | const unsigned char* keyDer, unsigned int keySz, |
Vanger | 0:b86d15c6ba29 | 1150 | void* ctx); |
Vanger | 0:b86d15c6ba29 | 1151 | CYASSL_API void CyaSSL_CTX_SetRsaVerifyCb(CYASSL_CTX*, CallbackRsaVerify); |
Vanger | 0:b86d15c6ba29 | 1152 | CYASSL_API void CyaSSL_SetRsaVerifyCtx(CYASSL* ssl, void *ctx); |
Vanger | 0:b86d15c6ba29 | 1153 | CYASSL_API void* CyaSSL_GetRsaVerifyCtx(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1154 | |
Vanger | 0:b86d15c6ba29 | 1155 | /* RSA Public Encrypt cb */ |
Vanger | 0:b86d15c6ba29 | 1156 | typedef int (*CallbackRsaEnc)(CYASSL* ssl, |
Vanger | 0:b86d15c6ba29 | 1157 | const unsigned char* in, unsigned int inSz, |
Vanger | 0:b86d15c6ba29 | 1158 | unsigned char* out, unsigned int* outSz, |
Vanger | 0:b86d15c6ba29 | 1159 | const unsigned char* keyDer, unsigned int keySz, |
Vanger | 0:b86d15c6ba29 | 1160 | void* ctx); |
Vanger | 0:b86d15c6ba29 | 1161 | CYASSL_API void CyaSSL_CTX_SetRsaEncCb(CYASSL_CTX*, CallbackRsaEnc); |
Vanger | 0:b86d15c6ba29 | 1162 | CYASSL_API void CyaSSL_SetRsaEncCtx(CYASSL* ssl, void *ctx); |
Vanger | 0:b86d15c6ba29 | 1163 | CYASSL_API void* CyaSSL_GetRsaEncCtx(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1164 | |
Vanger | 0:b86d15c6ba29 | 1165 | /* RSA Private Decrypt cb */ |
Vanger | 0:b86d15c6ba29 | 1166 | typedef int (*CallbackRsaDec)(CYASSL* ssl, |
Vanger | 0:b86d15c6ba29 | 1167 | unsigned char* in, unsigned int inSz, |
Vanger | 0:b86d15c6ba29 | 1168 | unsigned char** out, |
Vanger | 0:b86d15c6ba29 | 1169 | const unsigned char* keyDer, unsigned int keySz, |
Vanger | 0:b86d15c6ba29 | 1170 | void* ctx); |
Vanger | 0:b86d15c6ba29 | 1171 | CYASSL_API void CyaSSL_CTX_SetRsaDecCb(CYASSL_CTX*, CallbackRsaDec); |
Vanger | 0:b86d15c6ba29 | 1172 | CYASSL_API void CyaSSL_SetRsaDecCtx(CYASSL* ssl, void *ctx); |
Vanger | 0:b86d15c6ba29 | 1173 | CYASSL_API void* CyaSSL_GetRsaDecCtx(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1174 | |
Vanger | 0:b86d15c6ba29 | 1175 | |
Vanger | 0:b86d15c6ba29 | 1176 | #ifndef NO_CERTS |
Vanger | 0:b86d15c6ba29 | 1177 | CYASSL_API void CyaSSL_CTX_SetCACb(CYASSL_CTX*, CallbackCACache); |
Vanger | 0:b86d15c6ba29 | 1178 | |
Vanger | 0:b86d15c6ba29 | 1179 | CYASSL_API CYASSL_CERT_MANAGER* CyaSSL_CertManagerNew(void); |
Vanger | 0:b86d15c6ba29 | 1180 | CYASSL_API void CyaSSL_CertManagerFree(CYASSL_CERT_MANAGER*); |
Vanger | 0:b86d15c6ba29 | 1181 | |
Vanger | 0:b86d15c6ba29 | 1182 | CYASSL_API int CyaSSL_CertManagerLoadCA(CYASSL_CERT_MANAGER*, const char* f, |
