MultiTech / CyaSSL

A library for setting up Secure Socket Layer (SSL) connections and verifying remote hosts using certificates. Contains only the source files for mbed platform implementation of the library.

Dependents:   HTTPClient-SSL HTTPClient-SSL HTTPClient-SSL HTTPClient-SSL

cyassl/ssl.h@0:b86d15c6ba29, 2015-01-19 (annotated)

Committer:
Vanger
Date:
Mon Jan 19 21:45:42 2015 +0000
Revision:
0:b86d15c6ba29
Updated CyaSSL Library to 3.3.0. Changed Settings and functions to be implemented for mbed platforms

Who changed what in which revision?

UserRevisionLine numberNew contents of line
Vanger 0:b86d15c6ba29 1 /* ssl.h
Vanger 0:b86d15c6ba29 2 *
Vanger 0:b86d15c6ba29 3 * Copyright (C) 2006-2014 wolfSSL Inc.
Vanger 0:b86d15c6ba29 4 *
Vanger 0:b86d15c6ba29 5 * This file is part of CyaSSL.
Vanger 0:b86d15c6ba29 6 *
Vanger 0:b86d15c6ba29 7 * CyaSSL is free software; you can redistribute it and/or modify
Vanger 0:b86d15c6ba29 8 * it under the terms of the GNU General Public License as published by
Vanger 0:b86d15c6ba29 9 * the Free Software Foundation; either version 2 of the License, or
Vanger 0:b86d15c6ba29 10 * (at your option) any later version.
Vanger 0:b86d15c6ba29 11 *
Vanger 0:b86d15c6ba29 12 * CyaSSL is distributed in the hope that it will be useful,
Vanger 0:b86d15c6ba29 13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
Vanger 0:b86d15c6ba29 14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
Vanger 0:b86d15c6ba29 15 * GNU General Public License for more details.
Vanger 0:b86d15c6ba29 16 *
Vanger 0:b86d15c6ba29 17 * You should have received a copy of the GNU General Public License
Vanger 0:b86d15c6ba29 18 * along with this program; if not, write to the Free Software
Vanger 0:b86d15c6ba29 19 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA
Vanger 0:b86d15c6ba29 20 */
Vanger 0:b86d15c6ba29 21
Vanger 0:b86d15c6ba29 22
Vanger 0:b86d15c6ba29 23 /* CyaSSL API */
Vanger 0:b86d15c6ba29 24
Vanger 0:b86d15c6ba29 25 #ifndef CYASSL_SSL_H
Vanger 0:b86d15c6ba29 26 #define CYASSL_SSL_H
Vanger 0:b86d15c6ba29 27
Vanger 0:b86d15c6ba29 28
Vanger 0:b86d15c6ba29 29 /* for users not using preprocessor flags*/
Vanger 0:b86d15c6ba29 30 #include <cyassl/ctaocrypt/settings.h>
Vanger 0:b86d15c6ba29 31 #include <cyassl/version.h>
Vanger 0:b86d15c6ba29 32
Vanger 0:b86d15c6ba29 33
Vanger 0:b86d15c6ba29 34 #ifndef NO_FILESYSTEM
Vanger 0:b86d15c6ba29 35 #ifdef FREESCALE_MQX
Vanger 0:b86d15c6ba29 36 #include <fio.h>
Vanger 0:b86d15c6ba29 37 #else
Vanger 0:b86d15c6ba29 38 #include <stdio.h> /* ERR_printf */
Vanger 0:b86d15c6ba29 39 #endif
Vanger 0:b86d15c6ba29 40 #endif
Vanger 0:b86d15c6ba29 41
Vanger 0:b86d15c6ba29 42 #ifdef YASSL_PREFIX
Vanger 0:b86d15c6ba29 43 #include "prefix_ssl.h"
Vanger 0:b86d15c6ba29 44 #endif
Vanger 0:b86d15c6ba29 45
Vanger 0:b86d15c6ba29 46 #ifdef LIBCYASSL_VERSION_STRING
Vanger 0:b86d15c6ba29 47 #define CYASSL_VERSION LIBCYASSL_VERSION_STRING
Vanger 0:b86d15c6ba29 48 #endif
Vanger 0:b86d15c6ba29 49
Vanger 0:b86d15c6ba29 50 #ifdef _WIN32
Vanger 0:b86d15c6ba29 51 /* wincrypt.h clashes */
Vanger 0:b86d15c6ba29 52 #undef OCSP_REQUEST
Vanger 0:b86d15c6ba29 53 #undef OCSP_RESPONSE
Vanger 0:b86d15c6ba29 54 #endif
Vanger 0:b86d15c6ba29 55
Vanger 0:b86d15c6ba29 56
Vanger 0:b86d15c6ba29 57
Vanger 0:b86d15c6ba29 58 #ifdef __cplusplus
Vanger 0:b86d15c6ba29 59 extern "C" {
Vanger 0:b86d15c6ba29 60 #endif
Vanger 0:b86d15c6ba29 61
Vanger 0:b86d15c6ba29 62 typedef struct CYASSL CYASSL;
Vanger 0:b86d15c6ba29 63 typedef struct CYASSL_SESSION CYASSL_SESSION;
Vanger 0:b86d15c6ba29 64 typedef struct CYASSL_METHOD CYASSL_METHOD;
Vanger 0:b86d15c6ba29 65 typedef struct CYASSL_CTX CYASSL_CTX;
Vanger 0:b86d15c6ba29 66
Vanger 0:b86d15c6ba29 67 typedef struct CYASSL_X509 CYASSL_X509;
Vanger 0:b86d15c6ba29 68 typedef struct CYASSL_X509_NAME CYASSL_X509_NAME;
Vanger 0:b86d15c6ba29 69 typedef struct CYASSL_X509_CHAIN CYASSL_X509_CHAIN;
Vanger 0:b86d15c6ba29 70
Vanger 0:b86d15c6ba29 71 typedef struct CYASSL_CERT_MANAGER CYASSL_CERT_MANAGER;
Vanger 0:b86d15c6ba29 72 typedef struct CYASSL_SOCKADDR CYASSL_SOCKADDR;
Vanger 0:b86d15c6ba29 73
Vanger 0:b86d15c6ba29 74 /* redeclare guard */
Vanger 0:b86d15c6ba29 75 #define CYASSL_TYPES_DEFINED
Vanger 0:b86d15c6ba29 76
Vanger 0:b86d15c6ba29 77
Vanger 0:b86d15c6ba29 78 typedef struct CYASSL_RSA CYASSL_RSA;
Vanger 0:b86d15c6ba29 79 typedef struct CYASSL_DSA CYASSL_DSA;
Vanger 0:b86d15c6ba29 80 typedef struct CYASSL_CIPHER CYASSL_CIPHER;
Vanger 0:b86d15c6ba29 81 typedef struct CYASSL_X509_LOOKUP CYASSL_X509_LOOKUP;
Vanger 0:b86d15c6ba29 82 typedef struct CYASSL_X509_LOOKUP_METHOD CYASSL_X509_LOOKUP_METHOD;
Vanger 0:b86d15c6ba29 83 typedef struct CYASSL_X509_CRL CYASSL_X509_CRL;
Vanger 0:b86d15c6ba29 84 typedef struct CYASSL_BIO CYASSL_BIO;
Vanger 0:b86d15c6ba29 85 typedef struct CYASSL_BIO_METHOD CYASSL_BIO_METHOD;
Vanger 0:b86d15c6ba29 86 typedef struct CYASSL_X509_EXTENSION CYASSL_X509_EXTENSION;
Vanger 0:b86d15c6ba29 87 typedef struct CYASSL_ASN1_TIME CYASSL_ASN1_TIME;
Vanger 0:b86d15c6ba29 88 typedef struct CYASSL_ASN1_INTEGER CYASSL_ASN1_INTEGER;
Vanger 0:b86d15c6ba29 89 typedef struct CYASSL_ASN1_OBJECT CYASSL_ASN1_OBJECT;
Vanger 0:b86d15c6ba29 90 typedef struct CYASSL_ASN1_STRING CYASSL_ASN1_STRING;
Vanger 0:b86d15c6ba29 91 typedef struct CYASSL_dynlock_value CYASSL_dynlock_value;
Vanger 0:b86d15c6ba29 92
Vanger 0:b86d15c6ba29 93 #define CYASSL_ASN1_UTCTIME CYASSL_ASN1_TIME
Vanger 0:b86d15c6ba29 94
Vanger 0:b86d15c6ba29 95 typedef struct CYASSL_EVP_PKEY {
Vanger 0:b86d15c6ba29 96 int type; /* openssh dereference */
Vanger 0:b86d15c6ba29 97 int save_type; /* openssh dereference */
Vanger 0:b86d15c6ba29 98 int pkey_sz;
Vanger 0:b86d15c6ba29 99 union {
Vanger 0:b86d15c6ba29 100 char* ptr;
Vanger 0:b86d15c6ba29 101 } pkey;
Vanger 0:b86d15c6ba29 102 #ifdef HAVE_ECC
Vanger 0:b86d15c6ba29 103 int pkey_curve;
Vanger 0:b86d15c6ba29 104 #endif
Vanger 0:b86d15c6ba29 105 } CYASSL_EVP_PKEY;
Vanger 0:b86d15c6ba29 106
Vanger 0:b86d15c6ba29 107 typedef struct CYASSL_MD4_CTX {
Vanger 0:b86d15c6ba29 108 int buffer[32]; /* big enough to hold, check size in Init */
Vanger 0:b86d15c6ba29 109 } CYASSL_MD4_CTX;
Vanger 0:b86d15c6ba29 110
Vanger 0:b86d15c6ba29 111
Vanger 0:b86d15c6ba29 112 typedef struct CYASSL_COMP_METHOD {
Vanger 0:b86d15c6ba29 113 int type; /* stunnel dereference */
Vanger 0:b86d15c6ba29 114 } CYASSL_COMP_METHOD;
Vanger 0:b86d15c6ba29 115
Vanger 0:b86d15c6ba29 116
Vanger 0:b86d15c6ba29 117 typedef struct CYASSL_X509_STORE {
Vanger 0:b86d15c6ba29 118 int cache; /* stunnel dereference */
Vanger 0:b86d15c6ba29 119 CYASSL_CERT_MANAGER* cm;
Vanger 0:b86d15c6ba29 120 } CYASSL_X509_STORE;
Vanger 0:b86d15c6ba29 121
Vanger 0:b86d15c6ba29 122 typedef struct CYASSL_ALERT {
Vanger 0:b86d15c6ba29 123 int code;
Vanger 0:b86d15c6ba29 124 int level;
Vanger 0:b86d15c6ba29 125 } CYASSL_ALERT;
Vanger 0:b86d15c6ba29 126
Vanger 0:b86d15c6ba29 127 typedef struct CYASSL_ALERT_HISTORY {
Vanger 0:b86d15c6ba29 128 CYASSL_ALERT last_rx;
Vanger 0:b86d15c6ba29 129 CYASSL_ALERT last_tx;
Vanger 0:b86d15c6ba29 130 } CYASSL_ALERT_HISTORY;
Vanger 0:b86d15c6ba29 131
Vanger 0:b86d15c6ba29 132 typedef struct CYASSL_X509_REVOKED {
Vanger 0:b86d15c6ba29 133 CYASSL_ASN1_INTEGER* serialNumber; /* stunnel dereference */
Vanger 0:b86d15c6ba29 134 } CYASSL_X509_REVOKED;
Vanger 0:b86d15c6ba29 135
Vanger 0:b86d15c6ba29 136
Vanger 0:b86d15c6ba29 137 typedef struct CYASSL_X509_OBJECT {
Vanger 0:b86d15c6ba29 138 union {
Vanger 0:b86d15c6ba29 139 char* ptr;
Vanger 0:b86d15c6ba29 140 CYASSL_X509_CRL* crl; /* stunnel dereference */
Vanger 0:b86d15c6ba29 141 } data;
Vanger 0:b86d15c6ba29 142 } CYASSL_X509_OBJECT;
Vanger 0:b86d15c6ba29 143
Vanger 0:b86d15c6ba29 144
Vanger 0:b86d15c6ba29 145 typedef struct CYASSL_X509_STORE_CTX {
Vanger 0:b86d15c6ba29 146 CYASSL_X509_STORE* store; /* Store full of a CA cert chain */
Vanger 0:b86d15c6ba29 147 CYASSL_X509* current_cert; /* stunnel dereference */
Vanger 0:b86d15c6ba29 148 char* domain; /* subject CN domain name */
Vanger 0:b86d15c6ba29 149 void* ex_data; /* external data, for fortress build */
Vanger 0:b86d15c6ba29 150 void* userCtx; /* user ctx */
Vanger 0:b86d15c6ba29 151 int error; /* current error */
Vanger 0:b86d15c6ba29 152 int error_depth; /* cert depth for this error */
Vanger 0:b86d15c6ba29 153 int discardSessionCerts; /* so verify callback can flag for discard */
Vanger 0:b86d15c6ba29 154 } CYASSL_X509_STORE_CTX;
Vanger 0:b86d15c6ba29 155
Vanger 0:b86d15c6ba29 156
Vanger 0:b86d15c6ba29 157 /* Valid Alert types from page 16/17 */
Vanger 0:b86d15c6ba29 158 enum AlertDescription {
Vanger 0:b86d15c6ba29 159 close_notify = 0,
Vanger 0:b86d15c6ba29 160 unexpected_message = 10,
Vanger 0:b86d15c6ba29 161 bad_record_mac = 20,
Vanger 0:b86d15c6ba29 162 record_overflow = 22,
Vanger 0:b86d15c6ba29 163 decompression_failure = 30,
Vanger 0:b86d15c6ba29 164 handshake_failure = 40,
Vanger 0:b86d15c6ba29 165 no_certificate = 41,
Vanger 0:b86d15c6ba29 166 bad_certificate = 42,
Vanger 0:b86d15c6ba29 167 unsupported_certificate = 43,
Vanger 0:b86d15c6ba29 168 certificate_revoked = 44,
Vanger 0:b86d15c6ba29 169 certificate_expired = 45,
Vanger 0:b86d15c6ba29 170 certificate_unknown = 46,
Vanger 0:b86d15c6ba29 171 illegal_parameter = 47,
Vanger 0:b86d15c6ba29 172 decrypt_error = 51,
Vanger 0:b86d15c6ba29 173 protocol_version = 70,
Vanger 0:b86d15c6ba29 174 no_renegotiation = 100,
Vanger 0:b86d15c6ba29 175 unrecognized_name = 112
Vanger 0:b86d15c6ba29 176 };
Vanger 0:b86d15c6ba29 177
Vanger 0:b86d15c6ba29 178
Vanger 0:b86d15c6ba29 179 enum AlertLevel {
Vanger 0:b86d15c6ba29 180 alert_warning = 1,
Vanger 0:b86d15c6ba29 181 alert_fatal = 2
Vanger 0:b86d15c6ba29 182 };
Vanger 0:b86d15c6ba29 183
Vanger 0:b86d15c6ba29 184
Vanger 0:b86d15c6ba29 185 CYASSL_API CYASSL_METHOD *CyaSSLv3_server_method(void);
Vanger 0:b86d15c6ba29 186 CYASSL_API CYASSL_METHOD *CyaSSLv3_client_method(void);
Vanger 0:b86d15c6ba29 187 CYASSL_API CYASSL_METHOD *CyaTLSv1_server_method(void);
Vanger 0:b86d15c6ba29 188 CYASSL_API CYASSL_METHOD *CyaTLSv1_client_method(void);
Vanger 0:b86d15c6ba29 189 CYASSL_API CYASSL_METHOD *CyaTLSv1_1_server_method(void);
Vanger 0:b86d15c6ba29 190 CYASSL_API CYASSL_METHOD *CyaTLSv1_1_client_method(void);
Vanger 0:b86d15c6ba29 191 CYASSL_API CYASSL_METHOD *CyaTLSv1_2_server_method(void);
Vanger 0:b86d15c6ba29 192 CYASSL_API CYASSL_METHOD *CyaTLSv1_2_client_method(void);
Vanger 0:b86d15c6ba29 193
Vanger 0:b86d15c6ba29 194 #ifdef CYASSL_DTLS
Vanger 0:b86d15c6ba29 195 CYASSL_API CYASSL_METHOD *CyaDTLSv1_client_method(void);
Vanger 0:b86d15c6ba29 196 CYASSL_API CYASSL_METHOD *CyaDTLSv1_server_method(void);
Vanger 0:b86d15c6ba29 197 CYASSL_API CYASSL_METHOD *CyaDTLSv1_2_client_method(void);
Vanger 0:b86d15c6ba29 198 CYASSL_API CYASSL_METHOD *CyaDTLSv1_2_server_method(void);
Vanger 0:b86d15c6ba29 199 #endif
Vanger 0:b86d15c6ba29 200
