wolfSSL SSL/TLS library, support up to TLS1.3
Dependents: CyaSSL-Twitter-OAuth4Tw Example-client-tls-cert TwitterReader TweetTest ... more
wolfssl/ssl.h@4:1b0d80432c79, 2016-04-28 (annotated)
- Committer:
- wolfSSL
- Date:
- Thu Apr 28 00:57:21 2016 +0000
- Revision:
- 4:1b0d80432c79
wolfSSL 3.9.0
Who changed what in which revision?
User | Revision | Line number | New contents of line |
---|---|---|---|
wolfSSL | 4:1b0d80432c79 | 1 | /* ssl.h |
wolfSSL | 4:1b0d80432c79 | 2 | * |
wolfSSL | 4:1b0d80432c79 | 3 | * Copyright (C) 2006-2016 wolfSSL Inc. |
wolfSSL | 4:1b0d80432c79 | 4 | * |
wolfSSL | 4:1b0d80432c79 | 5 | * This file is part of wolfSSL. |
wolfSSL | 4:1b0d80432c79 | 6 | * |
wolfSSL | 4:1b0d80432c79 | 7 | * wolfSSL is free software; you can redistribute it and/or modify |
wolfSSL | 4:1b0d80432c79 | 8 | * it under the terms of the GNU General Public License as published by |
wolfSSL | 4:1b0d80432c79 | 9 | * the Free Software Foundation; either version 2 of the License, or |
wolfSSL | 4:1b0d80432c79 | 10 | * (at your option) any later version. |
wolfSSL | 4:1b0d80432c79 | 11 | * |
wolfSSL | 4:1b0d80432c79 | 12 | * wolfSSL is distributed in the hope that it will be useful, |
wolfSSL | 4:1b0d80432c79 | 13 | * but WITHOUT ANY WARRANTY; without even the implied warranty of |
wolfSSL | 4:1b0d80432c79 | 14 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
wolfSSL | 4:1b0d80432c79 | 15 | * GNU General Public License for more details. |
wolfSSL | 4:1b0d80432c79 | 16 | * |
wolfSSL | 4:1b0d80432c79 | 17 | * You should have received a copy of the GNU General Public License |
wolfSSL | 4:1b0d80432c79 | 18 | * along with this program; if not, write to the Free Software |
wolfSSL | 4:1b0d80432c79 | 19 | * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA |
wolfSSL | 4:1b0d80432c79 | 20 | */ |
wolfSSL | 4:1b0d80432c79 | 21 | |
wolfSSL | 4:1b0d80432c79 | 22 | |
wolfSSL | 4:1b0d80432c79 | 23 | |
wolfSSL | 4:1b0d80432c79 | 24 | /* wolfSSL API */ |
wolfSSL | 4:1b0d80432c79 | 25 | |
wolfSSL | 4:1b0d80432c79 | 26 | #ifndef WOLFSSL_SSL_H |
wolfSSL | 4:1b0d80432c79 | 27 | #define WOLFSSL_SSL_H |
wolfSSL | 4:1b0d80432c79 | 28 | |
wolfSSL | 4:1b0d80432c79 | 29 | |
wolfSSL | 4:1b0d80432c79 | 30 | /* for users not using preprocessor flags*/ |
wolfSSL | 4:1b0d80432c79 | 31 | #include <wolfssl/wolfcrypt/settings.h> |
wolfSSL | 4:1b0d80432c79 | 32 | #include <wolfssl/version.h> |
wolfSSL | 4:1b0d80432c79 | 33 | |
wolfSSL | 4:1b0d80432c79 | 34 | #ifndef NO_FILESYSTEM |
wolfSSL | 4:1b0d80432c79 | 35 | #if defined(FREESCALE_MQX) || defined(FREESCALE_KSDK_MQX) |
wolfSSL | 4:1b0d80432c79 | 36 | #if MQX_USE_IO_OLD |
wolfSSL | 4:1b0d80432c79 | 37 | #include <fio.h> |
wolfSSL | 4:1b0d80432c79 | 38 | #else |
wolfSSL | 4:1b0d80432c79 | 39 | #include <nio.h> |
wolfSSL | 4:1b0d80432c79 | 40 | #endif |
wolfSSL | 4:1b0d80432c79 | 41 | #else |
wolfSSL | 4:1b0d80432c79 | 42 | #include <stdio.h> /* ERR_printf */ |
wolfSSL | 4:1b0d80432c79 | 43 | #endif |
wolfSSL | 4:1b0d80432c79 | 44 | #endif |
wolfSSL | 4:1b0d80432c79 | 45 | |
wolfSSL | 4:1b0d80432c79 | 46 | #ifdef WOLFSSL_PREFIX |
wolfSSL | 4:1b0d80432c79 | 47 | #include "prefix_ssl.h" |
wolfSSL | 4:1b0d80432c79 | 48 | #endif |
wolfSSL | 4:1b0d80432c79 | 49 | |
wolfSSL | 4:1b0d80432c79 | 50 | #ifdef LIBWOLFSSL_VERSION_STRING |
wolfSSL | 4:1b0d80432c79 | 51 | #define WOLFSSL_VERSION LIBWOLFSSL_VERSION_STRING |
wolfSSL | 4:1b0d80432c79 | 52 | #endif |
wolfSSL | 4:1b0d80432c79 | 53 | |
wolfSSL | 4:1b0d80432c79 | 54 | #ifdef _WIN32 |
wolfSSL | 4:1b0d80432c79 | 55 | /* wincrypt.h clashes */ |
wolfSSL | 4:1b0d80432c79 | 56 | #undef OCSP_REQUEST |
wolfSSL | 4:1b0d80432c79 | 57 | #undef OCSP_RESPONSE |
wolfSSL | 4:1b0d80432c79 | 58 | #endif |
wolfSSL | 4:1b0d80432c79 | 59 | |
wolfSSL | 4:1b0d80432c79 | 60 | |
wolfSSL | 4:1b0d80432c79 | 61 | |
wolfSSL | 4:1b0d80432c79 | 62 | #ifdef __cplusplus |
wolfSSL | 4:1b0d80432c79 | 63 | extern "C" { |
wolfSSL | 4:1b0d80432c79 | 64 | #endif |
wolfSSL | 4:1b0d80432c79 | 65 | |
wolfSSL | 4:1b0d80432c79 | 66 | typedef struct WOLFSSL WOLFSSL; |
wolfSSL | 4:1b0d80432c79 | 67 | typedef struct WOLFSSL_SESSION WOLFSSL_SESSION; |
wolfSSL | 4:1b0d80432c79 | 68 | typedef struct WOLFSSL_METHOD WOLFSSL_METHOD; |
wolfSSL | 4:1b0d80432c79 | 69 | typedef struct WOLFSSL_CTX WOLFSSL_CTX; |
wolfSSL | 4:1b0d80432c79 | 70 | |
wolfSSL | 4:1b0d80432c79 | 71 | typedef struct WOLFSSL_X509 WOLFSSL_X509; |
wolfSSL | 4:1b0d80432c79 | 72 | typedef struct WOLFSSL_X509_NAME WOLFSSL_X509_NAME; |
wolfSSL | 4:1b0d80432c79 | 73 | typedef struct WOLFSSL_X509_CHAIN WOLFSSL_X509_CHAIN; |
wolfSSL | 4:1b0d80432c79 | 74 | |
wolfSSL | 4:1b0d80432c79 | 75 | typedef struct WOLFSSL_CERT_MANAGER WOLFSSL_CERT_MANAGER; |
wolfSSL | 4:1b0d80432c79 | 76 | typedef struct WOLFSSL_SOCKADDR WOLFSSL_SOCKADDR; |
wolfSSL | 4:1b0d80432c79 | 77 | |
wolfSSL | 4:1b0d80432c79 | 78 | /* redeclare guard */ |
wolfSSL | 4:1b0d80432c79 | 79 | #define WOLFSSL_TYPES_DEFINED |
wolfSSL | 4:1b0d80432c79 | 80 | |
wolfSSL | 4:1b0d80432c79 | 81 | |
wolfSSL | 4:1b0d80432c79 | 82 | #ifndef WOLFSSL_RSA_TYPE_DEFINED /* guard on redeclaration */ |
wolfSSL | 4:1b0d80432c79 | 83 | typedef struct WOLFSSL_RSA WOLFSSL_RSA; |
wolfSSL | 4:1b0d80432c79 | 84 | #define WOLFSSL_RSA_TYPE_DEFINED |
wolfSSL | 4:1b0d80432c79 | 85 | #endif |
wolfSSL | 4:1b0d80432c79 | 86 | |
wolfSSL | 4:1b0d80432c79 | 87 | typedef struct WOLFSSL_DSA WOLFSSL_DSA; |
wolfSSL | 4:1b0d80432c79 | 88 | typedef struct WOLFSSL_EC_KEY WOLFSSL_EC_KEY; |
wolfSSL | 4:1b0d80432c79 | 89 | typedef struct WOLFSSL_EC_POINT WOLFSSL_EC_POINT; |
wolfSSL | 4:1b0d80432c79 | 90 | typedef struct WOLFSSL_EC_GROUP WOLFSSL_EC_GROUP; |
wolfSSL | 4:1b0d80432c79 | 91 | typedef struct WOLFSSL_ECDSA_SIG WOLFSSL_ECDSA_SIG; |
wolfSSL | 4:1b0d80432c79 | 92 | typedef struct WOLFSSL_CIPHER WOLFSSL_CIPHER; |
wolfSSL | 4:1b0d80432c79 | 93 | typedef struct WOLFSSL_X509_LOOKUP WOLFSSL_X509_LOOKUP; |
wolfSSL | 4:1b0d80432c79 | 94 | typedef struct WOLFSSL_X509_LOOKUP_METHOD WOLFSSL_X509_LOOKUP_METHOD; |
wolfSSL | 4:1b0d80432c79 | 95 | typedef struct WOLFSSL_X509_CRL WOLFSSL_X509_CRL; |
wolfSSL | 4:1b0d80432c79 | 96 | typedef struct WOLFSSL_BIO WOLFSSL_BIO; |
wolfSSL | 4:1b0d80432c79 | 97 | typedef struct WOLFSSL_BIO_METHOD WOLFSSL_BIO_METHOD; |
wolfSSL | 4:1b0d80432c79 | 98 | typedef struct WOLFSSL_X509_EXTENSION WOLFSSL_X509_EXTENSION; |
wolfSSL | 4:1b0d80432c79 | 99 | typedef struct WOLFSSL_ASN1_TIME WOLFSSL_ASN1_TIME; |
wolfSSL | 4:1b0d80432c79 | 100 | typedef struct WOLFSSL_ASN1_INTEGER WOLFSSL_ASN1_INTEGER; |
wolfSSL | 4:1b0d80432c79 | 101 | typedef struct WOLFSSL_ASN1_OBJECT WOLFSSL_ASN1_OBJECT; |
wolfSSL | 4:1b0d80432c79 | 102 | |
wolfSSL | 4:1b0d80432c79 | 103 | typedef struct WOLFSSL_ASN1_STRING WOLFSSL_ASN1_STRING; |
wolfSSL | 4:1b0d80432c79 | 104 | typedef struct WOLFSSL_dynlock_value WOLFSSL_dynlock_value; |
wolfSSL | 4:1b0d80432c79 | 105 | typedef struct WOLFSSL_DH WOLFSSL_DH; |
wolfSSL | 4:1b0d80432c79 | 106 | typedef struct WOLFSSL_ASN1_BIT_STRING WOLFSSL_ASN1_BIT_STRING; |
wolfSSL | 4:1b0d80432c79 | 107 | |
wolfSSL | 4:1b0d80432c79 | 108 | #define WOLFSSL_ASN1_UTCTIME WOLFSSL_ASN1_TIME |
wolfSSL | 4:1b0d80432c79 | 109 | |
wolfSSL | 4:1b0d80432c79 | 110 | typedef struct WOLFSSL_EVP_PKEY { |
wolfSSL | 4:1b0d80432c79 | 111 | int type; /* openssh dereference */ |
wolfSSL | 4:1b0d80432c79 | 112 | int save_type; /* openssh dereference */ |
wolfSSL | 4:1b0d80432c79 | 113 | int pkey_sz; |
wolfSSL | 4:1b0d80432c79 | 114 | union { |
wolfSSL | 4:1b0d80432c79 | 115 | char* ptr; |
wolfSSL | 4:1b0d80432c79 | 116 | } pkey; |
wolfSSL | 4:1b0d80432c79 | 117 | #ifdef HAVE_ECC |
wolfSSL | 4:1b0d80432c79 | 118 | int pkey_curve; |
wolfSSL | 4:1b0d80432c79 | 119 | #endif |
wolfSSL | 4:1b0d80432c79 | 120 | } WOLFSSL_EVP_PKEY; |
wolfSSL | 4:1b0d80432c79 | 121 | |
wolfSSL | 4:1b0d80432c79 | 122 | typedef struct WOLFSSL_MD4_CTX { |
wolfSSL | 4:1b0d80432c79 | 123 | int buffer[32]; /* big enough to hold, check size in Init */ |
wolfSSL | 4:1b0d80432c79 | 124 | } WOLFSSL_MD4_CTX; |
wolfSSL | 4:1b0d80432c79 | 125 | |
wolfSSL | 4:1b0d80432c79 | 126 | |
wolfSSL | 4:1b0d80432c79 | 127 | typedef struct WOLFSSL_COMP_METHOD { |
wolfSSL | 4:1b0d80432c79 | 128 | int type; /* stunnel dereference */ |
wolfSSL | 4:1b0d80432c79 | 129 | } WOLFSSL_COMP_METHOD; |
wolfSSL | 4:1b0d80432c79 | 130 | |
wolfSSL | 4:1b0d80432c79 | 131 | |
wolfSSL | 4:1b0d80432c79 | 132 | typedef struct WOLFSSL_X509_STORE { |
wolfSSL | 4:1b0d80432c79 | 133 | int cache; /* stunnel dereference */ |
wolfSSL | 4:1b0d80432c79 | 134 | WOLFSSL_CERT_MANAGER* cm; |
wolfSSL | 4:1b0d80432c79 | 135 | } WOLFSSL_X509_STORE; |
wolfSSL | 4:1b0d80432c79 | 136 | |
wolfSSL | 4:1b0d80432c79 | 137 | typedef struct WOLFSSL_ALERT { |
wolfSSL | 4:1b0d80432c79 | 138 | int code; |
wolfSSL | 4:1b0d80432c79 | 139 | int level; |
wolfSSL | 4:1b0d80432c79 | 140 | } WOLFSSL_ALERT; |
wolfSSL | 4:1b0d80432c79 | 141 | |
wolfSSL | 4:1b0d80432c79 | 142 | typedef struct WOLFSSL_ALERT_HISTORY { |
wolfSSL | 4:1b0d80432c79 | 143 | WOLFSSL_ALERT last_rx; |
wolfSSL | 4:1b0d80432c79 | 144 | WOLFSSL_ALERT last_tx; |
wolfSSL | 4:1b0d80432c79 | 145 | } WOLFSSL_ALERT_HISTORY; |
wolfSSL | 4:1b0d80432c79 | 146 | |
wolfSSL | 4:1b0d80432c79 | 147 | typedef struct WOLFSSL_X509_REVOKED { |
wolfSSL | 4:1b0d80432c79 | 148 | WOLFSSL_ASN1_INTEGER* serialNumber; /* stunnel dereference */ |
wolfSSL | 4:1b0d80432c79 | 149 | } WOLFSSL_X509_REVOKED; |
wolfSSL | 4:1b0d80432c79 | 150 | |
wolfSSL | 4:1b0d80432c79 | 151 | |
wolfSSL | 4:1b0d80432c79 | 152 | typedef struct WOLFSSL_X509_OBJECT { |
wolfSSL | 4:1b0d80432c79 | 153 | union { |
wolfSSL | 4:1b0d80432c79 | 154 | char* ptr; |
wolfSSL | 4:1b0d80432c79 | 155 | WOLFSSL_X509 *x509; |
wolfSSL | 4:1b0d80432c79 | 156 | WOLFSSL_X509_CRL* crl; /* stunnel dereference */ |
wolfSSL | 4:1b0d80432c79 | 157 | } data; |
wolfSSL | 4:1b0d80432c79 | 158 | } WOLFSSL_X509_OBJECT; |
wolfSSL | 4:1b0d80432c79 | 159 | |
wolfSSL | 4:1b0d80432c79 | 160 | typedef struct WOLFSSL_X509_STORE_CTX { |
wolfSSL | 4:1b0d80432c79 | 161 | WOLFSSL_X509_STORE* store; /* Store full of a CA cert chain */ |
wolfSSL | 4:1b0d80432c79 | 162 | WOLFSSL_X509* current_cert; /* stunnel dereference */ |
wolfSSL | 4:1b0d80432c79 | 163 | char* domain; /* subject CN domain name */ |
wolfSSL | 4:1b0d80432c79 | 164 | void* ex_data; /* external data, for fortress build */ |
wolfSSL | 4:1b0d80432c79 | 165 | void* userCtx; /* user ctx */ |
wolfSSL | 4:1b0d80432c79 | 166 | int error; /* current error */ |
wolfSSL | 4:1b0d80432c79 | 167 | int error_depth; /* cert depth for this error */ |
wolfSSL | 4:1b0d80432c79 | 168 | int discardSessionCerts; /* so verify callback can flag for discard */ |
wolfSSL | 4:1b0d80432c79 | 169 | } WOLFSSL_X509_STORE_CTX; |
wolfSSL | 4:1b0d80432c79 | 170 | |
wolfSSL | 4:1b0d80432c79 | 171 | |
wolfSSL | 4:1b0d80432c79 | 172 | /* Valid Alert types from page 16/17 */ |
wolfSSL | 4:1b0d80432c79 | 173 | enum AlertDescription { |
wolfSSL | 4:1b0d80432c79 | 174 | close_notify = 0, |
wolfSSL | 4:1b0d80432c79 | 175 | unexpected_message = 10, |
wolfSSL | 4:1b0d80432c79 | 176 | bad_record_mac = 20, |
wolfSSL | 4:1b0d80432c79 | 177 | record_overflow = 22, |
wolfSSL | 4:1b0d80432c79 | 178 | decompression_failure = 30, |
wolfSSL | 4:1b0d80432c79 | 179 | handshake_failure = 40, |
wolfSSL | 4:1b0d80432c79 | 180 | no_certificate = 41, |
wolfSSL | 4:1b0d80432c79 | 181 | bad_certificate = 42, |
wolfSSL | 4:1b0d80432c79 | 182 | unsupported_certificate = 43, |
wolfSSL | 4:1b0d80432c79 | 183 | certificate_revoked = 44, |
wolfSSL | 4:1b0d80432c79 | 184 | certificate_expired = 45, |
wolfSSL | 4:1b0d80432c79 | 185 | certificate_unknown = 46, |
wolfSSL | 4:1b0d80432c79 | 186 | illegal_parameter = 47, |
wolfSSL | 4:1b0d80432c79 | 187 | decrypt_error = 51, |
wolfSSL | 4:1b0d80432c79 | 188 | #ifdef WOLFSSL_MYSQL_COMPATIBLE |
wolfSSL | 4:1b0d80432c79 | 189 | /* catch name conflict for enum protocol with MYSQL build */ |
wolfSSL | 4:1b0d80432c79 | 190 | wc_protocol_version = 70, |
wolfSSL | 4:1b0d80432c79 | 191 | #else |
wolfSSL | 4:1b0d80432c79 | 192 | protocol_version = 70, |
wolfSSL | 4:1b0d80432c79 | 193 | #endif |
wolfSSL | 4:1b0d80432c79 | 194 | no_renegotiation = 100, |
wolfSSL | 4:1b0d80432c79 | 195 | unrecognized_name = 112, /**< RFC 6066, section 3 */ |
wolfSSL | 4:1b0d80432c79 | 196 | bad_certificate_status_response = 113, /**< RFC 6066, section 8 */ |
wolfSSL | 4:1b0d80432c79 | 197 | no_application_protocol = 120 |
wolfSSL | 4:1b0d80432c79 | 198 | }; |
wolfSSL | 4:1b0d80432c79 | 199 | |
wolfSSL | 4:1b0d80432c79 | 200 | |
wolfSSL | 4:1b0d80432c79 | 201 | enum AlertLevel { |
wolfSSL | 4:1b0d80432c79 | 202 | alert_warning = 1, |
wolfSSL | 4:1b0d80432c79 | 203 | alert_fatal = 2 |
wolfSSL | 4:1b0d80432c79 | 204 | }; |
wolfSSL | 4:1b0d80432c79 | 205 | |
wolfSSL | 4:1b0d80432c79 | 206 | |
wolfSSL | 4:1b0d80432c79 | 207 | WOLFSSL_API WOLFSSL_METHOD *wolfSSLv3_server_method(void); |
wolfSSL | 4:1b0d80432c79 | 208 | WOLFSSL_API WOLFSSL_METHOD *wolfSSLv3_client_method(void); |
wolfSSL | 4:1b0d80432c79 | 209 | WOLFSSL_API WOLFSSL_METHOD *wolfTLSv1_server_method(void); |
wolfSSL | 4:1b0d80432c79 | 210 | WOLFSSL_API WOLFSSL_METHOD *wolfTLSv1_client_method(void); |
wolfSSL | 4:1b0d80432c79 | 211 | WOLFSSL_API WOLFSSL_METHOD *wolfTLSv1_1_server_method(void); |
wolfSSL | 4:1b0d80432c79 | 212 | WOLFSSL_API WOLFSSL_METHOD *wolfTLSv1_1_client_method(void); |
wolfSSL | 4:1b0d80432c79 | 213 | WOLFSSL_API WOLFSSL_METHOD *wolfTLSv1_2_server_method(void); |
wolfSSL | 4:1b0d80432c79 | 214 | WOLFSSL_API WOLFSSL_METHOD *wolfTLSv1_2_client_method(void); |
wolfSSL | 4:1b0d80432c79 | 215 | |
wolfSSL | 4:1b0d80432c79 | 216 | #ifdef WOLFSSL_DTLS |
wolfSSL | 4:1b0d80432c79 | 217 | WOLFSSL_API WOLFSSL_METHOD *wolfDTLSv1_client_method(void); |
wolfSSL | 4:1b0d80432c79 | 218 | WOLFSSL_API WOLFSSL_METHOD *wolfDTLSv1_server_method(void); |
wolfSSL | 4:1b0d80432c79 | 219 | WOLFSSL_API WOLFSSL_METHOD *wolfDTLSv1_2_client_method(void); |
wolfSSL | 4:1b0d80432c79 | 220 | WOLFSSL_API WOLFSSL_METHOD *wolfDTLSv1_2_server_method(void); |
wolfSSL | 4:1b0d80432c79 | 221 | #endif |
wolfSSL | 4:1b0d80432c79 | 222 | |
wolfSSL | 4:1b0d80432c79 | 223 | #ifdef HAVE_POLY1305 |
wolfSSL | 4:1b0d80432c79 | 224 | WOLFSSL_API int wolfSSL_use_old_poly(WOLFSSL*, int); |
wolfSSL | 4:1b0d80432c79 | 225 | #endif |
wolfSSL | 4:1b0d80432c79 | 226 | |
wolfSSL | 4:1b0d80432c79 | 227 | #if !defined(NO_FILESYSTEM) && !defined(NO_CERTS) |
wolfSSL | 4:1b0d80432c79 | 228 | |
wolfSSL | 4:1b0d80432c79 | 229 | WOLFSSL_API int wolfSSL_CTX_use_certificate_file(WOLFSSL_CTX*, const char*, int); |
wolfSSL | 4:1b0d80432c79 | 230 | WOLFSSL_API int wolfSSL_CTX_use_PrivateKey_file(WOLFSSL_CTX*, const char*, int); |
wolfSSL | 4:1b0d80432c79 | 231 | WOLFSSL_API int wolfSSL_CTX_load_verify_locations(WOLFSSL_CTX*, const char*, |
wolfSSL | 4:1b0d80432c79 | 232 | const char*); |
wolfSSL | 4:1b0d80432c79 | 233 | #ifdef WOLFSSL_TRUST_PEER_CERT |
wolfSSL | 4:1b0d80432c79 | 234 | WOLFSSL_API int wolfSSL_CTX_trust_peer_cert(WOLFSSL_CTX*, const char*, int); |
wolfSSL | 4:1b0d80432c79 | 235 | #endif |
wolfSSL | 4:1b0d80432c79 | 236 | WOLFSSL_API int wolfSSL_CTX_use_certificate_chain_file(WOLFSSL_CTX *, |
wolfSSL | 4:1b0d80432c79 | 237 | const char *file); |
wolfSSL | 4:1b0d80432c79 | 238 | WOLFSSL_API int wolfSSL_CTX_use_RSAPrivateKey_file(WOLFSSL_CTX*, const char*, int); |
wolfSSL | 4:1b0d80432c79 | 239 | |
wolfSSL | 4:1b0d80432c79 | 240 | WOLFSSL_API long wolfSSL_get_verify_depth(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 241 | WOLFSSL_API long wolfSSL_CTX_get_verify_depth(WOLFSSL_CTX* ctx); |
wolfSSL | 4:1b0d80432c79 | 242 | WOLFSSL_API int wolfSSL_use_certificate_file(WOLFSSL*, const char*, int); |
wolfSSL | 4:1b0d80432c79 | 243 | WOLFSSL_API int wolfSSL_use_PrivateKey_file(WOLFSSL*, const char*, int); |
wolfSSL | 4:1b0d80432c79 | 244 | WOLFSSL_API int wolfSSL_use_certificate_chain_file(WOLFSSL*, const char *file); |
wolfSSL | 4:1b0d80432c79 | 245 | WOLFSSL_API int wolfSSL_use_RSAPrivateKey_file(WOLFSSL*, const char*, int); |