Vanger | 0:b86d15c6ba29 | 1183 | const char* d); |
Vanger | 0:b86d15c6ba29 | 1184 | CYASSL_API int CyaSSL_CertManagerUnloadCAs(CYASSL_CERT_MANAGER* cm); |
Vanger | 0:b86d15c6ba29 | 1185 | CYASSL_API int CyaSSL_CertManagerVerify(CYASSL_CERT_MANAGER*, const char* f, |
Vanger | 0:b86d15c6ba29 | 1186 | int format); |
Vanger | 0:b86d15c6ba29 | 1187 | CYASSL_API int CyaSSL_CertManagerVerifyBuffer(CYASSL_CERT_MANAGER* cm, |
Vanger | 0:b86d15c6ba29 | 1188 | const unsigned char* buff, long sz, int format); |
Vanger | 0:b86d15c6ba29 | 1189 | CYASSL_API int CyaSSL_CertManagerCheckCRL(CYASSL_CERT_MANAGER*, |
Vanger | 0:b86d15c6ba29 | 1190 | unsigned char*, int sz); |
Vanger | 0:b86d15c6ba29 | 1191 | CYASSL_API int CyaSSL_CertManagerEnableCRL(CYASSL_CERT_MANAGER*, |
Vanger | 0:b86d15c6ba29 | 1192 | int options); |
Vanger | 0:b86d15c6ba29 | 1193 | CYASSL_API int CyaSSL_CertManagerDisableCRL(CYASSL_CERT_MANAGER*); |
Vanger | 0:b86d15c6ba29 | 1194 | CYASSL_API int CyaSSL_CertManagerLoadCRL(CYASSL_CERT_MANAGER*, const char*, |
Vanger | 0:b86d15c6ba29 | 1195 | int, int); |
Vanger | 0:b86d15c6ba29 | 1196 | CYASSL_API int CyaSSL_CertManagerSetCRL_Cb(CYASSL_CERT_MANAGER*, |
Vanger | 0:b86d15c6ba29 | 1197 | CbMissingCRL); |
Vanger | 0:b86d15c6ba29 | 1198 | CYASSL_API int CyaSSL_CertManagerCheckOCSP(CYASSL_CERT_MANAGER*, |
Vanger | 0:b86d15c6ba29 | 1199 | unsigned char*, int sz); |
Vanger | 0:b86d15c6ba29 | 1200 | CYASSL_API int CyaSSL_CertManagerEnableOCSP(CYASSL_CERT_MANAGER*, |
Vanger | 0:b86d15c6ba29 | 1201 | int options); |
Vanger | 0:b86d15c6ba29 | 1202 | CYASSL_API int CyaSSL_CertManagerDisableOCSP(CYASSL_CERT_MANAGER*); |
Vanger | 0:b86d15c6ba29 | 1203 | CYASSL_API int CyaSSL_CertManagerSetOCSPOverrideURL(CYASSL_CERT_MANAGER*, |
Vanger | 0:b86d15c6ba29 | 1204 | const char*); |
Vanger | 0:b86d15c6ba29 | 1205 | CYASSL_API int CyaSSL_CertManagerSetOCSP_Cb(CYASSL_CERT_MANAGER*, |
Vanger | 0:b86d15c6ba29 | 1206 | CbOCSPIO, CbOCSPRespFree, void*); |
Vanger | 0:b86d15c6ba29 | 1207 | |
Vanger | 0:b86d15c6ba29 | 1208 | CYASSL_API int CyaSSL_EnableCRL(CYASSL* ssl, int options); |
Vanger | 0:b86d15c6ba29 | 1209 | CYASSL_API int CyaSSL_DisableCRL(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1210 | CYASSL_API int CyaSSL_LoadCRL(CYASSL*, const char*, int, int); |
Vanger | 0:b86d15c6ba29 | 1211 | CYASSL_API int CyaSSL_SetCRL_Cb(CYASSL*, CbMissingCRL); |
Vanger | 0:b86d15c6ba29 | 1212 | CYASSL_API int CyaSSL_EnableOCSP(CYASSL*, int options); |