Vanger 0:b86d15c6ba29 201 #if !defined(NO_FILESYSTEM) && !defined(NO_CERTS)
Vanger 0:b86d15c6ba29 202
Vanger 0:b86d15c6ba29 203 CYASSL_API int CyaSSL_CTX_use_certificate_file(CYASSL_CTX*, const char*, int);
Vanger 0:b86d15c6ba29 204 CYASSL_API int CyaSSL_CTX_use_PrivateKey_file(CYASSL_CTX*, const char*, int);
Vanger 0:b86d15c6ba29 205 CYASSL_API int CyaSSL_CTX_load_verify_locations(CYASSL_CTX*, const char*,
Vanger 0:b86d15c6ba29 206 const char*);
Vanger 0:b86d15c6ba29 207 CYASSL_API int CyaSSL_CTX_use_certificate_chain_file(CYASSL_CTX *,
Vanger 0:b86d15c6ba29 208 const char *file);
Vanger 0:b86d15c6ba29 209 CYASSL_API int CyaSSL_CTX_use_RSAPrivateKey_file(CYASSL_CTX*, const char*, int);
Vanger 0:b86d15c6ba29 210
Vanger 0:b86d15c6ba29 211 CYASSL_API int CyaSSL_use_certificate_file(CYASSL*, const char*, int);
Vanger 0:b86d15c6ba29 212 CYASSL_API int CyaSSL_use_PrivateKey_file(CYASSL*, const char*, int);
Vanger 0:b86d15c6ba29 213 CYASSL_API int CyaSSL_use_certificate_chain_file(CYASSL*, const char *file);
Vanger 0:b86d15c6ba29 214 CYASSL_API int CyaSSL_use_RSAPrivateKey_file(CYASSL*, const char*, int);
Vanger 0:b86d15c6ba29 215
Vanger 0:b86d15c6ba29 216 #ifdef CYASSL_DER_LOAD
Vanger 0:b86d15c6ba29 217 CYASSL_API int CyaSSL_CTX_der_load_verify_locations(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 218 const char*, int);
Vanger 0:b86d15c6ba29 219 #endif
Vanger 0:b86d15c6ba29 220
Vanger 0:b86d15c6ba29 221 #ifdef HAVE_POLY1305
Vanger 0:b86d15c6ba29 222 CYASSL_API int CyaSSL_use_old_poly(CYASSL*, int);
Vanger 0:b86d15c6ba29 223 #endif
Vanger 0:b86d15c6ba29 224
Vanger 0:b86d15c6ba29 225 #ifdef HAVE_NTRU
Vanger 0:b86d15c6ba29 226 CYASSL_API int CyaSSL_CTX_use_NTRUPrivateKey_file(CYASSL_CTX*, const char*);
Vanger 0:b86d15c6ba29 227 /* load NTRU private key blob */
Vanger 0:b86d15c6ba29 228 #endif
Vanger 0:b86d15c6ba29 229
Vanger 0:b86d15c6ba29 230 #ifndef CYASSL_PEMCERT_TODER_DEFINED
Vanger 0:b86d15c6ba29 231 CYASSL_API int CyaSSL_PemCertToDer(const char*, unsigned char*, int);
Vanger 0:b86d15c6ba29 232 #define CYASSL_PEMCERT_TODER_DEFINED
Vanger 0:b86d15c6ba29 233 #endif
Vanger 0:b86d15c6ba29 234
Vanger 0:b86d15c6ba29 235 #endif /* !NO_FILESYSTEM && !NO_CERTS */
Vanger 0:b86d15c6ba29 236
Vanger 0:b86d15c6ba29 237 CYASSL_API CYASSL_CTX* CyaSSL_CTX_new(CYASSL_METHOD*);
Vanger 0:b86d15c6ba29 238 CYASSL_API CYASSL* CyaSSL_new(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 239 CYASSL_API int CyaSSL_set_fd (CYASSL*, int);
Vanger 0:b86d15c6ba29 240 CYASSL_API int CyaSSL_get_ciphers(char*, int);
Vanger 0:b86d15c6ba29 241 CYASSL_API int CyaSSL_get_fd(const CYASSL*);
Vanger 0:b86d15c6ba29 242 CYASSL_API void CyaSSL_set_using_nonblock(CYASSL*, int);
Vanger 0:b86d15c6ba29 243 CYASSL_API int CyaSSL_get_using_nonblock(CYASSL*);
Vanger 0:b86d15c6ba29 244 CYASSL_API int CyaSSL_connect(CYASSL*); /* please see note at top of README
Vanger 0:b86d15c6ba29 245 if you get an error from connect */
Vanger 0:b86d15c6ba29 246 CYASSL_API int CyaSSL_write(CYASSL*, const void*, int);
Vanger 0:b86d15c6ba29 247 CYASSL_API int CyaSSL_read(CYASSL*, void*, int);
Vanger 0:b86d15c6ba29 248 CYASSL_API int CyaSSL_peek(CYASSL*, void*, int);
Vanger 0:b86d15c6ba29 249 CYASSL_API int CyaSSL_accept(CYASSL*);
Vanger 0:b86d15c6ba29 250 CYASSL_API void CyaSSL_CTX_free(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 251 CYASSL_API void CyaSSL_free(CYASSL*);
Vanger 0:b86d15c6ba29 252 CYASSL_API int CyaSSL_shutdown(CYASSL*);
Vanger 0:b86d15c6ba29 253 CYASSL_API int CyaSSL_send(CYASSL*, const void*, int sz, int flags);
Vanger 0:b86d15c6ba29 254 CYASSL_API int CyaSSL_recv(CYASSL*, void*, int sz, int flags);
Vanger 0:b86d15c6ba29 255
Vanger 0:b86d15c6ba29 256 CYASSL_API void CyaSSL_CTX_set_quiet_shutdown(CYASSL_CTX*, int);
Vanger 0:b86d15c6ba29 257 CYASSL_API void CyaSSL_set_quiet_shutdown(CYASSL*, int);
Vanger 0:b86d15c6ba29 258
Vanger 0:b86d15c6ba29 259 CYASSL_API int CyaSSL_get_error(CYASSL*, int);
Vanger 0:b86d15c6ba29 260 CYASSL_API int CyaSSL_get_alert_history(CYASSL*, CYASSL_ALERT_HISTORY *);
Vanger 0:b86d15c6ba29 261
Vanger 0:b86d15c6ba29 262 CYASSL_API int CyaSSL_set_session(CYASSL* ssl,CYASSL_SESSION* session);
Vanger 0:b86d15c6ba29 263 CYASSL_API CYASSL_SESSION* CyaSSL_get_session(CYASSL* ssl);
Vanger 0:b86d15c6ba29 264 CYASSL_API void CyaSSL_flush_sessions(CYASSL_CTX *ctx, long tm);
Vanger 0:b86d15c6ba29 265 CYASSL_API int CyaSSL_SetServerID(CYASSL* ssl, const unsigned char*,
Vanger 0:b86d15c6ba29 266 int, int);
Vanger 0:b86d15c6ba29 267
Vanger 0:b86d15c6ba29 268 #ifdef SESSION_INDEX
Vanger 0:b86d15c6ba29 269 CYASSL_API int CyaSSL_GetSessionIndex(CYASSL* ssl);
Vanger 0:b86d15c6ba29 270 CYASSL_API int CyaSSL_GetSessionAtIndex(int index, CYASSL_SESSION* session);
Vanger 0:b86d15c6ba29 271 #endif /* SESSION_INDEX */
Vanger 0:b86d15c6ba29 272
Vanger 0:b86d15c6ba29 273 #if defined(SESSION_INDEX) && defined(SESSION_CERTS)
Vanger 0:b86d15c6ba29 274 CYASSL_API
Vanger 0:b86d15c6ba29 275 CYASSL_X509_CHAIN* CyaSSL_SESSION_get_peer_chain(CYASSL_SESSION* session);
Vanger 0:b86d15c6ba29 276 #endif /* SESSION_INDEX && SESSION_CERTS */
Vanger 0:b86d15c6ba29 277
Vanger 0:b86d15c6ba29 278 typedef int (*VerifyCallback)(int, CYASSL_X509_STORE_CTX*);
Vanger 0:b86d15c6ba29 279 typedef int (*pem_password_cb)(char*, int, int, void*);
Vanger 0:b86d15c6ba29 280
Vanger 0:b86d15c6ba29 281 CYASSL_API void CyaSSL_CTX_set_verify(CYASSL_CTX*, int,
Vanger 0:b86d15c6ba29 282 VerifyCallback verify_callback);
Vanger 0:b86d15c6ba29 283 CYASSL_API void CyaSSL_set_verify(CYASSL*, int, VerifyCallback verify_callback);
Vanger 0:b86d15c6ba29 284 CYASSL_API void CyaSSL_SetCertCbCtx(CYASSL*, void*);
Vanger 0:b86d15c6ba29 285
Vanger 0:b86d15c6ba29 286 CYASSL_API int CyaSSL_pending(CYASSL*);
Vanger 0:b86d15c6ba29 287
Vanger 0:b86d15c6ba29 288 CYASSL_API void CyaSSL_load_error_strings(void);
Vanger 0:b86d15c6ba29 289 CYASSL_API int CyaSSL_library_init(void);
Vanger 0:b86d15c6ba29 290 CYASSL_API long CyaSSL_CTX_set_session_cache_mode(CYASSL_CTX*, long);
Vanger 0:b86d15c6ba29 291
Vanger 0:b86d15c6ba29 292 #ifdef HAVE_SECRET_CALLBACK
Vanger 0:b86d15c6ba29 293 typedef int (*SessionSecretCb)(CYASSL* ssl,
Vanger 0:b86d15c6ba29 294 void* secret, int* secretSz, void* ctx);
Vanger 0:b86d15c6ba29 295 CYASSL_API int CyaSSL_set_session_secret_cb(CYASSL*, SessionSecretCb, void*);
Vanger 0:b86d15c6ba29 296 #endif /* HAVE_SECRET_CALLBACK */
Vanger 0:b86d15c6ba29 297
Vanger 0:b86d15c6ba29 298 /* session cache persistence */
Vanger 0:b86d15c6ba29 299 CYASSL_API int CyaSSL_save_session_cache(const char*);
Vanger 0:b86d15c6ba29 300 CYASSL_API int CyaSSL_restore_session_cache(const char*);
Vanger 0:b86d15c6ba29 301 CYASSL_API int CyaSSL_memsave_session_cache(void*, int);
Vanger 0:b86d15c6ba29 302 CYASSL_API int CyaSSL_memrestore_session_cache(const void*, int);
Vanger 0:b86d15c6ba29 303 CYASSL_API int CyaSSL_get_session_cache_memsize(void);
Vanger 0:b86d15c6ba29 304
Vanger 0:b86d15c6ba29 305 /* certificate cache persistence, uses ctx since certs are per ctx */
Vanger 0:b86d15c6ba29 306 CYASSL_API int CyaSSL_CTX_save_cert_cache(CYASSL_CTX*, const char*);
Vanger 0:b86d15c6ba29 307 CYASSL_API int CyaSSL_CTX_restore_cert_cache(CYASSL_CTX*, const char*);
Vanger 0:b86d15c6ba29 308 CYASSL_API int CyaSSL_CTX_memsave_cert_cache(CYASSL_CTX*, void*, int, int*);
Vanger 0:b86d15c6ba29 309 CYASSL_API int CyaSSL_CTX_memrestore_cert_cache(CYASSL_CTX*, const void*, int);
Vanger 0:b86d15c6ba29 310 CYASSL_API int CyaSSL_CTX_get_cert_cache_memsize(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 311
Vanger 0:b86d15c6ba29 312 /* only supports full name from cipher_name[] delimited by : */
Vanger 0:b86d15c6ba29 313 CYASSL_API int CyaSSL_CTX_set_cipher_list(CYASSL_CTX*, const char*);
Vanger 0:b86d15c6ba29 314 CYASSL_API int CyaSSL_set_cipher_list(CYASSL*, const char*);
Vanger 0:b86d15c6ba29 315
Vanger 0:b86d15c6ba29 316 /* Nonblocking DTLS helper functions */
Vanger 0:b86d15c6ba29 317 CYASSL_API int CyaSSL_dtls_get_current_timeout(CYASSL* ssl);
Vanger 0:b86d15c6ba29 318 CYASSL_API int CyaSSL_dtls_set_timeout_init(CYASSL* ssl, int);
Vanger 0:b86d15c6ba29 319 CYASSL_API int CyaSSL_dtls_set_timeout_max(CYASSL* ssl, int);
Vanger 0:b86d15c6ba29 320 CYASSL_API int CyaSSL_dtls_got_timeout(CYASSL* ssl);
Vanger 0:b86d15c6ba29 321 CYASSL_API int CyaSSL_dtls(CYASSL* ssl);
Vanger 0:b86d15c6ba29 322
Vanger 0:b86d15c6ba29 323 CYASSL_API int CyaSSL_dtls_set_peer(CYASSL*, void*, unsigned int);
Vanger 0:b86d15c6ba29 324 CYASSL_API int CyaSSL_dtls_get_peer(CYASSL*, void*, unsigned int*);
Vanger 0:b86d15c6ba29 325
Vanger 0:b86d15c6ba29 326 CYASSL_API int CyaSSL_ERR_GET_REASON(int err);
Vanger 0:b86d15c6ba29 327 CYASSL_API char* CyaSSL_ERR_error_string(unsigned long,char*);
Vanger 0:b86d15c6ba29 328 CYASSL_API void CyaSSL_ERR_error_string_n(unsigned long e, char* buf,
Vanger 0:b86d15c6ba29 329 unsigned long sz);
Vanger 0:b86d15c6ba29 330 CYASSL_API const char* CyaSSL_ERR_reason_error_string(unsigned long);
Vanger 0:b86d15c6ba29 331
Vanger 0:b86d15c6ba29 332 /* extras */
Vanger 0:b86d15c6ba29 333
Vanger 0:b86d15c6ba29 334 #define STACK_OF(x) x
Vanger 0:b86d15c6ba29 335
Vanger 0:b86d15c6ba29 336 CYASSL_API int CyaSSL_set_ex_data(CYASSL*, int, void*);
Vanger 0:b86d15c6ba29 337 CYASSL_API int CyaSSL_get_shutdown(const CYASSL*);
Vanger 0:b86d15c6ba29 338 CYASSL_API int CyaSSL_set_rfd(CYASSL*, int);
Vanger 0:b86d15c6ba29 339 CYASSL_API int CyaSSL_set_wfd(CYASSL*, int);
Vanger 0:b86d15c6ba29 340 CYASSL_API void CyaSSL_set_shutdown(CYASSL*, int);
Vanger 0:b86d15c6ba29 341 CYASSL_API int CyaSSL_set_session_id_context(CYASSL*, const unsigned char*,
Vanger 0:b86d15c6ba29 342 unsigned int);
Vanger 0:b86d15c6ba29 343 CYASSL_API void CyaSSL_set_connect_state(CYASSL*);
Vanger 0:b86d15c6ba29 344 CYASSL_API void CyaSSL_set_accept_state(CYASSL*);
Vanger 0:b86d15c6ba29 345 CYASSL_API int CyaSSL_session_reused(CYASSL*);
Vanger 0:b86d15c6ba29 346 CYASSL_API void CyaSSL_SESSION_free(CYASSL_SESSION* session);
Vanger 0:b86d15c6ba29 347 CYASSL_API int CyaSSL_is_init_finished(CYASSL*);
Vanger 0:b86d15c6ba29 348
Vanger 0:b86d15c6ba29 349 CYASSL_API const char* CyaSSL_get_version(CYASSL*);
Vanger 0:b86d15c6ba29 350 CYASSL_API int CyaSSL_get_current_cipher_suite(CYASSL* ssl);
Vanger 0:b86d15c6ba29 351 CYASSL_API CYASSL_CIPHER* CyaSSL_get_current_cipher(CYASSL*);
Vanger 0:b86d15c6ba29 352 CYASSL_API char* CyaSSL_CIPHER_description(CYASSL_CIPHER*, char*, int);
Vanger 0:b86d15c6ba29 353 CYASSL_API const char* CyaSSL_CIPHER_get_name(const CYASSL_CIPHER* cipher);
Vanger 0:b86d15c6ba29 354 CYASSL_API const char* CyaSSL_get_cipher(CYASSL*);
Vanger 0:b86d15c6ba29 355 CYASSL_API CYASSL_SESSION* CyaSSL_get1_session(CYASSL* ssl);
Vanger 0:b86d15c6ba29 356 /* what's ref count */
Vanger 0:b86d15c6ba29 357
Vanger 0:b86d15c6ba29 358 CYASSL_API void CyaSSL_X509_free(CYASSL_X509*);