wolfSSL | 4:1b0d80432c79 | 246 | |
wolfSSL | 4:1b0d80432c79 | 247 | #ifdef WOLFSSL_DER_LOAD |
wolfSSL | 4:1b0d80432c79 | 248 | WOLFSSL_API int wolfSSL_CTX_der_load_verify_locations(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 249 | const char*, int); |
wolfSSL | 4:1b0d80432c79 | 250 | #endif |
wolfSSL | 4:1b0d80432c79 | 251 | |
wolfSSL | 4:1b0d80432c79 | 252 | #ifdef HAVE_NTRU |
wolfSSL | 4:1b0d80432c79 | 253 | WOLFSSL_API int wolfSSL_CTX_use_NTRUPrivateKey_file(WOLFSSL_CTX*, const char*); |
wolfSSL | 4:1b0d80432c79 | 254 | /* load NTRU private key blob */ |
wolfSSL | 4:1b0d80432c79 | 255 | #endif |
wolfSSL | 4:1b0d80432c79 | 256 | |
wolfSSL | 4:1b0d80432c79 | 257 | #ifndef WOLFSSL_PEMCERT_TODER_DEFINED |
wolfSSL | 4:1b0d80432c79 | 258 | WOLFSSL_API int wolfSSL_PemCertToDer(const char*, unsigned char*, int); |
wolfSSL | 4:1b0d80432c79 | 259 | #define WOLFSSL_PEMCERT_TODER_DEFINED |
wolfSSL | 4:1b0d80432c79 | 260 | #endif |
wolfSSL | 4:1b0d80432c79 | 261 | |
wolfSSL | 4:1b0d80432c79 | 262 | #endif /* !NO_FILESYSTEM && !NO_CERTS */ |
wolfSSL | 4:1b0d80432c79 | 263 | |
wolfSSL | 4:1b0d80432c79 | 264 | WOLFSSL_API WOLFSSL_CTX* wolfSSL_CTX_new(WOLFSSL_METHOD*); |
wolfSSL | 4:1b0d80432c79 | 265 | WOLFSSL_API WOLFSSL* wolfSSL_new(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 266 | WOLFSSL_API int wolfSSL_set_fd (WOLFSSL*, int); |
wolfSSL | 4:1b0d80432c79 | 267 | WOLFSSL_API char* wolfSSL_get_cipher_list(int priority); |
wolfSSL | 4:1b0d80432c79 | 268 | WOLFSSL_API int wolfSSL_get_ciphers(char*, int); |
wolfSSL | 4:1b0d80432c79 | 269 | WOLFSSL_API int wolfSSL_get_fd(const WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 270 | WOLFSSL_API void wolfSSL_set_using_nonblock(WOLFSSL*, int); |
wolfSSL | 4:1b0d80432c79 | 271 | WOLFSSL_API int wolfSSL_get_using_nonblock(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 272 | WOLFSSL_API int wolfSSL_connect(WOLFSSL*); /* please see note at top of README |
wolfSSL | 4:1b0d80432c79 | 273 | if you get an error from connect */ |
wolfSSL | 4:1b0d80432c79 | 274 | WOLFSSL_API int wolfSSL_write(WOLFSSL*, const void*, int); |
wolfSSL | 4:1b0d80432c79 | 275 | WOLFSSL_API int wolfSSL_read(WOLFSSL*, void*, int); |
wolfSSL | 4:1b0d80432c79 | 276 | WOLFSSL_API int wolfSSL_peek(WOLFSSL*, void*, int); |
wolfSSL | 4:1b0d80432c79 | 277 | WOLFSSL_API int wolfSSL_accept(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 278 | WOLFSSL_API void wolfSSL_CTX_free(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 279 | WOLFSSL_API void wolfSSL_free(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 280 | WOLFSSL_API int wolfSSL_shutdown(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 281 | WOLFSSL_API int wolfSSL_send(WOLFSSL*, const void*, int sz, int flags); |
wolfSSL | 4:1b0d80432c79 | 282 | WOLFSSL_API int wolfSSL_recv(WOLFSSL*, void*, int sz, int flags); |
wolfSSL | 4:1b0d80432c79 | 283 | |
wolfSSL | 4:1b0d80432c79 | 284 | WOLFSSL_API void wolfSSL_CTX_set_quiet_shutdown(WOLFSSL_CTX*, int); |
wolfSSL | 4:1b0d80432c79 | 285 | WOLFSSL_API void wolfSSL_set_quiet_shutdown(WOLFSSL*, int); |
wolfSSL | 4:1b0d80432c79 | 286 | |
wolfSSL | 4:1b0d80432c79 | 287 | WOLFSSL_API int wolfSSL_get_error(WOLFSSL*, int); |
wolfSSL | 4:1b0d80432c79 | 288 | WOLFSSL_API int wolfSSL_get_alert_history(WOLFSSL*, WOLFSSL_ALERT_HISTORY *); |
wolfSSL | 4:1b0d80432c79 | 289 | |
wolfSSL | 4:1b0d80432c79 | 290 | WOLFSSL_API int wolfSSL_set_session(WOLFSSL* ssl,WOLFSSL_SESSION* session); |
wolfSSL | 4:1b0d80432c79 | 291 | WOLFSSL_API long wolfSSL_SSL_SESSION_set_timeout(WOLFSSL_SESSION* session, long t); |
wolfSSL | 4:1b0d80432c79 | 292 | WOLFSSL_API WOLFSSL_SESSION* wolfSSL_get_session(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 293 | WOLFSSL_API void wolfSSL_flush_sessions(WOLFSSL_CTX *ctx, long tm); |
wolfSSL | 4:1b0d80432c79 | 294 | WOLFSSL_API int wolfSSL_SetServerID(WOLFSSL* ssl, const unsigned char*, |
wolfSSL | 4:1b0d80432c79 | 295 | int, int); |
wolfSSL | 4:1b0d80432c79 | 296 | |
wolfSSL | 4:1b0d80432c79 | 297 | #ifdef SESSION_INDEX |
wolfSSL | 4:1b0d80432c79 | 298 | WOLFSSL_API int wolfSSL_GetSessionIndex(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 299 | WOLFSSL_API int wolfSSL_GetSessionAtIndex(int index, WOLFSSL_SESSION* session); |
wolfSSL | 4:1b0d80432c79 | 300 | #endif /* SESSION_INDEX */ |
wolfSSL | 4:1b0d80432c79 | 301 | |
wolfSSL | 4:1b0d80432c79 | 302 | #if defined(SESSION_INDEX) && defined(SESSION_CERTS) |
wolfSSL | 4:1b0d80432c79 | 303 | WOLFSSL_API |
wolfSSL | 4:1b0d80432c79 | 304 | WOLFSSL_X509_CHAIN* wolfSSL_SESSION_get_peer_chain(WOLFSSL_SESSION* session); |
wolfSSL | 4:1b0d80432c79 | 305 | #endif /* SESSION_INDEX && SESSION_CERTS */ |
wolfSSL | 4:1b0d80432c79 | 306 | |
wolfSSL | 4:1b0d80432c79 | 307 | typedef int (*VerifyCallback)(int, WOLFSSL_X509_STORE_CTX*); |
wolfSSL | 4:1b0d80432c79 | 308 | typedef int (*pem_password_cb)(char*, int, int, void*); |
wolfSSL | 4:1b0d80432c79 | 309 | |
wolfSSL | 4:1b0d80432c79 | 310 | WOLFSSL_API void wolfSSL_CTX_set_verify(WOLFSSL_CTX*, int, |
wolfSSL | 4:1b0d80432c79 | 311 | VerifyCallback verify_callback); |
wolfSSL | 4:1b0d80432c79 | 312 | WOLFSSL_API void wolfSSL_set_verify(WOLFSSL*, int, VerifyCallback verify_callback); |
wolfSSL | 4:1b0d80432c79 | 313 | WOLFSSL_API void wolfSSL_SetCertCbCtx(WOLFSSL*, void*); |
wolfSSL | 4:1b0d80432c79 | 314 | |
wolfSSL | 4:1b0d80432c79 | 315 | WOLFSSL_API int wolfSSL_pending(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 316 | |
wolfSSL | 4:1b0d80432c79 | 317 | WOLFSSL_API void wolfSSL_load_error_strings(void); |
wolfSSL | 4:1b0d80432c79 | 318 | WOLFSSL_API int wolfSSL_library_init(void); |
wolfSSL | 4:1b0d80432c79 | 319 | WOLFSSL_API long wolfSSL_CTX_set_session_cache_mode(WOLFSSL_CTX*, long); |
wolfSSL | 4:1b0d80432c79 | 320 | |
wolfSSL | 4:1b0d80432c79 | 321 | #ifdef HAVE_SECRET_CALLBACK |
wolfSSL | 4:1b0d80432c79 | 322 | typedef int (*SessionSecretCb)(WOLFSSL* ssl, |
wolfSSL | 4:1b0d80432c79 | 323 | void* secret, int* secretSz, void* ctx); |
wolfSSL | 4:1b0d80432c79 | 324 | WOLFSSL_API int wolfSSL_set_session_secret_cb(WOLFSSL*, SessionSecretCb, void*); |
wolfSSL | 4:1b0d80432c79 | 325 | #endif /* HAVE_SECRET_CALLBACK */ |
wolfSSL | 4:1b0d80432c79 | 326 | |
wolfSSL | 4:1b0d80432c79 | 327 | /* session cache persistence */ |
wolfSSL | 4:1b0d80432c79 | 328 | WOLFSSL_API int wolfSSL_save_session_cache(const char*); |
wolfSSL | 4:1b0d80432c79 | 329 | WOLFSSL_API int wolfSSL_restore_session_cache(const char*); |
wolfSSL | 4:1b0d80432c79 | 330 | WOLFSSL_API int wolfSSL_memsave_session_cache(void*, int); |
wolfSSL | 4:1b0d80432c79 | 331 | WOLFSSL_API int wolfSSL_memrestore_session_cache(const void*, int); |
wolfSSL | 4:1b0d80432c79 | 332 | WOLFSSL_API int wolfSSL_get_session_cache_memsize(void); |
wolfSSL | 4:1b0d80432c79 | 333 | |
wolfSSL | 4:1b0d80432c79 | 334 | /* certificate cache persistence, uses ctx since certs are per ctx */ |
wolfSSL | 4:1b0d80432c79 | 335 | WOLFSSL_API int wolfSSL_CTX_save_cert_cache(WOLFSSL_CTX*, const char*); |
wolfSSL | 4:1b0d80432c79 | 336 | WOLFSSL_API int wolfSSL_CTX_restore_cert_cache(WOLFSSL_CTX*, const char*); |
wolfSSL | 4:1b0d80432c79 | 337 | WOLFSSL_API int wolfSSL_CTX_memsave_cert_cache(WOLFSSL_CTX*, void*, int, int*); |
wolfSSL | 4:1b0d80432c79 | 338 | WOLFSSL_API int wolfSSL_CTX_memrestore_cert_cache(WOLFSSL_CTX*, const void*, int); |
wolfSSL | 4:1b0d80432c79 | 339 | WOLFSSL_API int wolfSSL_CTX_get_cert_cache_memsize(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 340 | |
wolfSSL | 4:1b0d80432c79 | 341 | /* only supports full name from cipher_name[] delimited by : */ |
wolfSSL | 4:1b0d80432c79 | 342 | WOLFSSL_API int wolfSSL_CTX_set_cipher_list(WOLFSSL_CTX*, const char*); |
wolfSSL | 4:1b0d80432c79 | 343 | WOLFSSL_API int wolfSSL_set_cipher_list(WOLFSSL*, const char*); |
wolfSSL | 4:1b0d80432c79 | 344 | |
wolfSSL | 4:1b0d80432c79 | 345 | /* Nonblocking DTLS helper functions */ |
wolfSSL | 4:1b0d80432c79 | 346 | WOLFSSL_API int wolfSSL_dtls_get_current_timeout(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 347 | WOLFSSL_API int wolfSSL_dtls_set_timeout_init(WOLFSSL* ssl, int); |
wolfSSL | 4:1b0d80432c79 | 348 | WOLFSSL_API int wolfSSL_dtls_set_timeout_max(WOLFSSL* ssl, int); |
wolfSSL | 4:1b0d80432c79 | 349 | WOLFSSL_API int wolfSSL_dtls_got_timeout(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 350 | WOLFSSL_API int wolfSSL_dtls(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 351 | |
wolfSSL | 4:1b0d80432c79 | 352 | WOLFSSL_API int wolfSSL_dtls_set_peer(WOLFSSL*, void*, unsigned int); |
wolfSSL | 4:1b0d80432c79 | 353 | WOLFSSL_API int wolfSSL_dtls_get_peer(WOLFSSL*, void*, unsigned int*); |
wolfSSL | 4:1b0d80432c79 | 354 | |
wolfSSL | 4:1b0d80432c79 | 355 | WOLFSSL_API int wolfSSL_ERR_GET_REASON(unsigned long err); |
wolfSSL | 4:1b0d80432c79 | 356 | WOLFSSL_API char* wolfSSL_ERR_error_string(unsigned long,char*); |
wolfSSL | 4:1b0d80432c79 | 357 | WOLFSSL_API void wolfSSL_ERR_error_string_n(unsigned long e, char* buf, |
wolfSSL | 4:1b0d80432c79 | 358 | unsigned long sz); |
wolfSSL | 4:1b0d80432c79 | 359 | WOLFSSL_API const char* wolfSSL_ERR_reason_error_string(unsigned long); |
wolfSSL | 4:1b0d80432c79 | 360 | |
wolfSSL | 4:1b0d80432c79 | 361 | /* extras */ |
wolfSSL | 4:1b0d80432c79 | 362 | |
wolfSSL | 4:1b0d80432c79 | 363 | #define STACK_OF(x) x |
wolfSSL | 4:1b0d80432c79 | 364 | |
wolfSSL | 4:1b0d80432c79 | 365 | WOLFSSL_API int wolfSSL_set_ex_data(WOLFSSL*, int, void*); |
wolfSSL | 4:1b0d80432c79 | 366 | WOLFSSL_API int wolfSSL_get_shutdown(const WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 367 | WOLFSSL_API int wolfSSL_set_rfd(WOLFSSL*, int); |
wolfSSL | 4:1b0d80432c79 | 368 | WOLFSSL_API int wolfSSL_set_wfd(WOLFSSL*, int); |
wolfSSL | 4:1b0d80432c79 | 369 | WOLFSSL_API void wolfSSL_set_shutdown(WOLFSSL*, int); |
wolfSSL | 4:1b0d80432c79 | 370 | WOLFSSL_API int wolfSSL_set_session_id_context(WOLFSSL*, const unsigned char*, |
wolfSSL | 4:1b0d80432c79 | 371 | unsigned int); |
wolfSSL | 4:1b0d80432c79 | 372 | WOLFSSL_API void wolfSSL_set_connect_state(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 373 | WOLFSSL_API void wolfSSL_set_accept_state(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 374 | WOLFSSL_API int wolfSSL_session_reused(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 375 | WOLFSSL_API void wolfSSL_SESSION_free(WOLFSSL_SESSION* session); |
wolfSSL | 4:1b0d80432c79 | 376 | WOLFSSL_API int wolfSSL_is_init_finished(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 377 | |
wolfSSL | 4:1b0d80432c79 | 378 | WOLFSSL_API const char* wolfSSL_get_version(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 379 | WOLFSSL_API int wolfSSL_get_current_cipher_suite(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 380 | WOLFSSL_API WOLFSSL_CIPHER* wolfSSL_get_current_cipher(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 381 | WOLFSSL_API char* wolfSSL_CIPHER_description(WOLFSSL_CIPHER*, char*, int); |
wolfSSL | 4:1b0d80432c79 | 382 | WOLFSSL_API const char* wolfSSL_CIPHER_get_name(const WOLFSSL_CIPHER* cipher); |
wolfSSL | 4:1b0d80432c79 | 383 | WOLFSSL_API const char* wolfSSL_get_cipher(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 384 | WOLFSSL_API WOLFSSL_SESSION* wolfSSL_get1_session(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 385 | /* what's ref count */ |
wolfSSL | 4:1b0d80432c79 | 386 | |
wolfSSL | 4:1b0d80432c79 | 387 | WOLFSSL_API void wolfSSL_X509_free(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 388 | WOLFSSL_API void wolfSSL_OPENSSL_free(void*); |
wolfSSL | 4:1b0d80432c79 | 389 | |
wolfSSL | 4:1b0d80432c79 | 390 | WOLFSSL_API int wolfSSL_OCSP_parse_url(char* url, char** host, char** port, |
wolfSSL | 4:1b0d80432c79 | 391 | char** path, int* ssl); |
wolfSSL | 4:1b0d80432c79 | 392 | |
wolfSSL | 4:1b0d80432c79 | 393 | WOLFSSL_API WOLFSSL_METHOD* wolfSSLv23_client_method(void); |
wolfSSL | 4:1b0d80432c79 | 394 | WOLFSSL_API WOLFSSL_METHOD* wolfSSLv2_client_method(void); |
wolfSSL | 4:1b0d80432c79 | 395 | WOLFSSL_API WOLFSSL_METHOD* wolfSSLv2_server_method(void); |
wolfSSL | 4:1b0d80432c79 | 396 | |
wolfSSL | 4:1b0d80432c79 | 397 | WOLFSSL_API void wolfSSL_MD4_Init(WOLFSSL_MD4_CTX*); |
wolfSSL | 4:1b0d80432c79 | 398 | WOLFSSL_API void wolfSSL_MD4_Update(WOLFSSL_MD4_CTX*, const void*, unsigned long); |
wolfSSL | 4:1b0d80432c79 | 399 | WOLFSSL_API void wolfSSL_MD4_Final(unsigned char*, WOLFSSL_MD4_CTX*); |
wolfSSL | 4:1b0d80432c79 | 400 | |
wolfSSL | 4:1b0d80432c79 | 401 | |
wolfSSL | 4:1b0d80432c79 | 402 | WOLFSSL_API WOLFSSL_BIO* wolfSSL_BIO_new(WOLFSSL_BIO_METHOD*); |
wolfSSL | 4:1b0d80432c79 | 403 | WOLFSSL_API int wolfSSL_BIO_free(WOLFSSL_BIO*); |
wolfSSL | 4:1b0d80432c79 | 404 | WOLFSSL_API int wolfSSL_BIO_free_all(WOLFSSL_BIO*); |
wolfSSL | 4:1b0d80432c79 | 405 | WOLFSSL_API int wolfSSL_BIO_read(WOLFSSL_BIO*, void*, int); |
wolfSSL | 4:1b0d80432c79 | 406 | WOLFSSL_API int wolfSSL_BIO_write(WOLFSSL_BIO*, const void*, int); |
wolfSSL | 4:1b0d80432c79 | 407 | WOLFSSL_API WOLFSSL_BIO* wolfSSL_BIO_push(WOLFSSL_BIO*, WOLFSSL_BIO* append); |
wolfSSL | 4:1b0d80432c79 | 408 | WOLFSSL_API WOLFSSL_BIO* wolfSSL_BIO_pop(WOLFSSL_BIO*); |
wolfSSL | 4:1b0d80432c79 | 409 | WOLFSSL_API int wolfSSL_BIO_flush(WOLFSSL_BIO*); |
wolfSSL | 4:1b0d80432c79 | 410 | WOLFSSL_API int wolfSSL_BIO_pending(WOLFSSL_BIO*); |
wolfSSL | 4:1b0d80432c79 | 411 | |
wolfSSL | 4:1b0d80432c79 | 412 | WOLFSSL_API WOLFSSL_BIO_METHOD* wolfSSL_BIO_f_buffer(void); |
wolfSSL | 4:1b0d80432c79 | 413 | WOLFSSL_API long wolfSSL_BIO_set_write_buffer_size(WOLFSSL_BIO*, long size); |
wolfSSL | 4:1b0d80432c79 | 414 | WOLFSSL_API WOLFSSL_BIO_METHOD* wolfSSL_BIO_f_ssl(void); |
wolfSSL | 4:1b0d80432c79 | 415 | WOLFSSL_API WOLFSSL_BIO* wolfSSL_BIO_new_socket(int sfd, int flag); |
wolfSSL | 4:1b0d80432c79 | 416 | WOLFSSL_API int wolfSSL_BIO_eof(WOLFSSL_BIO*); |
wolfSSL | 4:1b0d80432c79 | 417 | |
wolfSSL | 4:1b0d80432c79 | 418 | WOLFSSL_API WOLFSSL_BIO_METHOD* wolfSSL_BIO_s_mem(void); |
wolfSSL | 4:1b0d80432c79 | 419 | WOLFSSL_API WOLFSSL_BIO_METHOD* wolfSSL_BIO_f_base64(void); |
wolfSSL | 4:1b0d80432c79 | 420 | WOLFSSL_API void wolfSSL_BIO_set_flags(WOLFSSL_BIO*, int); |
wolfSSL | 4:1b0d80432c79 | 421 | |
wolfSSL | 4:1b0d80432c79 | 422 | WOLFSSL_API int wolfSSL_BIO_get_mem_data(WOLFSSL_BIO* bio,const unsigned char** p); |
wolfSSL | 4:1b0d80432c79 | 423 | WOLFSSL_API WOLFSSL_BIO* wolfSSL_BIO_new_mem_buf(void* buf, int len); |
wolfSSL | 4:1b0d80432c79 | 424 | |
wolfSSL | 4:1b0d80432c79 | 425 | |
wolfSSL | 4:1b0d80432c79 | 426 | WOLFSSL_API long wolfSSL_BIO_set_ssl(WOLFSSL_BIO*, WOLFSSL*, int flag); |
wolfSSL | 4:1b0d80432c79 | 427 | WOLFSSL_API void wolfSSL_set_bio(WOLFSSL*, WOLFSSL_BIO* rd, WOLFSSL_BIO* wr); |
wolfSSL | 4:1b0d80432c79 | 428 | |
wolfSSL | 4:1b0d80432c79 | 429 | WOLFSSL_API int wolfSSL_add_all_algorithms(void); |
wolfSSL | 4:1b0d80432c79 | 430 | |
wolfSSL | 4:1b0d80432c79 | 431 | WOLFSSL_API void wolfSSL_RAND_screen(void); |
wolfSSL | 4:1b0d80432c79 | 432 | WOLFSSL_API const char* wolfSSL_RAND_file_name(char*, unsigned long); |
wolfSSL | 4:1b0d80432c79 | 433 | WOLFSSL_API int wolfSSL_RAND_write_file(const char*); |
wolfSSL | 4:1b0d80432c79 | 434 | WOLFSSL_API int wolfSSL_RAND_load_file(const char*, long); |
wolfSSL | 4:1b0d80432c79 | 435 | WOLFSSL_API int wolfSSL_RAND_egd(const char*); |
wolfSSL | 4:1b0d80432c79 | 436 | WOLFSSL_API int wolfSSL_RAND_seed(const void*, int); |
wolfSSL | 4:1b0d80432c79 | 437 | WOLFSSL_API void wolfSSL_RAND_add(const void*, int, double); |
wolfSSL | 4:1b0d80432c79 | 438 | |
wolfSSL | 4:1b0d80432c79 | 439 | WOLFSSL_API WOLFSSL_COMP_METHOD* wolfSSL_COMP_zlib(void); |
wolfSSL | 4:1b0d80432c79 | 440 | WOLFSSL_API WOLFSSL_COMP_METHOD* wolfSSL_COMP_rle(void); |
wolfSSL | 4:1b0d80432c79 | 441 | WOLFSSL_API int wolfSSL_COMP_add_compression_method(int, void*); |
wolfSSL | 4:1b0d80432c79 | 442 | |
wolfSSL | 4:1b0d80432c79 | 443 | WOLFSSL_API int wolfSSL_get_ex_new_index(long, void*, void*, void*, void*); |
wolfSSL | 4:1b0d80432c79 | 444 | |