Vanger | 0:b86d15c6ba29 | 1213 | CYASSL_API int CyaSSL_DisableOCSP(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1214 | CYASSL_API int CyaSSL_SetOCSP_OverrideURL(CYASSL*, const char*); |
Vanger | 0:b86d15c6ba29 | 1215 | CYASSL_API int CyaSSL_SetOCSP_Cb(CYASSL*, CbOCSPIO, CbOCSPRespFree, void*); |
Vanger | 0:b86d15c6ba29 | 1216 | |
Vanger | 0:b86d15c6ba29 | 1217 | CYASSL_API int CyaSSL_CTX_EnableCRL(CYASSL_CTX* ctx, int options); |
Vanger | 0:b86d15c6ba29 | 1218 | CYASSL_API int CyaSSL_CTX_DisableCRL(CYASSL_CTX* ctx); |
Vanger | 0:b86d15c6ba29 | 1219 | CYASSL_API int CyaSSL_CTX_LoadCRL(CYASSL_CTX*, const char*, int, int); |
Vanger | 0:b86d15c6ba29 | 1220 | CYASSL_API int CyaSSL_CTX_SetCRL_Cb(CYASSL_CTX*, CbMissingCRL); |
Vanger | 0:b86d15c6ba29 | 1221 | CYASSL_API int CyaSSL_CTX_EnableOCSP(CYASSL_CTX*, int options); |
Vanger | 0:b86d15c6ba29 | 1222 | CYASSL_API int CyaSSL_CTX_DisableOCSP(CYASSL_CTX*); |
Vanger | 0:b86d15c6ba29 | 1223 | CYASSL_API int CyaSSL_CTX_SetOCSP_OverrideURL(CYASSL_CTX*, const char*); |
Vanger | 0:b86d15c6ba29 | 1224 | CYASSL_API int CyaSSL_CTX_SetOCSP_Cb(CYASSL_CTX*, |
Vanger | 0:b86d15c6ba29 | 1225 | CbOCSPIO, CbOCSPRespFree, void*); |
Vanger | 0:b86d15c6ba29 | 1226 | #endif /* !NO_CERTS */ |
Vanger | 0:b86d15c6ba29 | 1227 | |
Vanger | 0:b86d15c6ba29 | 1228 | /* end of handshake frees temporary arrays, if user needs for get_keys or |
Vanger | 0:b86d15c6ba29 | 1229 | psk hints, call KeepArrays before handshake and then FreeArrays when done |
Vanger | 0:b86d15c6ba29 | 1230 | if don't want to wait for object free */ |
Vanger | 0:b86d15c6ba29 | 1231 | CYASSL_API void CyaSSL_KeepArrays(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1232 | CYASSL_API void CyaSSL_FreeArrays(CYASSL*); |
Vanger | 0:b86d15c6ba29 | 1233 | |
Vanger | 0:b86d15c6ba29 | 1234 | |
Vanger | 0:b86d15c6ba29 | 1235 | /* cavium additions */ |
Vanger | 0:b86d15c6ba29 | 1236 | CYASSL_API int CyaSSL_UseCavium(CYASSL*, int devId); |
Vanger | 0:b86d15c6ba29 | 1237 | CYASSL_API int CyaSSL_CTX_UseCavium(CYASSL_CTX*, int devId); |
Vanger | 0:b86d15c6ba29 | 1238 | |
Vanger | 0:b86d15c6ba29 | 1239 | /* TLS Extensions */ |
Vanger | 0:b86d15c6ba29 | 1240 | |
Vanger | 0:b86d15c6ba29 | 1241 | /* Server Name Indication */ |
Vanger | 0:b86d15c6ba29 | 1242 | #ifdef HAVE_SNI |
Vanger | 0:b86d15c6ba29 | 1243 | |
Vanger | 0:b86d15c6ba29 | 1244 | /* SNI types */ |
Vanger | 0:b86d15c6ba29 | 1245 | enum { |
Vanger | 0:b86d15c6ba29 | 1246 | CYASSL_SNI_HOST_NAME = 0 |
Vanger | 0:b86d15c6ba29 | 1247 | }; |
