openvpn3/cryptodcsel_8hpp_source.html

//    OpenVPN -- An application to securely tunnel IP networks

//               over a single port, with support for SSL/TLS-based

//               session authentication and key exchange,

//               packet encryption, packet authentication, and

//               packet compression.

//

//    Copyright (C) 2012- OpenVPN Inc.

//

//    SPDX-License-Identifier: MPL-2.0 OR AGPL-3.0-only WITH openvpn3-openssl-exception

//


// Select appropriate OpenVPN protocol data channel implementation


#ifndef OPENVPN_CRYPTO_CRYPTODCSEL_H

#define OPENVPN_CRYPTO_CRYPTODCSEL_H


#include <openvpn/common/exception.hpp>

#include <openvpn/crypto/cryptodc.hpp>

#include <openvpn/crypto/crypto_chm.hpp>

#include <openvpn/crypto/crypto_aead.hpp>

#include <openvpn/crypto/crypto_aead_epoch.hpp>

#include <openvpn/random/randapi.hpp>


namespace openvpn {


OPENVPN_EXCEPTION(crypto_dc_select);


template <typename CRYPTO_API>


class CryptoDCSelect : public CryptoDCFactory

{

  public:

    typedef RCPtr<CryptoDCSelect> Ptr;


    CryptoDCSelect(SSLLib::Ctx libctx_arg,

                   const Frame::Ptr &frame_arg,

                   const SessionStats::Ptr &stats_arg,

                   const StrongRandomAPI::Ptr &rng_arg)

        : frame(frame_arg),

          stats(stats_arg),

          rng(rng_arg),

          libctx(libctx_arg)

    {

    }


    CryptoDCContext::Ptr new_obj(CryptoDCSettingsData dc_settings) override

    {

        const CryptoAlgs::Alg &alg = CryptoAlgs::get(dc_settings.cipher());

        if (alg.mode() == CryptoAlgs::CBC_HMAC)

            return new CryptoContextCHM<CRYPTO_API>(libctx, std::move(dc_settings), frame, stats, rng);

        else if (alg.mode() == CryptoAlgs::AEAD && dc_settings.useEpochKeys())

            return new AEADEpoch::CryptoContext<CRYPTO_API>(libctx, std::move(dc_settings), frame, stats);

        else if (alg.mode() == CryptoAlgs::AEAD)

            return new AEAD::CryptoContext<CRYPTO_API>(libctx, std::move(dc_settings), frame, stats);

        else

            OPENVPN_THROW(crypto_dc_select, alg.name() << ": only CBC/HMAC and AEAD cipher modes supported");

    }


  private:

    Frame::Ptr frame;

    SessionStats::Ptr stats;

    StrongRandomAPI::Ptr rng;

    SSLLib::Ctx libctx;

};


} // namespace openvpn


#endif

openvpn::AEADEpoch::CryptoContext
Definition crypto_aead_epoch.hpp:229

openvpn::AEAD::CryptoContext
Definition crypto_aead.hpp:357

openvpn::CryptoAlgs::Alg
Definition cryptoalgs.hpp:110

openvpn::CryptoAlgs::Alg::name
const char * name() const
Definition cryptoalgs.hpp:130

openvpn::CryptoAlgs::Alg::mode
Mode mode() const
Definition cryptoalgs.hpp:138

openvpn::CryptoContextCHM
Definition crypto_chm.hpp:127

openvpn::CryptoDCFactory
Definition cryptodc.hpp:184

openvpn::CryptoDCSelect
Definition cryptodcsel.hpp:33

openvpn::CryptoDCSelect::new_obj
CryptoDCContext::Ptr new_obj(CryptoDCSettingsData dc_settings) override
Definition cryptodcsel.hpp:48

openvpn::CryptoDCSelect::frame
Frame::Ptr frame
Definition cryptodcsel.hpp:62

openvpn::CryptoDCSelect::rng
StrongRandomAPI::Ptr rng
Definition cryptodcsel.hpp:64

openvpn::CryptoDCSelect::Ptr
RCPtr< CryptoDCSelect > Ptr
Definition cryptodcsel.hpp:35

openvpn::CryptoDCSelect::libctx
SSLLib::Ctx libctx
Definition cryptodcsel.hpp:65

openvpn::CryptoDCSelect::CryptoDCSelect
CryptoDCSelect(SSLLib::Ctx libctx_arg, const Frame::Ptr &frame_arg, const SessionStats::Ptr &stats_arg, const StrongRandomAPI::Ptr &rng_arg)
Definition cryptodcsel.hpp:37

openvpn::CryptoDCSelect::stats
SessionStats::Ptr stats
Definition cryptodcsel.hpp:63

openvpn::CryptoDCSettingsData
Definition cryptodc.hpp:99

openvpn::CryptoDCSettingsData::cipher
CryptoAlgs::Type cipher() const
Definition cryptodc.hpp:120

openvpn::CryptoDCSettingsData::useEpochKeys
bool useEpochKeys() const
Definition cryptodc.hpp:137

openvpn::RCPtr
The smart pointer class.
Definition rc.hpp:119

crypto_aead.hpp

crypto_aead_epoch.hpp

crypto_chm.hpp

cryptodc.hpp

exception.hpp

OPENVPN_EXCEPTION
#define OPENVPN_EXCEPTION(C)
Definition exception.hpp:100

OPENVPN_THROW
#define OPENVPN_THROW(exc, stuff)
Definition exception.hpp:175

openvpn::CryptoAlgs::get
const Alg & get(const Type type)
Definition cryptoalgs.hpp:237

openvpn::CryptoAlgs::AEAD
@ AEAD
Definition cryptoalgs.hpp:92

openvpn::CryptoAlgs::CBC_HMAC
@ CBC_HMAC
Definition cryptoalgs.hpp:91

openvpn::SSLLib::Ctx
void * Ctx
Definition definitions.hpp:26

openvpn
Definition ovpncli.cpp:97

randapi.hpp
Implementation of the base classes for random number generators.