18d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/* 28d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * TLSv1 credentials 38d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Copyright (c) 2006-2007, Jouni Malinen <j@w1.fi> 48d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 5c5ec7f57ead87efa365800228aa0b09a12d9e6c4Dmitry Shmidt * This software may be distributed under the terms of the BSD license. 6c5ec7f57ead87efa365800228aa0b09a12d9e6c4Dmitry Shmidt * See README for more details. 78d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 88d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 98d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#ifndef TLSV1_CRED_H 108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#define TLSV1_CRED_H 118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstruct tlsv1_credentials { 138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct x509_certificate *trusted_certs; 148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct x509_certificate *cert; 158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct crypto_private_key *key; 168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 17d7ff03d48f825360eec2a371e3361306f2fd721bDmitry Shmidt unsigned int cert_probe:1; 18d7ff03d48f825360eec2a371e3361306f2fd721bDmitry Shmidt unsigned int ca_cert_verify:1; 19d7ff03d48f825360eec2a371e3361306f2fd721bDmitry Shmidt unsigned int server_cert_only:1; 20d7ff03d48f825360eec2a371e3361306f2fd721bDmitry Shmidt u8 srv_cert_hash[32]; 21d7ff03d48f825360eec2a371e3361306f2fd721bDmitry Shmidt 228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* Diffie-Hellman parameters */ 238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt u8 *dh_p; /* prime */ 248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt size_t dh_p_len; 258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt u8 *dh_g; /* generator */ 268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt size_t dh_g_len; 27d97138ded63ac5388da3a2b63dea563c8b44c8ecDmitry Shmidt 28d97138ded63ac5388da3a2b63dea563c8b44c8ecDmitry Shmidt char *ocsp_stapling_response; 29d97138ded63ac5388da3a2b63dea563c8b44c8ecDmitry Shmidt char *ocsp_stapling_response_multi; 308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt}; 318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstruct tlsv1_credentials * tlsv1_cred_alloc(void); 348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtvoid tlsv1_cred_free(struct tlsv1_credentials *cred); 358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint tlsv1_set_ca_cert(struct tlsv1_credentials *cred, const char *cert, 368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const u8 *cert_blob, size_t cert_blob_len, 378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const char *path); 388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint tlsv1_set_cert(struct tlsv1_credentials *cred, const char *cert, 398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const u8 *cert_blob, size_t cert_blob_len); 408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint tlsv1_set_private_key(struct tlsv1_credentials *cred, 418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const char *private_key, 428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const char *private_key_passwd, 438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const u8 *private_key_blob, 448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt size_t private_key_blob_len); 458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint tlsv1_set_dhparams(struct tlsv1_credentials *cred, const char *dh_file, 468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const u8 *dh_blob, size_t dh_blob_len); 478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* TLSV1_CRED_H */ 49