Vanger | 0:b86d15c6ba29 | 1248 | |
Vanger | 0:b86d15c6ba29 | 1249 | CYASSL_API int CyaSSL_UseSNI(CYASSL* ssl, unsigned char type, const void* data, |
Vanger | 0:b86d15c6ba29 | 1250 | unsigned short size); |
Vanger | 0:b86d15c6ba29 | 1251 | CYASSL_API int CyaSSL_CTX_UseSNI(CYASSL_CTX* ctx, unsigned char type, |
Vanger | 0:b86d15c6ba29 | 1252 | const void* data, unsigned short size); |
Vanger | 0:b86d15c6ba29 | 1253 | |
Vanger | 0:b86d15c6ba29 | 1254 | #ifndef NO_CYASSL_SERVER |
Vanger | 0:b86d15c6ba29 | 1255 | |
Vanger | 0:b86d15c6ba29 | 1256 | /* SNI options */ |
Vanger | 0:b86d15c6ba29 | 1257 | enum { |
Vanger | 0:b86d15c6ba29 | 1258 | CYASSL_SNI_CONTINUE_ON_MISMATCH = 0x01, /* do not abort on mismatch flag */ |
Vanger | 0:b86d15c6ba29 | 1259 | CYASSL_SNI_ANSWER_ON_MISMATCH = 0x02 /* fake match on mismatch flag */ |
Vanger | 0:b86d15c6ba29 | 1260 | }; |
Vanger | 0:b86d15c6ba29 | 1261 | |
Vanger | 0:b86d15c6ba29 | 1262 | CYASSL_API void CyaSSL_SNI_SetOptions(CYASSL* ssl, unsigned char type, |
Vanger | 0:b86d15c6ba29 | 1263 | unsigned char options); |
Vanger | 0:b86d15c6ba29 | 1264 | CYASSL_API void CyaSSL_CTX_SNI_SetOptions(CYASSL_CTX* ctx, unsigned char type, |
Vanger | 0:b86d15c6ba29 | 1265 | unsigned char options); |
Vanger | 0:b86d15c6ba29 | 1266 | |
Vanger | 0:b86d15c6ba29 | 1267 | /* SNI status */ |
Vanger | 0:b86d15c6ba29 | 1268 | enum { |
Vanger | 0:b86d15c6ba29 | 1269 | CYASSL_SNI_NO_MATCH = 0, |
Vanger | 0:b86d15c6ba29 | 1270 | CYASSL_SNI_FAKE_MATCH = 1, /* if CYASSL_SNI_ANSWER_ON_MISMATCH is enabled */ |
Vanger | 0:b86d15c6ba29 | 1271 | CYASSL_SNI_REAL_MATCH = 2 |
Vanger | 0:b86d15c6ba29 | 1272 | }; |
Vanger | 0:b86d15c6ba29 | 1273 | |
Vanger | 0:b86d15c6ba29 | 1274 | CYASSL_API unsigned char CyaSSL_SNI_Status(CYASSL* ssl, unsigned char type); |
Vanger | 0:b86d15c6ba29 | 1275 | |
Vanger | 0:b86d15c6ba29 | 1276 | CYASSL_API unsigned short CyaSSL_SNI_GetRequest(CYASSL *ssl, unsigned char type, |
Vanger | 0:b86d15c6ba29 | 1277 | void** data); |
Vanger | 0:b86d15c6ba29 | 1278 | CYASSL_API int CyaSSL_SNI_GetFromBuffer( |
Vanger | 0:b86d15c6ba29 | 1279 | const unsigned char* clientHello, unsigned int helloSz, |
Vanger | 0:b86d15c6ba29 | 1280 | unsigned char type, unsigned char* sni, unsigned int* inOutSz); |
Vanger | 0:b86d15c6ba29 | 1281 | |
Vanger | 0:b86d15c6ba29 | 1282 | #endif |
Vanger | 0:b86d15c6ba29 | 1283 | #endif |
Vanger | 0:b86d15c6ba29 | 1284 | |
Vanger | 0:b86d15c6ba29 | 1285 | /* Maximum Fragment Length */ |
