openvpn3/xkey__common_8h_source.html

//    OpenVPN -- An application to securely tunnel IP networks

//               over a single port, with support for SSL/TLS-based

//               session authentication and key exchange,

//               packet encryption, packet authentication, and

//               packet compression.

//

//    Copyright (C) 2022- OpenVPN Inc.

//    Copyright (C) 2021-2022 Selva Nair <selva.nair@gmail.com>

//

//    SPDX-License-Identifier: MPL-2.0 OR AGPL-3.0-only WITH openvpn3-openssl-exception OR GPL-2.0-only WITH openvpn-openssl-exception

//


#ifndef XKEY_COMMON_H_

#define XKEY_COMMON_H_


#if defined (__cplusplus)

extern "C" {

#endif


/* Guard to only enable if OpenSSL is used and not trigger an error if mbed

 * TLS is compiled without OpenSSL being installed */

#if defined(USE_OPENSSL)

#include <openssl/opensslv.h>

#if OPENSSL_VERSION_NUMBER >= 0x30000010L && !defined(DISABLE_XKEY_PROVIDER)

#define HAVE_XKEY_PROVIDER 1


#include <stdbool.h>

#include <openssl/provider.h>

#include <openssl/core_dispatch.h>


OSSL_provider_init_fn xkey_provider_init;


#define XKEY_PROV_PROPS "provider=ovpn.xkey"


typedef struct {

    const char *padmode;

    const char *mdname;

    const char *saltlen;

    const char *keytype;

    const char *op;

} XKEY_SIGALG;


typedef int (XKEY_EXTERNAL_SIGN_fn)(void *handle, unsigned char *sig, size_t *siglen,

                    const unsigned char *tbs, size_t tbslen,

                    XKEY_SIGALG sigalg);

typedef void (XKEY_PRIVKEY_FREE_fn)(void *handle);


EVP_PKEY *

xkey_load_generic_key(OSSL_LIB_CTX *libctx, void *handle, EVP_PKEY *pubkey,

                      XKEY_EXTERNAL_SIGN_fn *sign_op, XKEY_PRIVKEY_FREE_fn *free_op);


bool

xkey_encode_pkcs1(unsigned char *enc, size_t *enc_len, const char *mdname,

                  const unsigned char *tbs, size_t tbslen);


typedef void (XKEY_LOGGING_CALLBACK_fn)(const char *msg, bool debug);


void xkey_set_logging_cb_function(XKEY_LOGGING_CALLBACK_fn logfunc);


#endif /* HAVE_XKEY_PROVIDER */


#endif /* USE_OPENSSL */


#if defined (__cplusplus)

}

#endif

#endif /* XKEY_COMMON_H_ */

msg
#define msg(flags,...)
Definition xkey_msg_compat.h:14