Vanger 0:b86d15c6ba29 359 CYASSL_API void CyaSSL_OPENSSL_free(void*);
Vanger 0:b86d15c6ba29 360
Vanger 0:b86d15c6ba29 361 CYASSL_API int CyaSSL_OCSP_parse_url(char* url, char** host, char** port,
Vanger 0:b86d15c6ba29 362 char** path, int* ssl);
Vanger 0:b86d15c6ba29 363
Vanger 0:b86d15c6ba29 364 CYASSL_API CYASSL_METHOD* CyaSSLv23_client_method(void);
Vanger 0:b86d15c6ba29 365 CYASSL_API CYASSL_METHOD* CyaSSLv2_client_method(void);
Vanger 0:b86d15c6ba29 366 CYASSL_API CYASSL_METHOD* CyaSSLv2_server_method(void);
Vanger 0:b86d15c6ba29 367
Vanger 0:b86d15c6ba29 368 CYASSL_API void CyaSSL_MD4_Init(CYASSL_MD4_CTX*);
Vanger 0:b86d15c6ba29 369 CYASSL_API void CyaSSL_MD4_Update(CYASSL_MD4_CTX*, const void*, unsigned long);
Vanger 0:b86d15c6ba29 370 CYASSL_API void CyaSSL_MD4_Final(unsigned char*, CYASSL_MD4_CTX*);
Vanger 0:b86d15c6ba29 371
Vanger 0:b86d15c6ba29 372
Vanger 0:b86d15c6ba29 373 CYASSL_API CYASSL_BIO* CyaSSL_BIO_new(CYASSL_BIO_METHOD*);
Vanger 0:b86d15c6ba29 374 CYASSL_API int CyaSSL_BIO_free(CYASSL_BIO*);
Vanger 0:b86d15c6ba29 375 CYASSL_API int CyaSSL_BIO_free_all(CYASSL_BIO*);
Vanger 0:b86d15c6ba29 376 CYASSL_API int CyaSSL_BIO_read(CYASSL_BIO*, void*, int);
Vanger 0:b86d15c6ba29 377 CYASSL_API int CyaSSL_BIO_write(CYASSL_BIO*, const void*, int);
Vanger 0:b86d15c6ba29 378 CYASSL_API CYASSL_BIO* CyaSSL_BIO_push(CYASSL_BIO*, CYASSL_BIO* append);
Vanger 0:b86d15c6ba29 379 CYASSL_API CYASSL_BIO* CyaSSL_BIO_pop(CYASSL_BIO*);
Vanger 0:b86d15c6ba29 380 CYASSL_API int CyaSSL_BIO_flush(CYASSL_BIO*);
Vanger 0:b86d15c6ba29 381 CYASSL_API int CyaSSL_BIO_pending(CYASSL_BIO*);
Vanger 0:b86d15c6ba29 382
Vanger 0:b86d15c6ba29 383 CYASSL_API CYASSL_BIO_METHOD* CyaSSL_BIO_f_buffer(void);
Vanger 0:b86d15c6ba29 384 CYASSL_API long CyaSSL_BIO_set_write_buffer_size(CYASSL_BIO*, long size);
Vanger 0:b86d15c6ba29 385 CYASSL_API CYASSL_BIO_METHOD* CyaSSL_BIO_f_ssl(void);
Vanger 0:b86d15c6ba29 386 CYASSL_API CYASSL_BIO* CyaSSL_BIO_new_socket(int sfd, int flag);
Vanger 0:b86d15c6ba29 387 CYASSL_API int CyaSSL_BIO_eof(CYASSL_BIO*);
Vanger 0:b86d15c6ba29 388
Vanger 0:b86d15c6ba29 389 CYASSL_API CYASSL_BIO_METHOD* CyaSSL_BIO_s_mem(void);
Vanger 0:b86d15c6ba29 390 CYASSL_API CYASSL_BIO_METHOD* CyaSSL_BIO_f_base64(void);
Vanger 0:b86d15c6ba29 391 CYASSL_API void CyaSSL_BIO_set_flags(CYASSL_BIO*, int);
Vanger 0:b86d15c6ba29 392
Vanger 0:b86d15c6ba29 393 CYASSL_API int CyaSSL_BIO_get_mem_data(CYASSL_BIO* bio,const unsigned char** p);
Vanger 0:b86d15c6ba29 394 CYASSL_API CYASSL_BIO* CyaSSL_BIO_new_mem_buf(void* buf, int len);
Vanger 0:b86d15c6ba29 395
Vanger 0:b86d15c6ba29 396
Vanger 0:b86d15c6ba29 397 CYASSL_API long CyaSSL_BIO_set_ssl(CYASSL_BIO*, CYASSL*, int flag);
Vanger 0:b86d15c6ba29 398 CYASSL_API void CyaSSL_set_bio(CYASSL*, CYASSL_BIO* rd, CYASSL_BIO* wr);
Vanger 0:b86d15c6ba29 399
Vanger 0:b86d15c6ba29 400 CYASSL_API int CyaSSL_add_all_algorithms(void);
Vanger 0:b86d15c6ba29 401
Vanger 0:b86d15c6ba29 402 CYASSL_API void CyaSSL_RAND_screen(void);
Vanger 0:b86d15c6ba29 403 CYASSL_API const char* CyaSSL_RAND_file_name(char*, unsigned long);
Vanger 0:b86d15c6ba29 404 CYASSL_API int CyaSSL_RAND_write_file(const char*);
Vanger 0:b86d15c6ba29 405 CYASSL_API int CyaSSL_RAND_load_file(const char*, long);
Vanger 0:b86d15c6ba29 406 CYASSL_API int CyaSSL_RAND_egd(const char*);
Vanger 0:b86d15c6ba29 407 CYASSL_API int CyaSSL_RAND_seed(const void*, int);
Vanger 0:b86d15c6ba29 408 CYASSL_API void CyaSSL_RAND_add(const void*, int, double);
Vanger 0:b86d15c6ba29 409
Vanger 0:b86d15c6ba29 410 CYASSL_API CYASSL_COMP_METHOD* CyaSSL_COMP_zlib(void);
Vanger 0:b86d15c6ba29 411 CYASSL_API CYASSL_COMP_METHOD* CyaSSL_COMP_rle(void);
Vanger 0:b86d15c6ba29 412 CYASSL_API int CyaSSL_COMP_add_compression_method(int, void*);
Vanger 0:b86d15c6ba29 413
Vanger 0:b86d15c6ba29 414 CYASSL_API int CyaSSL_get_ex_new_index(long, void*, void*, void*, void*);
Vanger 0:b86d15c6ba29 415
Vanger 0:b86d15c6ba29 416 CYASSL_API void CyaSSL_set_id_callback(unsigned long (*f)(void));
Vanger 0:b86d15c6ba29 417 CYASSL_API void CyaSSL_set_locking_callback(void (*f)(int, int, const char*,
Vanger 0:b86d15c6ba29 418 int));
Vanger 0:b86d15c6ba29 419 CYASSL_API void CyaSSL_set_dynlock_create_callback(CYASSL_dynlock_value* (*f)
Vanger 0:b86d15c6ba29 420 (const char*, int));
Vanger 0:b86d15c6ba29 421 CYASSL_API void CyaSSL_set_dynlock_lock_callback(void (*f)(int,
Vanger 0:b86d15c6ba29 422 CYASSL_dynlock_value*, const char*, int));
Vanger 0:b86d15c6ba29 423 CYASSL_API void CyaSSL_set_dynlock_destroy_callback(void (*f)
Vanger 0:b86d15c6ba29 424 (CYASSL_dynlock_value*, const char*, int));
Vanger 0:b86d15c6ba29 425 CYASSL_API int CyaSSL_num_locks(void);
Vanger 0:b86d15c6ba29 426
Vanger 0:b86d15c6ba29 427 CYASSL_API CYASSL_X509* CyaSSL_X509_STORE_CTX_get_current_cert(
Vanger 0:b86d15c6ba29 428 CYASSL_X509_STORE_CTX*);
Vanger 0:b86d15c6ba29 429 CYASSL_API int CyaSSL_X509_STORE_CTX_get_error(CYASSL_X509_STORE_CTX*);
Vanger 0:b86d15c6ba29 430 CYASSL_API int CyaSSL_X509_STORE_CTX_get_error_depth(CYASSL_X509_STORE_CTX*);
Vanger 0:b86d15c6ba29 431
Vanger 0:b86d15c6ba29 432 CYASSL_API char* CyaSSL_X509_NAME_oneline(CYASSL_X509_NAME*, char*, int);
Vanger 0:b86d15c6ba29 433 CYASSL_API CYASSL_X509_NAME* CyaSSL_X509_get_issuer_name(CYASSL_X509*);
Vanger 0:b86d15c6ba29 434 CYASSL_API CYASSL_X509_NAME* CyaSSL_X509_get_subject_name(CYASSL_X509*);
Vanger 0:b86d15c6ba29 435 CYASSL_API int CyaSSL_X509_ext_isSet_by_NID(CYASSL_X509*, int);
Vanger 0:b86d15c6ba29 436 CYASSL_API int CyaSSL_X509_ext_get_critical_by_NID(CYASSL_X509*, int);
Vanger 0:b86d15c6ba29 437 CYASSL_API int CyaSSL_X509_get_isCA(CYASSL_X509*);
Vanger 0:b86d15c6ba29 438 CYASSL_API int CyaSSL_X509_get_isSet_pathLength(CYASSL_X509*);
Vanger 0:b86d15c6ba29 439 CYASSL_API unsigned int CyaSSL_X509_get_pathLength(CYASSL_X509*);
Vanger 0:b86d15c6ba29 440 CYASSL_API unsigned int CyaSSL_X509_get_keyUsage(CYASSL_X509*);
Vanger 0:b86d15c6ba29 441 CYASSL_API unsigned char* CyaSSL_X509_get_authorityKeyID(
Vanger 0:b86d15c6ba29 442 CYASSL_X509*, unsigned char*, int*);
Vanger 0:b86d15c6ba29 443 CYASSL_API unsigned char* CyaSSL_X509_get_subjectKeyID(
Vanger 0:b86d15c6ba29 444 CYASSL_X509*, unsigned char*, int*);
Vanger 0:b86d15c6ba29 445 CYASSL_API int CyaSSL_X509_NAME_entry_count(CYASSL_X509_NAME*);
Vanger 0:b86d15c6ba29 446 CYASSL_API int CyaSSL_X509_NAME_get_text_by_NID(
Vanger 0:b86d15c6ba29 447 CYASSL_X509_NAME*, int, char*, int);
Vanger 0:b86d15c6ba29 448 CYASSL_API int CyaSSL_X509_verify_cert(CYASSL_X509_STORE_CTX*);
Vanger 0:b86d15c6ba29 449 CYASSL_API const char* CyaSSL_X509_verify_cert_error_string(long);
Vanger 0:b86d15c6ba29 450 CYASSL_API int CyaSSL_X509_get_signature_type(CYASSL_X509*);
Vanger 0:b86d15c6ba29 451 CYASSL_API int CyaSSL_X509_get_signature(CYASSL_X509*, unsigned char*, int*);
Vanger 0:b86d15c6ba29 452
Vanger 0:b86d15c6ba29 453 CYASSL_API int CyaSSL_X509_LOOKUP_add_dir(CYASSL_X509_LOOKUP*,const char*,long);
Vanger 0:b86d15c6ba29 454 CYASSL_API int CyaSSL_X509_LOOKUP_load_file(CYASSL_X509_LOOKUP*, const char*,
Vanger 0:b86d15c6ba29 455 long);
Vanger 0:b86d15c6ba29 456 CYASSL_API CYASSL_X509_LOOKUP_METHOD* CyaSSL_X509_LOOKUP_hash_dir(void);
Vanger 0:b86d15c6ba29 457 CYASSL_API CYASSL_X509_LOOKUP_METHOD* CyaSSL_X509_LOOKUP_file(void);
Vanger 0:b86d15c6ba29 458
Vanger 0:b86d15c6ba29 459 CYASSL_API CYASSL_X509_LOOKUP* CyaSSL_X509_STORE_add_lookup(CYASSL_X509_STORE*,
Vanger 0:b86d15c6ba29 460 CYASSL_X509_LOOKUP_METHOD*);
Vanger 0:b86d15c6ba29 461 CYASSL_API CYASSL_X509_STORE* CyaSSL_X509_STORE_new(void);
Vanger 0:b86d15c6ba29 462 CYASSL_API void CyaSSL_X509_STORE_free(CYASSL_X509_STORE*);
Vanger 0:b86d15c6ba29 463 CYASSL_API int CyaSSL_X509_STORE_add_cert(
Vanger 0:b86d15c6ba29 464 CYASSL_X509_STORE*, CYASSL_X509*);
Vanger 0:b86d15c6ba29 465 CYASSL_API int CyaSSL_X509_STORE_set_default_paths(CYASSL_X509_STORE*);
Vanger 0:b86d15c6ba29 466 CYASSL_API int CyaSSL_X509_STORE_get_by_subject(CYASSL_X509_STORE_CTX*,
Vanger 0:b86d15c6ba29 467 int, CYASSL_X509_NAME*, CYASSL_X509_OBJECT*);
Vanger 0:b86d15c6ba29 468 CYASSL_API CYASSL_X509_STORE_CTX* CyaSSL_X509_STORE_CTX_new(void);
Vanger 0:b86d15c6ba29 469 CYASSL_API int CyaSSL_X509_STORE_CTX_init(CYASSL_X509_STORE_CTX*,
Vanger 0:b86d15c6ba29 470 CYASSL_X509_STORE*, CYASSL_X509*, STACK_OF(CYASSL_X509)*);
Vanger 0:b86d15c6ba29 471 CYASSL_API void CyaSSL_X509_STORE_CTX_free(CYASSL_X509_STORE_CTX*);
Vanger 0:b86d15c6ba29 472 CYASSL_API void CyaSSL_X509_STORE_CTX_cleanup(CYASSL_X509_STORE_CTX*);
Vanger 0:b86d15c6ba29 473
Vanger 0:b86d15c6ba29 474 CYASSL_API CYASSL_ASN1_TIME* CyaSSL_X509_CRL_get_lastUpdate(CYASSL_X509_CRL*);
Vanger 0:b86d15c6ba29 475 CYASSL_API CYASSL_ASN1_TIME* CyaSSL_X509_CRL_get_nextUpdate(CYASSL_X509_CRL*);
Vanger 0:b86d15c6ba29 476
Vanger 0:b86d15c6ba29 477 CYASSL_API CYASSL_EVP_PKEY* CyaSSL_X509_get_pubkey(CYASSL_X509*);
Vanger 0:b86d15c6ba29 478 CYASSL_API int CyaSSL_X509_CRL_verify(CYASSL_X509_CRL*, CYASSL_EVP_PKEY*);
Vanger 0:b86d15c6ba29 479 CYASSL_API void CyaSSL_X509_STORE_CTX_set_error(CYASSL_X509_STORE_CTX*,
Vanger 0:b86d15c6ba29 480 int);
Vanger 0:b86d15c6ba29 481 CYASSL_API void CyaSSL_X509_OBJECT_free_contents(CYASSL_X509_OBJECT*);
Vanger 0:b86d15c6ba29 482 CYASSL_API void CyaSSL_EVP_PKEY_free(CYASSL_EVP_PKEY*);
Vanger 0:b86d15c6ba29 483 CYASSL_API int CyaSSL_X509_cmp_current_time(const CYASSL_ASN1_TIME*);
Vanger 0:b86d15c6ba29 484 CYASSL_API int CyaSSL_sk_X509_REVOKED_num(CYASSL_X509_REVOKED*);
Vanger 0:b86d15c6ba29 485
Vanger 0:b86d15c6ba29 486 CYASSL_API CYASSL_X509_REVOKED* CyaSSL_X509_CRL_get_REVOKED(CYASSL_X509_CRL*);
Vanger 0:b86d15c6ba29 487 CYASSL_API CYASSL_X509_REVOKED* CyaSSL_sk_X509_REVOKED_value(
Vanger 0:b86d15c6ba29 488 CYASSL_X509_REVOKED*,int);
Vanger 0:b86d15c6ba29 489 CYASSL_API CYASSL_ASN1_INTEGER* CyaSSL_X509_get_serialNumber(CYASSL_X509*);
Vanger 0:b86d15c6ba29 490
Vanger 0:b86d15c6ba29 491 CYASSL_API int CyaSSL_ASN1_TIME_print(CYASSL_BIO*, const CYASSL_ASN1_TIME*);
Vanger 0:b86d15c6ba29 492
Vanger 0:b86d15c6ba29 493 CYASSL_API int CyaSSL_ASN1_INTEGER_cmp(const CYASSL_ASN1_INTEGER*,
Vanger 0:b86d15c6ba29 494 const CYASSL_ASN1_INTEGER*);
Vanger 0:b86d15c6ba29 495 CYASSL_API long CyaSSL_ASN1_INTEGER_get(const CYASSL_ASN1_INTEGER*);
Vanger 0:b86d15c6ba29 496
Vanger 0:b86d15c6ba29 497 CYASSL_API STACK_OF(CYASSL_X509_NAME)* CyaSSL_load_client_CA_file(const char*);
Vanger 0:b86d15c6ba29 498
Vanger 0:b86d15c6ba29 499 CYASSL_API void CyaSSL_CTX_set_client_CA_list(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 500 STACK_OF(CYASSL_X509_NAME)*);
Vanger 0:b86d15c6ba29 501 CYASSL_API void* CyaSSL_X509_STORE_CTX_get_ex_data(CYASSL_X509_STORE_CTX*, int);
Vanger 0:b86d15c6ba29 502 CYASSL_API int CyaSSL_get_ex_data_X509_STORE_CTX_idx(void);
Vanger 0:b86d15c6ba29 503 CYASSL_API void* CyaSSL_get_ex_data(const CYASSL*, int);
Vanger 0:b86d15c6ba29 504