Vanger | 0:b86d15c6ba29 | 1286 | #ifdef HAVE_MAX_FRAGMENT |
Vanger | 0:b86d15c6ba29 | 1287 | |
Vanger | 0:b86d15c6ba29 | 1288 | /* Fragment lengths */ |
Vanger | 0:b86d15c6ba29 | 1289 | enum { |
Vanger | 0:b86d15c6ba29 | 1290 | CYASSL_MFL_2_9 = 1, /* 512 bytes */ |
Vanger | 0:b86d15c6ba29 | 1291 | CYASSL_MFL_2_10 = 2, /* 1024 bytes */ |
Vanger | 0:b86d15c6ba29 | 1292 | CYASSL_MFL_2_11 = 3, /* 2048 bytes */ |
Vanger | 0:b86d15c6ba29 | 1293 | CYASSL_MFL_2_12 = 4, /* 4096 bytes */ |
Vanger | 0:b86d15c6ba29 | 1294 | CYASSL_MFL_2_13 = 5 /* 8192 bytes *//* CyaSSL ONLY!!! */ |
Vanger | 0:b86d15c6ba29 | 1295 | }; |
Vanger | 0:b86d15c6ba29 | 1296 | |
Vanger | 0:b86d15c6ba29 | 1297 | #ifndef NO_CYASSL_CLIENT |
Vanger | 0:b86d15c6ba29 | 1298 | |
Vanger | 0:b86d15c6ba29 | 1299 | CYASSL_API int CyaSSL_UseMaxFragment(CYASSL* ssl, unsigned char mfl); |
Vanger | 0:b86d15c6ba29 | 1300 | CYASSL_API int CyaSSL_CTX_UseMaxFragment(CYASSL_CTX* ctx, unsigned char mfl); |
Vanger | 0:b86d15c6ba29 | 1301 | |
Vanger | 0:b86d15c6ba29 | 1302 | #endif |
Vanger | 0:b86d15c6ba29 | 1303 | #endif |
Vanger | 0:b86d15c6ba29 | 1304 | |
Vanger | 0:b86d15c6ba29 | 1305 | /* Truncated HMAC */ |
Vanger | 0:b86d15c6ba29 | 1306 | #ifdef HAVE_TRUNCATED_HMAC |
Vanger | 0:b86d15c6ba29 | 1307 | #ifndef NO_CYASSL_CLIENT |
Vanger | 0:b86d15c6ba29 | 1308 | |
Vanger | 0:b86d15c6ba29 | 1309 | CYASSL_API int CyaSSL_UseTruncatedHMAC(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1310 | CYASSL_API int CyaSSL_CTX_UseTruncatedHMAC(CYASSL_CTX* ctx); |
Vanger | 0:b86d15c6ba29 | 1311 | |
Vanger | 0:b86d15c6ba29 | 1312 | #endif |
Vanger | 0:b86d15c6ba29 | 1313 | #endif |
Vanger | 0:b86d15c6ba29 | 1314 | |
Vanger | 0:b86d15c6ba29 | 1315 | /* Elliptic Curves */ |
Vanger | 0:b86d15c6ba29 | 1316 | #ifdef HAVE_SUPPORTED_CURVES |
Vanger | 0:b86d15c6ba29 | 1317 | |
Vanger | 0:b86d15c6ba29 | 1318 | enum { |
Vanger | 0:b86d15c6ba29 | 1319 | CYASSL_ECC_SECP160R1 = 0x10, |
Vanger | 0:b86d15c6ba29 | 1320 | CYASSL_ECC_SECP192R1 = 0x13, |
Vanger | 0:b86d15c6ba29 | 1321 | CYASSL_ECC_SECP224R1 = 0x15, |
Vanger | 0:b86d15c6ba29 | 1322 | CYASSL_ECC_SECP256R1 = 0x17, |
Vanger | 0:b86d15c6ba29 | 1323 | CYASSL_ECC_SECP384R1 = 0x18, |
Vanger | 0:b86d15c6ba29 | 1324 | CYASSL_ECC_SECP521R1 = 0x19 |
Vanger | 0:b86d15c6ba29 | 1325 | }; |
Vanger | 0:b86d15c6ba29 | 1326 | |
Vanger | 0:b86d15c6ba29 | 1327 | #ifndef NO_CYASSL_CLIENT |
Vanger | 0:b86d15c6ba29 | 1328 | |
Vanger | 0:b86d15c6ba29 | 1329 | CYASSL_API int CyaSSL_UseSupportedCurve(CYASSL* ssl, unsigned short name); |