wolfSSL | 4:1b0d80432c79 | 445 | WOLFSSL_API void wolfSSL_set_id_callback(unsigned long (*f)(void)); |
wolfSSL | 4:1b0d80432c79 | 446 | WOLFSSL_API void wolfSSL_set_locking_callback(void (*f)(int, int, const char*, |
wolfSSL | 4:1b0d80432c79 | 447 | int)); |
wolfSSL | 4:1b0d80432c79 | 448 | WOLFSSL_API void wolfSSL_set_dynlock_create_callback(WOLFSSL_dynlock_value* (*f) |
wolfSSL | 4:1b0d80432c79 | 449 | (const char*, int)); |
wolfSSL | 4:1b0d80432c79 | 450 | WOLFSSL_API void wolfSSL_set_dynlock_lock_callback(void (*f)(int, |
wolfSSL | 4:1b0d80432c79 | 451 | WOLFSSL_dynlock_value*, const char*, int)); |
wolfSSL | 4:1b0d80432c79 | 452 | WOLFSSL_API void wolfSSL_set_dynlock_destroy_callback(void (*f) |
wolfSSL | 4:1b0d80432c79 | 453 | (WOLFSSL_dynlock_value*, const char*, int)); |
wolfSSL | 4:1b0d80432c79 | 454 | WOLFSSL_API int wolfSSL_num_locks(void); |
wolfSSL | 4:1b0d80432c79 | 455 | |
wolfSSL | 4:1b0d80432c79 | 456 | WOLFSSL_API WOLFSSL_X509* wolfSSL_X509_STORE_CTX_get_current_cert( |
wolfSSL | 4:1b0d80432c79 | 457 | WOLFSSL_X509_STORE_CTX*); |
wolfSSL | 4:1b0d80432c79 | 458 | WOLFSSL_API int wolfSSL_X509_STORE_CTX_get_error(WOLFSSL_X509_STORE_CTX*); |
wolfSSL | 4:1b0d80432c79 | 459 | WOLFSSL_API int wolfSSL_X509_STORE_CTX_get_error_depth(WOLFSSL_X509_STORE_CTX*); |
wolfSSL | 4:1b0d80432c79 | 460 | |
wolfSSL | 4:1b0d80432c79 | 461 | WOLFSSL_API char* wolfSSL_X509_NAME_oneline(WOLFSSL_X509_NAME*, char*, int); |
wolfSSL | 4:1b0d80432c79 | 462 | WOLFSSL_API WOLFSSL_X509_NAME* wolfSSL_X509_get_issuer_name(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 463 | WOLFSSL_API WOLFSSL_X509_NAME* wolfSSL_X509_get_subject_name(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 464 | WOLFSSL_API int wolfSSL_X509_ext_isSet_by_NID(WOLFSSL_X509*, int); |
wolfSSL | 4:1b0d80432c79 | 465 | WOLFSSL_API int wolfSSL_X509_ext_get_critical_by_NID(WOLFSSL_X509*, int); |
wolfSSL | 4:1b0d80432c79 | 466 | WOLFSSL_API int wolfSSL_X509_get_isCA(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 467 | WOLFSSL_API int wolfSSL_X509_get_isSet_pathLength(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 468 | WOLFSSL_API unsigned int wolfSSL_X509_get_pathLength(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 469 | WOLFSSL_API unsigned int wolfSSL_X509_get_keyUsage(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 470 | WOLFSSL_API unsigned char* wolfSSL_X509_get_authorityKeyID( |
wolfSSL | 4:1b0d80432c79 | 471 | WOLFSSL_X509*, unsigned char*, int*); |
wolfSSL | 4:1b0d80432c79 | 472 | WOLFSSL_API unsigned char* wolfSSL_X509_get_subjectKeyID( |
wolfSSL | 4:1b0d80432c79 | 473 | WOLFSSL_X509*, unsigned char*, int*); |
wolfSSL | 4:1b0d80432c79 | 474 | WOLFSSL_API int wolfSSL_X509_NAME_entry_count(WOLFSSL_X509_NAME*); |
wolfSSL | 4:1b0d80432c79 | 475 | WOLFSSL_API int wolfSSL_X509_NAME_get_text_by_NID( |
wolfSSL | 4:1b0d80432c79 | 476 | WOLFSSL_X509_NAME*, int, char*, int); |
wolfSSL | 4:1b0d80432c79 | 477 | WOLFSSL_API int wolfSSL_X509_verify_cert(WOLFSSL_X509_STORE_CTX*); |
wolfSSL | 4:1b0d80432c79 | 478 | WOLFSSL_API const char* wolfSSL_X509_verify_cert_error_string(long); |
wolfSSL | 4:1b0d80432c79 | 479 | WOLFSSL_API int wolfSSL_X509_get_signature_type(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 480 | WOLFSSL_API int wolfSSL_X509_get_signature(WOLFSSL_X509*, unsigned char*, int*); |
wolfSSL | 4:1b0d80432c79 | 481 | |
wolfSSL | 4:1b0d80432c79 | 482 | WOLFSSL_API int wolfSSL_X509_LOOKUP_add_dir(WOLFSSL_X509_LOOKUP*,const char*,long); |
wolfSSL | 4:1b0d80432c79 | 483 | WOLFSSL_API int wolfSSL_X509_LOOKUP_load_file(WOLFSSL_X509_LOOKUP*, const char*, |
wolfSSL | 4:1b0d80432c79 | 484 | long); |
wolfSSL | 4:1b0d80432c79 | 485 | WOLFSSL_API WOLFSSL_X509_LOOKUP_METHOD* wolfSSL_X509_LOOKUP_hash_dir(void); |
wolfSSL | 4:1b0d80432c79 | 486 | WOLFSSL_API WOLFSSL_X509_LOOKUP_METHOD* wolfSSL_X509_LOOKUP_file(void); |
wolfSSL | 4:1b0d80432c79 | 487 | |
wolfSSL | 4:1b0d80432c79 | 488 | WOLFSSL_API WOLFSSL_X509_LOOKUP* wolfSSL_X509_STORE_add_lookup(WOLFSSL_X509_STORE*, |
wolfSSL | 4:1b0d80432c79 | 489 | WOLFSSL_X509_LOOKUP_METHOD*); |
wolfSSL | 4:1b0d80432c79 | 490 | WOLFSSL_API WOLFSSL_X509_STORE* wolfSSL_X509_STORE_new(void); |
wolfSSL | 4:1b0d80432c79 | 491 | WOLFSSL_API void wolfSSL_X509_STORE_free(WOLFSSL_X509_STORE*); |
wolfSSL | 4:1b0d80432c79 | 492 | WOLFSSL_API int wolfSSL_X509_STORE_add_cert( |
wolfSSL | 4:1b0d80432c79 | 493 | WOLFSSL_X509_STORE*, WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 494 | WOLFSSL_API int wolfSSL_X509_STORE_set_default_paths(WOLFSSL_X509_STORE*); |
wolfSSL | 4:1b0d80432c79 | 495 | WOLFSSL_API int wolfSSL_X509_STORE_get_by_subject(WOLFSSL_X509_STORE_CTX*, |
wolfSSL | 4:1b0d80432c79 | 496 | int, WOLFSSL_X509_NAME*, WOLFSSL_X509_OBJECT*); |
wolfSSL | 4:1b0d80432c79 | 497 | WOLFSSL_API WOLFSSL_X509_STORE_CTX* wolfSSL_X509_STORE_CTX_new(void); |
wolfSSL | 4:1b0d80432c79 | 498 | WOLFSSL_API int wolfSSL_X509_STORE_CTX_init(WOLFSSL_X509_STORE_CTX*, |
wolfSSL | 4:1b0d80432c79 | 499 | WOLFSSL_X509_STORE*, WOLFSSL_X509*, STACK_OF(WOLFSSL_X509)*); |
wolfSSL | 4:1b0d80432c79 | 500 | WOLFSSL_API void wolfSSL_X509_STORE_CTX_free(WOLFSSL_X509_STORE_CTX*); |
wolfSSL | 4:1b0d80432c79 | 501 | WOLFSSL_API void wolfSSL_X509_STORE_CTX_cleanup(WOLFSSL_X509_STORE_CTX*); |
wolfSSL | 4:1b0d80432c79 | 502 | |
wolfSSL | 4:1b0d80432c79 | 503 | WOLFSSL_API WOLFSSL_ASN1_TIME* wolfSSL_X509_CRL_get_lastUpdate(WOLFSSL_X509_CRL*); |
wolfSSL | 4:1b0d80432c79 | 504 | WOLFSSL_API WOLFSSL_ASN1_TIME* wolfSSL_X509_CRL_get_nextUpdate(WOLFSSL_X509_CRL*); |
wolfSSL | 4:1b0d80432c79 | 505 | |
wolfSSL | 4:1b0d80432c79 | 506 | WOLFSSL_API WOLFSSL_EVP_PKEY* wolfSSL_X509_get_pubkey(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 507 | WOLFSSL_API int wolfSSL_X509_CRL_verify(WOLFSSL_X509_CRL*, WOLFSSL_EVP_PKEY*); |
wolfSSL | 4:1b0d80432c79 | 508 | WOLFSSL_API void wolfSSL_X509_STORE_CTX_set_error(WOLFSSL_X509_STORE_CTX*, |
wolfSSL | 4:1b0d80432c79 | 509 | int); |
wolfSSL | 4:1b0d80432c79 | 510 | WOLFSSL_API void wolfSSL_X509_OBJECT_free_contents(WOLFSSL_X509_OBJECT*); |
wolfSSL | 4:1b0d80432c79 | 511 | WOLFSSL_API void wolfSSL_EVP_PKEY_free(WOLFSSL_EVP_PKEY*); |
wolfSSL | 4:1b0d80432c79 | 512 | WOLFSSL_API int wolfSSL_X509_cmp_current_time(const WOLFSSL_ASN1_TIME*); |
wolfSSL | 4:1b0d80432c79 | 513 | WOLFSSL_API int wolfSSL_sk_X509_REVOKED_num(WOLFSSL_X509_REVOKED*); |
wolfSSL | 4:1b0d80432c79 | 514 | |
wolfSSL | 4:1b0d80432c79 | 515 | WOLFSSL_API WOLFSSL_X509_REVOKED* wolfSSL_X509_CRL_get_REVOKED(WOLFSSL_X509_CRL*); |
wolfSSL | 4:1b0d80432c79 | 516 | WOLFSSL_API WOLFSSL_X509_REVOKED* wolfSSL_sk_X509_REVOKED_value( |
wolfSSL | 4:1b0d80432c79 | 517 | WOLFSSL_X509_REVOKED*,int); |
wolfSSL | 4:1b0d80432c79 | 518 | WOLFSSL_API WOLFSSL_ASN1_INTEGER* wolfSSL_X509_get_serialNumber(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 519 | |
wolfSSL | 4:1b0d80432c79 | 520 | WOLFSSL_API int wolfSSL_ASN1_TIME_print(WOLFSSL_BIO*, const WOLFSSL_ASN1_TIME*); |
wolfSSL | 4:1b0d80432c79 | 521 | |
wolfSSL | 4:1b0d80432c79 | 522 | WOLFSSL_API int wolfSSL_ASN1_INTEGER_cmp(const WOLFSSL_ASN1_INTEGER*, |
wolfSSL | 4:1b0d80432c79 | 523 | const WOLFSSL_ASN1_INTEGER*); |
wolfSSL | 4:1b0d80432c79 | 524 | WOLFSSL_API long wolfSSL_ASN1_INTEGER_get(const WOLFSSL_ASN1_INTEGER*); |
wolfSSL | 4:1b0d80432c79 | 525 | |
wolfSSL | 4:1b0d80432c79 | 526 | WOLFSSL_API STACK_OF(WOLFSSL_X509_NAME)* wolfSSL_load_client_CA_file(const char*); |
wolfSSL | 4:1b0d80432c79 | 527 | |
wolfSSL | 4:1b0d80432c79 | 528 | WOLFSSL_API void wolfSSL_CTX_set_client_CA_list(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 529 | STACK_OF(WOLFSSL_X509_NAME)*); |
wolfSSL | 4:1b0d80432c79 | 530 | WOLFSSL_API void* wolfSSL_X509_STORE_CTX_get_ex_data(WOLFSSL_X509_STORE_CTX*, int); |
wolfSSL | 4:1b0d80432c79 | 531 | WOLFSSL_API int wolfSSL_get_ex_data_X509_STORE_CTX_idx(void); |
wolfSSL | 4:1b0d80432c79 | 532 | WOLFSSL_API void* wolfSSL_get_ex_data(const WOLFSSL*, int); |
wolfSSL | 4:1b0d80432c79 | 533 | |
wolfSSL | 4:1b0d80432c79 | 534 | WOLFSSL_API void wolfSSL_CTX_set_default_passwd_cb_userdata(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 535 | void* userdata); |
wolfSSL | 4:1b0d80432c79 | 536 | WOLFSSL_API void wolfSSL_CTX_set_default_passwd_cb(WOLFSSL_CTX*, pem_password_cb); |
wolfSSL | 4:1b0d80432c79 | 537 | |
wolfSSL | 4:1b0d80432c79 | 538 | |
wolfSSL | 4:1b0d80432c79 | 539 | WOLFSSL_API void wolfSSL_CTX_set_info_callback(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 540 | void (*)(const WOLFSSL* ssl, int type, int val)); |
wolfSSL | 4:1b0d80432c79 | 541 | |
wolfSSL | 4:1b0d80432c79 | 542 | WOLFSSL_API unsigned long wolfSSL_ERR_peek_error(void); |
wolfSSL | 4:1b0d80432c79 | 543 | WOLFSSL_API int wolfSSL_GET_REASON(int); |
wolfSSL | 4:1b0d80432c79 | 544 | |
wolfSSL | 4:1b0d80432c79 | 545 | WOLFSSL_API char* wolfSSL_alert_type_string_long(int); |
wolfSSL | 4:1b0d80432c79 | 546 | WOLFSSL_API char* wolfSSL_alert_desc_string_long(int); |
wolfSSL | 4:1b0d80432c79 | 547 | WOLFSSL_API char* wolfSSL_state_string_long(const WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 548 | |
wolfSSL | 4:1b0d80432c79 | 549 | WOLFSSL_API WOLFSSL_RSA* wolfSSL_RSA_generate_key(int, unsigned long, |
wolfSSL | 4:1b0d80432c79 | 550 | void(*)(int, int, void*), void*); |
wolfSSL | 4:1b0d80432c79 | 551 | WOLFSSL_API void wolfSSL_CTX_set_tmp_rsa_callback(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 552 | WOLFSSL_RSA*(*)(WOLFSSL*, int, int)); |
wolfSSL | 4:1b0d80432c79 | 553 | |
wolfSSL | 4:1b0d80432c79 | 554 | WOLFSSL_API int wolfSSL_PEM_def_callback(char*, int num, int w, void* key); |
wolfSSL | 4:1b0d80432c79 | 555 | |
wolfSSL | 4:1b0d80432c79 | 556 | WOLFSSL_API long wolfSSL_CTX_sess_accept(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 557 | WOLFSSL_API long wolfSSL_CTX_sess_connect(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 558 | WOLFSSL_API long wolfSSL_CTX_sess_accept_good(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 559 | WOLFSSL_API long wolfSSL_CTX_sess_connect_good(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 560 | WOLFSSL_API long wolfSSL_CTX_sess_accept_renegotiate(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 561 | WOLFSSL_API long wolfSSL_CTX_sess_connect_renegotiate(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 562 | WOLFSSL_API long wolfSSL_CTX_sess_hits(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 563 | WOLFSSL_API long wolfSSL_CTX_sess_cb_hits(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 564 | WOLFSSL_API long wolfSSL_CTX_sess_cache_full(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 565 | WOLFSSL_API long wolfSSL_CTX_sess_misses(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 566 | WOLFSSL_API long wolfSSL_CTX_sess_timeouts(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 567 | WOLFSSL_API long wolfSSL_CTX_sess_number(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 568 | WOLFSSL_API long wolfSSL_CTX_sess_get_cache_size(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 569 | |
wolfSSL | 4:1b0d80432c79 | 570 | #define WOLFSSL_DEFAULT_CIPHER_LIST "" /* default all */ |
wolfSSL | 4:1b0d80432c79 | 571 | #define WOLFSSL_RSA_F4 0x10001L |
wolfSSL | 4:1b0d80432c79 | 572 | |
wolfSSL | 4:1b0d80432c79 | 573 | enum { |
wolfSSL | 4:1b0d80432c79 | 574 | OCSP_NOCERTS = 1, |
wolfSSL | 4:1b0d80432c79 | 575 | OCSP_NOINTERN = 2, |
wolfSSL | 4:1b0d80432c79 | 576 | OCSP_NOSIGS = 4, |
wolfSSL | 4:1b0d80432c79 | 577 | OCSP_NOCHAIN = 8, |
wolfSSL | 4:1b0d80432c79 | 578 | OCSP_NOVERIFY = 16, |
wolfSSL | 4:1b0d80432c79 | 579 | OCSP_NOEXPLICIT = 32, |
wolfSSL | 4:1b0d80432c79 | 580 | OCSP_NOCASIGN = 64, |
wolfSSL | 4:1b0d80432c79 | 581 | OCSP_NODELEGATED = 128, |
wolfSSL | 4:1b0d80432c79 | 582 | OCSP_NOCHECKS = 256, |
wolfSSL | 4:1b0d80432c79 | 583 | OCSP_TRUSTOTHER = 512, |
wolfSSL | 4:1b0d80432c79 | 584 | OCSP_RESPID_KEY = 1024, |
wolfSSL | 4:1b0d80432c79 | 585 | OCSP_NOTIME = 2048, |
wolfSSL | 4:1b0d80432c79 | 586 | |
wolfSSL | 4:1b0d80432c79 | 587 | OCSP_CERTID = 2, |
wolfSSL | 4:1b0d80432c79 | 588 | OCSP_REQUEST = 4, |
wolfSSL | 4:1b0d80432c79 | 589 | OCSP_RESPONSE = 8, |
wolfSSL | 4:1b0d80432c79 | 590 | OCSP_BASICRESP = 16, |
wolfSSL | 4:1b0d80432c79 | 591 | |
wolfSSL | 4:1b0d80432c79 | 592 | WOLFSSL_OCSP_URL_OVERRIDE = 1, |
wolfSSL | 4:1b0d80432c79 | 593 | WOLFSSL_OCSP_NO_NONCE = 2, |
wolfSSL | 4:1b0d80432c79 | 594 | WOLFSSL_OCSP_CHECKALL = 4, |
wolfSSL | 4:1b0d80432c79 | 595 | |
wolfSSL | 4:1b0d80432c79 | 596 | WOLFSSL_CRL_CHECKALL = 1, |
wolfSSL | 4:1b0d80432c79 | 597 | |
wolfSSL | 4:1b0d80432c79 | 598 | ASN1_GENERALIZEDTIME = 4, |
wolfSSL | 4:1b0d80432c79 | 599 | |
wolfSSL | 4:1b0d80432c79 | 600 | SSL_OP_MICROSOFT_SESS_ID_BUG = 1, |
wolfSSL | 4:1b0d80432c79 | 601 | SSL_OP_NETSCAPE_CHALLENGE_BUG = 2, |
wolfSSL | 4:1b0d80432c79 | 602 | SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG = 3, |
wolfSSL | 4:1b0d80432c79 | 603 | SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG = 4, |
wolfSSL | 4:1b0d80432c79 | 604 | SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER = 5, |
wolfSSL | 4:1b0d80432c79 | 605 | SSL_OP_MSIE_SSLV2_RSA_PADDING = 6, |
wolfSSL | 4:1b0d80432c79 | 606 | SSL_OP_SSLEAY_080_CLIENT_DH_BUG = 7, |
wolfSSL | 4:1b0d80432c79 | 607 | SSL_OP_TLS_D5_BUG = 8, |
wolfSSL | 4:1b0d80432c79 | 608 | SSL_OP_TLS_BLOCK_PADDING_BUG = 9, |
wolfSSL | 4:1b0d80432c79 | 609 | SSL_OP_TLS_ROLLBACK_BUG = 10, |
wolfSSL | 4:1b0d80432c79 | 610 | SSL_OP_ALL = 11, |
wolfSSL | 4:1b0d80432c79 | 611 | SSL_OP_EPHEMERAL_RSA = 12, |
wolfSSL | 4:1b0d80432c79 | 612 | SSL_OP_NO_SSLv3 = 13, |
wolfSSL | 4:1b0d80432c79 | 613 | SSL_OP_NO_TLSv1 = 14, |
wolfSSL | 4:1b0d80432c79 | 614 | SSL_OP_PKCS1_CHECK_1 = 15, |
wolfSSL | 4:1b0d80432c79 | 615 | SSL_OP_PKCS1_CHECK_2 = 16, |
wolfSSL | 4:1b0d80432c79 | 616 | SSL_OP_NETSCAPE_CA_DN_BUG = 17, |
wolfSSL | 4:1b0d80432c79 | 617 | SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG = 18, |
wolfSSL | 4:1b0d80432c79 | 618 | SSL_OP_SINGLE_DH_USE = 19, |
wolfSSL | 4:1b0d80432c79 | 619 | SSL_OP_NO_TICKET = 20, |
wolfSSL | 4:1b0d80432c79 | 620 | SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS = 21, |
wolfSSL | 4:1b0d80432c79 | 621 | SSL_OP_NO_QUERY_MTU = 22, |
wolfSSL | 4:1b0d80432c79 | 622 | SSL_OP_COOKIE_EXCHANGE = 23, |
wolfSSL | 4:1b0d80432c79 | 623 | SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION = 24, |
wolfSSL | 4:1b0d80432c79 | 624 | SSL_OP_SINGLE_ECDH_USE = 25, |
wolfSSL | 4:1b0d80432c79 | 625 | SSL_OP_CIPHER_SERVER_PREFERENCE = 26, |
wolfSSL | 4:1b0d80432c79 | 626 | |
wolfSSL | 4:1b0d80432c79 | 627 | SSL_MAX_SSL_SESSION_ID_LENGTH = 32, |
wolfSSL | 4:1b0d80432c79 | 628 | |
wolfSSL | 4:1b0d80432c79 | 629 | EVP_R_BAD_DECRYPT = 2, |
wolfSSL | 4:1b0d80432c79 | 630 | |
wolfSSL | 4:1b0d80432c79 | 631 | SSL_CB_LOOP = 4, |
wolfSSL | 4:1b0d80432c79 | 632 | SSL_ST_CONNECT = 5, |
wolfSSL | 4:1b0d80432c79 | 633 | SSL_ST_ACCEPT = 6, |
wolfSSL | 4:1b0d80432c79 | 634 | SSL_CB_ALERT = 7, |
wolfSSL | 4:1b0d80432c79 | 635 | SSL_CB_READ = 8, |
wolfSSL | 4:1b0d80432c79 | 636 | SSL_CB_HANDSHAKE_DONE = 9, |
wolfSSL | 4:1b0d80432c79 | 637 | |
wolfSSL | 4:1b0d80432c79 | 638 | SSL_MODE_ENABLE_PARTIAL_WRITE = 2, |
wolfSSL | 4:1b0d80432c79 | 639 | |
wolfSSL | 4:1b0d80432c79 | 640 | BIO_FLAGS_BASE64_NO_NL = 1, |
wolfSSL | 4:1b0d80432c79 | 641 | BIO_CLOSE = 1, |
wolfSSL | 4:1b0d80432c79 | 642 | BIO_NOCLOSE = 0, |
wolfSSL | 4:1b0d80432c79 | 643 | |
wolfSSL | 4:1b0d80432c79 | 644 | NID_undef = 0, |
wolfSSL | 4:1b0d80432c79 | 645 | |
wolfSSL | 4:1b0d80432c79 | 646 | X509_FILETYPE_PEM = 8, |
wolfSSL | 4:1b0d80432c79 | 647 | X509_LU_X509 = 9, |
wolfSSL | 4:1b0d80432c79 | 648 | X509_LU_CRL = 12, |
wolfSSL | 4:1b0d80432c79 | 649 | |
wolfSSL | 4:1b0d80432c79 | 650 | X509_V_ERR_CRL_SIGNATURE_FAILURE = 13, |
wolfSSL | 4:1b0d80432c79 | 651 | X509_V_ERR_ERROR_IN_CRL_NEXT_UPDATE_FIELD = 14, |
wolfSSL | 4:1b0d80432c79 | 652 | X509_V_ERR_CRL_HAS_EXPIRED = 15, |
wolfSSL | 4:1b0d80432c79 | 653 | X509_V_ERR_CERT_REVOKED = 16, |
wolfSSL | 4:1b0d80432c79 | 654 | X509_V_ERR_CERT_CHAIN_TOO_LONG = 17, |