Vanger 0:b86d15c6ba29 505 CYASSL_API void CyaSSL_CTX_set_default_passwd_cb_userdata(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 506 void* userdata);
Vanger 0:b86d15c6ba29 507 CYASSL_API void CyaSSL_CTX_set_default_passwd_cb(CYASSL_CTX*, pem_password_cb);
Vanger 0:b86d15c6ba29 508
Vanger 0:b86d15c6ba29 509
Vanger 0:b86d15c6ba29 510 CYASSL_API void CyaSSL_CTX_set_info_callback(CYASSL_CTX*, void (*)(void));
Vanger 0:b86d15c6ba29 511
Vanger 0:b86d15c6ba29 512 CYASSL_API unsigned long CyaSSL_ERR_peek_error(void);
Vanger 0:b86d15c6ba29 513 CYASSL_API int CyaSSL_GET_REASON(int);
Vanger 0:b86d15c6ba29 514
Vanger 0:b86d15c6ba29 515 CYASSL_API char* CyaSSL_alert_type_string_long(int);
Vanger 0:b86d15c6ba29 516 CYASSL_API char* CyaSSL_alert_desc_string_long(int);
Vanger 0:b86d15c6ba29 517 CYASSL_API char* CyaSSL_state_string_long(CYASSL*);
Vanger 0:b86d15c6ba29 518
Vanger 0:b86d15c6ba29 519 CYASSL_API CYASSL_RSA* CyaSSL_RSA_generate_key(int, unsigned long,
Vanger 0:b86d15c6ba29 520 void(*)(int, int, void*), void*);
Vanger 0:b86d15c6ba29 521 CYASSL_API void CyaSSL_CTX_set_tmp_rsa_callback(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 522 CYASSL_RSA*(*)(CYASSL*, int, int));
Vanger 0:b86d15c6ba29 523
Vanger 0:b86d15c6ba29 524 CYASSL_API int CyaSSL_PEM_def_callback(char*, int num, int w, void* key);
Vanger 0:b86d15c6ba29 525
Vanger 0:b86d15c6ba29 526 CYASSL_API long CyaSSL_CTX_sess_accept(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 527 CYASSL_API long CyaSSL_CTX_sess_connect(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 528 CYASSL_API long CyaSSL_CTX_sess_accept_good(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 529 CYASSL_API long CyaSSL_CTX_sess_connect_good(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 530 CYASSL_API long CyaSSL_CTX_sess_accept_renegotiate(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 531 CYASSL_API long CyaSSL_CTX_sess_connect_renegotiate(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 532 CYASSL_API long CyaSSL_CTX_sess_hits(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 533 CYASSL_API long CyaSSL_CTX_sess_cb_hits(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 534 CYASSL_API long CyaSSL_CTX_sess_cache_full(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 535 CYASSL_API long CyaSSL_CTX_sess_misses(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 536 CYASSL_API long CyaSSL_CTX_sess_timeouts(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 537 CYASSL_API long CyaSSL_CTX_sess_number(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 538 CYASSL_API long CyaSSL_CTX_sess_get_cache_size(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 539
Vanger 0:b86d15c6ba29 540 #define CYASSL_DEFAULT_CIPHER_LIST "" /* default all */
Vanger 0:b86d15c6ba29 541 #define CYASSL_RSA_F4 0x10001L
Vanger 0:b86d15c6ba29 542
Vanger 0:b86d15c6ba29 543 enum {
Vanger 0:b86d15c6ba29 544 OCSP_NOCERTS = 1,
Vanger 0:b86d15c6ba29 545 OCSP_NOINTERN = 2,
Vanger 0:b86d15c6ba29 546 OCSP_NOSIGS = 4,
Vanger 0:b86d15c6ba29 547 OCSP_NOCHAIN = 8,
Vanger 0:b86d15c6ba29 548 OCSP_NOVERIFY = 16,
Vanger 0:b86d15c6ba29 549 OCSP_NOEXPLICIT = 32,
Vanger 0:b86d15c6ba29 550 OCSP_NOCASIGN = 64,
Vanger 0:b86d15c6ba29 551 OCSP_NODELEGATED = 128,
Vanger 0:b86d15c6ba29 552 OCSP_NOCHECKS = 256,
Vanger 0:b86d15c6ba29 553 OCSP_TRUSTOTHER = 512,
Vanger 0:b86d15c6ba29 554 OCSP_RESPID_KEY = 1024,
Vanger 0:b86d15c6ba29 555 OCSP_NOTIME = 2048,
Vanger 0:b86d15c6ba29 556
Vanger 0:b86d15c6ba29 557 OCSP_CERTID = 2,
Vanger 0:b86d15c6ba29 558 OCSP_REQUEST = 4,
Vanger 0:b86d15c6ba29 559 OCSP_RESPONSE = 8,
Vanger 0:b86d15c6ba29 560 OCSP_BASICRESP = 16,
Vanger 0:b86d15c6ba29 561
Vanger 0:b86d15c6ba29 562 CYASSL_OCSP_URL_OVERRIDE = 1,
Vanger 0:b86d15c6ba29 563 CYASSL_OCSP_NO_NONCE = 2,
Vanger 0:b86d15c6ba29 564
Vanger 0:b86d15c6ba29 565 CYASSL_CRL_CHECKALL = 1,
Vanger 0:b86d15c6ba29 566
Vanger 0:b86d15c6ba29 567 ASN1_GENERALIZEDTIME = 4,
Vanger 0:b86d15c6ba29 568
Vanger 0:b86d15c6ba29 569 SSL_OP_MICROSOFT_SESS_ID_BUG = 1,
Vanger 0:b86d15c6ba29 570 SSL_OP_NETSCAPE_CHALLENGE_BUG = 2,
Vanger 0:b86d15c6ba29 571 SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG = 3,
Vanger 0:b86d15c6ba29 572 SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG = 4,
Vanger 0:b86d15c6ba29 573 SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER = 5,
Vanger 0:b86d15c6ba29 574 SSL_OP_MSIE_SSLV2_RSA_PADDING = 6,
Vanger 0:b86d15c6ba29 575 SSL_OP_SSLEAY_080_CLIENT_DH_BUG = 7,
Vanger 0:b86d15c6ba29 576 SSL_OP_TLS_D5_BUG = 8,
Vanger 0:b86d15c6ba29 577 SSL_OP_TLS_BLOCK_PADDING_BUG = 9,
Vanger 0:b86d15c6ba29 578 SSL_OP_TLS_ROLLBACK_BUG = 10,
Vanger 0:b86d15c6ba29 579 SSL_OP_ALL = 11,
Vanger 0:b86d15c6ba29 580 SSL_OP_EPHEMERAL_RSA = 12,
Vanger 0:b86d15c6ba29 581 SSL_OP_NO_SSLv3 = 13,
Vanger 0:b86d15c6ba29 582 SSL_OP_NO_TLSv1 = 14,
Vanger 0:b86d15c6ba29 583 SSL_OP_PKCS1_CHECK_1 = 15,
Vanger 0:b86d15c6ba29 584 SSL_OP_PKCS1_CHECK_2 = 16,
Vanger 0:b86d15c6ba29 585 SSL_OP_NETSCAPE_CA_DN_BUG = 17,
Vanger 0:b86d15c6ba29 586 SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG = 18,
Vanger 0:b86d15c6ba29 587 SSL_OP_SINGLE_DH_USE = 19,
Vanger 0:b86d15c6ba29 588 SSL_OP_NO_TICKET = 20,
Vanger 0:b86d15c6ba29 589 SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS = 21,
Vanger 0:b86d15c6ba29 590 SSL_OP_NO_QUERY_MTU = 22,
Vanger 0:b86d15c6ba29 591 SSL_OP_COOKIE_EXCHANGE = 23,
Vanger 0:b86d15c6ba29 592 SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION = 24,
Vanger 0:b86d15c6ba29 593 SSL_OP_SINGLE_ECDH_USE = 25,
Vanger 0:b86d15c6ba29 594 SSL_OP_CIPHER_SERVER_PREFERENCE = 26,
Vanger 0:b86d15c6ba29 595
Vanger 0:b86d15c6ba29 596 SSL_MAX_SSL_SESSION_ID_LENGTH = 32,
Vanger 0:b86d15c6ba29 597
Vanger 0:b86d15c6ba29 598 EVP_R_BAD_DECRYPT = 2,
Vanger 0:b86d15c6ba29 599
Vanger 0:b86d15c6ba29 600 SSL_CB_LOOP = 4,
Vanger 0:b86d15c6ba29 601 SSL_ST_CONNECT = 5,
Vanger 0:b86d15c6ba29 602 SSL_ST_ACCEPT = 6,
Vanger 0:b86d15c6ba29 603 SSL_CB_ALERT = 7,
Vanger 0:b86d15c6ba29 604 SSL_CB_READ = 8,
Vanger 0:b86d15c6ba29 605 SSL_CB_HANDSHAKE_DONE = 9,
Vanger 0:b86d15c6ba29 606
Vanger 0:b86d15c6ba29 607 SSL_MODE_ENABLE_PARTIAL_WRITE = 2,
Vanger 0:b86d15c6ba29 608
Vanger 0:b86d15c6ba29 609 BIO_FLAGS_BASE64_NO_NL = 1,
Vanger 0:b86d15c6ba29 610 BIO_CLOSE = 1,
Vanger 0:b86d15c6ba29 611 BIO_NOCLOSE = 0,
Vanger 0:b86d15c6ba29 612
Vanger 0:b86d15c6ba29 613 NID_undef = 0,
Vanger 0:b86d15c6ba29 614
Vanger 0:b86d15c6ba29 615 X509_FILETYPE_PEM = 8,
Vanger 0:b86d15c6ba29 616 X509_LU_X509 = 9,
Vanger 0:b86d15c6ba29 617 X509_LU_CRL = 12,
Vanger 0:b86d15c6ba29 618
Vanger 0:b86d15c6ba29 619 X509_V_ERR_CRL_SIGNATURE_FAILURE = 13,
Vanger 0:b86d15c6ba29 620 X509_V_ERR_ERROR_IN_CRL_NEXT_UPDATE_FIELD = 14,
Vanger 0:b86d15c6ba29 621 X509_V_ERR_CRL_HAS_EXPIRED = 15,
Vanger 0:b86d15c6ba29 622 X509_V_ERR_CERT_REVOKED = 16,
Vanger 0:b86d15c6ba29 623 X509_V_ERR_CERT_CHAIN_TOO_LONG = 17,
Vanger 0:b86d15c6ba29 624 X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT = 18,
Vanger 0:b86d15c6ba29 625 X509_V_ERR_CERT_NOT_YET_VALID = 19,
Vanger 0:b86d15c6ba29 626 X509_V_ERR_ERROR_IN_CERT_NOT_BEFORE_FIELD = 20,
Vanger 0:b86d15c6ba29 627 X509_V_ERR_CERT_HAS_EXPIRED = 21,
Vanger 0:b86d15c6ba29 628 X509_V_ERR_ERROR_IN_CERT_NOT_AFTER_FIELD = 22,
Vanger 0:b86d15c6ba29 629
Vanger 0:b86d15c6ba29 630 X509_V_OK = 0,
Vanger 0:b86d15c6ba29 631
Vanger 0:b86d15c6ba29 632 CRYPTO_LOCK = 1,
Vanger 0:b86d15c6ba29 633 CRYPTO_NUM_LOCKS = 10
Vanger 0:b86d15c6ba29 634 };
Vanger 0:b86d15c6ba29 635
Vanger 0:b86d15c6ba29 636 /* extras end */
Vanger 0:b86d15c6ba29 637
Vanger 0:b86d15c6ba29 638 #if !defined(NO_FILESYSTEM) && !defined(NO_STDIO_FILESYSTEM)
Vanger 0:b86d15c6ba29 639 /* CyaSSL extension, provide last error from SSL_get_error
Vanger 0:b86d15c6ba29 640 since not using thread storage error queue */
Vanger 0:b86d15c6ba29 641 CYASSL_API void CyaSSL_ERR_print_errors_fp(FILE*, int err);
Vanger 0:b86d15c6ba29 642 #endif
Vanger 0:b86d15c6ba29 643
Vanger 0:b86d15c6ba29 644 enum { /* ssl Constants */
Vanger 0:b86d15c6ba29 645 SSL_ERROR_NONE = 0, /* for most functions */
Vanger 0:b86d15c6ba29 646 SSL_FAILURE = 0, /* for some functions */
Vanger 0:b86d15c6ba29 647 SSL_SUCCESS = 1,
Vanger 0:b86d15c6ba29 648
Vanger 0:b86d15c6ba29 649 SSL_BAD_CERTTYPE = -8,
Vanger 0:b86d15c6ba29 650 SSL_BAD_STAT = -7,
Vanger 0:b86d15c6ba29 651 SSL_BAD_PATH = -6,
Vanger 0:b86d15c6ba29 652 SSL_BAD_FILETYPE = -5,
Vanger 0:b86d15c6ba29 653 SSL_BAD_FILE = -4,
Vanger 0:b86d15c6ba29 654 SSL_NOT_IMPLEMENTED = -3,
Vanger 0:b86d15c6ba29 655 SSL_UNKNOWN = -2,
Vanger 0:b86d15c6ba29 656 SSL_FATAL_ERROR = -1,
Vanger 0:b86d15c6ba29 657
Vanger 0:b86d15c6ba29 658 SSL_FILETYPE_ASN1 = 2,
Vanger 0:b86d15c6ba29 659 SSL_FILETYPE_PEM = 1,
Vanger 0:b86d15c6ba29 660 SSL_FILETYPE_DEFAULT = 2, /* ASN1 */
Vanger 0:b86d15c6ba29 661 SSL_FILETYPE_RAW = 3, /* NTRU raw key blob */
Vanger 0:b86d15c6ba29 662
Vanger 0:b86d15c6ba29 663 SSL_VERIFY_NONE = 0,
Vanger 0:b86d15c6ba29 664 SSL_VERIFY_PEER = 1,
Vanger 0:b86d15c6ba29 665 SSL_VERIFY_FAIL_IF_NO_PEER_CERT = 2,
Vanger 0:b86d15c6ba29 666 SSL_VERIFY_CLIENT_ONCE = 4,
Vanger 0:b86d15c6ba29 667
Vanger 0:b86d15c6ba29 668 SSL_SESS_CACHE_OFF = 30,
Vanger 0:b86d15c6ba29 669 SSL_SESS_CACHE_CLIENT = 31,
Vanger 0:b86d15c6ba29 670 SSL_SESS_CACHE_SERVER = 32,
Vanger 0:b86d15c6ba29 671 SSL_SESS_CACHE_BOTH = 33,
Vanger 0:b86d15c6ba29 672 SSL_SESS_CACHE_NO_AUTO_CLEAR = 34,
Vanger 0:b86d15c6ba29 673 SSL_SESS_CACHE_NO_INTERNAL_LOOKUP = 35,
Vanger 0:b86d15c6ba29 674
Vanger 0:b86d15c6ba29 675 SSL_ERROR_WANT_READ = 2,
Vanger 0:b86d15c6ba29 676 SSL_ERROR_WANT_WRITE = 3,
Vanger 0:b86d15c6ba29 677 SSL_ERROR_WANT_CONNECT = 7,
Vanger 0:b86d15c6ba29 678 SSL_ERROR_WANT_ACCEPT = 8,
Vanger 0:b86d15c6ba29 679 SSL_ERROR_SYSCALL = 5,
Vanger 0:b86d15c6ba29 680 SSL_ERROR_WANT_X509_LOOKUP = 83,
Vanger 0:b86d15c6ba29 681 SSL_ERROR_ZERO_RETURN = 6,
Vanger 0:b86d15c6ba29 682 SSL_ERROR_SSL = 85,
Vanger 0:b86d15c6ba29 683
Vanger 0:b86d15c6ba29 684 SSL_SENT_SHUTDOWN = 1,
Vanger 0:b86d15c6ba29 685 SSL_RECEIVED_SHUTDOWN = 2,
Vanger 0:b86d15c6ba29 686 SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER = 4,
Vanger 0:b86d15c6ba29 687 SSL_OP_NO_SSLv2 = 8,
Vanger 0:b86d15c6ba29 688
Vanger 0:b86d15c6ba29 689 SSL_R_SSL_HANDSHAKE_FAILURE = 101,
Vanger 0:b86d15c6ba29 690 SSL_R_TLSV1_ALERT_UNKNOWN_CA = 102,
Vanger 0:b86d15c6ba29 691 SSL_R_SSLV3_ALERT_CERTIFICATE_UNKNOWN = 103,
Vanger 0:b86d15c6ba29 692 SSL_R_SSLV3_ALERT_BAD_CERTIFICATE = 104,
Vanger 0:b86d15c6ba29 693
Vanger 0:b86d15c6ba29 694 PEM_BUFSIZE = 1024
Vanger 0:b86d15c6ba29 695 };
Vanger 0:b86d15c6ba29 696
Vanger 0:b86d15c6ba29 697
Vanger 0:b86d15c6ba29 698 #ifndef NO_PSK
Vanger 0:b86d15c6ba29 699 typedef unsigned int (*psk_client_callback)(CYASSL*, const char*, char*,
Vanger 0:b86d15c6ba29 700 unsigned int, unsigned char*, unsigned int);
Vanger 0:b86d15c6ba29 701 CYASSL_API void CyaSSL_CTX_set_psk_client_callback(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 702 psk_client_callback);