Vanger | 0:b86d15c6ba29 | 1330 | CYASSL_API int CyaSSL_CTX_UseSupportedCurve(CYASSL_CTX* ctx, |
Vanger | 0:b86d15c6ba29 | 1331 | unsigned short name); |
Vanger | 0:b86d15c6ba29 | 1332 | |
Vanger | 0:b86d15c6ba29 | 1333 | #endif |
Vanger | 0:b86d15c6ba29 | 1334 | #endif |
Vanger | 0:b86d15c6ba29 | 1335 | |
Vanger | 0:b86d15c6ba29 | 1336 | /* Secure Renegotiation */ |
Vanger | 0:b86d15c6ba29 | 1337 | #ifdef HAVE_SECURE_RENEGOTIATION |
Vanger | 0:b86d15c6ba29 | 1338 | |
Vanger | 0:b86d15c6ba29 | 1339 | CYASSL_API int CyaSSL_UseSecureRenegotiation(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1340 | CYASSL_API int CyaSSL_Rehandshake(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1341 | |
Vanger | 0:b86d15c6ba29 | 1342 | #endif |
Vanger | 0:b86d15c6ba29 | 1343 | |
Vanger | 0:b86d15c6ba29 | 1344 | /* Session Ticket */ |
Vanger | 0:b86d15c6ba29 | 1345 | #ifdef HAVE_SESSION_TICKET |
Vanger | 0:b86d15c6ba29 | 1346 | #ifndef NO_CYASSL_CLIENT |
Vanger | 0:b86d15c6ba29 | 1347 | |
Vanger | 0:b86d15c6ba29 | 1348 | CYASSL_API int CyaSSL_UseSessionTicket(CYASSL* ssl); |
Vanger | 0:b86d15c6ba29 | 1349 | CYASSL_API int CyaSSL_CTX_UseSessionTicket(CYASSL_CTX* ctx); |
Vanger | 0:b86d15c6ba29 | 1350 | CYASSL_API int CyaSSL_get_SessionTicket(CYASSL*, unsigned char*, unsigned int*); |
Vanger | 0:b86d15c6ba29 | 1351 | CYASSL_API int CyaSSL_set_SessionTicket(CYASSL*, unsigned char*, unsigned int); |
Vanger | 0:b86d15c6ba29 | 1352 | typedef int (*CallbackSessionTicket)(CYASSL*, const unsigned char*, int, void*); |
Vanger | 0:b86d15c6ba29 | 1353 | CYASSL_API int CyaSSL_set_SessionTicket_cb(CYASSL*, |
Vanger | 0:b86d15c6ba29 | 1354 | CallbackSessionTicket, void*); |
Vanger | 0:b86d15c6ba29 | 1355 | |
Vanger | 0:b86d15c6ba29 | 1356 | #endif |
Vanger | 0:b86d15c6ba29 | 1357 | #endif |
Vanger | 0:b86d15c6ba29 | 1358 | |
Vanger | 0:b86d15c6ba29 | 1359 | #define CYASSL_CRL_MONITOR 0x01 /* monitor this dir flag */ |
Vanger | 0:b86d15c6ba29 | 1360 | #define CYASSL_CRL_START_MON 0x02 /* start monitoring flag */ |
Vanger | 0:b86d15c6ba29 | 1361 | |
Vanger | 0:b86d15c6ba29 | 1362 | |
Vanger | 0:b86d15c6ba29 | 1363 | /* External facing KDF */ |
Vanger | 0:b86d15c6ba29 | 1364 | CYASSL_API |
Vanger | 0:b86d15c6ba29 | 1365 | int CyaSSL_MakeTlsMasterSecret(unsigned char* ms, unsigned int msLen, |
Vanger | 0:b86d15c6ba29 | 1366 | const unsigned char* pms, unsigned int pmsLen, |
Vanger | 0:b86d15c6ba29 | 1367 | const unsigned char* cr, const unsigned char* sr, |