wolfSSL | 4:1b0d80432c79 | 655 | X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT = 18, |
wolfSSL | 4:1b0d80432c79 | 656 | X509_V_ERR_CERT_NOT_YET_VALID = 19, |
wolfSSL | 4:1b0d80432c79 | 657 | X509_V_ERR_ERROR_IN_CERT_NOT_BEFORE_FIELD = 20, |
wolfSSL | 4:1b0d80432c79 | 658 | X509_V_ERR_CERT_HAS_EXPIRED = 21, |
wolfSSL | 4:1b0d80432c79 | 659 | X509_V_ERR_ERROR_IN_CERT_NOT_AFTER_FIELD = 22, |
wolfSSL | 4:1b0d80432c79 | 660 | X509_V_ERR_CERT_REJECTED = 23, |
wolfSSL | 4:1b0d80432c79 | 661 | X509_V_OK = 0, |
wolfSSL | 4:1b0d80432c79 | 662 | |
wolfSSL | 4:1b0d80432c79 | 663 | XN_FLAG_SPC_EQ = (1 << 23), |
wolfSSL | 4:1b0d80432c79 | 664 | XN_FLAG_ONELINE = 0, |
wolfSSL | 4:1b0d80432c79 | 665 | |
wolfSSL | 4:1b0d80432c79 | 666 | CRYPTO_LOCK = 1, |
wolfSSL | 4:1b0d80432c79 | 667 | CRYPTO_NUM_LOCKS = 10, |
wolfSSL | 4:1b0d80432c79 | 668 | |
wolfSSL | 4:1b0d80432c79 | 669 | ASN1_STRFLGS_ESC_MSB = 4 |
wolfSSL | 4:1b0d80432c79 | 670 | }; |
wolfSSL | 4:1b0d80432c79 | 671 | |
wolfSSL | 4:1b0d80432c79 | 672 | /* extras end */ |
wolfSSL | 4:1b0d80432c79 | 673 | |
wolfSSL | 4:1b0d80432c79 | 674 | #if !defined(NO_FILESYSTEM) && !defined(NO_STDIO_FILESYSTEM) |
wolfSSL | 4:1b0d80432c79 | 675 | /* wolfSSL extension, provide last error from SSL_get_error |
wolfSSL | 4:1b0d80432c79 | 676 | since not using thread storage error queue */ |
wolfSSL | 4:1b0d80432c79 | 677 | WOLFSSL_API void wolfSSL_ERR_print_errors_fp(FILE*, int err); |
wolfSSL | 4:1b0d80432c79 | 678 | #endif |
wolfSSL | 4:1b0d80432c79 | 679 | |
wolfSSL | 4:1b0d80432c79 | 680 | enum { /* ssl Constants */ |
wolfSSL | 4:1b0d80432c79 | 681 | SSL_ERROR_NONE = 0, /* for most functions */ |
wolfSSL | 4:1b0d80432c79 | 682 | SSL_FAILURE = 0, /* for some functions */ |
wolfSSL | 4:1b0d80432c79 | 683 | SSL_SUCCESS = 1, |
wolfSSL | 4:1b0d80432c79 | 684 | SSL_SHUTDOWN_NOT_DONE = 2, /* call wolfSSL_shutdown again to complete */ |
wolfSSL | 4:1b0d80432c79 | 685 | |
wolfSSL | 4:1b0d80432c79 | 686 | SSL_ALPN_NOT_FOUND = -9, |
wolfSSL | 4:1b0d80432c79 | 687 | SSL_BAD_CERTTYPE = -8, |
wolfSSL | 4:1b0d80432c79 | 688 | SSL_BAD_STAT = -7, |
wolfSSL | 4:1b0d80432c79 | 689 | SSL_BAD_PATH = -6, |
wolfSSL | 4:1b0d80432c79 | 690 | SSL_BAD_FILETYPE = -5, |
wolfSSL | 4:1b0d80432c79 | 691 | SSL_BAD_FILE = -4, |
wolfSSL | 4:1b0d80432c79 | 692 | SSL_NOT_IMPLEMENTED = -3, |
wolfSSL | 4:1b0d80432c79 | 693 | SSL_UNKNOWN = -2, |
wolfSSL | 4:1b0d80432c79 | 694 | SSL_FATAL_ERROR = -1, |
wolfSSL | 4:1b0d80432c79 | 695 | |
wolfSSL | 4:1b0d80432c79 | 696 | SSL_FILETYPE_ASN1 = 2, |
wolfSSL | 4:1b0d80432c79 | 697 | SSL_FILETYPE_PEM = 1, |
wolfSSL | 4:1b0d80432c79 | 698 | SSL_FILETYPE_DEFAULT = 2, /* ASN1 */ |
wolfSSL | 4:1b0d80432c79 | 699 | SSL_FILETYPE_RAW = 3, /* NTRU raw key blob */ |
wolfSSL | 4:1b0d80432c79 | 700 | |
wolfSSL | 4:1b0d80432c79 | 701 | SSL_VERIFY_NONE = 0, |
wolfSSL | 4:1b0d80432c79 | 702 | SSL_VERIFY_PEER = 1, |
wolfSSL | 4:1b0d80432c79 | 703 | SSL_VERIFY_FAIL_IF_NO_PEER_CERT = 2, |
wolfSSL | 4:1b0d80432c79 | 704 | SSL_VERIFY_CLIENT_ONCE = 4, |
wolfSSL | 4:1b0d80432c79 | 705 | SSL_VERIFY_FAIL_EXCEPT_PSK = 8, |
wolfSSL | 4:1b0d80432c79 | 706 | |
wolfSSL | 4:1b0d80432c79 | 707 | SSL_SESS_CACHE_OFF = 30, |
wolfSSL | 4:1b0d80432c79 | 708 | SSL_SESS_CACHE_CLIENT = 31, |
wolfSSL | 4:1b0d80432c79 | 709 | SSL_SESS_CACHE_SERVER = 32, |
wolfSSL | 4:1b0d80432c79 | 710 | SSL_SESS_CACHE_BOTH = 33, |
wolfSSL | 4:1b0d80432c79 | 711 | SSL_SESS_CACHE_NO_AUTO_CLEAR = 34, |
wolfSSL | 4:1b0d80432c79 | 712 | SSL_SESS_CACHE_NO_INTERNAL_LOOKUP = 35, |
wolfSSL | 4:1b0d80432c79 | 713 | |
wolfSSL | 4:1b0d80432c79 | 714 | SSL_ERROR_WANT_READ = 2, |
wolfSSL | 4:1b0d80432c79 | 715 | SSL_ERROR_WANT_WRITE = 3, |
wolfSSL | 4:1b0d80432c79 | 716 | SSL_ERROR_WANT_CONNECT = 7, |
wolfSSL | 4:1b0d80432c79 | 717 | SSL_ERROR_WANT_ACCEPT = 8, |
wolfSSL | 4:1b0d80432c79 | 718 | SSL_ERROR_SYSCALL = 5, |
wolfSSL | 4:1b0d80432c79 | 719 | SSL_ERROR_WANT_X509_LOOKUP = 83, |
wolfSSL | 4:1b0d80432c79 | 720 | SSL_ERROR_ZERO_RETURN = 6, |
wolfSSL | 4:1b0d80432c79 | 721 | SSL_ERROR_SSL = 85, |
wolfSSL | 4:1b0d80432c79 | 722 | |
wolfSSL | 4:1b0d80432c79 | 723 | SSL_SENT_SHUTDOWN = 1, |
wolfSSL | 4:1b0d80432c79 | 724 | SSL_RECEIVED_SHUTDOWN = 2, |
wolfSSL | 4:1b0d80432c79 | 725 | SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER = 4, |
wolfSSL | 4:1b0d80432c79 | 726 | SSL_OP_NO_SSLv2 = 8, |
wolfSSL | 4:1b0d80432c79 | 727 | |
wolfSSL | 4:1b0d80432c79 | 728 | SSL_R_SSL_HANDSHAKE_FAILURE = 101, |
wolfSSL | 4:1b0d80432c79 | 729 | SSL_R_TLSV1_ALERT_UNKNOWN_CA = 102, |
wolfSSL | 4:1b0d80432c79 | 730 | SSL_R_SSLV3_ALERT_CERTIFICATE_UNKNOWN = 103, |
wolfSSL | 4:1b0d80432c79 | 731 | SSL_R_SSLV3_ALERT_BAD_CERTIFICATE = 104, |
wolfSSL | 4:1b0d80432c79 | 732 | |
wolfSSL | 4:1b0d80432c79 | 733 | PEM_BUFSIZE = 1024 |
wolfSSL | 4:1b0d80432c79 | 734 | }; |
wolfSSL | 4:1b0d80432c79 | 735 | |
wolfSSL | 4:1b0d80432c79 | 736 | |
wolfSSL | 4:1b0d80432c79 | 737 | #ifndef NO_PSK |
wolfSSL | 4:1b0d80432c79 | 738 | typedef unsigned int (*wc_psk_client_callback)(WOLFSSL*, const char*, char*, |
wolfSSL | 4:1b0d80432c79 | 739 | unsigned int, unsigned char*, unsigned int); |
wolfSSL | 4:1b0d80432c79 | 740 | WOLFSSL_API void wolfSSL_CTX_set_psk_client_callback(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 741 | wc_psk_client_callback); |
wolfSSL | 4:1b0d80432c79 | 742 | WOLFSSL_API void wolfSSL_set_psk_client_callback(WOLFSSL*, |
wolfSSL | 4:1b0d80432c79 | 743 | wc_psk_client_callback); |
wolfSSL | 4:1b0d80432c79 | 744 | |
wolfSSL | 4:1b0d80432c79 | 745 | WOLFSSL_API const char* wolfSSL_get_psk_identity_hint(const WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 746 | WOLFSSL_API const char* wolfSSL_get_psk_identity(const WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 747 | |
wolfSSL | 4:1b0d80432c79 | 748 | WOLFSSL_API int wolfSSL_CTX_use_psk_identity_hint(WOLFSSL_CTX*, const char*); |
wolfSSL | 4:1b0d80432c79 | 749 | WOLFSSL_API int wolfSSL_use_psk_identity_hint(WOLFSSL*, const char*); |
wolfSSL | 4:1b0d80432c79 | 750 | |
wolfSSL | 4:1b0d80432c79 | 751 | typedef unsigned int (*wc_psk_server_callback)(WOLFSSL*, const char*, |
wolfSSL | 4:1b0d80432c79 | 752 | unsigned char*, unsigned int); |
wolfSSL | 4:1b0d80432c79 | 753 | WOLFSSL_API void wolfSSL_CTX_set_psk_server_callback(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 754 | wc_psk_server_callback); |
wolfSSL | 4:1b0d80432c79 | 755 | WOLFSSL_API void wolfSSL_set_psk_server_callback(WOLFSSL*, |
wolfSSL | 4:1b0d80432c79 | 756 | wc_psk_server_callback); |
wolfSSL | 4:1b0d80432c79 | 757 | |
wolfSSL | 4:1b0d80432c79 | 758 | #define PSK_TYPES_DEFINED |
wolfSSL | 4:1b0d80432c79 | 759 | #endif /* NO_PSK */ |
wolfSSL | 4:1b0d80432c79 | 760 | |
wolfSSL | 4:1b0d80432c79 | 761 | |
wolfSSL | 4:1b0d80432c79 | 762 | #ifdef HAVE_ANON |
wolfSSL | 4:1b0d80432c79 | 763 | WOLFSSL_API int wolfSSL_CTX_allow_anon_cipher(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 764 | #endif /* HAVE_ANON */ |
wolfSSL | 4:1b0d80432c79 | 765 | |
wolfSSL | 4:1b0d80432c79 | 766 | |
wolfSSL | 4:1b0d80432c79 | 767 | /* extra begins */ |
wolfSSL | 4:1b0d80432c79 | 768 | |
wolfSSL | 4:1b0d80432c79 | 769 | enum { /* ERR Constants */ |
wolfSSL | 4:1b0d80432c79 | 770 | ERR_TXT_STRING = 1 |
wolfSSL | 4:1b0d80432c79 | 771 | }; |
wolfSSL | 4:1b0d80432c79 | 772 | |
wolfSSL | 4:1b0d80432c79 | 773 | WOLFSSL_API unsigned long wolfSSL_ERR_get_error_line_data(const char**, int*, |
wolfSSL | 4:1b0d80432c79 | 774 | const char**, int *); |
wolfSSL | 4:1b0d80432c79 | 775 | |
wolfSSL | 4:1b0d80432c79 | 776 | WOLFSSL_API unsigned long wolfSSL_ERR_get_error(void); |
wolfSSL | 4:1b0d80432c79 | 777 | WOLFSSL_API void wolfSSL_ERR_clear_error(void); |
wolfSSL | 4:1b0d80432c79 | 778 | |
wolfSSL | 4:1b0d80432c79 | 779 | |
wolfSSL | 4:1b0d80432c79 | 780 | WOLFSSL_API int wolfSSL_RAND_status(void); |
wolfSSL | 4:1b0d80432c79 | 781 | WOLFSSL_API int wolfSSL_RAND_bytes(unsigned char* buf, int num); |
wolfSSL | 4:1b0d80432c79 | 782 | WOLFSSL_API WOLFSSL_METHOD *wolfSSLv23_server_method(void); |
wolfSSL | 4:1b0d80432c79 | 783 | WOLFSSL_API long wolfSSL_CTX_set_options(WOLFSSL_CTX*, long); |
wolfSSL | 4:1b0d80432c79 | 784 | #ifndef NO_CERTS |
wolfSSL | 4:1b0d80432c79 | 785 | WOLFSSL_API int wolfSSL_CTX_check_private_key(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 786 | #endif /* !NO_CERTS */ |
wolfSSL | 4:1b0d80432c79 | 787 | |
wolfSSL | 4:1b0d80432c79 | 788 | WOLFSSL_API void wolfSSL_ERR_free_strings(void); |
wolfSSL | 4:1b0d80432c79 | 789 | WOLFSSL_API void wolfSSL_ERR_remove_state(unsigned long); |
wolfSSL | 4:1b0d80432c79 | 790 | WOLFSSL_API void wolfSSL_EVP_cleanup(void); |
wolfSSL | 4:1b0d80432c79 | 791 | WOLFSSL_API int wolfSSL_clear(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 792 | |
wolfSSL | 4:1b0d80432c79 | 793 | WOLFSSL_API void wolfSSL_cleanup_all_ex_data(void); |
wolfSSL | 4:1b0d80432c79 | 794 | WOLFSSL_API long wolfSSL_CTX_set_mode(WOLFSSL_CTX* ctx, long mode); |
wolfSSL | 4:1b0d80432c79 | 795 | WOLFSSL_API long wolfSSL_CTX_get_mode(WOLFSSL_CTX* ctx); |
wolfSSL | 4:1b0d80432c79 | 796 | WOLFSSL_API void wolfSSL_CTX_set_default_read_ahead(WOLFSSL_CTX* ctx, int m); |
wolfSSL | 4:1b0d80432c79 | 797 | WOLFSSL_API long wolfSSL_SSL_get_mode(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 798 | |
wolfSSL | 4:1b0d80432c79 | 799 | WOLFSSL_API long wolfSSL_CTX_sess_set_cache_size(WOLFSSL_CTX*, long); |
wolfSSL | 4:1b0d80432c79 | 800 | |
wolfSSL | 4:1b0d80432c79 | 801 | WOLFSSL_API int wolfSSL_CTX_set_default_verify_paths(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 802 | WOLFSSL_API int wolfSSL_CTX_set_session_id_context(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 803 | const unsigned char*, unsigned int); |
wolfSSL | 4:1b0d80432c79 | 804 | WOLFSSL_API WOLFSSL_X509* wolfSSL_get_peer_certificate(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 805 | |
wolfSSL | 4:1b0d80432c79 | 806 | WOLFSSL_API int wolfSSL_want_read(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 807 | WOLFSSL_API int wolfSSL_want_write(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 808 | |
wolfSSL | 4:1b0d80432c79 | 809 | WOLFSSL_API int wolfSSL_BIO_printf(WOLFSSL_BIO*, const char*, ...); |
wolfSSL | 4:1b0d80432c79 | 810 | WOLFSSL_API int wolfSSL_ASN1_UTCTIME_print(WOLFSSL_BIO*, |
wolfSSL | 4:1b0d80432c79 | 811 | const WOLFSSL_ASN1_UTCTIME*); |
wolfSSL | 4:1b0d80432c79 | 812 | WOLFSSL_API int wolfSSL_sk_num(WOLFSSL_X509_REVOKED*); |
wolfSSL | 4:1b0d80432c79 | 813 | WOLFSSL_API void* wolfSSL_sk_value(WOLFSSL_X509_REVOKED*, int); |
wolfSSL | 4:1b0d80432c79 | 814 | |
wolfSSL | 4:1b0d80432c79 | 815 | /* stunnel 4.28 needs */ |
wolfSSL | 4:1b0d80432c79 | 816 | WOLFSSL_API void* wolfSSL_CTX_get_ex_data(const WOLFSSL_CTX*, int); |
wolfSSL | 4:1b0d80432c79 | 817 | WOLFSSL_API int wolfSSL_CTX_set_ex_data(WOLFSSL_CTX*, int, void*); |
wolfSSL | 4:1b0d80432c79 | 818 | WOLFSSL_API void wolfSSL_CTX_sess_set_get_cb(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 819 | WOLFSSL_SESSION*(*f)(WOLFSSL*, unsigned char*, int, int*)); |
wolfSSL | 4:1b0d80432c79 | 820 | WOLFSSL_API void wolfSSL_CTX_sess_set_new_cb(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 821 | int (*f)(WOLFSSL*, WOLFSSL_SESSION*)); |
wolfSSL | 4:1b0d80432c79 | 822 | WOLFSSL_API void wolfSSL_CTX_sess_set_remove_cb(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 823 | void (*f)(WOLFSSL_CTX*, WOLFSSL_SESSION*)); |
wolfSSL | 4:1b0d80432c79 | 824 | |
wolfSSL | 4:1b0d80432c79 | 825 | WOLFSSL_API int wolfSSL_i2d_SSL_SESSION(WOLFSSL_SESSION*,unsigned char**); |
wolfSSL | 4:1b0d80432c79 | 826 | WOLFSSL_API WOLFSSL_SESSION* wolfSSL_d2i_SSL_SESSION(WOLFSSL_SESSION**, |
wolfSSL | 4:1b0d80432c79 | 827 | const unsigned char**, long); |
wolfSSL | 4:1b0d80432c79 | 828 | |
wolfSSL | 4:1b0d80432c79 | 829 | WOLFSSL_API long wolfSSL_SESSION_get_timeout(const WOLFSSL_SESSION*); |
wolfSSL | 4:1b0d80432c79 | 830 | WOLFSSL_API long wolfSSL_SESSION_get_time(const WOLFSSL_SESSION*); |
wolfSSL | 4:1b0d80432c79 | 831 | WOLFSSL_API int wolfSSL_CTX_get_ex_new_index(long, void*, void*, void*, void*); |
wolfSSL | 4:1b0d80432c79 | 832 | |
wolfSSL | 4:1b0d80432c79 | 833 | /* extra ends */ |
wolfSSL | 4:1b0d80432c79 | 834 | |
wolfSSL | 4:1b0d80432c79 | 835 | |
wolfSSL | 4:1b0d80432c79 | 836 | /* wolfSSL extensions */ |
wolfSSL | 4:1b0d80432c79 | 837 | |
wolfSSL | 4:1b0d80432c79 | 838 | /* call before SSL_connect, if verifying will add name check to |
wolfSSL | 4:1b0d80432c79 | 839 | date check and signature check */ |
wolfSSL | 4:1b0d80432c79 | 840 | WOLFSSL_API int wolfSSL_check_domain_name(WOLFSSL* ssl, const char* dn); |
wolfSSL | 4:1b0d80432c79 | 841 | |
wolfSSL | 4:1b0d80432c79 | 842 | /* need to call once to load library (session cache) */ |
wolfSSL | 4:1b0d80432c79 | 843 | WOLFSSL_API int wolfSSL_Init(void); |
wolfSSL | 4:1b0d80432c79 | 844 | /* call when done to cleanup/free session cache mutex / resources */ |
wolfSSL | 4:1b0d80432c79 | 845 | WOLFSSL_API int wolfSSL_Cleanup(void); |
wolfSSL | 4:1b0d80432c79 | 846 | |
wolfSSL | 4:1b0d80432c79 | 847 | /* which library version do we have */ |
wolfSSL | 4:1b0d80432c79 | 848 | WOLFSSL_API const char* wolfSSL_lib_version(void); |
wolfSSL | 4:1b0d80432c79 | 849 | /* which library version do we have in hex */ |
wolfSSL | 4:1b0d80432c79 | 850 | WOLFSSL_API unsigned int wolfSSL_lib_version_hex(void); |
wolfSSL | 4:1b0d80432c79 | 851 | |
wolfSSL | 4:1b0d80432c79 | 852 | /* turn logging on, only if compiled in */ |
wolfSSL | 4:1b0d80432c79 | 853 | WOLFSSL_API int wolfSSL_Debugging_ON(void); |
wolfSSL | 4:1b0d80432c79 | 854 | /* turn logging off */ |
wolfSSL | 4:1b0d80432c79 | 855 | WOLFSSL_API void wolfSSL_Debugging_OFF(void); |
wolfSSL | 4:1b0d80432c79 | 856 | |
wolfSSL | 4:1b0d80432c79 | 857 | /* do accept or connect depedning on side */ |
wolfSSL | 4:1b0d80432c79 | 858 | WOLFSSL_API int wolfSSL_negotiate(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 859 | /* turn on wolfSSL data compression */ |
wolfSSL | 4:1b0d80432c79 | 860 | WOLFSSL_API int wolfSSL_set_compression(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 861 | |
wolfSSL | 4:1b0d80432c79 | 862 | WOLFSSL_API int wolfSSL_set_timeout(WOLFSSL*, unsigned int); |
wolfSSL | 4:1b0d80432c79 | 863 | WOLFSSL_API int wolfSSL_CTX_set_timeout(WOLFSSL_CTX*, unsigned int); |
wolfSSL | 4:1b0d80432c79 | 864 | |
wolfSSL | 4:1b0d80432c79 | 865 | /* get wolfSSL peer X509_CHAIN */ |
wolfSSL | 4:1b0d80432c79 | 866 | WOLFSSL_API WOLFSSL_X509_CHAIN* wolfSSL_get_peer_chain(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 867 | /* peer chain count */ |
wolfSSL | 4:1b0d80432c79 | 868 | WOLFSSL_API int wolfSSL_get_chain_count(WOLFSSL_X509_CHAIN* chain); |
wolfSSL | 4:1b0d80432c79 | 869 | /* index cert length */ |
wolfSSL | 4:1b0d80432c79 | 870 | WOLFSSL_API int wolfSSL_get_chain_length(WOLFSSL_X509_CHAIN*, int idx); |
wolfSSL | 4:1b0d80432c79 | 871 | /* index cert */ |
wolfSSL | 4:1b0d80432c79 | 872 | WOLFSSL_API unsigned char* wolfSSL_get_chain_cert(WOLFSSL_X509_CHAIN*, int idx); |
wolfSSL | 4:1b0d80432c79 | 873 | /* index cert in X509 */ |
wolfSSL | 4:1b0d80432c79 | 874 | WOLFSSL_API WOLFSSL_X509* wolfSSL_get_chain_X509(WOLFSSL_X509_CHAIN*, int idx); |
wolfSSL | 4:1b0d80432c79 | 875 | /* free X509 */ |
wolfSSL | 4:1b0d80432c79 | 876 | WOLFSSL_API void wolfSSL_FreeX509(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 877 | /* get index cert in PEM */ |
wolfSSL | 4:1b0d80432c79 | 878 | WOLFSSL_API int wolfSSL_get_chain_cert_pem(WOLFSSL_X509_CHAIN*, int idx, |
wolfSSL | 4:1b0d80432c79 | 879 | unsigned char* buffer, int inLen, int* outLen); |
wolfSSL | 4:1b0d80432c79 | 880 | WOLFSSL_API const unsigned char* wolfSSL_get_sessionID(const WOLFSSL_SESSION* s); |
wolfSSL | 4:1b0d80432c79 | 881 | WOLFSSL_API int wolfSSL_X509_get_serial_number(WOLFSSL_X509*,unsigned char*,int*); |
wolfSSL | 4:1b0d80432c79 | 882 | WOLFSSL_API char* wolfSSL_X509_get_subjectCN(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 883 | WOLFSSL_API const unsigned char* wolfSSL_X509_get_der(WOLFSSL_X509*, int*); |