Vanger 0:b86d15c6ba29 703 CYASSL_API void CyaSSL_set_psk_client_callback(CYASSL*,psk_client_callback);
Vanger 0:b86d15c6ba29 704
Vanger 0:b86d15c6ba29 705 CYASSL_API const char* CyaSSL_get_psk_identity_hint(const CYASSL*);
Vanger 0:b86d15c6ba29 706 CYASSL_API const char* CyaSSL_get_psk_identity(const CYASSL*);
Vanger 0:b86d15c6ba29 707
Vanger 0:b86d15c6ba29 708 CYASSL_API int CyaSSL_CTX_use_psk_identity_hint(CYASSL_CTX*, const char*);
Vanger 0:b86d15c6ba29 709 CYASSL_API int CyaSSL_use_psk_identity_hint(CYASSL*, const char*);
Vanger 0:b86d15c6ba29 710
Vanger 0:b86d15c6ba29 711 typedef unsigned int (*psk_server_callback)(CYASSL*, const char*,
Vanger 0:b86d15c6ba29 712 unsigned char*, unsigned int);
Vanger 0:b86d15c6ba29 713 CYASSL_API void CyaSSL_CTX_set_psk_server_callback(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 714 psk_server_callback);
Vanger 0:b86d15c6ba29 715 CYASSL_API void CyaSSL_set_psk_server_callback(CYASSL*,psk_server_callback);
Vanger 0:b86d15c6ba29 716
Vanger 0:b86d15c6ba29 717 #define PSK_TYPES_DEFINED
Vanger 0:b86d15c6ba29 718 #endif /* NO_PSK */
Vanger 0:b86d15c6ba29 719
Vanger 0:b86d15c6ba29 720
Vanger 0:b86d15c6ba29 721 #ifdef HAVE_ANON
Vanger 0:b86d15c6ba29 722 CYASSL_API int CyaSSL_CTX_allow_anon_cipher(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 723 #endif /* HAVE_ANON */
Vanger 0:b86d15c6ba29 724
Vanger 0:b86d15c6ba29 725
Vanger 0:b86d15c6ba29 726 /* extra begins */
Vanger 0:b86d15c6ba29 727
Vanger 0:b86d15c6ba29 728 enum { /* ERR Constants */
Vanger 0:b86d15c6ba29 729 ERR_TXT_STRING = 1
Vanger 0:b86d15c6ba29 730 };
Vanger 0:b86d15c6ba29 731
Vanger 0:b86d15c6ba29 732 CYASSL_API unsigned long CyaSSL_ERR_get_error_line_data(const char**, int*,
Vanger 0:b86d15c6ba29 733 const char**, int *);
Vanger 0:b86d15c6ba29 734
Vanger 0:b86d15c6ba29 735 CYASSL_API unsigned long CyaSSL_ERR_get_error(void);
Vanger 0:b86d15c6ba29 736 CYASSL_API void CyaSSL_ERR_clear_error(void);
Vanger 0:b86d15c6ba29 737
Vanger 0:b86d15c6ba29 738
Vanger 0:b86d15c6ba29 739 CYASSL_API int CyaSSL_RAND_status(void);
Vanger 0:b86d15c6ba29 740 CYASSL_API int CyaSSL_RAND_bytes(unsigned char* buf, int num);
Vanger 0:b86d15c6ba29 741 CYASSL_API CYASSL_METHOD *CyaSSLv23_server_method(void);
Vanger 0:b86d15c6ba29 742 CYASSL_API long CyaSSL_CTX_set_options(CYASSL_CTX*, long);
Vanger 0:b86d15c6ba29 743 #ifndef NO_CERTS
Vanger 0:b86d15c6ba29 744 CYASSL_API int CyaSSL_CTX_check_private_key(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 745 #endif /* !NO_CERTS */
Vanger 0:b86d15c6ba29 746
Vanger 0:b86d15c6ba29 747 CYASSL_API void CyaSSL_ERR_free_strings(void);
Vanger 0:b86d15c6ba29 748 CYASSL_API void CyaSSL_ERR_remove_state(unsigned long);
Vanger 0:b86d15c6ba29 749 CYASSL_API void CyaSSL_EVP_cleanup(void);
Vanger 0:b86d15c6ba29 750
Vanger 0:b86d15c6ba29 751 CYASSL_API void CyaSSL_cleanup_all_ex_data(void);
Vanger 0:b86d15c6ba29 752 CYASSL_API long CyaSSL_CTX_set_mode(CYASSL_CTX* ctx, long mode);
Vanger 0:b86d15c6ba29 753 CYASSL_API long CyaSSL_CTX_get_mode(CYASSL_CTX* ctx);
Vanger 0:b86d15c6ba29 754 CYASSL_API void CyaSSL_CTX_set_default_read_ahead(CYASSL_CTX* ctx, int m);
Vanger 0:b86d15c6ba29 755
Vanger 0:b86d15c6ba29 756 CYASSL_API long CyaSSL_CTX_sess_set_cache_size(CYASSL_CTX*, long);
Vanger 0:b86d15c6ba29 757
Vanger 0:b86d15c6ba29 758 CYASSL_API int CyaSSL_CTX_set_default_verify_paths(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 759 CYASSL_API int CyaSSL_CTX_set_session_id_context(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 760 const unsigned char*, unsigned int);
Vanger 0:b86d15c6ba29 761 CYASSL_API CYASSL_X509* CyaSSL_get_peer_certificate(CYASSL* ssl);
Vanger 0:b86d15c6ba29 762
Vanger 0:b86d15c6ba29 763 CYASSL_API int CyaSSL_want_read(CYASSL*);
Vanger 0:b86d15c6ba29 764 CYASSL_API int CyaSSL_want_write(CYASSL*);
Vanger 0:b86d15c6ba29 765
Vanger 0:b86d15c6ba29 766 CYASSL_API int CyaSSL_BIO_printf(CYASSL_BIO*, const char*, ...);
Vanger 0:b86d15c6ba29 767 CYASSL_API int CyaSSL_ASN1_UTCTIME_print(CYASSL_BIO*,
Vanger 0:b86d15c6ba29 768 const CYASSL_ASN1_UTCTIME*);
Vanger 0:b86d15c6ba29 769 CYASSL_API int CyaSSL_sk_num(CYASSL_X509_REVOKED*);
Vanger 0:b86d15c6ba29 770 CYASSL_API void* CyaSSL_sk_value(CYASSL_X509_REVOKED*, int);
Vanger 0:b86d15c6ba29 771
Vanger 0:b86d15c6ba29 772 /* stunnel 4.28 needs */
Vanger 0:b86d15c6ba29 773 CYASSL_API void* CyaSSL_CTX_get_ex_data(const CYASSL_CTX*, int);
Vanger 0:b86d15c6ba29 774 CYASSL_API int CyaSSL_CTX_set_ex_data(CYASSL_CTX*, int, void*);
Vanger 0:b86d15c6ba29 775 CYASSL_API void CyaSSL_CTX_sess_set_get_cb(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 776 CYASSL_SESSION*(*f)(CYASSL*, unsigned char*, int, int*));
Vanger 0:b86d15c6ba29 777 CYASSL_API void CyaSSL_CTX_sess_set_new_cb(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 778 int (*f)(CYASSL*, CYASSL_SESSION*));
Vanger 0:b86d15c6ba29 779 CYASSL_API void CyaSSL_CTX_sess_set_remove_cb(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 780 void (*f)(CYASSL_CTX*, CYASSL_SESSION*));
Vanger 0:b86d15c6ba29 781
Vanger 0:b86d15c6ba29 782 CYASSL_API int CyaSSL_i2d_SSL_SESSION(CYASSL_SESSION*,unsigned char**);
Vanger 0:b86d15c6ba29 783 CYASSL_API CYASSL_SESSION* CyaSSL_d2i_SSL_SESSION(CYASSL_SESSION**,
Vanger 0:b86d15c6ba29 784 const unsigned char**, long);
Vanger 0:b86d15c6ba29 785
Vanger 0:b86d15c6ba29 786 CYASSL_API long CyaSSL_SESSION_get_timeout(const CYASSL_SESSION*);
Vanger 0:b86d15c6ba29 787 CYASSL_API long CyaSSL_SESSION_get_time(const CYASSL_SESSION*);
Vanger 0:b86d15c6ba29 788 CYASSL_API int CyaSSL_CTX_get_ex_new_index(long, void*, void*, void*, void*);
Vanger 0:b86d15c6ba29 789
Vanger 0:b86d15c6ba29 790 /* extra ends */
Vanger 0:b86d15c6ba29 791
Vanger 0:b86d15c6ba29 792
Vanger 0:b86d15c6ba29 793 /* CyaSSL extensions */
Vanger 0:b86d15c6ba29 794
Vanger 0:b86d15c6ba29 795 /* call before SSL_connect, if verifying will add name check to
Vanger 0:b86d15c6ba29 796 date check and signature check */
Vanger 0:b86d15c6ba29 797 CYASSL_API int CyaSSL_check_domain_name(CYASSL* ssl, const char* dn);
Vanger 0:b86d15c6ba29 798
Vanger 0:b86d15c6ba29 799 /* need to call once to load library (session cache) */
Vanger 0:b86d15c6ba29 800 CYASSL_API int CyaSSL_Init(void);
Vanger 0:b86d15c6ba29 801 /* call when done to cleanup/free session cache mutex / resources */
Vanger 0:b86d15c6ba29 802 CYASSL_API int CyaSSL_Cleanup(void);
Vanger 0:b86d15c6ba29 803
Vanger 0:b86d15c6ba29 804 /* turn logging on, only if compiled in */
Vanger 0:b86d15c6ba29 805 CYASSL_API int CyaSSL_Debugging_ON(void);
Vanger 0:b86d15c6ba29 806 /* turn logging off */
Vanger 0:b86d15c6ba29 807 CYASSL_API void CyaSSL_Debugging_OFF(void);
Vanger 0:b86d15c6ba29 808
Vanger 0:b86d15c6ba29 809 /* do accept or connect depedning on side */
Vanger 0:b86d15c6ba29 810 CYASSL_API int CyaSSL_negotiate(CYASSL* ssl);
Vanger 0:b86d15c6ba29 811 /* turn on CyaSSL data compression */
Vanger 0:b86d15c6ba29 812 CYASSL_API int CyaSSL_set_compression(CYASSL* ssl);
Vanger 0:b86d15c6ba29 813
Vanger 0:b86d15c6ba29 814 CYASSL_API int CyaSSL_set_timeout(CYASSL*, unsigned int);
Vanger 0:b86d15c6ba29 815 CYASSL_API int CyaSSL_CTX_set_timeout(CYASSL_CTX*, unsigned int);
Vanger 0:b86d15c6ba29 816
Vanger 0:b86d15c6ba29 817 /* get CyaSSL peer X509_CHAIN */
Vanger 0:b86d15c6ba29 818 CYASSL_API CYASSL_X509_CHAIN* CyaSSL_get_peer_chain(CYASSL* ssl);
Vanger 0:b86d15c6ba29 819 /* peer chain count */
Vanger 0:b86d15c6ba29 820 CYASSL_API int CyaSSL_get_chain_count(CYASSL_X509_CHAIN* chain);
Vanger 0:b86d15c6ba29 821 /* index cert length */
Vanger 0:b86d15c6ba29 822 CYASSL_API int CyaSSL_get_chain_length(CYASSL_X509_CHAIN*, int idx);
Vanger 0:b86d15c6ba29 823 /* index cert */
Vanger 0:b86d15c6ba29 824 CYASSL_API unsigned char* CyaSSL_get_chain_cert(CYASSL_X509_CHAIN*, int idx);
Vanger 0:b86d15c6ba29 825 /* index cert in X509 */
Vanger 0:b86d15c6ba29 826 CYASSL_API CYASSL_X509* CyaSSL_get_chain_X509(CYASSL_X509_CHAIN*, int idx);
Vanger 0:b86d15c6ba29 827 /* free X509 */
Vanger 0:b86d15c6ba29 828 CYASSL_API void CyaSSL_FreeX509(CYASSL_X509*);
Vanger 0:b86d15c6ba29 829 /* get index cert in PEM */
Vanger 0:b86d15c6ba29 830 CYASSL_API int CyaSSL_get_chain_cert_pem(CYASSL_X509_CHAIN*, int idx,
Vanger 0:b86d15c6ba29 831 unsigned char* buffer, int inLen, int* outLen);
Vanger 0:b86d15c6ba29 832 CYASSL_API const unsigned char* CyaSSL_get_sessionID(const CYASSL_SESSION* s);
Vanger 0:b86d15c6ba29 833 CYASSL_API int CyaSSL_X509_get_serial_number(CYASSL_X509*,unsigned char*,int*);
Vanger 0:b86d15c6ba29 834 CYASSL_API char* CyaSSL_X509_get_subjectCN(CYASSL_X509*);
Vanger 0:b86d15c6ba29 835 CYASSL_API const unsigned char* CyaSSL_X509_get_der(CYASSL_X509*, int*);
Vanger 0:b86d15c6ba29 836 CYASSL_API const unsigned char* CyaSSL_X509_notBefore(CYASSL_X509*);
Vanger 0:b86d15c6ba29 837 CYASSL_API const unsigned char* CyaSSL_X509_notAfter(CYASSL_X509*);
Vanger 0:b86d15c6ba29 838 CYASSL_API int CyaSSL_X509_version(CYASSL_X509*);
Vanger 0:b86d15c6ba29 839 CYASSL_API
Vanger 0:b86d15c6ba29 840
Vanger 0:b86d15c6ba29 841 CYASSL_API int CyaSSL_cmp_peer_cert_to_file(CYASSL*, const char*);
Vanger 0:b86d15c6ba29 842
Vanger 0:b86d15c6ba29 843 CYASSL_API char* CyaSSL_X509_get_next_altname(CYASSL_X509*);
Vanger 0:b86d15c6ba29 844
Vanger 0:b86d15c6ba29 845 CYASSL_API CYASSL_X509*
Vanger 0:b86d15c6ba29 846 CyaSSL_X509_d2i(CYASSL_X509** x509, const unsigned char* in, int len);
Vanger 0:b86d15c6ba29 847 #ifndef NO_FILESYSTEM
Vanger 0:b86d15c6ba29 848 #ifndef NO_STDIO_FILESYSTEM
Vanger 0:b86d15c6ba29 849 CYASSL_API CYASSL_X509*
Vanger 0:b86d15c6ba29 850 CyaSSL_X509_d2i_fp(CYASSL_X509** x509, FILE* file);
Vanger 0:b86d15c6ba29 851 #endif
Vanger 0:b86d15c6ba29 852 CYASSL_API CYASSL_X509*
Vanger 0:b86d15c6ba29 853 CyaSSL_X509_load_certificate_file(const char* fname, int format);
Vanger 0:b86d15c6ba29 854 #endif
Vanger 0:b86d15c6ba29 855
Vanger 0:b86d15c6ba29 856 #ifdef CYASSL_SEP
Vanger 0:b86d15c6ba29 857 CYASSL_API unsigned char*
Vanger 0:b86d15c6ba29 858 CyaSSL_X509_get_device_type(CYASSL_X509*, unsigned char*, int*);
Vanger 0:b86d15c6ba29 859 CYASSL_API unsigned char*
Vanger 0:b86d15c6ba29 860 CyaSSL_X509_get_hw_type(CYASSL_X509*, unsigned char*, int*);
Vanger 0:b86d15c6ba29 861 CYASSL_API unsigned char*
Vanger 0:b86d15c6ba29 862 CyaSSL_X509_get_hw_serial_number(CYASSL_X509*, unsigned char*, int*);
Vanger 0:b86d15c6ba29 863 #endif
Vanger 0:b86d15c6ba29 864
Vanger 0:b86d15c6ba29 865 /* connect enough to get peer cert */
Vanger 0:b86d15c6ba29 866 CYASSL_API int CyaSSL_connect_cert(CYASSL* ssl);
Vanger 0:b86d15c6ba29 867
Vanger 0:b86d15c6ba29 868 /* XXX This should be #ifndef NO_DH */
Vanger 0:b86d15c6ba29 869 #ifndef NO_CERTS
Vanger 0:b86d15c6ba29 870 /* server Diffie-Hellman parameters */
Vanger 0:b86d15c6ba29 871 CYASSL_API int CyaSSL_SetTmpDH(CYASSL*, const unsigned char* p, int pSz,