Vanger | 0:b86d15c6ba29 | 1368 | int tls1_2, int hash_type); |
Vanger | 0:b86d15c6ba29 | 1369 | |
Vanger | 0:b86d15c6ba29 | 1370 | CYASSL_API |
Vanger | 0:b86d15c6ba29 | 1371 | int CyaSSL_DeriveTlsKeys(unsigned char* key_data, unsigned int keyLen, |
Vanger | 0:b86d15c6ba29 | 1372 | const unsigned char* ms, unsigned int msLen, |
Vanger | 0:b86d15c6ba29 | 1373 | const unsigned char* sr, const unsigned char* cr, |
Vanger | 0:b86d15c6ba29 | 1374 | int tls1_2, int hash_type); |
Vanger | 0:b86d15c6ba29 | 1375 | |
Vanger | 0:b86d15c6ba29 | 1376 | #ifdef CYASSL_CALLBACKS |
Vanger | 0:b86d15c6ba29 | 1377 | |
Vanger | 0:b86d15c6ba29 | 1378 | /* used internally by CyaSSL while OpenSSL types aren't */ |
Vanger | 0:b86d15c6ba29 | 1379 | #include <cyassl/callbacks.h> |
Vanger | 0:b86d15c6ba29 | 1380 | |
Vanger | 0:b86d15c6ba29 | 1381 | typedef int (*HandShakeCallBack)(HandShakeInfo*); |
Vanger | 0:b86d15c6ba29 | 1382 | typedef int (*TimeoutCallBack)(TimeoutInfo*); |
Vanger | 0:b86d15c6ba29 | 1383 | |
Vanger | 0:b86d15c6ba29 | 1384 | /* CyaSSL connect extension allowing HandShakeCallBack and/or TimeoutCallBack |
Vanger | 0:b86d15c6ba29 | 1385 | for diagnostics */ |
Vanger | 0:b86d15c6ba29 | 1386 | CYASSL_API int CyaSSL_connect_ex(CYASSL*, HandShakeCallBack, TimeoutCallBack, |
Vanger | 0:b86d15c6ba29 | 1387 | Timeval); |
Vanger | 0:b86d15c6ba29 | 1388 | CYASSL_API int CyaSSL_accept_ex(CYASSL*, HandShakeCallBack, TimeoutCallBack, |
Vanger | 0:b86d15c6ba29 | 1389 | Timeval); |
Vanger | 0:b86d15c6ba29 | 1390 | |
Vanger | 0:b86d15c6ba29 | 1391 | #endif /* CYASSL_CALLBACKS */ |
Vanger | 0:b86d15c6ba29 | 1392 | |
Vanger | 0:b86d15c6ba29 | 1393 | |
Vanger | 0:b86d15c6ba29 | 1394 | #ifdef CYASSL_HAVE_WOLFSCEP |
Vanger | 0:b86d15c6ba29 | 1395 | CYASSL_API void CyaSSL_wolfSCEP(void); |
Vanger | 0:b86d15c6ba29 | 1396 | #endif /* CYASSL_HAVE_WOLFSCEP */ |
Vanger | 0:b86d15c6ba29 | 1397 | |
Vanger | 0:b86d15c6ba29 | 1398 | #ifdef CYASSL_HAVE_CERT_SERVICE |
Vanger | 0:b86d15c6ba29 | 1399 | CYASSL_API void CyaSSL_cert_service(void); |
Vanger | 0:b86d15c6ba29 | 1400 | #endif |
Vanger | 0:b86d15c6ba29 | 1401 | |
Vanger | 0:b86d15c6ba29 | 1402 | |
Vanger | 0:b86d15c6ba29 | 1403 | #ifdef __cplusplus |
Vanger | 0:b86d15c6ba29 | 1404 | } /* extern "C" */ |
Vanger | 0:b86d15c6ba29 | 1405 | #endif |
Vanger | 0:b86d15c6ba29 | 1406 | |
Vanger | 0:b86d15c6ba29 | 1407 | |
Vanger | 0:b86d15c6ba29 | 1408 | #endif /* CYASSL_SSL_H */ |
Vanger | 0:b86d15c6ba29 | 1409 |