wolfSSL | 4:1b0d80432c79 | 884 | WOLFSSL_API const unsigned char* wolfSSL_X509_notBefore(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 885 | WOLFSSL_API const unsigned char* wolfSSL_X509_notAfter(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 886 | WOLFSSL_API int wolfSSL_X509_version(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 887 | |
wolfSSL | 4:1b0d80432c79 | 888 | WOLFSSL_API int wolfSSL_cmp_peer_cert_to_file(WOLFSSL*, const char*); |
wolfSSL | 4:1b0d80432c79 | 889 | |
wolfSSL | 4:1b0d80432c79 | 890 | WOLFSSL_API char* wolfSSL_X509_get_next_altname(WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 891 | |
wolfSSL | 4:1b0d80432c79 | 892 | WOLFSSL_API WOLFSSL_X509* |
wolfSSL | 4:1b0d80432c79 | 893 | wolfSSL_X509_d2i(WOLFSSL_X509** x509, const unsigned char* in, int len); |
wolfSSL | 4:1b0d80432c79 | 894 | #ifndef NO_FILESYSTEM |
wolfSSL | 4:1b0d80432c79 | 895 | #ifndef NO_STDIO_FILESYSTEM |
wolfSSL | 4:1b0d80432c79 | 896 | WOLFSSL_API WOLFSSL_X509* |
wolfSSL | 4:1b0d80432c79 | 897 | wolfSSL_X509_d2i_fp(WOLFSSL_X509** x509, FILE* file); |
wolfSSL | 4:1b0d80432c79 | 898 | #endif |
wolfSSL | 4:1b0d80432c79 | 899 | WOLFSSL_API WOLFSSL_X509* |
wolfSSL | 4:1b0d80432c79 | 900 | wolfSSL_X509_load_certificate_file(const char* fname, int format); |
wolfSSL | 4:1b0d80432c79 | 901 | #endif |
wolfSSL | 4:1b0d80432c79 | 902 | |
wolfSSL | 4:1b0d80432c79 | 903 | #ifdef WOLFSSL_SEP |
wolfSSL | 4:1b0d80432c79 | 904 | WOLFSSL_API unsigned char* |
wolfSSL | 4:1b0d80432c79 | 905 | wolfSSL_X509_get_device_type(WOLFSSL_X509*, unsigned char*, int*); |
wolfSSL | 4:1b0d80432c79 | 906 | WOLFSSL_API unsigned char* |
wolfSSL | 4:1b0d80432c79 | 907 | wolfSSL_X509_get_hw_type(WOLFSSL_X509*, unsigned char*, int*); |
wolfSSL | 4:1b0d80432c79 | 908 | WOLFSSL_API unsigned char* |
wolfSSL | 4:1b0d80432c79 | 909 | wolfSSL_X509_get_hw_serial_number(WOLFSSL_X509*, unsigned char*, int*); |
wolfSSL | 4:1b0d80432c79 | 910 | #endif |
wolfSSL | 4:1b0d80432c79 | 911 | |
wolfSSL | 4:1b0d80432c79 | 912 | /* connect enough to get peer cert */ |
wolfSSL | 4:1b0d80432c79 | 913 | WOLFSSL_API int wolfSSL_connect_cert(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 914 | |
wolfSSL | 4:1b0d80432c79 | 915 | #ifndef NO_DH |
wolfSSL | 4:1b0d80432c79 | 916 | /* server Diffie-Hellman parameters */ |
wolfSSL | 4:1b0d80432c79 | 917 | WOLFSSL_API int wolfSSL_SetTmpDH(WOLFSSL*, const unsigned char* p, int pSz, |
wolfSSL | 4:1b0d80432c79 | 918 | const unsigned char* g, int gSz); |
wolfSSL | 4:1b0d80432c79 | 919 | WOLFSSL_API int wolfSSL_SetTmpDH_buffer(WOLFSSL*, const unsigned char* b, long sz, |
wolfSSL | 4:1b0d80432c79 | 920 | int format); |
wolfSSL | 4:1b0d80432c79 | 921 | #ifndef NO_FILESYSTEM |
wolfSSL | 4:1b0d80432c79 | 922 | WOLFSSL_API int wolfSSL_SetTmpDH_file(WOLFSSL*, const char* f, int format); |
wolfSSL | 4:1b0d80432c79 | 923 | #endif |
wolfSSL | 4:1b0d80432c79 | 924 | |
wolfSSL | 4:1b0d80432c79 | 925 | /* server ctx Diffie-Hellman parameters */ |
wolfSSL | 4:1b0d80432c79 | 926 | WOLFSSL_API int wolfSSL_CTX_SetTmpDH(WOLFSSL_CTX*, const unsigned char* p, |
wolfSSL | 4:1b0d80432c79 | 927 | int pSz, const unsigned char* g, int gSz); |
wolfSSL | 4:1b0d80432c79 | 928 | WOLFSSL_API int wolfSSL_CTX_SetTmpDH_buffer(WOLFSSL_CTX*, const unsigned char* b, |
wolfSSL | 4:1b0d80432c79 | 929 | long sz, int format); |
wolfSSL | 4:1b0d80432c79 | 930 | |
wolfSSL | 4:1b0d80432c79 | 931 | #ifndef NO_FILESYSTEM |
wolfSSL | 4:1b0d80432c79 | 932 | WOLFSSL_API int wolfSSL_CTX_SetTmpDH_file(WOLFSSL_CTX*, const char* f, |
wolfSSL | 4:1b0d80432c79 | 933 | int format); |
wolfSSL | 4:1b0d80432c79 | 934 | #endif |
wolfSSL | 4:1b0d80432c79 | 935 | |
wolfSSL | 4:1b0d80432c79 | 936 | WOLFSSL_API int wolfSSL_CTX_SetMinDhKey_Sz(WOLFSSL_CTX*, unsigned short); |
wolfSSL | 4:1b0d80432c79 | 937 | WOLFSSL_API int wolfSSL_SetMinDhKey_Sz(WOLFSSL*, unsigned short); |
wolfSSL | 4:1b0d80432c79 | 938 | WOLFSSL_API int wolfSSL_GetDhKey_Sz(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 939 | #endif /* NO_DH */ |
wolfSSL | 4:1b0d80432c79 | 940 | |
wolfSSL | 4:1b0d80432c79 | 941 | WOLFSSL_API int wolfSSL_SetTmpEC_DHE_Sz(WOLFSSL*, unsigned short); |
wolfSSL | 4:1b0d80432c79 | 942 | WOLFSSL_API int wolfSSL_CTX_SetTmpEC_DHE_Sz(WOLFSSL_CTX*, unsigned short); |
wolfSSL | 4:1b0d80432c79 | 943 | |
wolfSSL | 4:1b0d80432c79 | 944 | /* keyblock size in bytes or -1 */ |
wolfSSL | 4:1b0d80432c79 | 945 | /* need to call wolfSSL_KeepArrays before handshake to save keys */ |
wolfSSL | 4:1b0d80432c79 | 946 | WOLFSSL_API int wolfSSL_get_keyblock_size(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 947 | WOLFSSL_API int wolfSSL_get_keys(WOLFSSL*,unsigned char** ms, unsigned int* msLen, |
wolfSSL | 4:1b0d80432c79 | 948 | unsigned char** sr, unsigned int* srLen, |
wolfSSL | 4:1b0d80432c79 | 949 | unsigned char** cr, unsigned int* crLen); |
wolfSSL | 4:1b0d80432c79 | 950 | |
wolfSSL | 4:1b0d80432c79 | 951 | /* Computes EAP-TLS and EAP-TTLS keying material from the master_secret. */ |
wolfSSL | 4:1b0d80432c79 | 952 | WOLFSSL_API int wolfSSL_make_eap_keys(WOLFSSL*, void* key, unsigned int len, |
wolfSSL | 4:1b0d80432c79 | 953 | const char* label); |
wolfSSL | 4:1b0d80432c79 | 954 | |
wolfSSL | 4:1b0d80432c79 | 955 | |
wolfSSL | 4:1b0d80432c79 | 956 | #ifndef _WIN32 |
wolfSSL | 4:1b0d80432c79 | 957 | #ifndef NO_WRITEV |
wolfSSL | 4:1b0d80432c79 | 958 | #ifdef __PPU |
wolfSSL | 4:1b0d80432c79 | 959 | #include <sys/types.h> |
wolfSSL | 4:1b0d80432c79 | 960 | #include <sys/socket.h> |
wolfSSL | 4:1b0d80432c79 | 961 | #elif !defined(WOLFSSL_MDK_ARM) && !defined(WOLFSSL_IAR_ARM) && \ |
wolfSSL | 4:1b0d80432c79 | 962 | !defined(WOLFSSL_PICOTCP) && !defined(WOLFSSL_ROWLEY_ARM) |
wolfSSL | 4:1b0d80432c79 | 963 | #include <sys/uio.h> |
wolfSSL | 4:1b0d80432c79 | 964 | #endif |
wolfSSL | 4:1b0d80432c79 | 965 | /* allow writev style writing */ |
wolfSSL | 4:1b0d80432c79 | 966 | WOLFSSL_API int wolfSSL_writev(WOLFSSL* ssl, const struct iovec* iov, |
wolfSSL | 4:1b0d80432c79 | 967 | int iovcnt); |
wolfSSL | 4:1b0d80432c79 | 968 | #endif |
wolfSSL | 4:1b0d80432c79 | 969 | #endif |
wolfSSL | 4:1b0d80432c79 | 970 | |
wolfSSL | 4:1b0d80432c79 | 971 | |
wolfSSL | 4:1b0d80432c79 | 972 | #ifndef NO_CERTS |
wolfSSL | 4:1b0d80432c79 | 973 | /* SSL_CTX versions */ |
wolfSSL | 4:1b0d80432c79 | 974 | WOLFSSL_API int wolfSSL_CTX_UnloadCAs(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 975 | #ifdef WOLFSSL_TRUST_PEER_CERT |
wolfSSL | 4:1b0d80432c79 | 976 | WOLFSSL_API int wolfSSL_CTX_Unload_trust_peers(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 977 | WOLFSSL_API int wolfSSL_CTX_trust_peer_buffer(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 978 | const unsigned char*, long, int); |
wolfSSL | 4:1b0d80432c79 | 979 | #endif |
wolfSSL | 4:1b0d80432c79 | 980 | WOLFSSL_API int wolfSSL_CTX_load_verify_buffer(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 981 | const unsigned char*, long, int); |
wolfSSL | 4:1b0d80432c79 | 982 | WOLFSSL_API int wolfSSL_CTX_use_certificate_buffer(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 983 | const unsigned char*, long, int); |
wolfSSL | 4:1b0d80432c79 | 984 | WOLFSSL_API int wolfSSL_CTX_use_PrivateKey_buffer(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 985 | const unsigned char*, long, int); |
wolfSSL | 4:1b0d80432c79 | 986 | WOLFSSL_API int wolfSSL_CTX_use_certificate_chain_buffer(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 987 | const unsigned char*, long); |
wolfSSL | 4:1b0d80432c79 | 988 | |
wolfSSL | 4:1b0d80432c79 | 989 | /* SSL versions */ |
wolfSSL | 4:1b0d80432c79 | 990 | WOLFSSL_API int wolfSSL_use_certificate_buffer(WOLFSSL*, const unsigned char*, |
wolfSSL | 4:1b0d80432c79 | 991 | long, int); |
wolfSSL | 4:1b0d80432c79 | 992 | WOLFSSL_API int wolfSSL_use_PrivateKey_buffer(WOLFSSL*, const unsigned char*, |
wolfSSL | 4:1b0d80432c79 | 993 | long, int); |
wolfSSL | 4:1b0d80432c79 | 994 | WOLFSSL_API int wolfSSL_use_certificate_chain_buffer(WOLFSSL*, |
wolfSSL | 4:1b0d80432c79 | 995 | const unsigned char*, long); |
wolfSSL | 4:1b0d80432c79 | 996 | WOLFSSL_API int wolfSSL_UnloadCertsKeys(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 997 | #endif |
wolfSSL | 4:1b0d80432c79 | 998 | |
wolfSSL | 4:1b0d80432c79 | 999 | WOLFSSL_API int wolfSSL_CTX_set_group_messages(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 1000 | WOLFSSL_API int wolfSSL_set_group_messages(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1001 | |
wolfSSL | 4:1b0d80432c79 | 1002 | /* I/O callbacks */ |
wolfSSL | 4:1b0d80432c79 | 1003 | typedef int (*CallbackIORecv)(WOLFSSL *ssl, char *buf, int sz, void *ctx); |
wolfSSL | 4:1b0d80432c79 | 1004 | typedef int (*CallbackIOSend)(WOLFSSL *ssl, char *buf, int sz, void *ctx); |
wolfSSL | 4:1b0d80432c79 | 1005 | |
wolfSSL | 4:1b0d80432c79 | 1006 | #ifdef HAVE_FUZZER |
wolfSSL | 4:1b0d80432c79 | 1007 | enum fuzzer_type { |
wolfSSL | 4:1b0d80432c79 | 1008 | FUZZ_HMAC = 0, |
wolfSSL | 4:1b0d80432c79 | 1009 | FUZZ_ENCRYPT = 1, |
wolfSSL | 4:1b0d80432c79 | 1010 | FUZZ_SIGNATURE = 2, |
wolfSSL | 4:1b0d80432c79 | 1011 | FUZZ_HASH = 3, |
wolfSSL | 4:1b0d80432c79 | 1012 | FUZZ_HEAD = 4 |
wolfSSL | 4:1b0d80432c79 | 1013 | }; |
wolfSSL | 4:1b0d80432c79 | 1014 | |
wolfSSL | 4:1b0d80432c79 | 1015 | typedef int (*CallbackFuzzer)(WOLFSSL* ssl, const unsigned char* buf, int sz, |
wolfSSL | 4:1b0d80432c79 | 1016 | int type, void* fuzzCtx); |
wolfSSL | 4:1b0d80432c79 | 1017 | |
wolfSSL | 4:1b0d80432c79 | 1018 | WOLFSSL_API void wolfSSL_SetFuzzerCb(WOLFSSL* ssl, CallbackFuzzer cbf, void* fCtx); |
wolfSSL | 4:1b0d80432c79 | 1019 | #endif |
wolfSSL | 4:1b0d80432c79 | 1020 | |
wolfSSL | 4:1b0d80432c79 | 1021 | WOLFSSL_API void wolfSSL_SetIORecv(WOLFSSL_CTX*, CallbackIORecv); |
wolfSSL | 4:1b0d80432c79 | 1022 | WOLFSSL_API void wolfSSL_SetIOSend(WOLFSSL_CTX*, CallbackIOSend); |
wolfSSL | 4:1b0d80432c79 | 1023 | |
wolfSSL | 4:1b0d80432c79 | 1024 | WOLFSSL_API void wolfSSL_SetIOReadCtx( WOLFSSL* ssl, void *ctx); |
wolfSSL | 4:1b0d80432c79 | 1025 | WOLFSSL_API void wolfSSL_SetIOWriteCtx(WOLFSSL* ssl, void *ctx); |
wolfSSL | 4:1b0d80432c79 | 1026 | |
wolfSSL | 4:1b0d80432c79 | 1027 | WOLFSSL_API void* wolfSSL_GetIOReadCtx( WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1028 | WOLFSSL_API void* wolfSSL_GetIOWriteCtx(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1029 | |
wolfSSL | 4:1b0d80432c79 | 1030 | WOLFSSL_API void wolfSSL_SetIOReadFlags( WOLFSSL* ssl, int flags); |
wolfSSL | 4:1b0d80432c79 | 1031 | WOLFSSL_API void wolfSSL_SetIOWriteFlags(WOLFSSL* ssl, int flags); |
wolfSSL | 4:1b0d80432c79 | 1032 | |
wolfSSL | 4:1b0d80432c79 | 1033 | |
wolfSSL | 4:1b0d80432c79 | 1034 | #ifndef WOLFSSL_USER_IO |
wolfSSL | 4:1b0d80432c79 | 1035 | /* default IO callbacks */ |
wolfSSL | 4:1b0d80432c79 | 1036 | WOLFSSL_API int EmbedReceive(WOLFSSL* ssl, char* buf, int sz, void* ctx); |
wolfSSL | 4:1b0d80432c79 | 1037 | WOLFSSL_API int EmbedSend(WOLFSSL* ssl, char* buf, int sz, void* ctx); |
wolfSSL | 4:1b0d80432c79 | 1038 | |
wolfSSL | 4:1b0d80432c79 | 1039 | #ifdef HAVE_OCSP |
wolfSSL | 4:1b0d80432c79 | 1040 | WOLFSSL_API int EmbedOcspLookup(void*, const char*, int, unsigned char*, |
wolfSSL | 4:1b0d80432c79 | 1041 | int, unsigned char**); |
wolfSSL | 4:1b0d80432c79 | 1042 | WOLFSSL_API void EmbedOcspRespFree(void*, unsigned char*); |
wolfSSL | 4:1b0d80432c79 | 1043 | #endif |
wolfSSL | 4:1b0d80432c79 | 1044 | |
wolfSSL | 4:1b0d80432c79 | 1045 | #ifdef WOLFSSL_DTLS |
wolfSSL | 4:1b0d80432c79 | 1046 | WOLFSSL_API int EmbedReceiveFrom(WOLFSSL* ssl, char* buf, int sz, void*); |
wolfSSL | 4:1b0d80432c79 | 1047 | WOLFSSL_API int EmbedSendTo(WOLFSSL* ssl, char* buf, int sz, void* ctx); |
wolfSSL | 4:1b0d80432c79 | 1048 | WOLFSSL_API int EmbedGenerateCookie(WOLFSSL* ssl, unsigned char* buf, |
wolfSSL | 4:1b0d80432c79 | 1049 | int sz, void*); |
wolfSSL | 4:1b0d80432c79 | 1050 | #endif /* WOLFSSL_DTLS */ |
wolfSSL | 4:1b0d80432c79 | 1051 | #endif /* WOLFSSL_USER_IO */ |
wolfSSL | 4:1b0d80432c79 | 1052 | |
wolfSSL | 4:1b0d80432c79 | 1053 | |
wolfSSL | 4:1b0d80432c79 | 1054 | #ifdef HAVE_NETX |
wolfSSL | 4:1b0d80432c79 | 1055 | WOLFSSL_API void wolfSSL_SetIO_NetX(WOLFSSL* ssl, NX_TCP_SOCKET* nxsocket, |
wolfSSL | 4:1b0d80432c79 | 1056 | ULONG waitoption); |
wolfSSL | 4:1b0d80432c79 | 1057 | #endif |
wolfSSL | 4:1b0d80432c79 | 1058 | |
wolfSSL | 4:1b0d80432c79 | 1059 | typedef int (*CallbackGenCookie)(WOLFSSL* ssl, unsigned char* buf, int sz, |
wolfSSL | 4:1b0d80432c79 | 1060 | void* ctx); |
wolfSSL | 4:1b0d80432c79 | 1061 | WOLFSSL_API void wolfSSL_CTX_SetGenCookie(WOLFSSL_CTX*, CallbackGenCookie); |
wolfSSL | 4:1b0d80432c79 | 1062 | WOLFSSL_API void wolfSSL_SetCookieCtx(WOLFSSL* ssl, void *ctx); |
wolfSSL | 4:1b0d80432c79 | 1063 | WOLFSSL_API void* wolfSSL_GetCookieCtx(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1064 | WOLFSSL_API int wolfSSL_DTLS_SetCookieSecret(WOLFSSL*, |
wolfSSL | 4:1b0d80432c79 | 1065 | const unsigned char*, |
wolfSSL | 4:1b0d80432c79 | 1066 | unsigned int); |
wolfSSL | 4:1b0d80432c79 | 1067 | |
wolfSSL | 4:1b0d80432c79 | 1068 | |
wolfSSL | 4:1b0d80432c79 | 1069 | /* I/O Callback default errors */ |
wolfSSL | 4:1b0d80432c79 | 1070 | enum IOerrors { |
wolfSSL | 4:1b0d80432c79 | 1071 | WOLFSSL_CBIO_ERR_GENERAL = -1, /* general unexpected err */ |
wolfSSL | 4:1b0d80432c79 | 1072 | WOLFSSL_CBIO_ERR_WANT_READ = -2, /* need to call read again */ |
wolfSSL | 4:1b0d80432c79 | 1073 | WOLFSSL_CBIO_ERR_WANT_WRITE = -2, /* need to call write again */ |
wolfSSL | 4:1b0d80432c79 | 1074 | WOLFSSL_CBIO_ERR_CONN_RST = -3, /* connection reset */ |
wolfSSL | 4:1b0d80432c79 | 1075 | WOLFSSL_CBIO_ERR_ISR = -4, /* interrupt */ |
wolfSSL | 4:1b0d80432c79 | 1076 | WOLFSSL_CBIO_ERR_CONN_CLOSE = -5, /* connection closed or epipe */ |
wolfSSL | 4:1b0d80432c79 | 1077 | WOLFSSL_CBIO_ERR_TIMEOUT = -6 /* socket timeout */ |
wolfSSL | 4:1b0d80432c79 | 1078 | }; |
wolfSSL | 4:1b0d80432c79 | 1079 | |
wolfSSL | 4:1b0d80432c79 | 1080 | |
wolfSSL | 4:1b0d80432c79 | 1081 | /* CA cache callbacks */ |
wolfSSL | 4:1b0d80432c79 | 1082 | enum { |
wolfSSL | 4:1b0d80432c79 | 1083 | WOLFSSL_SSLV3 = 0, |
wolfSSL | 4:1b0d80432c79 | 1084 | WOLFSSL_TLSV1 = 1, |
wolfSSL | 4:1b0d80432c79 | 1085 | WOLFSSL_TLSV1_1 = 2, |
wolfSSL | 4:1b0d80432c79 | 1086 | WOLFSSL_TLSV1_2 = 3, |
wolfSSL | 4:1b0d80432c79 | 1087 | WOLFSSL_USER_CA = 1, /* user added as trusted */ |
wolfSSL | 4:1b0d80432c79 | 1088 | WOLFSSL_CHAIN_CA = 2 /* added to cache from trusted chain */ |
wolfSSL | 4:1b0d80432c79 | 1089 | }; |
wolfSSL | 4:1b0d80432c79 | 1090 | |
wolfSSL | 4:1b0d80432c79 | 1091 | WOLFSSL_API int wolfSSL_CTX_SetMinVersion(WOLFSSL_CTX* ctx, int version); |
wolfSSL | 4:1b0d80432c79 | 1092 | WOLFSSL_API int wolfSSL_SetMinVersion(WOLFSSL* ssl, int version); |
wolfSSL | 4:1b0d80432c79 | 1093 | WOLFSSL_API int wolfSSL_GetObjectSize(void); /* object size based on build */ |
wolfSSL | 4:1b0d80432c79 | 1094 | WOLFSSL_API int wolfSSL_SetVersion(WOLFSSL* ssl, int version); |
wolfSSL | 4:1b0d80432c79 | 1095 | WOLFSSL_API int wolfSSL_KeyPemToDer(const unsigned char*, int, |
wolfSSL | 4:1b0d80432c79 | 1096 | unsigned char*, int, const char*); |
wolfSSL | 4:1b0d80432c79 | 1097 | WOLFSSL_API int wolfSSL_CertPemToDer(const unsigned char*, int, |
wolfSSL | 4:1b0d80432c79 | 1098 | unsigned char*, int, int); |
wolfSSL | 4:1b0d80432c79 | 1099 | #if defined(WOLFSSL_CERT_EXT) || defined(WOLFSSL_PUB_PEM_TO_DER) |
wolfSSL | 4:1b0d80432c79 | 1100 | #ifndef WOLFSSL_PEMPUBKEY_TODER_DEFINED |
wolfSSL | 4:1b0d80432c79 | 1101 | #ifndef NO_FILESYSTEM |
wolfSSL | 4:1b0d80432c79 | 1102 | WOLFSSL_API int wolfSSL_PemPubKeyToDer(const char* fileName, |
wolfSSL | 4:1b0d80432c79 | 1103 | unsigned char* derBuf, int derSz); |
wolfSSL | 4:1b0d80432c79 | 1104 | #endif |
wolfSSL | 4:1b0d80432c79 | 1105 | WOLFSSL_API int wolfSSL_PubKeyPemToDer(const unsigned char*, int, |
wolfSSL | 4:1b0d80432c79 | 1106 | unsigned char*, int); |
wolfSSL | 4:1b0d80432c79 | 1107 | #define WOLFSSL_PEMPUBKEY_TODER_DEFINED |