Vanger 0:b86d15c6ba29 872 const unsigned char* g, int gSz);
Vanger 0:b86d15c6ba29 873 CYASSL_API int CyaSSL_SetTmpDH_buffer(CYASSL*, const unsigned char* b, long sz,
Vanger 0:b86d15c6ba29 874 int format);
Vanger 0:b86d15c6ba29 875 CYASSL_API int CyaSSL_SetTmpEC_DHE_Sz(CYASSL*, unsigned short);
Vanger 0:b86d15c6ba29 876 #ifndef NO_FILESYSTEM
Vanger 0:b86d15c6ba29 877 CYASSL_API int CyaSSL_SetTmpDH_file(CYASSL*, const char* f, int format);
Vanger 0:b86d15c6ba29 878 #endif
Vanger 0:b86d15c6ba29 879
Vanger 0:b86d15c6ba29 880 /* server ctx Diffie-Hellman parameters */
Vanger 0:b86d15c6ba29 881 CYASSL_API int CyaSSL_CTX_SetTmpDH(CYASSL_CTX*, const unsigned char* p,
Vanger 0:b86d15c6ba29 882 int pSz, const unsigned char* g, int gSz);
Vanger 0:b86d15c6ba29 883 CYASSL_API int CyaSSL_CTX_SetTmpDH_buffer(CYASSL_CTX*, const unsigned char* b,
Vanger 0:b86d15c6ba29 884 long sz, int format);
Vanger 0:b86d15c6ba29 885 CYASSL_API int CyaSSL_CTX_SetTmpEC_DHE_Sz(CYASSL_CTX*, unsigned short);
Vanger 0:b86d15c6ba29 886
Vanger 0:b86d15c6ba29 887 #ifndef NO_FILESYSTEM
Vanger 0:b86d15c6ba29 888 CYASSL_API int CyaSSL_CTX_SetTmpDH_file(CYASSL_CTX*, const char* f,
Vanger 0:b86d15c6ba29 889 int format);
Vanger 0:b86d15c6ba29 890 #endif
Vanger 0:b86d15c6ba29 891 #endif
Vanger 0:b86d15c6ba29 892
Vanger 0:b86d15c6ba29 893 /* keyblock size in bytes or -1 */
Vanger 0:b86d15c6ba29 894 /* need to call CyaSSL_KeepArrays before handshake to save keys */
Vanger 0:b86d15c6ba29 895 CYASSL_API int CyaSSL_get_keyblock_size(CYASSL*);
Vanger 0:b86d15c6ba29 896 CYASSL_API int CyaSSL_get_keys(CYASSL*,unsigned char** ms, unsigned int* msLen,
Vanger 0:b86d15c6ba29 897 unsigned char** sr, unsigned int* srLen,
Vanger 0:b86d15c6ba29 898 unsigned char** cr, unsigned int* crLen);
Vanger 0:b86d15c6ba29 899
Vanger 0:b86d15c6ba29 900 /* Computes EAP-TLS and EAP-TTLS keying material from the master_secret. */
Vanger 0:b86d15c6ba29 901 CYASSL_API int CyaSSL_make_eap_keys(CYASSL*, void* key, unsigned int len,
Vanger 0:b86d15c6ba29 902 const char* label);
Vanger 0:b86d15c6ba29 903
Vanger 0:b86d15c6ba29 904
Vanger 0:b86d15c6ba29 905 #ifndef _WIN32
Vanger 0:b86d15c6ba29 906 #ifndef NO_WRITEV
Vanger 0:b86d15c6ba29 907 #ifdef __PPU
Vanger 0:b86d15c6ba29 908 #include <sys/types.h>
Vanger 0:b86d15c6ba29 909 #include <sys/socket.h>
Vanger 0:b86d15c6ba29 910 #elif !defined(CYASSL_MDK_ARM) && !defined(CYASSL_IAR_ARM)
Vanger 0:b86d15c6ba29 911 #include <sys/uio.h>
Vanger 0:b86d15c6ba29 912 #endif
Vanger 0:b86d15c6ba29 913 /* allow writev style writing */
Vanger 0:b86d15c6ba29 914 CYASSL_API int CyaSSL_writev(CYASSL* ssl, const struct iovec* iov,
Vanger 0:b86d15c6ba29 915 int iovcnt);
Vanger 0:b86d15c6ba29 916 #endif
Vanger 0:b86d15c6ba29 917 #endif
Vanger 0:b86d15c6ba29 918
Vanger 0:b86d15c6ba29 919
Vanger 0:b86d15c6ba29 920 #ifndef NO_CERTS
Vanger 0:b86d15c6ba29 921 /* SSL_CTX versions */
Vanger 0:b86d15c6ba29 922 CYASSL_API int CyaSSL_CTX_UnloadCAs(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 923 CYASSL_API int CyaSSL_CTX_load_verify_buffer(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 924 const unsigned char*, long, int);
Vanger 0:b86d15c6ba29 925 CYASSL_API int CyaSSL_CTX_use_certificate_buffer(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 926 const unsigned char*, long, int);
Vanger 0:b86d15c6ba29 927 CYASSL_API int CyaSSL_CTX_use_PrivateKey_buffer(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 928 const unsigned char*, long, int);
Vanger 0:b86d15c6ba29 929 CYASSL_API int CyaSSL_CTX_use_certificate_chain_buffer(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 930 const unsigned char*, long);
Vanger 0:b86d15c6ba29 931
Vanger 0:b86d15c6ba29 932 /* SSL versions */
Vanger 0:b86d15c6ba29 933 CYASSL_API int CyaSSL_use_certificate_buffer(CYASSL*, const unsigned char*,
Vanger 0:b86d15c6ba29 934 long, int);
Vanger 0:b86d15c6ba29 935 CYASSL_API int CyaSSL_use_PrivateKey_buffer(CYASSL*, const unsigned char*,
Vanger 0:b86d15c6ba29 936 long, int);
Vanger 0:b86d15c6ba29 937 CYASSL_API int CyaSSL_use_certificate_chain_buffer(CYASSL*,
Vanger 0:b86d15c6ba29 938 const unsigned char*, long);
Vanger 0:b86d15c6ba29 939 CYASSL_API int CyaSSL_UnloadCertsKeys(CYASSL*);
Vanger 0:b86d15c6ba29 940 #endif
Vanger 0:b86d15c6ba29 941
Vanger 0:b86d15c6ba29 942 CYASSL_API int CyaSSL_CTX_set_group_messages(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 943 CYASSL_API int CyaSSL_set_group_messages(CYASSL*);
Vanger 0:b86d15c6ba29 944
Vanger 0:b86d15c6ba29 945 /* I/O callbacks */
Vanger 0:b86d15c6ba29 946 typedef int (*CallbackIORecv)(CYASSL *ssl, char *buf, int sz, void *ctx);
Vanger 0:b86d15c6ba29 947 typedef int (*CallbackIOSend)(CYASSL *ssl, char *buf, int sz, void *ctx);
Vanger 0:b86d15c6ba29 948
Vanger 0:b86d15c6ba29 949 #ifdef HAVE_FUZZER
Vanger 0:b86d15c6ba29 950 enum fuzzer_type {
Vanger 0:b86d15c6ba29 951 FUZZ_HMAC = 0,
Vanger 0:b86d15c6ba29 952 FUZZ_ENCRYPT = 1,
Vanger 0:b86d15c6ba29 953 FUZZ_SIGNATURE = 2,
Vanger 0:b86d15c6ba29 954 FUZZ_HASH = 3,
Vanger 0:b86d15c6ba29 955 FUZZ_HEAD = 4
Vanger 0:b86d15c6ba29 956 };
Vanger 0:b86d15c6ba29 957
Vanger 0:b86d15c6ba29 958 typedef int (*CallbackFuzzer)(CYASSL* ssl, const unsigned char* buf, int sz,
Vanger 0:b86d15c6ba29 959 int type, void* fuzzCtx);
Vanger 0:b86d15c6ba29 960
Vanger 0:b86d15c6ba29 961 CYASSL_API void CyaSSL_SetFuzzerCb(CYASSL* ssl, CallbackFuzzer cbf, void* fCtx);
Vanger 0:b86d15c6ba29 962 #endif
Vanger 0:b86d15c6ba29 963
Vanger 0:b86d15c6ba29 964 CYASSL_API void CyaSSL_SetIORecv(CYASSL_CTX*, CallbackIORecv);
Vanger 0:b86d15c6ba29 965 CYASSL_API void CyaSSL_SetIOSend(CYASSL_CTX*, CallbackIOSend);
Vanger 0:b86d15c6ba29 966
Vanger 0:b86d15c6ba29 967 CYASSL_API void CyaSSL_SetIOReadCtx( CYASSL* ssl, void *ctx);
Vanger 0:b86d15c6ba29 968 CYASSL_API void CyaSSL_SetIOWriteCtx(CYASSL* ssl, void *ctx);
Vanger 0:b86d15c6ba29 969
Vanger 0:b86d15c6ba29 970 CYASSL_API void* CyaSSL_GetIOReadCtx( CYASSL* ssl);
Vanger 0:b86d15c6ba29 971 CYASSL_API void* CyaSSL_GetIOWriteCtx(CYASSL* ssl);
Vanger 0:b86d15c6ba29 972
Vanger 0:b86d15c6ba29 973 CYASSL_API void CyaSSL_SetIOReadFlags( CYASSL* ssl, int flags);
Vanger 0:b86d15c6ba29 974 CYASSL_API void CyaSSL_SetIOWriteFlags(CYASSL* ssl, int flags);
Vanger 0:b86d15c6ba29 975
Vanger 0:b86d15c6ba29 976
Vanger 0:b86d15c6ba29 977 #ifndef CYASSL_USER_IO
Vanger 0:b86d15c6ba29 978 /* default IO callbacks */
Vanger 0:b86d15c6ba29 979 CYASSL_API int EmbedReceive(CYASSL* ssl, char* buf, int sz, void* ctx);
Vanger 0:b86d15c6ba29 980 CYASSL_API int EmbedSend(CYASSL* ssl, char* buf, int sz, void* ctx);
Vanger 0:b86d15c6ba29 981
Vanger 0:b86d15c6ba29 982 #ifdef HAVE_OCSP
Vanger 0:b86d15c6ba29 983 CYASSL_API int EmbedOcspLookup(void*, const char*, int, unsigned char*,
Vanger 0:b86d15c6ba29 984 int, unsigned char**);
Vanger 0:b86d15c6ba29 985 CYASSL_API void EmbedOcspRespFree(void*, unsigned char*);
Vanger 0:b86d15c6ba29 986 #endif
Vanger 0:b86d15c6ba29 987
Vanger 0:b86d15c6ba29 988 #ifdef CYASSL_DTLS
Vanger 0:b86d15c6ba29 989 CYASSL_API int EmbedReceiveFrom(CYASSL* ssl, char* buf, int sz, void*);
Vanger 0:b86d15c6ba29 990 CYASSL_API int EmbedSendTo(CYASSL* ssl, char* buf, int sz, void* ctx);
Vanger 0:b86d15c6ba29 991 CYASSL_API int EmbedGenerateCookie(CYASSL* ssl, unsigned char* buf,
Vanger 0:b86d15c6ba29 992 int sz, void*);
Vanger 0:b86d15c6ba29 993 #endif /* CYASSL_DTLS */
Vanger 0:b86d15c6ba29 994 #endif /* CYASSL_USER_IO */
Vanger 0:b86d15c6ba29 995
Vanger 0:b86d15c6ba29 996
Vanger 0:b86d15c6ba29 997 #ifdef HAVE_NETX
Vanger 0:b86d15c6ba29 998 CYASSL_API void CyaSSL_SetIO_NetX(CYASSL* ssl, NX_TCP_SOCKET* nxsocket,
Vanger 0:b86d15c6ba29 999 ULONG waitoption);
Vanger 0:b86d15c6ba29 1000 #endif
Vanger 0:b86d15c6ba29 1001
Vanger 0:b86d15c6ba29 1002 typedef int (*CallbackGenCookie)(CYASSL* ssl, unsigned char* buf, int sz,
Vanger 0:b86d15c6ba29 1003 void* ctx);
Vanger 0:b86d15c6ba29 1004 CYASSL_API void CyaSSL_CTX_SetGenCookie(CYASSL_CTX*, CallbackGenCookie);
Vanger 0:b86d15c6ba29 1005 CYASSL_API void CyaSSL_SetCookieCtx(CYASSL* ssl, void *ctx);
Vanger 0:b86d15c6ba29 1006 CYASSL_API void* CyaSSL_GetCookieCtx(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1007
Vanger 0:b86d15c6ba29 1008
Vanger 0:b86d15c6ba29 1009 /* I/O Callback default errors */
Vanger 0:b86d15c6ba29 1010 enum IOerrors {
Vanger 0:b86d15c6ba29 1011 CYASSL_CBIO_ERR_GENERAL = -1, /* general unexpected err */
Vanger 0:b86d15c6ba29 1012 CYASSL_CBIO_ERR_WANT_READ = -2, /* need to call read again */
Vanger 0:b86d15c6ba29 1013 CYASSL_CBIO_ERR_WANT_WRITE = -2, /* need to call write again */
Vanger 0:b86d15c6ba29 1014 CYASSL_CBIO_ERR_CONN_RST = -3, /* connection reset */
Vanger 0:b86d15c6ba29 1015 CYASSL_CBIO_ERR_ISR = -4, /* interrupt */
Vanger 0:b86d15c6ba29 1016 CYASSL_CBIO_ERR_CONN_CLOSE = -5, /* connection closed or epipe */
Vanger 0:b86d15c6ba29 1017 CYASSL_CBIO_ERR_TIMEOUT = -6 /* socket timeout */
Vanger 0:b86d15c6ba29 1018 };
Vanger 0:b86d15c6ba29 1019
Vanger 0:b86d15c6ba29 1020
Vanger 0:b86d15c6ba29 1021 /* CA cache callbacks */
Vanger 0:b86d15c6ba29 1022 enum {
Vanger 0:b86d15c6ba29 1023 CYASSL_SSLV3 = 0,
Vanger 0:b86d15c6ba29 1024 CYASSL_TLSV1 = 1,
Vanger 0:b86d15c6ba29 1025 CYASSL_TLSV1_1 = 2,
Vanger 0:b86d15c6ba29 1026 CYASSL_TLSV1_2 = 3,
Vanger 0:b86d15c6ba29 1027 CYASSL_USER_CA = 1, /* user added as trusted */
Vanger 0:b86d15c6ba29 1028 CYASSL_CHAIN_CA = 2 /* added to cache from trusted chain */
Vanger 0:b86d15c6ba29 1029 };
Vanger 0:b86d15c6ba29 1030
Vanger 0:b86d15c6ba29 1031 CYASSL_API int CyaSSL_SetMinVersion(CYASSL* ssl, int version);
Vanger 0:b86d15c6ba29 1032 CYASSL_API int CyaSSL_GetObjectSize(void); /* object size based on build */
Vanger 0:b86d15c6ba29 1033 CYASSL_API int CyaSSL_SetVersion(CYASSL* ssl, int version);
Vanger 0:b86d15c6ba29 1034 CYASSL_API int CyaSSL_KeyPemToDer(const unsigned char*, int sz, unsigned char*,
Vanger 0:b86d15c6ba29 1035 int, const char*);
Vanger 0:b86d15c6ba29 1036 CYASSL_API int CyaSSL_CertPemToDer(const unsigned char*, int sz, unsigned char*,
Vanger 0:b86d15c6ba29 1037 int, int);
Vanger 0:b86d15c6ba29 1038
Vanger 0:b86d15c6ba29 1039 typedef void (*CallbackCACache)(unsigned char* der, int sz, int type);
Vanger 0:b86d15c6ba29 1040 typedef void (*CbMissingCRL)(const char* url);
Vanger 0:b86d15c6ba29 1041 typedef int (*CbOCSPIO)(void*, const char*, int,
Vanger 0:b86d15c6ba29 1042 unsigned char*, int, unsigned char**);
Vanger 0:b86d15c6ba29 1043 typedef void (*CbOCSPRespFree)(void*,unsigned char*);
Vanger 0:b86d15c6ba29 1044
Vanger 0:b86d15c6ba29 1045 /* User Atomic Record Layer CallBacks */
Vanger 0:b86d15c6ba29 1046 typedef int (*CallbackMacEncrypt)(CYASSL* ssl, unsigned char* macOut,
Vanger 0:b86d15c6ba29 1047 const unsigned char* macIn, unsigned int macInSz, int macContent,
Vanger 0:b86d15c6ba29 1048 int macVerify, unsigned char* encOut, const unsigned char* encIn,