wolfSSL | 4:1b0d80432c79 | 1108 | #endif /* WOLFSSL_PEMPUBKEY_TODER_DEFINED */ |
wolfSSL | 4:1b0d80432c79 | 1109 | #endif /* WOLFSSL_CERT_EXT || WOLFSSL_PUB_PEM_TO_DER*/ |
wolfSSL | 4:1b0d80432c79 | 1110 | |
wolfSSL | 4:1b0d80432c79 | 1111 | typedef void (*CallbackCACache)(unsigned char* der, int sz, int type); |
wolfSSL | 4:1b0d80432c79 | 1112 | typedef void (*CbMissingCRL)(const char* url); |
wolfSSL | 4:1b0d80432c79 | 1113 | typedef int (*CbOCSPIO)(void*, const char*, int, |
wolfSSL | 4:1b0d80432c79 | 1114 | unsigned char*, int, unsigned char**); |
wolfSSL | 4:1b0d80432c79 | 1115 | typedef void (*CbOCSPRespFree)(void*,unsigned char*); |
wolfSSL | 4:1b0d80432c79 | 1116 | |
wolfSSL | 4:1b0d80432c79 | 1117 | /* User Atomic Record Layer CallBacks */ |
wolfSSL | 4:1b0d80432c79 | 1118 | typedef int (*CallbackMacEncrypt)(WOLFSSL* ssl, unsigned char* macOut, |
wolfSSL | 4:1b0d80432c79 | 1119 | const unsigned char* macIn, unsigned int macInSz, int macContent, |
wolfSSL | 4:1b0d80432c79 | 1120 | int macVerify, unsigned char* encOut, const unsigned char* encIn, |
wolfSSL | 4:1b0d80432c79 | 1121 | unsigned int encSz, void* ctx); |
wolfSSL | 4:1b0d80432c79 | 1122 | WOLFSSL_API void wolfSSL_CTX_SetMacEncryptCb(WOLFSSL_CTX*, CallbackMacEncrypt); |
wolfSSL | 4:1b0d80432c79 | 1123 | WOLFSSL_API void wolfSSL_SetMacEncryptCtx(WOLFSSL* ssl, void *ctx); |
wolfSSL | 4:1b0d80432c79 | 1124 | WOLFSSL_API void* wolfSSL_GetMacEncryptCtx(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1125 | |
wolfSSL | 4:1b0d80432c79 | 1126 | typedef int (*CallbackDecryptVerify)(WOLFSSL* ssl, |
wolfSSL | 4:1b0d80432c79 | 1127 | unsigned char* decOut, const unsigned char* decIn, |
wolfSSL | 4:1b0d80432c79 | 1128 | unsigned int decSz, int content, int verify, unsigned int* padSz, |
wolfSSL | 4:1b0d80432c79 | 1129 | void* ctx); |
wolfSSL | 4:1b0d80432c79 | 1130 | WOLFSSL_API void wolfSSL_CTX_SetDecryptVerifyCb(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 1131 | CallbackDecryptVerify); |
wolfSSL | 4:1b0d80432c79 | 1132 | WOLFSSL_API void wolfSSL_SetDecryptVerifyCtx(WOLFSSL* ssl, void *ctx); |
wolfSSL | 4:1b0d80432c79 | 1133 | WOLFSSL_API void* wolfSSL_GetDecryptVerifyCtx(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1134 | |
wolfSSL | 4:1b0d80432c79 | 1135 | WOLFSSL_API const unsigned char* wolfSSL_GetMacSecret(WOLFSSL*, int); |
wolfSSL | 4:1b0d80432c79 | 1136 | WOLFSSL_API const unsigned char* wolfSSL_GetClientWriteKey(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1137 | WOLFSSL_API const unsigned char* wolfSSL_GetClientWriteIV(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1138 | WOLFSSL_API const unsigned char* wolfSSL_GetServerWriteKey(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1139 | WOLFSSL_API const unsigned char* wolfSSL_GetServerWriteIV(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1140 | WOLFSSL_API int wolfSSL_GetKeySize(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1141 | WOLFSSL_API int wolfSSL_GetIVSize(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1142 | WOLFSSL_API int wolfSSL_GetSide(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1143 | WOLFSSL_API int wolfSSL_IsTLSv1_1(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1144 | WOLFSSL_API int wolfSSL_GetBulkCipher(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1145 | WOLFSSL_API int wolfSSL_GetCipherBlockSize(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1146 | WOLFSSL_API int wolfSSL_GetAeadMacSize(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1147 | WOLFSSL_API int wolfSSL_GetHmacSize(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1148 | WOLFSSL_API int wolfSSL_GetHmacType(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1149 | WOLFSSL_API int wolfSSL_GetCipherType(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1150 | WOLFSSL_API int wolfSSL_SetTlsHmacInner(WOLFSSL*, unsigned char*, |
wolfSSL | 4:1b0d80432c79 | 1151 | unsigned int, int, int); |
wolfSSL | 4:1b0d80432c79 | 1152 | |
wolfSSL | 4:1b0d80432c79 | 1153 | /* Atomic User Needs */ |
wolfSSL | 4:1b0d80432c79 | 1154 | enum { |
wolfSSL | 4:1b0d80432c79 | 1155 | WOLFSSL_SERVER_END = 0, |
wolfSSL | 4:1b0d80432c79 | 1156 | WOLFSSL_CLIENT_END = 1, |
wolfSSL | 4:1b0d80432c79 | 1157 | WOLFSSL_BLOCK_TYPE = 2, |
wolfSSL | 4:1b0d80432c79 | 1158 | WOLFSSL_STREAM_TYPE = 3, |
wolfSSL | 4:1b0d80432c79 | 1159 | WOLFSSL_AEAD_TYPE = 4, |
wolfSSL | 4:1b0d80432c79 | 1160 | WOLFSSL_TLS_HMAC_INNER_SZ = 13 /* SEQ_SZ + ENUM + VERSION_SZ + LEN_SZ */ |
wolfSSL | 4:1b0d80432c79 | 1161 | }; |
wolfSSL | 4:1b0d80432c79 | 1162 | |
wolfSSL | 4:1b0d80432c79 | 1163 | /* for GetBulkCipher and internal use */ |
wolfSSL | 4:1b0d80432c79 | 1164 | enum BulkCipherAlgorithm { |
wolfSSL | 4:1b0d80432c79 | 1165 | wolfssl_cipher_null, |
wolfSSL | 4:1b0d80432c79 | 1166 | wolfssl_rc4, |
wolfSSL | 4:1b0d80432c79 | 1167 | wolfssl_rc2, |
wolfSSL | 4:1b0d80432c79 | 1168 | wolfssl_des, |
wolfSSL | 4:1b0d80432c79 | 1169 | wolfssl_triple_des, /* leading 3 (3des) not valid identifier */ |
wolfSSL | 4:1b0d80432c79 | 1170 | wolfssl_des40, |
wolfSSL | 4:1b0d80432c79 | 1171 | wolfssl_idea, |
wolfSSL | 4:1b0d80432c79 | 1172 | wolfssl_aes, |
wolfSSL | 4:1b0d80432c79 | 1173 | wolfssl_aes_gcm, |
wolfSSL | 4:1b0d80432c79 | 1174 | wolfssl_aes_ccm, |
wolfSSL | 4:1b0d80432c79 | 1175 | wolfssl_chacha, |
wolfSSL | 4:1b0d80432c79 | 1176 | wolfssl_camellia, |
wolfSSL | 4:1b0d80432c79 | 1177 | wolfssl_hc128, /* wolfSSL extensions */ |
wolfSSL | 4:1b0d80432c79 | 1178 | wolfssl_rabbit |
wolfSSL | 4:1b0d80432c79 | 1179 | }; |
wolfSSL | 4:1b0d80432c79 | 1180 | |
wolfSSL | 4:1b0d80432c79 | 1181 | |
wolfSSL | 4:1b0d80432c79 | 1182 | /* for KDF TLS 1.2 mac types */ |
wolfSSL | 4:1b0d80432c79 | 1183 | enum KDF_MacAlgorithm { |
wolfSSL | 4:1b0d80432c79 | 1184 | wolfssl_sha256 = 4, /* needs to match internal MACAlgorithm */ |
wolfSSL | 4:1b0d80432c79 | 1185 | wolfssl_sha384, |
wolfSSL | 4:1b0d80432c79 | 1186 | wolfssl_sha512 |
wolfSSL | 4:1b0d80432c79 | 1187 | }; |
wolfSSL | 4:1b0d80432c79 | 1188 | |
wolfSSL | 4:1b0d80432c79 | 1189 | |
wolfSSL | 4:1b0d80432c79 | 1190 | /* Public Key Callback support */ |
wolfSSL | 4:1b0d80432c79 | 1191 | typedef int (*CallbackEccSign)(WOLFSSL* ssl, |
wolfSSL | 4:1b0d80432c79 | 1192 | const unsigned char* in, unsigned int inSz, |
wolfSSL | 4:1b0d80432c79 | 1193 | unsigned char* out, unsigned int* outSz, |
wolfSSL | 4:1b0d80432c79 | 1194 | const unsigned char* keyDer, unsigned int keySz, |
wolfSSL | 4:1b0d80432c79 | 1195 | void* ctx); |
wolfSSL | 4:1b0d80432c79 | 1196 | WOLFSSL_API void wolfSSL_CTX_SetEccSignCb(WOLFSSL_CTX*, CallbackEccSign); |
wolfSSL | 4:1b0d80432c79 | 1197 | WOLFSSL_API void wolfSSL_SetEccSignCtx(WOLFSSL* ssl, void *ctx); |
wolfSSL | 4:1b0d80432c79 | 1198 | WOLFSSL_API void* wolfSSL_GetEccSignCtx(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1199 | |
wolfSSL | 4:1b0d80432c79 | 1200 | typedef int (*CallbackEccVerify)(WOLFSSL* ssl, |
wolfSSL | 4:1b0d80432c79 | 1201 | const unsigned char* sig, unsigned int sigSz, |
wolfSSL | 4:1b0d80432c79 | 1202 | const unsigned char* hash, unsigned int hashSz, |
wolfSSL | 4:1b0d80432c79 | 1203 | const unsigned char* keyDer, unsigned int keySz, |
wolfSSL | 4:1b0d80432c79 | 1204 | int* result, void* ctx); |
wolfSSL | 4:1b0d80432c79 | 1205 | WOLFSSL_API void wolfSSL_CTX_SetEccVerifyCb(WOLFSSL_CTX*, CallbackEccVerify); |
wolfSSL | 4:1b0d80432c79 | 1206 | WOLFSSL_API void wolfSSL_SetEccVerifyCtx(WOLFSSL* ssl, void *ctx); |
wolfSSL | 4:1b0d80432c79 | 1207 | WOLFSSL_API void* wolfSSL_GetEccVerifyCtx(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1208 | |
wolfSSL | 4:1b0d80432c79 | 1209 | typedef int (*CallbackRsaSign)(WOLFSSL* ssl, |
wolfSSL | 4:1b0d80432c79 | 1210 | const unsigned char* in, unsigned int inSz, |
wolfSSL | 4:1b0d80432c79 | 1211 | unsigned char* out, unsigned int* outSz, |
wolfSSL | 4:1b0d80432c79 | 1212 | const unsigned char* keyDer, unsigned int keySz, |
wolfSSL | 4:1b0d80432c79 | 1213 | void* ctx); |
wolfSSL | 4:1b0d80432c79 | 1214 | WOLFSSL_API void wolfSSL_CTX_SetRsaSignCb(WOLFSSL_CTX*, CallbackRsaSign); |
wolfSSL | 4:1b0d80432c79 | 1215 | WOLFSSL_API void wolfSSL_SetRsaSignCtx(WOLFSSL* ssl, void *ctx); |
wolfSSL | 4:1b0d80432c79 | 1216 | WOLFSSL_API void* wolfSSL_GetRsaSignCtx(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1217 | |
wolfSSL | 4:1b0d80432c79 | 1218 | typedef int (*CallbackRsaVerify)(WOLFSSL* ssl, |
wolfSSL | 4:1b0d80432c79 | 1219 | unsigned char* sig, unsigned int sigSz, |
wolfSSL | 4:1b0d80432c79 | 1220 | unsigned char** out, |
wolfSSL | 4:1b0d80432c79 | 1221 | const unsigned char* keyDer, unsigned int keySz, |
wolfSSL | 4:1b0d80432c79 | 1222 | void* ctx); |
wolfSSL | 4:1b0d80432c79 | 1223 | WOLFSSL_API void wolfSSL_CTX_SetRsaVerifyCb(WOLFSSL_CTX*, CallbackRsaVerify); |
wolfSSL | 4:1b0d80432c79 | 1224 | WOLFSSL_API void wolfSSL_SetRsaVerifyCtx(WOLFSSL* ssl, void *ctx); |
wolfSSL | 4:1b0d80432c79 | 1225 | WOLFSSL_API void* wolfSSL_GetRsaVerifyCtx(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1226 | |
wolfSSL | 4:1b0d80432c79 | 1227 | /* RSA Public Encrypt cb */ |
wolfSSL | 4:1b0d80432c79 | 1228 | typedef int (*CallbackRsaEnc)(WOLFSSL* ssl, |
wolfSSL | 4:1b0d80432c79 | 1229 | const unsigned char* in, unsigned int inSz, |
wolfSSL | 4:1b0d80432c79 | 1230 | unsigned char* out, unsigned int* outSz, |
wolfSSL | 4:1b0d80432c79 | 1231 | const unsigned char* keyDer, unsigned int keySz, |
wolfSSL | 4:1b0d80432c79 | 1232 | void* ctx); |
wolfSSL | 4:1b0d80432c79 | 1233 | WOLFSSL_API void wolfSSL_CTX_SetRsaEncCb(WOLFSSL_CTX*, CallbackRsaEnc); |
wolfSSL | 4:1b0d80432c79 | 1234 | WOLFSSL_API void wolfSSL_SetRsaEncCtx(WOLFSSL* ssl, void *ctx); |
wolfSSL | 4:1b0d80432c79 | 1235 | WOLFSSL_API void* wolfSSL_GetRsaEncCtx(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1236 | |
wolfSSL | 4:1b0d80432c79 | 1237 | /* RSA Private Decrypt cb */ |
wolfSSL | 4:1b0d80432c79 | 1238 | typedef int (*CallbackRsaDec)(WOLFSSL* ssl, |
wolfSSL | 4:1b0d80432c79 | 1239 | unsigned char* in, unsigned int inSz, |
wolfSSL | 4:1b0d80432c79 | 1240 | unsigned char** out, |
wolfSSL | 4:1b0d80432c79 | 1241 | const unsigned char* keyDer, unsigned int keySz, |
wolfSSL | 4:1b0d80432c79 | 1242 | void* ctx); |
wolfSSL | 4:1b0d80432c79 | 1243 | WOLFSSL_API void wolfSSL_CTX_SetRsaDecCb(WOLFSSL_CTX*, CallbackRsaDec); |
wolfSSL | 4:1b0d80432c79 | 1244 | WOLFSSL_API void wolfSSL_SetRsaDecCtx(WOLFSSL* ssl, void *ctx); |
wolfSSL | 4:1b0d80432c79 | 1245 | WOLFSSL_API void* wolfSSL_GetRsaDecCtx(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1246 | |
wolfSSL | 4:1b0d80432c79 | 1247 | |
wolfSSL | 4:1b0d80432c79 | 1248 | #ifndef NO_CERTS |
wolfSSL | 4:1b0d80432c79 | 1249 | WOLFSSL_API void wolfSSL_CTX_SetCACb(WOLFSSL_CTX*, CallbackCACache); |
wolfSSL | 4:1b0d80432c79 | 1250 | |
wolfSSL | 4:1b0d80432c79 | 1251 | WOLFSSL_API WOLFSSL_CERT_MANAGER* wolfSSL_CertManagerNew(void); |
wolfSSL | 4:1b0d80432c79 | 1252 | WOLFSSL_API void wolfSSL_CertManagerFree(WOLFSSL_CERT_MANAGER*); |
wolfSSL | 4:1b0d80432c79 | 1253 | |
wolfSSL | 4:1b0d80432c79 | 1254 | WOLFSSL_API int wolfSSL_CertManagerLoadCA(WOLFSSL_CERT_MANAGER*, const char* f, |
wolfSSL | 4:1b0d80432c79 | 1255 | const char* d); |
wolfSSL | 4:1b0d80432c79 | 1256 | WOLFSSL_API int wolfSSL_CertManagerLoadCABuffer(WOLFSSL_CERT_MANAGER*, |
wolfSSL | 4:1b0d80432c79 | 1257 | const unsigned char* in, long sz, int format); |
wolfSSL | 4:1b0d80432c79 | 1258 | WOLFSSL_API int wolfSSL_CertManagerUnloadCAs(WOLFSSL_CERT_MANAGER* cm); |
wolfSSL | 4:1b0d80432c79 | 1259 | #ifdef WOLFSSL_TRUST_PEER_CERT |
wolfSSL | 4:1b0d80432c79 | 1260 | WOLFSSL_API int wolfSSL_CertManagerUnload_trust_peers(WOLFSSL_CERT_MANAGER* cm); |
wolfSSL | 4:1b0d80432c79 | 1261 | #endif |
wolfSSL | 4:1b0d80432c79 | 1262 | WOLFSSL_API int wolfSSL_CertManagerVerify(WOLFSSL_CERT_MANAGER*, const char* f, |
wolfSSL | 4:1b0d80432c79 | 1263 | int format); |
wolfSSL | 4:1b0d80432c79 | 1264 | WOLFSSL_API int wolfSSL_CertManagerVerifyBuffer(WOLFSSL_CERT_MANAGER* cm, |
wolfSSL | 4:1b0d80432c79 | 1265 | const unsigned char* buff, long sz, int format); |
wolfSSL | 4:1b0d80432c79 | 1266 | WOLFSSL_API int wolfSSL_CertManagerCheckCRL(WOLFSSL_CERT_MANAGER*, |
wolfSSL | 4:1b0d80432c79 | 1267 | unsigned char*, int sz); |
wolfSSL | 4:1b0d80432c79 | 1268 | WOLFSSL_API int wolfSSL_CertManagerEnableCRL(WOLFSSL_CERT_MANAGER*, |
wolfSSL | 4:1b0d80432c79 | 1269 | int options); |
wolfSSL | 4:1b0d80432c79 | 1270 | WOLFSSL_API int wolfSSL_CertManagerDisableCRL(WOLFSSL_CERT_MANAGER*); |
wolfSSL | 4:1b0d80432c79 | 1271 | WOLFSSL_API int wolfSSL_CertManagerLoadCRL(WOLFSSL_CERT_MANAGER*, |
wolfSSL | 4:1b0d80432c79 | 1272 | const char*, int, int); |
wolfSSL | 4:1b0d80432c79 | 1273 | WOLFSSL_API int wolfSSL_CertManagerLoadCRLBuffer(WOLFSSL_CERT_MANAGER*, |
wolfSSL | 4:1b0d80432c79 | 1274 | const unsigned char*, long sz, int); |
wolfSSL | 4:1b0d80432c79 | 1275 | WOLFSSL_API int wolfSSL_CertManagerSetCRL_Cb(WOLFSSL_CERT_MANAGER*, |
wolfSSL | 4:1b0d80432c79 | 1276 | CbMissingCRL); |
wolfSSL | 4:1b0d80432c79 | 1277 | WOLFSSL_API int wolfSSL_CertManagerCheckOCSP(WOLFSSL_CERT_MANAGER*, |
wolfSSL | 4:1b0d80432c79 | 1278 | unsigned char*, int sz); |
wolfSSL | 4:1b0d80432c79 | 1279 | WOLFSSL_API int wolfSSL_CertManagerEnableOCSP(WOLFSSL_CERT_MANAGER*, |
wolfSSL | 4:1b0d80432c79 | 1280 | int options); |
wolfSSL | 4:1b0d80432c79 | 1281 | WOLFSSL_API int wolfSSL_CertManagerDisableOCSP(WOLFSSL_CERT_MANAGER*); |
wolfSSL | 4:1b0d80432c79 | 1282 | WOLFSSL_API int wolfSSL_CertManagerSetOCSPOverrideURL(WOLFSSL_CERT_MANAGER*, |
wolfSSL | 4:1b0d80432c79 | 1283 | const char*); |
wolfSSL | 4:1b0d80432c79 | 1284 | WOLFSSL_API int wolfSSL_CertManagerSetOCSP_Cb(WOLFSSL_CERT_MANAGER*, |
wolfSSL | 4:1b0d80432c79 | 1285 | CbOCSPIO, CbOCSPRespFree, void*); |
wolfSSL | 4:1b0d80432c79 | 1286 | |
wolfSSL | 4:1b0d80432c79 | 1287 | WOLFSSL_API int wolfSSL_CertManagerEnableOCSPStapling( |
wolfSSL | 4:1b0d80432c79 | 1288 | WOLFSSL_CERT_MANAGER* cm); |
wolfSSL | 4:1b0d80432c79 | 1289 | |
wolfSSL | 4:1b0d80432c79 | 1290 | WOLFSSL_API int wolfSSL_EnableCRL(WOLFSSL* ssl, int options); |
wolfSSL | 4:1b0d80432c79 | 1291 | WOLFSSL_API int wolfSSL_DisableCRL(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1292 | WOLFSSL_API int wolfSSL_LoadCRL(WOLFSSL*, const char*, int, int); |
wolfSSL | 4:1b0d80432c79 | 1293 | WOLFSSL_API int wolfSSL_SetCRL_Cb(WOLFSSL*, CbMissingCRL); |
wolfSSL | 4:1b0d80432c79 | 1294 | WOLFSSL_API int wolfSSL_EnableOCSP(WOLFSSL*, int options); |
wolfSSL | 4:1b0d80432c79 | 1295 | WOLFSSL_API int wolfSSL_DisableOCSP(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1296 | WOLFSSL_API int wolfSSL_SetOCSP_OverrideURL(WOLFSSL*, const char*); |
wolfSSL | 4:1b0d80432c79 | 1297 | WOLFSSL_API int wolfSSL_SetOCSP_Cb(WOLFSSL*, CbOCSPIO, CbOCSPRespFree, void*); |
wolfSSL | 4:1b0d80432c79 | 1298 | |
wolfSSL | 4:1b0d80432c79 | 1299 | WOLFSSL_API int wolfSSL_CTX_EnableCRL(WOLFSSL_CTX* ctx, int options); |
wolfSSL | 4:1b0d80432c79 | 1300 | WOLFSSL_API int wolfSSL_CTX_DisableCRL(WOLFSSL_CTX* ctx); |
wolfSSL | 4:1b0d80432c79 | 1301 | WOLFSSL_API int wolfSSL_CTX_LoadCRL(WOLFSSL_CTX*, const char*, int, int); |
wolfSSL | 4:1b0d80432c79 | 1302 | WOLFSSL_API int wolfSSL_CTX_SetCRL_Cb(WOLFSSL_CTX*, CbMissingCRL); |
wolfSSL | 4:1b0d80432c79 | 1303 | WOLFSSL_API int wolfSSL_CTX_EnableOCSP(WOLFSSL_CTX*, int options); |
wolfSSL | 4:1b0d80432c79 | 1304 | WOLFSSL_API int wolfSSL_CTX_DisableOCSP(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 1305 | WOLFSSL_API int wolfSSL_CTX_SetOCSP_OverrideURL(WOLFSSL_CTX*, const char*); |
wolfSSL | 4:1b0d80432c79 | 1306 | WOLFSSL_API int wolfSSL_CTX_SetOCSP_Cb(WOLFSSL_CTX*, |
wolfSSL | 4:1b0d80432c79 | 1307 | CbOCSPIO, CbOCSPRespFree, void*); |
wolfSSL | 4:1b0d80432c79 | 1308 | |
wolfSSL | 4:1b0d80432c79 | 1309 | WOLFSSL_API int wolfSSL_CTX_EnableOCSPStapling(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 1310 | #endif /* !NO_CERTS */ |
wolfSSL | 4:1b0d80432c79 | 1311 | |
wolfSSL | 4:1b0d80432c79 | 1312 | /* end of handshake frees temporary arrays, if user needs for get_keys or |
wolfSSL | 4:1b0d80432c79 | 1313 | psk hints, call KeepArrays before handshake and then FreeArrays when done |
wolfSSL | 4:1b0d80432c79 | 1314 | if don't want to wait for object free */ |
wolfSSL | 4:1b0d80432c79 | 1315 | WOLFSSL_API void wolfSSL_KeepArrays(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1316 | WOLFSSL_API void wolfSSL_FreeArrays(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1317 | |
wolfSSL | 4:1b0d80432c79 | 1318 | |
wolfSSL | 4:1b0d80432c79 | 1319 | /* cavium additions */ |
wolfSSL | 4:1b0d80432c79 | 1320 | WOLFSSL_API int wolfSSL_UseCavium(WOLFSSL*, int devId); |
wolfSSL | 4:1b0d80432c79 | 1321 | WOLFSSL_API int wolfSSL_CTX_UseCavium(WOLFSSL_CTX*, int devId); |
wolfSSL | 4:1b0d80432c79 | 1322 | |
wolfSSL | 4:1b0d80432c79 | 1323 | /* TLS Extensions */ |
wolfSSL | 4:1b0d80432c79 | 1324 | |
wolfSSL | 4:1b0d80432c79 | 1325 | /* Server Name Indication */ |
wolfSSL | 4:1b0d80432c79 | 1326 | #ifdef HAVE_SNI |
wolfSSL | 4:1b0d80432c79 | 1327 | |
wolfSSL | 4:1b0d80432c79 | 1328 | /* SNI types */ |
wolfSSL | 4:1b0d80432c79 | 1329 | enum { |
wolfSSL | 4:1b0d80432c79 | 1330 | WOLFSSL_SNI_HOST_NAME = 0 |
wolfSSL | 4:1b0d80432c79 | 1331 | }; |
wolfSSL | 4:1b0d80432c79 | 1332 | |
wolfSSL | 4:1b0d80432c79 | 1333 | WOLFSSL_API int wolfSSL_UseSNI(WOLFSSL* ssl, unsigned char type, |
wolfSSL | 4:1b0d80432c79 | 1334 | const void* data, unsigned short size); |
wolfSSL | 4:1b0d80432c79 | 1335 | WOLFSSL_API int wolfSSL_CTX_UseSNI(WOLFSSL_CTX* ctx, unsigned char type, |
wolfSSL | 4:1b0d80432c79 | 1336 | const void* data, unsigned short size); |
wolfSSL | 4:1b0d80432c79 | 1337 | |
wolfSSL | 4:1b0d80432c79 | 1338 | #ifndef NO_WOLFSSL_SERVER |
wolfSSL | 4:1b0d80432c79 | 1339 | |
wolfSSL | 4:1b0d80432c79 | 1340 | /* SNI options */ |
wolfSSL | 4:1b0d80432c79 | 1341 | enum { |
wolfSSL | 4:1b0d80432c79 | 1342 | /* Do not abort the handshake if the requested SNI didn't match. */ |
wolfSSL | 4:1b0d80432c79 | 1343 | WOLFSSL_SNI_CONTINUE_ON_MISMATCH = 0x01, |
wolfSSL | 4:1b0d80432c79 | 1344 | |
wolfSSL | 4:1b0d80432c79 | 1345 | /* Behave as if the requested SNI matched in a case of mismatch. */ |
wolfSSL | 4:1b0d80432c79 | 1346 | /* In this case, the status will be set to WOLFSSL_SNI_FAKE_MATCH. */ |
wolfSSL | 4:1b0d80432c79 | 1347 | WOLFSSL_SNI_ANSWER_ON_MISMATCH = 0x02, |
wolfSSL | 4:1b0d80432c79 | 1348 | |
wolfSSL | 4:1b0d80432c79 | 1349 | /* Abort the handshake if the client didn't send a SNI request. */ |
wolfSSL | 4:1b0d80432c79 | 1350 | WOLFSSL_SNI_ABORT_ON_ABSENCE = 0x04, |
wolfSSL | 4:1b0d80432c79 | 1351 | }; |
wolfSSL | 4:1b0d80432c79 | 1352 | |
wolfSSL | 4:1b0d80432c79 | 1353 | WOLFSSL_API void wolfSSL_SNI_SetOptions(WOLFSSL* ssl, unsigned char type, |
wolfSSL | 4:1b0d80432c79 | 1354 | unsigned char options); |
wolfSSL | 4:1b0d80432c79 | 1355 | WOLFSSL_API void wolfSSL_CTX_SNI_SetOptions(WOLFSSL_CTX* ctx, |
wolfSSL | 4:1b0d80432c79 | 1356 | unsigned char type, unsigned char options); |
wolfSSL | 4:1b0d80432c79 | 1357 | |
wolfSSL | 4:1b0d80432c79 | 1358 | /* SNI status */ |
wolfSSL | 4:1b0d80432c79 | 1359 | enum { |
wolfSSL | 4:1b0d80432c79 | 1360 | WOLFSSL_SNI_NO_MATCH = 0, |
wolfSSL | 4:1b0d80432c79 | 1361 | WOLFSSL_SNI_FAKE_MATCH = 1, /**< @see WOLFSSL_SNI_ANSWER_ON_MISMATCH */ |
wolfSSL | 4:1b0d80432c79 | 1362 | WOLFSSL_SNI_REAL_MATCH = 2, |
wolfSSL | 4:1b0d80432c79 | 1363 | WOLFSSL_SNI_FORCE_KEEP = 3 /** Used with -DWOLFSSL_ALWAYS_KEEP_SNI */ |
wolfSSL | 4:1b0d80432c79 | 1364 | }; |
wolfSSL | 4:1b0d80432c79 | 1365 | |
wolfSSL | 4:1b0d80432c79 | 1366 | WOLFSSL_API unsigned char wolfSSL_SNI_Status(WOLFSSL* ssl, unsigned char type); |
wolfSSL | 4:1b0d80432c79 | 1367 | |
wolfSSL | 4:1b0d80432c79 | 1368 | WOLFSSL_API unsigned short wolfSSL_SNI_GetRequest(WOLFSSL *ssl, |
wolfSSL | 4:1b0d80432c79 | 1369 | unsigned char type, void** data); |
wolfSSL | 4:1b0d80432c79 | 1370 | WOLFSSL_API int wolfSSL_SNI_GetFromBuffer( |
wolfSSL | 4:1b0d80432c79 | 1371 | const unsigned char* clientHello, unsigned int helloSz, |
wolfSSL | 4:1b0d80432c79 | 1372 | unsigned char type, unsigned char* sni, unsigned int* inOutSz); |
wolfSSL | 4:1b0d80432c79 | 1373 | |
wolfSSL | 4:1b0d80432c79 | 1374 | #endif |
wolfSSL | 4:1b0d80432c79 | 1375 | #endif |
wolfSSL | 4:1b0d80432c79 | 1376 | |
wolfSSL | 4:1b0d80432c79 | 1377 | /* Application-Layer Protocol Negotiation */ |
wolfSSL | 4:1b0d80432c79 | 1378 | #ifdef HAVE_ALPN |
wolfSSL | 4:1b0d80432c79 | 1379 | |
wolfSSL | 4:1b0d80432c79 | 1380 | /* ALPN status code */ |
wolfSSL | 4:1b0d80432c79 | 1381 | enum { |
wolfSSL | 4:1b0d80432c79 | 1382 | WOLFSSL_ALPN_NO_MATCH = 0, |
wolfSSL | 4:1b0d80432c79 | 1383 | WOLFSSL_ALPN_MATCH = 1, |
wolfSSL | 4:1b0d80432c79 | 1384 | WOLFSSL_ALPN_CONTINUE_ON_MISMATCH = 2, |
wolfSSL | 4:1b0d80432c79 | 1385 | WOLFSSL_ALPN_FAILED_ON_MISMATCH = 4, |
wolfSSL | 4:1b0d80432c79 | 1386 | }; |
wolfSSL | 4:1b0d80432c79 | 1387 | |
wolfSSL | 4:1b0d80432c79 | 1388 | enum { |
wolfSSL | 4:1b0d80432c79 | 1389 | WOLFSSL_MAX_ALPN_PROTO_NAME_LEN = 255, |
wolfSSL | 4:1b0d80432c79 | 1390 | WOLFSSL_MAX_ALPN_NUMBER = 257 |
wolfSSL | 4:1b0d80432c79 | 1391 | }; |
wolfSSL | 4:1b0d80432c79 | 1392 | |
wolfSSL | 4:1b0d80432c79 | 1393 | WOLFSSL_API int wolfSSL_UseALPN(WOLFSSL* ssl, char *protocol_name_list, |
wolfSSL | 4:1b0d80432c79 | 1394 | unsigned int protocol_name_listSz, |
wolfSSL | 4:1b0d80432c79 | 1395 | unsigned char options); |
wolfSSL | 4:1b0d80432c79 | 1396 | |
wolfSSL | 4:1b0d80432c79 | 1397 | WOLFSSL_API int wolfSSL_ALPN_GetProtocol(WOLFSSL* ssl, char **protocol_name, |
wolfSSL | 4:1b0d80432c79 | 1398 | unsigned short *size); |
wolfSSL | 4:1b0d80432c79 | 1399 | |
wolfSSL | 4:1b0d80432c79 | 1400 | WOLFSSL_API int wolfSSL_ALPN_GetPeerProtocol(WOLFSSL* ssl, char **list, |
wolfSSL | 4:1b0d80432c79 | 1401 | unsigned short *listSz); |
wolfSSL | 4:1b0d80432c79 | 1402 | #endif /* HAVE_ALPN */ |
wolfSSL | 4:1b0d80432c79 | 1403 | |
wolfSSL | 4:1b0d80432c79 | 1404 | /* Maximum Fragment Length */ |
wolfSSL | 4:1b0d80432c79 | 1405 | #ifdef HAVE_MAX_FRAGMENT |
wolfSSL | 4:1b0d80432c79 | 1406 | |
wolfSSL | 4:1b0d80432c79 | 1407 | /* Fragment lengths */ |
wolfSSL | 4:1b0d80432c79 | 1408 | enum { |
wolfSSL | 4:1b0d80432c79 | 1409 | WOLFSSL_MFL_2_9 = 1, /* 512 bytes */ |
wolfSSL | 4:1b0d80432c79 | 1410 | WOLFSSL_MFL_2_10 = 2, /* 1024 bytes */ |
wolfSSL | 4:1b0d80432c79 | 1411 | WOLFSSL_MFL_2_11 = 3, /* 2048 bytes */ |
wolfSSL | 4:1b0d80432c79 | 1412 | WOLFSSL_MFL_2_12 = 4, /* 4096 bytes */ |
wolfSSL | 4:1b0d80432c79 | 1413 | WOLFSSL_MFL_2_13 = 5 /* 8192 bytes *//* wolfSSL ONLY!!! */ |
wolfSSL | 4:1b0d80432c79 | 1414 | }; |
wolfSSL | 4:1b0d80432c79 | 1415 | |
wolfSSL | 4:1b0d80432c79 | 1416 | #ifndef NO_WOLFSSL_CLIENT |
wolfSSL | 4:1b0d80432c79 | 1417 | |
wolfSSL | 4:1b0d80432c79 | 1418 | WOLFSSL_API int wolfSSL_UseMaxFragment(WOLFSSL* ssl, unsigned char mfl); |
wolfSSL | 4:1b0d80432c79 | 1419 | WOLFSSL_API int wolfSSL_CTX_UseMaxFragment(WOLFSSL_CTX* ctx, unsigned char mfl); |
wolfSSL | 4:1b0d80432c79 | 1420 | |
wolfSSL | 4:1b0d80432c79 | 1421 | #endif |
wolfSSL | 4:1b0d80432c79 | 1422 | #endif |
wolfSSL | 4:1b0d80432c79 | 1423 | |
wolfSSL | 4:1b0d80432c79 | 1424 | /* Truncated HMAC */ |
wolfSSL | 4:1b0d80432c79 | 1425 | #ifdef HAVE_TRUNCATED_HMAC |
wolfSSL | 4:1b0d80432c79 | 1426 | #ifndef NO_WOLFSSL_CLIENT |
wolfSSL | 4:1b0d80432c79 | 1427 | |
wolfSSL | 4:1b0d80432c79 | 1428 | WOLFSSL_API int wolfSSL_UseTruncatedHMAC(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1429 | WOLFSSL_API int wolfSSL_CTX_UseTruncatedHMAC(WOLFSSL_CTX* ctx); |
wolfSSL | 4:1b0d80432c79 | 1430 | |
wolfSSL | 4:1b0d80432c79 | 1431 | #endif |
wolfSSL | 4:1b0d80432c79 | 1432 | #endif |
wolfSSL | 4:1b0d80432c79 | 1433 | |
wolfSSL | 4:1b0d80432c79 | 1434 | /* Certificate Status Request */ |
wolfSSL | 4:1b0d80432c79 | 1435 | /* Certificate Status Type */ |
wolfSSL | 4:1b0d80432c79 | 1436 | enum { |
wolfSSL | 4:1b0d80432c79 | 1437 | WOLFSSL_CSR_OCSP = 1 |
wolfSSL | 4:1b0d80432c79 | 1438 | }; |
wolfSSL | 4:1b0d80432c79 | 1439 | |
wolfSSL | 4:1b0d80432c79 | 1440 | /* Certificate Status Options (flags) */ |
wolfSSL | 4:1b0d80432c79 | 1441 | enum { |
wolfSSL | 4:1b0d80432c79 | 1442 | WOLFSSL_CSR_OCSP_USE_NONCE = 0x01 |
wolfSSL | 4:1b0d80432c79 | 1443 | }; |
wolfSSL | 4:1b0d80432c79 | 1444 | |
wolfSSL | 4:1b0d80432c79 | 1445 | #ifdef HAVE_CERTIFICATE_STATUS_REQUEST |
wolfSSL | 4:1b0d80432c79 | 1446 | #ifndef NO_WOLFSSL_CLIENT |
wolfSSL | 4:1b0d80432c79 | 1447 | |
wolfSSL | 4:1b0d80432c79 | 1448 | WOLFSSL_API int wolfSSL_UseOCSPStapling(WOLFSSL* ssl, |
wolfSSL | 4:1b0d80432c79 | 1449 | unsigned char status_type, unsigned char options); |
wolfSSL | 4:1b0d80432c79 | 1450 | |
wolfSSL | 4:1b0d80432c79 | 1451 | WOLFSSL_API int wolfSSL_CTX_UseOCSPStapling(WOLFSSL_CTX* ctx, |
wolfSSL | 4:1b0d80432c79 | 1452 | unsigned char status_type, unsigned char options); |
wolfSSL | 4:1b0d80432c79 | 1453 | |
wolfSSL | 4:1b0d80432c79 | 1454 | #endif |
wolfSSL | 4:1b0d80432c79 | 1455 | #endif |
wolfSSL | 4:1b0d80432c79 | 1456 | |
wolfSSL | 4:1b0d80432c79 | 1457 | /* Certificate Status Request v2 */ |
wolfSSL | 4:1b0d80432c79 | 1458 | /* Certificate Status Type */ |
wolfSSL | 4:1b0d80432c79 | 1459 | enum { |
wolfSSL | 4:1b0d80432c79 | 1460 | WOLFSSL_CSR2_OCSP = 1, |
wolfSSL | 4:1b0d80432c79 | 1461 | WOLFSSL_CSR2_OCSP_MULTI = 2 |
wolfSSL | 4:1b0d80432c79 | 1462 | }; |
wolfSSL | 4:1b0d80432c79 | 1463 | |
wolfSSL | 4:1b0d80432c79 | 1464 | /* Certificate Status v2 Options (flags) */ |
wolfSSL | 4:1b0d80432c79 | 1465 | enum { |
wolfSSL | 4:1b0d80432c79 | 1466 | WOLFSSL_CSR2_OCSP_USE_NONCE = 0x01 |
wolfSSL | 4:1b0d80432c79 | 1467 | }; |
wolfSSL | 4:1b0d80432c79 | 1468 | |
wolfSSL | 4:1b0d80432c79 | 1469 | #ifdef HAVE_CERTIFICATE_STATUS_REQUEST_V2 |
wolfSSL | 4:1b0d80432c79 | 1470 | #ifndef NO_WOLFSSL_CLIENT |
wolfSSL | 4:1b0d80432c79 | 1471 | |
wolfSSL | 4:1b0d80432c79 | 1472 | WOLFSSL_API int wolfSSL_UseOCSPStaplingV2(WOLFSSL* ssl, |
wolfSSL | 4:1b0d80432c79 | 1473 | unsigned char status_type, unsigned char options); |
wolfSSL | 4:1b0d80432c79 | 1474 | |
wolfSSL | 4:1b0d80432c79 | 1475 | WOLFSSL_API int wolfSSL_CTX_UseOCSPStaplingV2(WOLFSSL_CTX* ctx, |
wolfSSL | 4:1b0d80432c79 | 1476 | unsigned char status_type, unsigned char options); |
wolfSSL | 4:1b0d80432c79 | 1477 | |
wolfSSL | 4:1b0d80432c79 | 1478 | #endif |
wolfSSL | 4:1b0d80432c79 | 1479 | #endif |
wolfSSL | 4:1b0d80432c79 | 1480 | |
wolfSSL | 4:1b0d80432c79 | 1481 | /* Elliptic Curves */ |
wolfSSL | 4:1b0d80432c79 | 1482 | enum { |
wolfSSL | 4:1b0d80432c79 | 1483 | WOLFSSL_ECC_SECP160R1 = 0x10, |
wolfSSL | 4:1b0d80432c79 | 1484 | WOLFSSL_ECC_SECP192R1 = 0x13, |
wolfSSL | 4:1b0d80432c79 | 1485 | WOLFSSL_ECC_SECP224R1 = 0x15, |
wolfSSL | 4:1b0d80432c79 | 1486 | WOLFSSL_ECC_SECP256R1 = 0x17, |
wolfSSL | 4:1b0d80432c79 | 1487 | WOLFSSL_ECC_SECP384R1 = 0x18, |
wolfSSL | 4:1b0d80432c79 | 1488 | WOLFSSL_ECC_SECP521R1 = 0x19 |
wolfSSL | 4:1b0d80432c79 | 1489 | }; |
wolfSSL | 4:1b0d80432c79 | 1490 | |
wolfSSL | 4:1b0d80432c79 | 1491 | #ifdef HAVE_SUPPORTED_CURVES |
wolfSSL | 4:1b0d80432c79 | 1492 | #ifndef NO_WOLFSSL_CLIENT |
wolfSSL | 4:1b0d80432c79 | 1493 | |
wolfSSL | 4:1b0d80432c79 | 1494 | WOLFSSL_API int wolfSSL_UseSupportedCurve(WOLFSSL* ssl, unsigned short name); |
wolfSSL | 4:1b0d80432c79 | 1495 | WOLFSSL_API int wolfSSL_CTX_UseSupportedCurve(WOLFSSL_CTX* ctx, |
wolfSSL | 4:1b0d80432c79 | 1496 | unsigned short name); |
wolfSSL | 4:1b0d80432c79 | 1497 | |
wolfSSL | 4:1b0d80432c79 | 1498 | #endif |
wolfSSL | 4:1b0d80432c79 | 1499 | #endif |
wolfSSL | 4:1b0d80432c79 | 1500 | |
wolfSSL | 4:1b0d80432c79 | 1501 | |
wolfSSL | 4:1b0d80432c79 | 1502 | /* Secure Renegotiation */ |
wolfSSL | 4:1b0d80432c79 | 1503 | #ifdef HAVE_SECURE_RENEGOTIATION |
wolfSSL | 4:1b0d80432c79 | 1504 | |
wolfSSL | 4:1b0d80432c79 | 1505 | WOLFSSL_API int wolfSSL_UseSecureRenegotiation(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1506 | WOLFSSL_API int wolfSSL_Rehandshake(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1507 | |
wolfSSL | 4:1b0d80432c79 | 1508 | #endif |
wolfSSL | 4:1b0d80432c79 | 1509 | |
wolfSSL | 4:1b0d80432c79 | 1510 | /* Session Ticket */ |
wolfSSL | 4:1b0d80432c79 | 1511 | #ifdef HAVE_SESSION_TICKET |
wolfSSL | 4:1b0d80432c79 | 1512 | |
wolfSSL | 4:1b0d80432c79 | 1513 | #ifndef NO_WOLFSSL_CLIENT |
wolfSSL | 4:1b0d80432c79 | 1514 | WOLFSSL_API int wolfSSL_UseSessionTicket(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1515 | WOLFSSL_API int wolfSSL_CTX_UseSessionTicket(WOLFSSL_CTX* ctx); |
wolfSSL | 4:1b0d80432c79 | 1516 | WOLFSSL_API int wolfSSL_get_SessionTicket(WOLFSSL*, unsigned char*, unsigned int*); |
wolfSSL | 4:1b0d80432c79 | 1517 | WOLFSSL_API int wolfSSL_set_SessionTicket(WOLFSSL*, unsigned char*, unsigned int); |
wolfSSL | 4:1b0d80432c79 | 1518 | typedef int (*CallbackSessionTicket)(WOLFSSL*, const unsigned char*, int, void*); |
wolfSSL | 4:1b0d80432c79 | 1519 | WOLFSSL_API int wolfSSL_set_SessionTicket_cb(WOLFSSL*, |
wolfSSL | 4:1b0d80432c79 | 1520 | CallbackSessionTicket, void*); |
wolfSSL | 4:1b0d80432c79 | 1521 | #endif /* NO_WOLFSSL_CLIENT */ |
wolfSSL | 4:1b0d80432c79 | 1522 | |
wolfSSL | 4:1b0d80432c79 | 1523 | #ifndef NO_WOLFSSL_SERVER |
wolfSSL | 4:1b0d80432c79 | 1524 | |
wolfSSL | 4:1b0d80432c79 | 1525 | #define WOLFSSL_TICKET_NAME_SZ 16 |
wolfSSL | 4:1b0d80432c79 | 1526 | #define WOLFSSL_TICKET_IV_SZ 16 |
wolfSSL | 4:1b0d80432c79 | 1527 | #define WOLFSSL_TICKET_MAC_SZ 32 |
wolfSSL | 4:1b0d80432c79 | 1528 | |
wolfSSL | 4:1b0d80432c79 | 1529 | enum TicketEncRet { |
wolfSSL | 4:1b0d80432c79 | 1530 | WOLFSSL_TICKET_RET_FATAL = -1, /* fatal error, don't use ticket */ |
wolfSSL | 4:1b0d80432c79 | 1531 | WOLFSSL_TICKET_RET_OK = 0, /* ok, use ticket */ |
wolfSSL | 4:1b0d80432c79 | 1532 | WOLFSSL_TICKET_RET_REJECT, /* don't use ticket, but not fatal */ |
wolfSSL | 4:1b0d80432c79 | 1533 | WOLFSSL_TICKET_RET_CREATE /* existing ticket ok and create new one */ |
wolfSSL | 4:1b0d80432c79 | 1534 | }; |
wolfSSL | 4:1b0d80432c79 | 1535 | |
wolfSSL | 4:1b0d80432c79 | 1536 | typedef int (*SessionTicketEncCb)(WOLFSSL*, |
wolfSSL | 4:1b0d80432c79 | 1537 | unsigned char key_name[WOLFSSL_TICKET_NAME_SZ], |
wolfSSL | 4:1b0d80432c79 | 1538 | unsigned char iv[WOLFSSL_TICKET_IV_SZ], |
wolfSSL | 4:1b0d80432c79 | 1539 | unsigned char mac[WOLFSSL_TICKET_MAC_SZ], |
wolfSSL | 4:1b0d80432c79 | 1540 | int enc, unsigned char*, int, int*, void*); |
wolfSSL | 4:1b0d80432c79 | 1541 | WOLFSSL_API int wolfSSL_CTX_set_TicketEncCb(WOLFSSL_CTX* ctx, |
wolfSSL | 4:1b0d80432c79 | 1542 | SessionTicketEncCb); |
wolfSSL | 4:1b0d80432c79 | 1543 | WOLFSSL_API int wolfSSL_CTX_set_TicketHint(WOLFSSL_CTX* ctx, int); |
wolfSSL | 4:1b0d80432c79 | 1544 | WOLFSSL_API int wolfSSL_CTX_set_TicketEncCtx(WOLFSSL_CTX* ctx, void*); |
wolfSSL | 4:1b0d80432c79 | 1545 | |
wolfSSL | 4:1b0d80432c79 | 1546 | #endif /* NO_WOLFSSL_SERVER */ |
wolfSSL | 4:1b0d80432c79 | 1547 | |
wolfSSL | 4:1b0d80432c79 | 1548 | #endif /* HAVE_SESSION_TICKET */ |
wolfSSL | 4:1b0d80432c79 | 1549 | |
wolfSSL | 4:1b0d80432c79 | 1550 | #ifdef HAVE_QSH |
wolfSSL | 4:1b0d80432c79 | 1551 | /* Quantum-safe Crypto Schemes */ |
wolfSSL | 4:1b0d80432c79 | 1552 | enum { |
wolfSSL | 4:1b0d80432c79 | 1553 | WOLFSSL_NTRU_EESS439 = 0x0101, /* max plaintext length of 65 */ |
wolfSSL | 4:1b0d80432c79 | 1554 | WOLFSSL_NTRU_EESS593 = 0x0102, /* max plaintext length of 86 */ |
wolfSSL | 4:1b0d80432c79 | 1555 | WOLFSSL_NTRU_EESS743 = 0x0103, /* max plaintext length of 106 */ |
wolfSSL | 4:1b0d80432c79 | 1556 | WOLFSSL_LWE_XXX = 0x0201, /* Learning With Error encryption scheme */ |
wolfSSL | 4:1b0d80432c79 | 1557 | WOLFSSL_HFE_XXX = 0x0301, /* Hidden Field Equation scheme */ |
wolfSSL | 4:1b0d80432c79 | 1558 | WOLFSSL_NULL_QSH = 0xFFFF /* QSHScheme is not used */ |
wolfSSL | 4:1b0d80432c79 | 1559 | }; |
wolfSSL | 4:1b0d80432c79 | 1560 | |
wolfSSL | 4:1b0d80432c79 | 1561 | |
wolfSSL | 4:1b0d80432c79 | 1562 | /* test if the connection is using a QSH secure connection return 1 if so */ |