Vanger 0:b86d15c6ba29 1049 unsigned int encSz, void* ctx);
Vanger 0:b86d15c6ba29 1050 CYASSL_API void CyaSSL_CTX_SetMacEncryptCb(CYASSL_CTX*, CallbackMacEncrypt);
Vanger 0:b86d15c6ba29 1051 CYASSL_API void CyaSSL_SetMacEncryptCtx(CYASSL* ssl, void *ctx);
Vanger 0:b86d15c6ba29 1052 CYASSL_API void* CyaSSL_GetMacEncryptCtx(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1053
Vanger 0:b86d15c6ba29 1054 typedef int (*CallbackDecryptVerify)(CYASSL* ssl,
Vanger 0:b86d15c6ba29 1055 unsigned char* decOut, const unsigned char* decIn,
Vanger 0:b86d15c6ba29 1056 unsigned int decSz, int content, int verify, unsigned int* padSz,
Vanger 0:b86d15c6ba29 1057 void* ctx);
Vanger 0:b86d15c6ba29 1058 CYASSL_API void CyaSSL_CTX_SetDecryptVerifyCb(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 1059 CallbackDecryptVerify);
Vanger 0:b86d15c6ba29 1060 CYASSL_API void CyaSSL_SetDecryptVerifyCtx(CYASSL* ssl, void *ctx);
Vanger 0:b86d15c6ba29 1061 CYASSL_API void* CyaSSL_GetDecryptVerifyCtx(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1062
Vanger 0:b86d15c6ba29 1063 CYASSL_API const unsigned char* CyaSSL_GetMacSecret(CYASSL*, int);
Vanger 0:b86d15c6ba29 1064 CYASSL_API const unsigned char* CyaSSL_GetClientWriteKey(CYASSL*);
Vanger 0:b86d15c6ba29 1065 CYASSL_API const unsigned char* CyaSSL_GetClientWriteIV(CYASSL*);
Vanger 0:b86d15c6ba29 1066 CYASSL_API const unsigned char* CyaSSL_GetServerWriteKey(CYASSL*);
Vanger 0:b86d15c6ba29 1067 CYASSL_API const unsigned char* CyaSSL_GetServerWriteIV(CYASSL*);
Vanger 0:b86d15c6ba29 1068 CYASSL_API int CyaSSL_GetKeySize(CYASSL*);
Vanger 0:b86d15c6ba29 1069 CYASSL_API int CyaSSL_GetIVSize(CYASSL*);
Vanger 0:b86d15c6ba29 1070 CYASSL_API int CyaSSL_GetSide(CYASSL*);
Vanger 0:b86d15c6ba29 1071 CYASSL_API int CyaSSL_IsTLSv1_1(CYASSL*);
Vanger 0:b86d15c6ba29 1072 CYASSL_API int CyaSSL_GetBulkCipher(CYASSL*);
Vanger 0:b86d15c6ba29 1073 CYASSL_API int CyaSSL_GetCipherBlockSize(CYASSL*);
Vanger 0:b86d15c6ba29 1074 CYASSL_API int CyaSSL_GetAeadMacSize(CYASSL*);
Vanger 0:b86d15c6ba29 1075 CYASSL_API int CyaSSL_GetHmacSize(CYASSL*);
Vanger 0:b86d15c6ba29 1076 CYASSL_API int CyaSSL_GetHmacType(CYASSL*);
Vanger 0:b86d15c6ba29 1077 CYASSL_API int CyaSSL_GetCipherType(CYASSL*);
Vanger 0:b86d15c6ba29 1078 CYASSL_API int CyaSSL_SetTlsHmacInner(CYASSL*, unsigned char*,
Vanger 0:b86d15c6ba29 1079 unsigned int, int, int);
Vanger 0:b86d15c6ba29 1080
Vanger 0:b86d15c6ba29 1081 /* Atomic User Needs */
Vanger 0:b86d15c6ba29 1082 enum {
Vanger 0:b86d15c6ba29 1083 CYASSL_SERVER_END = 0,
Vanger 0:b86d15c6ba29 1084 CYASSL_CLIENT_END = 1,
Vanger 0:b86d15c6ba29 1085 CYASSL_BLOCK_TYPE = 2,
Vanger 0:b86d15c6ba29 1086 CYASSL_STREAM_TYPE = 3,
Vanger 0:b86d15c6ba29 1087 CYASSL_AEAD_TYPE = 4,
Vanger 0:b86d15c6ba29 1088 CYASSL_TLS_HMAC_INNER_SZ = 13 /* SEQ_SZ + ENUM + VERSION_SZ + LEN_SZ */
Vanger 0:b86d15c6ba29 1089 };
Vanger 0:b86d15c6ba29 1090
Vanger 0:b86d15c6ba29 1091 /* for GetBulkCipher and internal use */
Vanger 0:b86d15c6ba29 1092 enum BulkCipherAlgorithm {
Vanger 0:b86d15c6ba29 1093 cyassl_cipher_null,
Vanger 0:b86d15c6ba29 1094 cyassl_rc4,
Vanger 0:b86d15c6ba29 1095 cyassl_rc2,
Vanger 0:b86d15c6ba29 1096 cyassl_des,
Vanger 0:b86d15c6ba29 1097 cyassl_triple_des, /* leading 3 (3des) not valid identifier */
Vanger 0:b86d15c6ba29 1098 cyassl_des40,
Vanger 0:b86d15c6ba29 1099 cyassl_idea,
Vanger 0:b86d15c6ba29 1100 cyassl_aes,
Vanger 0:b86d15c6ba29 1101 cyassl_aes_gcm,
Vanger 0:b86d15c6ba29 1102 cyassl_aes_ccm,
Vanger 0:b86d15c6ba29 1103 cyassl_chacha,
Vanger 0:b86d15c6ba29 1104 cyassl_camellia,
Vanger 0:b86d15c6ba29 1105 cyassl_hc128, /* CyaSSL extensions */
Vanger 0:b86d15c6ba29 1106 cyassl_rabbit
Vanger 0:b86d15c6ba29 1107 };
Vanger 0:b86d15c6ba29 1108
Vanger 0:b86d15c6ba29 1109
Vanger 0:b86d15c6ba29 1110 /* for KDF TLS 1.2 mac types */
Vanger 0:b86d15c6ba29 1111 enum KDF_MacAlgorithm {
Vanger 0:b86d15c6ba29 1112 cyassl_sha256 = 4, /* needs to match internal MACAlgorithm */
Vanger 0:b86d15c6ba29 1113 cyassl_sha384,
Vanger 0:b86d15c6ba29 1114 cyassl_sha512
Vanger 0:b86d15c6ba29 1115 };
Vanger 0:b86d15c6ba29 1116
Vanger 0:b86d15c6ba29 1117
Vanger 0:b86d15c6ba29 1118 /* Public Key Callback support */
Vanger 0:b86d15c6ba29 1119 typedef int (*CallbackEccSign)(CYASSL* ssl,
Vanger 0:b86d15c6ba29 1120 const unsigned char* in, unsigned int inSz,
Vanger 0:b86d15c6ba29 1121 unsigned char* out, unsigned int* outSz,
Vanger 0:b86d15c6ba29 1122 const unsigned char* keyDer, unsigned int keySz,
Vanger 0:b86d15c6ba29 1123 void* ctx);
Vanger 0:b86d15c6ba29 1124 CYASSL_API void CyaSSL_CTX_SetEccSignCb(CYASSL_CTX*, CallbackEccSign);
Vanger 0:b86d15c6ba29 1125 CYASSL_API void CyaSSL_SetEccSignCtx(CYASSL* ssl, void *ctx);
Vanger 0:b86d15c6ba29 1126 CYASSL_API void* CyaSSL_GetEccSignCtx(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1127
Vanger 0:b86d15c6ba29 1128 typedef int (*CallbackEccVerify)(CYASSL* ssl,
Vanger 0:b86d15c6ba29 1129 const unsigned char* sig, unsigned int sigSz,
Vanger 0:b86d15c6ba29 1130 const unsigned char* hash, unsigned int hashSz,
Vanger 0:b86d15c6ba29 1131 const unsigned char* keyDer, unsigned int keySz,
Vanger 0:b86d15c6ba29 1132 int* result, void* ctx);
Vanger 0:b86d15c6ba29 1133 CYASSL_API void CyaSSL_CTX_SetEccVerifyCb(CYASSL_CTX*, CallbackEccVerify);
Vanger 0:b86d15c6ba29 1134 CYASSL_API void CyaSSL_SetEccVerifyCtx(CYASSL* ssl, void *ctx);
Vanger 0:b86d15c6ba29 1135 CYASSL_API void* CyaSSL_GetEccVerifyCtx(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1136
Vanger 0:b86d15c6ba29 1137 typedef int (*CallbackRsaSign)(CYASSL* ssl,
Vanger 0:b86d15c6ba29 1138 const unsigned char* in, unsigned int inSz,
Vanger 0:b86d15c6ba29 1139 unsigned char* out, unsigned int* outSz,
Vanger 0:b86d15c6ba29 1140 const unsigned char* keyDer, unsigned int keySz,
Vanger 0:b86d15c6ba29 1141 void* ctx);
Vanger 0:b86d15c6ba29 1142 CYASSL_API void CyaSSL_CTX_SetRsaSignCb(CYASSL_CTX*, CallbackRsaSign);
Vanger 0:b86d15c6ba29 1143 CYASSL_API void CyaSSL_SetRsaSignCtx(CYASSL* ssl, void *ctx);
Vanger 0:b86d15c6ba29 1144 CYASSL_API void* CyaSSL_GetRsaSignCtx(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1145
Vanger 0:b86d15c6ba29 1146 typedef int (*CallbackRsaVerify)(CYASSL* ssl,
Vanger 0:b86d15c6ba29 1147 unsigned char* sig, unsigned int sigSz,
Vanger 0:b86d15c6ba29 1148 unsigned char** out,
Vanger 0:b86d15c6ba29 1149 const unsigned char* keyDer, unsigned int keySz,
Vanger 0:b86d15c6ba29 1150 void* ctx);
Vanger 0:b86d15c6ba29 1151 CYASSL_API void CyaSSL_CTX_SetRsaVerifyCb(CYASSL_CTX*, CallbackRsaVerify);
Vanger 0:b86d15c6ba29 1152 CYASSL_API void CyaSSL_SetRsaVerifyCtx(CYASSL* ssl, void *ctx);
Vanger 0:b86d15c6ba29 1153 CYASSL_API void* CyaSSL_GetRsaVerifyCtx(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1154
Vanger 0:b86d15c6ba29 1155 /* RSA Public Encrypt cb */
Vanger 0:b86d15c6ba29 1156 typedef int (*CallbackRsaEnc)(CYASSL* ssl,
Vanger 0:b86d15c6ba29 1157 const unsigned char* in, unsigned int inSz,
Vanger 0:b86d15c6ba29 1158 unsigned char* out, unsigned int* outSz,
Vanger 0:b86d15c6ba29 1159 const unsigned char* keyDer, unsigned int keySz,
Vanger 0:b86d15c6ba29 1160 void* ctx);
Vanger 0:b86d15c6ba29 1161 CYASSL_API void CyaSSL_CTX_SetRsaEncCb(CYASSL_CTX*, CallbackRsaEnc);
Vanger 0:b86d15c6ba29 1162 CYASSL_API void CyaSSL_SetRsaEncCtx(CYASSL* ssl, void *ctx);
Vanger 0:b86d15c6ba29 1163 CYASSL_API void* CyaSSL_GetRsaEncCtx(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1164
Vanger 0:b86d15c6ba29 1165 /* RSA Private Decrypt cb */
Vanger 0:b86d15c6ba29 1166 typedef int (*CallbackRsaDec)(CYASSL* ssl,
Vanger 0:b86d15c6ba29 1167 unsigned char* in, unsigned int inSz,
Vanger 0:b86d15c6ba29 1168 unsigned char** out,
Vanger 0:b86d15c6ba29 1169 const unsigned char* keyDer, unsigned int keySz,
Vanger 0:b86d15c6ba29 1170 void* ctx);
Vanger 0:b86d15c6ba29 1171 CYASSL_API void CyaSSL_CTX_SetRsaDecCb(CYASSL_CTX*, CallbackRsaDec);
Vanger 0:b86d15c6ba29 1172 CYASSL_API void CyaSSL_SetRsaDecCtx(CYASSL* ssl, void *ctx);
Vanger 0:b86d15c6ba29 1173 CYASSL_API void* CyaSSL_GetRsaDecCtx(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1174
Vanger 0:b86d15c6ba29 1175
Vanger 0:b86d15c6ba29 1176 #ifndef NO_CERTS
Vanger 0:b86d15c6ba29 1177 CYASSL_API void CyaSSL_CTX_SetCACb(CYASSL_CTX*, CallbackCACache);
Vanger 0:b86d15c6ba29 1178
Vanger 0:b86d15c6ba29 1179 CYASSL_API CYASSL_CERT_MANAGER* CyaSSL_CertManagerNew(void);
Vanger 0:b86d15c6ba29 1180 CYASSL_API void CyaSSL_CertManagerFree(CYASSL_CERT_MANAGER*);
Vanger 0:b86d15c6ba29 1181
Vanger 0:b86d15c6ba29 1182 CYASSL_API int CyaSSL_CertManagerLoadCA(CYASSL_CERT_MANAGER*, const char* f,
Vanger 0:b86d15c6ba29 1183 const char* d);
Vanger 0:b86d15c6ba29 1184 CYASSL_API int CyaSSL_CertManagerUnloadCAs(CYASSL_CERT_MANAGER* cm);
Vanger 0:b86d15c6ba29 1185 CYASSL_API int CyaSSL_CertManagerVerify(CYASSL_CERT_MANAGER*, const char* f,
Vanger 0:b86d15c6ba29 1186 int format);
Vanger 0:b86d15c6ba29 1187 CYASSL_API int CyaSSL_CertManagerVerifyBuffer(CYASSL_CERT_MANAGER* cm,
Vanger 0:b86d15c6ba29 1188 const unsigned char* buff, long sz, int format);
Vanger 0:b86d15c6ba29 1189 CYASSL_API int CyaSSL_CertManagerCheckCRL(CYASSL_CERT_MANAGER*,
Vanger 0:b86d15c6ba29 1190 unsigned char*, int sz);
Vanger 0:b86d15c6ba29 1191 CYASSL_API int CyaSSL_CertManagerEnableCRL(CYASSL_CERT_MANAGER*,
Vanger 0:b86d15c6ba29 1192 int options);
Vanger 0:b86d15c6ba29 1193 CYASSL_API int CyaSSL_CertManagerDisableCRL(CYASSL_CERT_MANAGER*);
Vanger 0:b86d15c6ba29 1194 CYASSL_API int CyaSSL_CertManagerLoadCRL(CYASSL_CERT_MANAGER*, const char*,
Vanger 0:b86d15c6ba29 1195 int, int);
Vanger 0:b86d15c6ba29 1196 CYASSL_API int CyaSSL_CertManagerSetCRL_Cb(CYASSL_CERT_MANAGER*,
Vanger 0:b86d15c6ba29 1197 CbMissingCRL);
Vanger 0:b86d15c6ba29 1198 CYASSL_API int CyaSSL_CertManagerCheckOCSP(CYASSL_CERT_MANAGER*,
Vanger 0:b86d15c6ba29 1199 unsigned char*, int sz);
Vanger 0:b86d15c6ba29 1200 CYASSL_API int CyaSSL_CertManagerEnableOCSP(CYASSL_CERT_MANAGER*,
Vanger 0:b86d15c6ba29 1201 int options);
Vanger 0:b86d15c6ba29 1202 CYASSL_API int CyaSSL_CertManagerDisableOCSP(CYASSL_CERT_MANAGER*);
Vanger 0:b86d15c6ba29 1203 CYASSL_API int CyaSSL_CertManagerSetOCSPOverrideURL(CYASSL_CERT_MANAGER*,
Vanger 0:b86d15c6ba29 1204 const char*);
Vanger 0:b86d15c6ba29 1205 CYASSL_API int CyaSSL_CertManagerSetOCSP_Cb(CYASSL_CERT_MANAGER*,
Vanger 0:b86d15c6ba29 1206 CbOCSPIO, CbOCSPRespFree, void*);
Vanger 0:b86d15c6ba29 1207
Vanger 0:b86d15c6ba29 1208 CYASSL_API int CyaSSL_EnableCRL(CYASSL* ssl, int options);
Vanger 0:b86d15c6ba29 1209 CYASSL_API int CyaSSL_DisableCRL(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1210 CYASSL_API int CyaSSL_LoadCRL(CYASSL*, const char*, int, int);
Vanger 0:b86d15c6ba29 1211 CYASSL_API int CyaSSL_SetCRL_Cb(CYASSL*, CbMissingCRL);
Vanger 0:b86d15c6ba29 1212 CYASSL_API int CyaSSL_EnableOCSP(CYASSL*, int options);
Vanger 0:b86d15c6ba29 1213 CYASSL_API int CyaSSL_DisableOCSP(CYASSL*);
Vanger 0:b86d15c6ba29 1214 CYASSL_API int CyaSSL_SetOCSP_OverrideURL(CYASSL*, const char*);
Vanger 0:b86d15c6ba29 1215 CYASSL_API int CyaSSL_SetOCSP_Cb(CYASSL*, CbOCSPIO, CbOCSPRespFree, void*);
Vanger 0:b86d15c6ba29 1216
Vanger 0:b86d15c6ba29 1217 CYASSL_API int CyaSSL_CTX_EnableCRL(CYASSL_CTX* ctx, int options);
Vanger 0:b86d15c6ba29 1218 CYASSL_API int CyaSSL_CTX_DisableCRL(CYASSL_CTX* ctx);
Vanger 0:b86d15c6ba29 1219 CYASSL_API int CyaSSL_CTX_LoadCRL(CYASSL_CTX*, const char*, int, int);
Vanger 0:b86d15c6ba29 1220 CYASSL_API int CyaSSL_CTX_SetCRL_Cb(CYASSL_CTX*, CbMissingCRL);
Vanger 0:b86d15c6ba29 1221 CYASSL_API int CyaSSL_CTX_EnableOCSP(CYASSL_CTX*, int options);
Vanger 0:b86d15c6ba29 1222 CYASSL_API int CyaSSL_CTX_DisableOCSP(CYASSL_CTX*);
Vanger 0:b86d15c6ba29 1223 CYASSL_API int CyaSSL_CTX_SetOCSP_OverrideURL(CYASSL_CTX*, const char*);
Vanger 0:b86d15c6ba29 1224 CYASSL_API int CyaSSL_CTX_SetOCSP_Cb(CYASSL_CTX*,
Vanger 0:b86d15c6ba29 1225 CbOCSPIO, CbOCSPRespFree, void*);
Vanger 0:b86d15c6ba29 1226 #endif /* !NO_CERTS */
Vanger 0:b86d15c6ba29 1227
Vanger 0:b86d15c6ba29 1228 /* end of handshake frees temporary arrays, if user needs for get_keys or
Vanger 0:b86d15c6ba29 1229 psk hints, call KeepArrays before handshake and then FreeArrays when done
Vanger 0:b86d15c6ba29 1230 if don't want to wait for object free */
Vanger 0:b86d15c6ba29 1231 CYASSL_API void CyaSSL_KeepArrays(CYASSL*);
Vanger 0:b86d15c6ba29 1232 CYASSL_API void CyaSSL_FreeArrays(CYASSL*);
Vanger 0:b86d15c6ba29 1233
Vanger 0:b86d15c6ba29 1234
Vanger 0:b86d15c6ba29 1235 /* cavium additions */
Vanger 0:b86d15c6ba29 1236 CYASSL_API int CyaSSL_UseCavium(CYASSL*, int devId);
Vanger 0:b86d15c6ba29 1237 CYASSL_API int CyaSSL_CTX_UseCavium(CYASSL_CTX*, int devId);
Vanger 0:b86d15c6ba29 1238
Vanger 0:b86d15c6ba29 1239 /* TLS Extensions */
Vanger 0:b86d15c6ba29 1240
Vanger 0:b86d15c6ba29 1241 /* Server Name Indication */
Vanger 0:b86d15c6ba29 1242 #ifdef HAVE_SNI
Vanger 0:b86d15c6ba29 1243
Vanger 0:b86d15c6ba29 1244 /* SNI types */
Vanger 0:b86d15c6ba29 1245 enum {
Vanger 0:b86d15c6ba29 1246 CYASSL_SNI_HOST_NAME = 0
Vanger 0:b86d15c6ba29 1247 };
Vanger 0:b86d15c6ba29 1248
Vanger 0:b86d15c6ba29 1249 CYASSL_API int CyaSSL_UseSNI(CYASSL* ssl, unsigned char type, const void* data,
Vanger 0:b86d15c6ba29 1250 unsigned short size);
Vanger 0:b86d15c6ba29 1251 CYASSL_API int CyaSSL_CTX_UseSNI(CYASSL_CTX* ctx, unsigned char type,
Vanger 0:b86d15c6ba29 1252 const void* data, unsigned short size);
Vanger 0:b86d15c6ba29 1253
Vanger 0:b86d15c6ba29 1254 #ifndef NO_CYASSL_SERVER
Vanger 0:b86d15c6ba29 1255
Vanger 0:b86d15c6ba29 1256 /* SNI options */
Vanger 0:b86d15c6ba29 1257 enum {
Vanger 0:b86d15c6ba29 1258 CYASSL_SNI_CONTINUE_ON_MISMATCH = 0x01, /* do not abort on mismatch flag */
Vanger 0:b86d15c6ba29 1259 CYASSL_SNI_ANSWER_ON_MISMATCH = 0x02 /* fake match on mismatch flag */
Vanger 0:b86d15c6ba29 1260 };
Vanger 0:b86d15c6ba29 1261
Vanger 0:b86d15c6ba29 1262 CYASSL_API void CyaSSL_SNI_SetOptions(CYASSL* ssl, unsigned char type,
Vanger 0:b86d15c6ba29 1263 unsigned char options);
Vanger 0:b86d15c6ba29 1264 CYASSL_API void CyaSSL_CTX_SNI_SetOptions(CYASSL_CTX* ctx, unsigned char type,
Vanger 0:b86d15c6ba29 1265 unsigned char options);
Vanger 0:b86d15c6ba29 1266
Vanger 0:b86d15c6ba29 1267 /* SNI status */
Vanger 0:b86d15c6ba29 1268 enum {
Vanger 0:b86d15c6ba29 1269 CYASSL_SNI_NO_MATCH = 0,
Vanger 0:b86d15c6ba29 1270 CYASSL_SNI_FAKE_MATCH = 1, /* if CYASSL_SNI_ANSWER_ON_MISMATCH is enabled */
Vanger 0:b86d15c6ba29 1271 CYASSL_SNI_REAL_MATCH = 2
Vanger 0:b86d15c6ba29 1272 };
Vanger 0:b86d15c6ba29 1273
Vanger 0:b86d15c6ba29 1274 CYASSL_API unsigned char CyaSSL_SNI_Status(CYASSL* ssl, unsigned char type);
Vanger 0:b86d15c6ba29 1275
Vanger 0:b86d15c6ba29 1276 CYASSL_API unsigned short CyaSSL_SNI_GetRequest(CYASSL *ssl, unsigned char type,
Vanger 0:b86d15c6ba29 1277 void** data);
Vanger 0:b86d15c6ba29 1278 CYASSL_API int CyaSSL_SNI_GetFromBuffer(
Vanger 0:b86d15c6ba29 1279 const unsigned char* clientHello, unsigned int helloSz,
Vanger 0:b86d15c6ba29 1280 unsigned char type, unsigned char* sni, unsigned int* inOutSz);
Vanger 0:b86d15c6ba29 1281
Vanger 0:b86d15c6ba29 1282 #endif
Vanger 0:b86d15c6ba29 1283 #endif
Vanger 0:b86d15c6ba29 1284
Vanger 0:b86d15c6ba29 1285 /* Maximum Fragment Length */
Vanger 0:b86d15c6ba29 1286 #ifdef HAVE_MAX_FRAGMENT
Vanger 0:b86d15c6ba29 1287
Vanger 0:b86d15c6ba29 1288 /* Fragment lengths */
Vanger 0:b86d15c6ba29 1289 enum {
Vanger 0:b86d15c6ba29 1290 CYASSL_MFL_2_9 = 1, /* 512 bytes */
Vanger 0:b86d15c6ba29 1291 CYASSL_MFL_2_10 = 2, /* 1024 bytes */
Vanger 0:b86d15c6ba29 1292 CYASSL_MFL_2_11 = 3, /* 2048 bytes */
Vanger 0:b86d15c6ba29 1293 CYASSL_MFL_2_12 = 4, /* 4096 bytes */
Vanger 0:b86d15c6ba29 1294 CYASSL_MFL_2_13 = 5 /* 8192 bytes *//* CyaSSL ONLY!!! */
Vanger 0:b86d15c6ba29 1295 };
Vanger 0:b86d15c6ba29 1296
Vanger 0:b86d15c6ba29 1297 #ifndef NO_CYASSL_CLIENT
Vanger 0:b86d15c6ba29 1298
Vanger 0:b86d15c6ba29 1299 CYASSL_API int CyaSSL_UseMaxFragment(CYASSL* ssl, unsigned char mfl);
Vanger 0:b86d15c6ba29 1300 CYASSL_API int CyaSSL_CTX_UseMaxFragment(CYASSL_CTX* ctx, unsigned char mfl);
Vanger 0:b86d15c6ba29 1301
Vanger 0:b86d15c6ba29 1302 #endif
Vanger 0:b86d15c6ba29 1303 #endif
Vanger 0:b86d15c6ba29 1304
Vanger 0:b86d15c6ba29 1305 /* Truncated HMAC */
Vanger 0:b86d15c6ba29 1306 #ifdef HAVE_TRUNCATED_HMAC
Vanger 0:b86d15c6ba29 1307 #ifndef NO_CYASSL_CLIENT
Vanger 0:b86d15c6ba29 1308
Vanger 0:b86d15c6ba29 1309 CYASSL_API int CyaSSL_UseTruncatedHMAC(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1310 CYASSL_API int CyaSSL_CTX_UseTruncatedHMAC(CYASSL_CTX* ctx);
Vanger 0:b86d15c6ba29 1311
Vanger 0:b86d15c6ba29 1312 #endif
Vanger 0:b86d15c6ba29 1313 #endif
Vanger 0:b86d15c6ba29 1314
Vanger 0:b86d15c6ba29 1315 /* Elliptic Curves */
Vanger 0:b86d15c6ba29 1316 #ifdef HAVE_SUPPORTED_CURVES
Vanger 0:b86d15c6ba29 1317
Vanger 0:b86d15c6ba29 1318 enum {
Vanger 0:b86d15c6ba29 1319 CYASSL_ECC_SECP160R1 = 0x10,
Vanger 0:b86d15c6ba29 1320 CYASSL_ECC_SECP192R1 = 0x13,
Vanger 0:b86d15c6ba29 1321 CYASSL_ECC_SECP224R1 = 0x15,
Vanger 0:b86d15c6ba29 1322 CYASSL_ECC_SECP256R1 = 0x17,
Vanger 0:b86d15c6ba29 1323 CYASSL_ECC_SECP384R1 = 0x18,
Vanger 0:b86d15c6ba29 1324 CYASSL_ECC_SECP521R1 = 0x19
Vanger 0:b86d15c6ba29 1325 };
Vanger 0:b86d15c6ba29 1326
Vanger 0:b86d15c6ba29 1327 #ifndef NO_CYASSL_CLIENT
Vanger 0:b86d15c6ba29 1328
Vanger 0:b86d15c6ba29 1329 CYASSL_API int CyaSSL_UseSupportedCurve(CYASSL* ssl, unsigned short name);
Vanger 0:b86d15c6ba29 1330 CYASSL_API int CyaSSL_CTX_UseSupportedCurve(CYASSL_CTX* ctx,
Vanger 0:b86d15c6ba29 1331 unsigned short name);
Vanger 0:b86d15c6ba29 1332
Vanger 0:b86d15c6ba29 1333 #endif
Vanger 0:b86d15c6ba29 1334 #endif
Vanger 0:b86d15c6ba29 1335
Vanger 0:b86d15c6ba29 1336 /* Secure Renegotiation */
Vanger 0:b86d15c6ba29 1337 #ifdef HAVE_SECURE_RENEGOTIATION
Vanger 0:b86d15c6ba29 1338
Vanger 0:b86d15c6ba29 1339 CYASSL_API int CyaSSL_UseSecureRenegotiation(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1340 CYASSL_API int CyaSSL_Rehandshake(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1341
Vanger 0:b86d15c6ba29 1342 #endif
Vanger 0:b86d15c6ba29 1343
Vanger 0:b86d15c6ba29 1344 /* Session Ticket */
Vanger 0:b86d15c6ba29 1345 #ifdef HAVE_SESSION_TICKET
Vanger 0:b86d15c6ba29 1346 #ifndef NO_CYASSL_CLIENT
Vanger 0:b86d15c6ba29 1347
Vanger 0:b86d15c6ba29 1348 CYASSL_API int CyaSSL_UseSessionTicket(CYASSL* ssl);
Vanger 0:b86d15c6ba29 1349 CYASSL_API int CyaSSL_CTX_UseSessionTicket(CYASSL_CTX* ctx);
Vanger 0:b86d15c6ba29 1350 CYASSL_API int CyaSSL_get_SessionTicket(CYASSL*, unsigned char*, unsigned int*);
Vanger 0:b86d15c6ba29 1351 CYASSL_API int CyaSSL_set_SessionTicket(CYASSL*, unsigned char*, unsigned int);
Vanger 0:b86d15c6ba29 1352 typedef int (*CallbackSessionTicket)(CYASSL*, const unsigned char*, int, void*);
Vanger 0:b86d15c6ba29 1353 CYASSL_API int CyaSSL_set_SessionTicket_cb(CYASSL*,
Vanger 0:b86d15c6ba29 1354 CallbackSessionTicket, void*);
Vanger 0:b86d15c6ba29 1355
Vanger 0:b86d15c6ba29 1356 #endif
Vanger 0:b86d15c6ba29 1357 #endif
Vanger 0:b86d15c6ba29 1358
Vanger 0:b86d15c6ba29 1359 #define CYASSL_CRL_MONITOR 0x01 /* monitor this dir flag */
Vanger 0:b86d15c6ba29 1360 #define CYASSL_CRL_START_MON 0x02 /* start monitoring flag */
Vanger 0:b86d15c6ba29 1361
Vanger 0:b86d15c6ba29 1362
Vanger 0:b86d15c6ba29 1363 /* External facing KDF */
Vanger 0:b86d15c6ba29 1364 CYASSL_API
Vanger 0:b86d15c6ba29 1365 int CyaSSL_MakeTlsMasterSecret(unsigned char* ms, unsigned int msLen,
Vanger 0:b86d15c6ba29 1366 const unsigned char* pms, unsigned int pmsLen,
Vanger 0:b86d15c6ba29 1367 const unsigned char* cr, const unsigned char* sr,
Vanger 0:b86d15c6ba29 1368 int tls1_2, int hash_type);
Vanger 0:b86d15c6ba29 1369
Vanger 0:b86d15c6ba29 1370 CYASSL_API
Vanger 0:b86d15c6ba29 1371 int CyaSSL_DeriveTlsKeys(unsigned char* key_data, unsigned int keyLen,
Vanger 0:b86d15c6ba29 1372 const unsigned char* ms, unsigned int msLen,
Vanger 0:b86d15c6ba29 1373 const unsigned char* sr, const unsigned char* cr,
Vanger 0:b86d15c6ba29 1374 int tls1_2, int hash_type);
Vanger 0:b86d15c6ba29 1375
Vanger 0:b86d15c6ba29 1376 #ifdef CYASSL_CALLBACKS
Vanger 0:b86d15c6ba29 1377
Vanger 0:b86d15c6ba29 1378 /* used internally by CyaSSL while OpenSSL types aren't */
Vanger 0:b86d15c6ba29 1379 #include <cyassl/callbacks.h>
Vanger 0:b86d15c6ba29 1380
Vanger 0:b86d15c6ba29 1381 typedef int (*HandShakeCallBack)(HandShakeInfo*);
Vanger 0:b86d15c6ba29 1382 typedef int (*TimeoutCallBack)(TimeoutInfo*);
Vanger 0:b86d15c6ba29 1383
Vanger 0:b86d15c6ba29 1384 /* CyaSSL connect extension allowing HandShakeCallBack and/or TimeoutCallBack
Vanger 0:b86d15c6ba29 1385 for diagnostics */
Vanger 0:b86d15c6ba29 1386 CYASSL_API int CyaSSL_connect_ex(CYASSL*, HandShakeCallBack, TimeoutCallBack,
Vanger 0:b86d15c6ba29 1387 Timeval);
Vanger 0:b86d15c6ba29 1388 CYASSL_API int CyaSSL_accept_ex(CYASSL*, HandShakeCallBack, TimeoutCallBack,
Vanger 0:b86d15c6ba29 1389 Timeval);
Vanger 0:b86d15c6ba29 1390
Vanger 0:b86d15c6ba29 1391 #endif /* CYASSL_CALLBACKS */
Vanger 0:b86d15c6ba29 1392
Vanger 0:b86d15c6ba29 1393
Vanger 0:b86d15c6ba29 1394 #ifdef CYASSL_HAVE_WOLFSCEP
Vanger 0:b86d15c6ba29 1395 CYASSL_API void CyaSSL_wolfSCEP(void);
Vanger 0:b86d15c6ba29 1396 #endif /* CYASSL_HAVE_WOLFSCEP */
Vanger 0:b86d15c6ba29 1397
Vanger 0:b86d15c6ba29 1398 #ifdef CYASSL_HAVE_CERT_SERVICE
Vanger 0:b86d15c6ba29 1399 CYASSL_API void CyaSSL_cert_service(void);
Vanger 0:b86d15c6ba29 1400 #endif
Vanger 0:b86d15c6ba29 1401
Vanger 0:b86d15c6ba29 1402
Vanger 0:b86d15c6ba29 1403 #ifdef __cplusplus
Vanger 0:b86d15c6ba29 1404 } /* extern "C" */
Vanger 0:b86d15c6ba29 1405 #endif
Vanger 0:b86d15c6ba29 1406
Vanger 0:b86d15c6ba29 1407
Vanger 0:b86d15c6ba29 1408 #endif /* CYASSL_SSL_H */
Vanger 0:b86d15c6ba29 1409