wolfSSL | 4:1b0d80432c79 | 1563 | WOLFSSL_API int wolfSSL_isQSH(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1564 | WOLFSSL_API int wolfSSL_UseSupportedQSH(WOLFSSL* ssl, unsigned short name); |
wolfSSL | 4:1b0d80432c79 | 1565 | #ifndef NO_WOLFSSL_CLIENT |
wolfSSL | 4:1b0d80432c79 | 1566 | /* user control over sending client public key in hello |
wolfSSL | 4:1b0d80432c79 | 1567 | when flag = 1 will send keys if flag is 0 or function is not called |
wolfSSL | 4:1b0d80432c79 | 1568 | then will not send keys in the hello extension */ |
wolfSSL | 4:1b0d80432c79 | 1569 | WOLFSSL_API int wolfSSL_UseClientQSHKeys(WOLFSSL* ssl, unsigned char flag); |
wolfSSL | 4:1b0d80432c79 | 1570 | #endif |
wolfSSL | 4:1b0d80432c79 | 1571 | #endif |
wolfSSL | 4:1b0d80432c79 | 1572 | |
wolfSSL | 4:1b0d80432c79 | 1573 | #define WOLFSSL_CRL_MONITOR 0x01 /* monitor this dir flag */ |
wolfSSL | 4:1b0d80432c79 | 1574 | #define WOLFSSL_CRL_START_MON 0x02 /* start monitoring flag */ |
wolfSSL | 4:1b0d80432c79 | 1575 | |
wolfSSL | 4:1b0d80432c79 | 1576 | |
wolfSSL | 4:1b0d80432c79 | 1577 | /* notify user the handshake is done */ |
wolfSSL | 4:1b0d80432c79 | 1578 | typedef int (*HandShakeDoneCb)(WOLFSSL*, void*); |
wolfSSL | 4:1b0d80432c79 | 1579 | WOLFSSL_API int wolfSSL_SetHsDoneCb(WOLFSSL*, HandShakeDoneCb, void*); |
wolfSSL | 4:1b0d80432c79 | 1580 | |
wolfSSL | 4:1b0d80432c79 | 1581 | |
wolfSSL | 4:1b0d80432c79 | 1582 | WOLFSSL_API int wolfSSL_PrintSessionStats(void); |
wolfSSL | 4:1b0d80432c79 | 1583 | WOLFSSL_API int wolfSSL_get_session_stats(unsigned int* active, |
wolfSSL | 4:1b0d80432c79 | 1584 | unsigned int* total, |
wolfSSL | 4:1b0d80432c79 | 1585 | unsigned int* peak, |
wolfSSL | 4:1b0d80432c79 | 1586 | unsigned int* maxSessions); |
wolfSSL | 4:1b0d80432c79 | 1587 | /* External facing KDF */ |
wolfSSL | 4:1b0d80432c79 | 1588 | WOLFSSL_API |
wolfSSL | 4:1b0d80432c79 | 1589 | int wolfSSL_MakeTlsMasterSecret(unsigned char* ms, unsigned int msLen, |
wolfSSL | 4:1b0d80432c79 | 1590 | const unsigned char* pms, unsigned int pmsLen, |
wolfSSL | 4:1b0d80432c79 | 1591 | const unsigned char* cr, const unsigned char* sr, |
wolfSSL | 4:1b0d80432c79 | 1592 | int tls1_2, int hash_type); |
wolfSSL | 4:1b0d80432c79 | 1593 | |
wolfSSL | 4:1b0d80432c79 | 1594 | WOLFSSL_API |
wolfSSL | 4:1b0d80432c79 | 1595 | int wolfSSL_DeriveTlsKeys(unsigned char* key_data, unsigned int keyLen, |
wolfSSL | 4:1b0d80432c79 | 1596 | const unsigned char* ms, unsigned int msLen, |
wolfSSL | 4:1b0d80432c79 | 1597 | const unsigned char* sr, const unsigned char* cr, |
wolfSSL | 4:1b0d80432c79 | 1598 | int tls1_2, int hash_type); |
wolfSSL | 4:1b0d80432c79 | 1599 | |
wolfSSL | 4:1b0d80432c79 | 1600 | #ifdef WOLFSSL_CALLBACKS |
wolfSSL | 4:1b0d80432c79 | 1601 | |
wolfSSL | 4:1b0d80432c79 | 1602 | /* used internally by wolfSSL while OpenSSL types aren't */ |
wolfSSL | 4:1b0d80432c79 | 1603 | #include <wolfssl/callbacks.h> |
wolfSSL | 4:1b0d80432c79 | 1604 | |
wolfSSL | 4:1b0d80432c79 | 1605 | typedef int (*HandShakeCallBack)(HandShakeInfo*); |
wolfSSL | 4:1b0d80432c79 | 1606 | typedef int (*TimeoutCallBack)(TimeoutInfo*); |
wolfSSL | 4:1b0d80432c79 | 1607 | |
wolfSSL | 4:1b0d80432c79 | 1608 | /* wolfSSL connect extension allowing HandShakeCallBack and/or TimeoutCallBack |
wolfSSL | 4:1b0d80432c79 | 1609 | for diagnostics */ |
wolfSSL | 4:1b0d80432c79 | 1610 | WOLFSSL_API int wolfSSL_connect_ex(WOLFSSL*, HandShakeCallBack, TimeoutCallBack, |
wolfSSL | 4:1b0d80432c79 | 1611 | Timeval); |
wolfSSL | 4:1b0d80432c79 | 1612 | WOLFSSL_API int wolfSSL_accept_ex(WOLFSSL*, HandShakeCallBack, TimeoutCallBack, |
wolfSSL | 4:1b0d80432c79 | 1613 | Timeval); |
wolfSSL | 4:1b0d80432c79 | 1614 | |
wolfSSL | 4:1b0d80432c79 | 1615 | #endif /* WOLFSSL_CALLBACKS */ |
wolfSSL | 4:1b0d80432c79 | 1616 | |
wolfSSL | 4:1b0d80432c79 | 1617 | |
wolfSSL | 4:1b0d80432c79 | 1618 | #ifdef WOLFSSL_HAVE_WOLFSCEP |
wolfSSL | 4:1b0d80432c79 | 1619 | WOLFSSL_API void wolfSSL_wolfSCEP(void); |
wolfSSL | 4:1b0d80432c79 | 1620 | #endif /* WOLFSSL_HAVE_WOLFSCEP */ |
wolfSSL | 4:1b0d80432c79 | 1621 | |
wolfSSL | 4:1b0d80432c79 | 1622 | #ifdef WOLFSSL_HAVE_CERT_SERVICE |
wolfSSL | 4:1b0d80432c79 | 1623 | WOLFSSL_API void wolfSSL_cert_service(void); |
wolfSSL | 4:1b0d80432c79 | 1624 | #endif |
wolfSSL | 4:1b0d80432c79 | 1625 | |
wolfSSL | 4:1b0d80432c79 | 1626 | |
wolfSSL | 4:1b0d80432c79 | 1627 | #ifdef OPENSSL_EXTRA /*lighttp compatibility */ |
wolfSSL | 4:1b0d80432c79 | 1628 | #ifdef HAVE_LIGHTY |
wolfSSL | 4:1b0d80432c79 | 1629 | |
wolfSSL | 4:1b0d80432c79 | 1630 | typedef struct WOLFSSL_X509_NAME_ENTRY { |
wolfSSL | 4:1b0d80432c79 | 1631 | WOLFSSL_ASN1_OBJECT* object; |
wolfSSL | 4:1b0d80432c79 | 1632 | WOLFSSL_ASN1_STRING* value; |
wolfSSL | 4:1b0d80432c79 | 1633 | int set; |
wolfSSL | 4:1b0d80432c79 | 1634 | int size; |
wolfSSL | 4:1b0d80432c79 | 1635 | } WOLFSSL_X509_NAME_ENTRY; |
wolfSSL | 4:1b0d80432c79 | 1636 | |
wolfSSL | 4:1b0d80432c79 | 1637 | |
wolfSSL | 4:1b0d80432c79 | 1638 | #include <wolfssl/openssl/dh.h> |
wolfSSL | 4:1b0d80432c79 | 1639 | #include <wolfssl/openssl/asn1.h> |
wolfSSL | 4:1b0d80432c79 | 1640 | |
wolfSSL | 4:1b0d80432c79 | 1641 | WOLFSSL_API void wolfSSL_X509_NAME_free(WOLFSSL_X509_NAME *name); |
wolfSSL | 4:1b0d80432c79 | 1642 | WOLFSSL_API char wolfSSL_CTX_use_certificate(WOLFSSL_CTX *ctx, WOLFSSL_X509 *x); |
wolfSSL | 4:1b0d80432c79 | 1643 | WOLFSSL_API int wolfSSL_CTX_use_PrivateKey(WOLFSSL_CTX *ctx, WOLFSSL_EVP_PKEY *pkey); |
wolfSSL | 4:1b0d80432c79 | 1644 | WOLFSSL_API int wolfSSL_BIO_read_filename(WOLFSSL_BIO *b, const char *name); |
wolfSSL | 4:1b0d80432c79 | 1645 | WOLFSSL_API WOLFSSL_BIO_METHOD* wolfSSL_BIO_s_file(void); |
wolfSSL | 4:1b0d80432c79 | 1646 | /* These are to be merged shortly */ |
wolfSSL | 4:1b0d80432c79 | 1647 | WOLFSSL_API const char * wolf_OBJ_nid2sn(int n); |
wolfSSL | 4:1b0d80432c79 | 1648 | WOLFSSL_API int wolf_OBJ_obj2nid(const WOLFSSL_ASN1_OBJECT *o); |
wolfSSL | 4:1b0d80432c79 | 1649 | WOLFSSL_API int wolf_OBJ_sn2nid(const char *sn); |
wolfSSL | 4:1b0d80432c79 | 1650 | WOLFSSL_API WOLFSSL_X509 *PEM_read_bio_WOLFSSL_X509(WOLFSSL_BIO *bp, WOLFSSL_X509 **x, pem_password_cb *cb, void *u); |
wolfSSL | 4:1b0d80432c79 | 1651 | WOLFSSL_API void wolfSSL_CTX_set_verify_depth(WOLFSSL_CTX *ctx,int depth); |
wolfSSL | 4:1b0d80432c79 | 1652 | WOLFSSL_API void* wolfSSL_get_app_data( const WOLFSSL *ssl); |
wolfSSL | 4:1b0d80432c79 | 1653 | WOLFSSL_API void wolfSSL_set_app_data(WOLFSSL *ssl, void *arg); |
wolfSSL | 4:1b0d80432c79 | 1654 | WOLFSSL_API WOLFSSL_ASN1_OBJECT * wolfSSL_X509_NAME_ENTRY_get_object(WOLFSSL_X509_NAME_ENTRY *ne); |
wolfSSL | 4:1b0d80432c79 | 1655 | WOLFSSL_API WOLFSSL_X509_NAME_ENTRY *wolfSSL_X509_NAME_get_entry(WOLFSSL_X509_NAME *name, int loc); |
wolfSSL | 4:1b0d80432c79 | 1656 | WOLFSSL_API void wolfSSL_sk_X509_NAME_pop_free(STACK_OF(WOLFSSL_X509_NAME)* sk, void f (WOLFSSL_X509_NAME*)); |
wolfSSL | 4:1b0d80432c79 | 1657 | WOLFSSL_API unsigned char *wolfSSL_SHA1(const unsigned char *d, size_t n, unsigned char *md); |
wolfSSL | 4:1b0d80432c79 | 1658 | WOLFSSL_API int wolfSSL_X509_check_private_key(WOLFSSL_X509*, WOLFSSL_EVP_PKEY*); |
wolfSSL | 4:1b0d80432c79 | 1659 | WOLFSSL_API STACK_OF(WOLFSSL_X509_NAME) *wolfSSL_dup_CA_list( STACK_OF(WOLFSSL_X509_NAME) *sk ); |
wolfSSL | 4:1b0d80432c79 | 1660 | |
wolfSSL | 4:1b0d80432c79 | 1661 | /* end lighttpd*/ |
wolfSSL | 4:1b0d80432c79 | 1662 | #endif |
wolfSSL | 4:1b0d80432c79 | 1663 | #endif |
wolfSSL | 4:1b0d80432c79 | 1664 | |
wolfSSL | 4:1b0d80432c79 | 1665 | #if defined(HAVE_STUNNEL) || defined(HAVE_LIGHTY) |
wolfSSL | 4:1b0d80432c79 | 1666 | |
wolfSSL | 4:1b0d80432c79 | 1667 | WOLFSSL_API char * wolf_OBJ_nid2ln(int n); |
wolfSSL | 4:1b0d80432c79 | 1668 | WOLFSSL_API int wolf_OBJ_txt2nid(const char *sn); |
wolfSSL | 4:1b0d80432c79 | 1669 | WOLFSSL_API WOLFSSL_BIO* wolfSSL_BIO_new_file(const char *filename, const char *mode); |
wolfSSL | 4:1b0d80432c79 | 1670 | WOLFSSL_API long wolfSSL_CTX_set_tmp_dh(WOLFSSL_CTX*, WOLFSSL_DH*); |
wolfSSL | 4:1b0d80432c79 | 1671 | WOLFSSL_API WOLFSSL_DH *wolfSSL_PEM_read_bio_DHparams(WOLFSSL_BIO *bp, |
wolfSSL | 4:1b0d80432c79 | 1672 | WOLFSSL_DH **x, pem_password_cb *cb, void *u); |
wolfSSL | 4:1b0d80432c79 | 1673 | WOLFSSL_API int PEM_write_bio_WOLFSSL_X509(WOLFSSL_BIO *bp, WOLFSSL_X509 *x); |
wolfSSL | 4:1b0d80432c79 | 1674 | |
wolfSSL | 4:1b0d80432c79 | 1675 | |
wolfSSL | 4:1b0d80432c79 | 1676 | #endif /* HAVE_STUNNEL || HAVE_LIGHTY */ |
wolfSSL | 4:1b0d80432c79 | 1677 | |
wolfSSL | 4:1b0d80432c79 | 1678 | |
wolfSSL | 4:1b0d80432c79 | 1679 | #ifdef HAVE_STUNNEL |
wolfSSL | 4:1b0d80432c79 | 1680 | |
wolfSSL | 4:1b0d80432c79 | 1681 | #include <wolfssl/openssl/crypto.h> |
wolfSSL | 4:1b0d80432c79 | 1682 | |
wolfSSL | 4:1b0d80432c79 | 1683 | /* SNI received callback type */ |
wolfSSL | 4:1b0d80432c79 | 1684 | typedef int (*CallbackSniRecv)(WOLFSSL *ssl, int *ret, void* exArg); |
wolfSSL | 4:1b0d80432c79 | 1685 | |
wolfSSL | 4:1b0d80432c79 | 1686 | WOLFSSL_API int wolfSSL_CRYPTO_set_mem_ex_functions(void *(*m) (size_t, const char *, int), |
wolfSSL | 4:1b0d80432c79 | 1687 | void *(*r) (void *, size_t, const char *, int), void (*f) (void *)); |
wolfSSL | 4:1b0d80432c79 | 1688 | |
wolfSSL | 4:1b0d80432c79 | 1689 | WOLFSSL_API WOLFSSL_DH *wolfSSL_DH_generate_parameters(int prime_len, int generator, |
wolfSSL | 4:1b0d80432c79 | 1690 | void (*callback) (int, int, void *), void *cb_arg); |
wolfSSL | 4:1b0d80432c79 | 1691 | |
wolfSSL | 4:1b0d80432c79 | 1692 | WOLFSSL_API int wolfSSL_DH_generate_parameters_ex(WOLFSSL_DH*, int, int, |
wolfSSL | 4:1b0d80432c79 | 1693 | void (*callback) (int, int, void *)); |
wolfSSL | 4:1b0d80432c79 | 1694 | |
wolfSSL | 4:1b0d80432c79 | 1695 | WOLFSSL_API void wolfSSL_ERR_load_crypto_strings(void); |
wolfSSL | 4:1b0d80432c79 | 1696 | |
wolfSSL | 4:1b0d80432c79 | 1697 | WOLFSSL_API unsigned long wolfSSL_ERR_peek_last_error(void); |
wolfSSL | 4:1b0d80432c79 | 1698 | |
wolfSSL | 4:1b0d80432c79 | 1699 | WOLFSSL_API int wolfSSL_FIPS_mode(void); |
wolfSSL | 4:1b0d80432c79 | 1700 | |
wolfSSL | 4:1b0d80432c79 | 1701 | WOLFSSL_API int wolfSSL_FIPS_mode_set(int r); |
wolfSSL | 4:1b0d80432c79 | 1702 | |
wolfSSL | 4:1b0d80432c79 | 1703 | WOLFSSL_API int wolfSSL_RAND_set_rand_method(const void *meth); |
wolfSSL | 4:1b0d80432c79 | 1704 | |
wolfSSL | 4:1b0d80432c79 | 1705 | WOLFSSL_API int wolfSSL_CIPHER_get_bits(const WOLFSSL_CIPHER *c, int *alg_bits); |
wolfSSL | 4:1b0d80432c79 | 1706 | |
wolfSSL | 4:1b0d80432c79 | 1707 | WOLFSSL_API int wolfSSL_sk_X509_NAME_num(const STACK_OF(WOLFSSL_X509_NAME) *s); |
wolfSSL | 4:1b0d80432c79 | 1708 | |
wolfSSL | 4:1b0d80432c79 | 1709 | WOLFSSL_API int wolfSSL_sk_X509_num(const STACK_OF(WOLFSSL_X509) *s); |
wolfSSL | 4:1b0d80432c79 | 1710 | |
wolfSSL | 4:1b0d80432c79 | 1711 | WOLFSSL_API int wolfSSL_X509_NAME_print_ex(WOLFSSL_BIO*,WOLFSSL_X509_NAME*,int, |
wolfSSL | 4:1b0d80432c79 | 1712 | unsigned long); |
wolfSSL | 4:1b0d80432c79 | 1713 | |
wolfSSL | 4:1b0d80432c79 | 1714 | WOLFSSL_API WOLFSSL_ASN1_BIT_STRING* wolfSSL_X509_get0_pubkey_bitstr( |
wolfSSL | 4:1b0d80432c79 | 1715 | const WOLFSSL_X509*); |
wolfSSL | 4:1b0d80432c79 | 1716 | |
wolfSSL | 4:1b0d80432c79 | 1717 | WOLFSSL_API int wolfSSL_CTX_add_session(WOLFSSL_CTX*, WOLFSSL_SESSION*); |
wolfSSL | 4:1b0d80432c79 | 1718 | |
wolfSSL | 4:1b0d80432c79 | 1719 | WOLFSSL_API WOLFSSL_CTX* wolfSSL_get_SSL_CTX(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1720 | |
wolfSSL | 4:1b0d80432c79 | 1721 | WOLFSSL_API int wolfSSL_version(WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1722 | |
wolfSSL | 4:1b0d80432c79 | 1723 | WOLFSSL_API int wolfSSL_get_state(const WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1724 | |
wolfSSL | 4:1b0d80432c79 | 1725 | WOLFSSL_API void* wolfSSL_sk_X509_NAME_value(STACK_OF(WOLFSSL_X509_NAME)*, int); |
wolfSSL | 4:1b0d80432c79 | 1726 | |
wolfSSL | 4:1b0d80432c79 | 1727 | WOLFSSL_API void* wolfSSL_sk_X509_value(STACK_OF(WOLFSSL_X509)*, int); |
wolfSSL | 4:1b0d80432c79 | 1728 | |
wolfSSL | 4:1b0d80432c79 | 1729 | WOLFSSL_API STACK_OF(WOLFSSL_X509)* wolfSSL_get_peer_cert_chain(const WOLFSSL*); |
wolfSSL | 4:1b0d80432c79 | 1730 | |
wolfSSL | 4:1b0d80432c79 | 1731 | WOLFSSL_API long wolfSSL_CTX_get_options(WOLFSSL_CTX* ctx); |
wolfSSL | 4:1b0d80432c79 | 1732 | |
wolfSSL | 4:1b0d80432c79 | 1733 | WOLFSSL_API void* wolfSSL_SESSION_get_ex_data(const WOLFSSL_SESSION*, int); |
wolfSSL | 4:1b0d80432c79 | 1734 | |
wolfSSL | 4:1b0d80432c79 | 1735 | WOLFSSL_API int wolfSSL_SESSION_set_ex_data(WOLFSSL_SESSION*, int, void*); |
wolfSSL | 4:1b0d80432c79 | 1736 | |
wolfSSL | 4:1b0d80432c79 | 1737 | WOLFSSL_API int wolfSSL_SESSION_get_ex_new_index(long,void*,void*,void*, |
wolfSSL | 4:1b0d80432c79 | 1738 | CRYPTO_free_func*); |
wolfSSL | 4:1b0d80432c79 | 1739 | |
wolfSSL | 4:1b0d80432c79 | 1740 | WOLFSSL_API int wolfSSL_X509_NAME_get_sz(WOLFSSL_X509_NAME*); |
wolfSSL | 4:1b0d80432c79 | 1741 | |
wolfSSL | 4:1b0d80432c79 | 1742 | |
wolfSSL | 4:1b0d80432c79 | 1743 | WOLFSSL_API const unsigned char* wolfSSL_SESSION_get_id(WOLFSSL_SESSION*, |
wolfSSL | 4:1b0d80432c79 | 1744 | unsigned int*); |
wolfSSL | 4:1b0d80432c79 | 1745 | |
wolfSSL | 4:1b0d80432c79 | 1746 | WOLFSSL_API int wolfSSL_set_tlsext_host_name(WOLFSSL *, const char *); |
wolfSSL | 4:1b0d80432c79 | 1747 | |
wolfSSL | 4:1b0d80432c79 | 1748 | WOLFSSL_API const char* wolfSSL_get_servername(WOLFSSL *, unsigned char); |
wolfSSL | 4:1b0d80432c79 | 1749 | |
wolfSSL | 4:1b0d80432c79 | 1750 | WOLFSSL_API WOLFSSL_CTX* wolfSSL_set_SSL_CTX(WOLFSSL*,WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 1751 | |
wolfSSL | 4:1b0d80432c79 | 1752 | WOLFSSL_API VerifyCallback wolfSSL_CTX_get_verify_callback(WOLFSSL_CTX*); |
wolfSSL | 4:1b0d80432c79 | 1753 | |
wolfSSL | 4:1b0d80432c79 | 1754 | WOLFSSL_API void wolfSSL_CTX_set_servername_callback(WOLFSSL_CTX *, |
wolfSSL | 4:1b0d80432c79 | 1755 | CallbackSniRecv); |
wolfSSL | 4:1b0d80432c79 | 1756 | |
wolfSSL | 4:1b0d80432c79 | 1757 | WOLFSSL_API void wolfSSL_CTX_set_servername_arg(WOLFSSL_CTX *, void*); |
wolfSSL | 4:1b0d80432c79 | 1758 | |
wolfSSL | 4:1b0d80432c79 | 1759 | WOLFSSL_API void WOLFSSL_ERR_remove_thread_state(void*); |
wolfSSL | 4:1b0d80432c79 | 1760 | |
wolfSSL | 4:1b0d80432c79 | 1761 | WOLFSSL_API long wolfSSL_CTX_clear_options(WOLFSSL_CTX*, long); |
wolfSSL | 4:1b0d80432c79 | 1762 | |
wolfSSL | 4:1b0d80432c79 | 1763 | WOLFSSL_API void wolfSSL_THREADID_set_callback(void (*threadid_func)(void*)); |
wolfSSL | 4:1b0d80432c79 | 1764 | |
wolfSSL | 4:1b0d80432c79 | 1765 | WOLFSSL_API void wolfSSL_THREADID_set_numeric(void* id, unsigned long val); |
wolfSSL | 4:1b0d80432c79 | 1766 | |
wolfSSL | 4:1b0d80432c79 | 1767 | WOLFSSL_API WOLFSSL_X509* wolfSSL_X509_STORE_get1_certs(WOLFSSL_X509_STORE_CTX*, |
wolfSSL | 4:1b0d80432c79 | 1768 | WOLFSSL_X509_NAME*); |
wolfSSL | 4:1b0d80432c79 | 1769 | |
wolfSSL | 4:1b0d80432c79 | 1770 | WOLFSSL_API void wolfSSL_sk_X509_pop_free(STACK_OF(WOLFSSL_X509)* sk, void f (WOLFSSL_X509*)); |
wolfSSL | 4:1b0d80432c79 | 1771 | #endif /* HAVE_STUNNEL */ |
wolfSSL | 4:1b0d80432c79 | 1772 | |
wolfSSL | 4:1b0d80432c79 | 1773 | #if defined(HAVE_STUNNEL) || defined(WOLFSSL_MYSQL_COMPATIBLE) |
wolfSSL | 4:1b0d80432c79 | 1774 | |
wolfSSL | 4:1b0d80432c79 | 1775 | WOLFSSL_API int wolfSSL_CTX_get_verify_mode(WOLFSSL_CTX* ctx); |
wolfSSL | 4:1b0d80432c79 | 1776 | |
wolfSSL | 4:1b0d80432c79 | 1777 | #endif |
wolfSSL | 4:1b0d80432c79 | 1778 | |
wolfSSL | 4:1b0d80432c79 | 1779 | #ifdef WOLFSSL_JNI |
wolfSSL | 4:1b0d80432c79 | 1780 | WOLFSSL_API int wolfSSL_set_jobject(WOLFSSL* ssl, void* objPtr); |
wolfSSL | 4:1b0d80432c79 | 1781 | WOLFSSL_API void* wolfSSL_get_jobject(WOLFSSL* ssl); |
wolfSSL | 4:1b0d80432c79 | 1782 | #endif /* WOLFSSL_JNI */ |
wolfSSL | 4:1b0d80432c79 | 1783 | |
wolfSSL | 4:1b0d80432c79 | 1784 | #ifdef __cplusplus |
wolfSSL | 4:1b0d80432c79 | 1785 | } /* extern "C" */ |
wolfSSL | 4:1b0d80432c79 | 1786 | #endif |
wolfSSL | 4:1b0d80432c79 | 1787 | |
wolfSSL | 4:1b0d80432c79 | 1788 | |
wolfSSL | 4:1b0d80432c79 | 1789 | #endif /* WOLFSSL_SSL_H */ |
wolfSSL | 4:1b0d80432c79 | 1790 |