src/tls.h

   1 /*
   2     Copyright (C) 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015
   3     Ben Kibbey <bjk@luxsci.net>
   4
   5     This file is part of pwmd.
   6
   7     Pwmd is free software: you can redistribute it and/or modify
   8     it under the terms of the GNU General Public License as published by
   9     the Free Software Foundation, either version 2 of the License, or
  10     (at your option) any later version.
  11
  12     Pwmd is distributed in the hope that it will be useful,
  13     but WITHOUT ANY WARRANTY; without even the implied warranty of
  14     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  15     GNU General Public License for more details.
  16
  17     You should have received a copy of the GNU General Public License
  18     along with Pwmd.  If not, see <http://www.gnu.org/licenses/>.
  19 */
  20 #ifndef TLS_H
  21 #define TLS_H
  22
  23 #include <gnutls/gnutls.h>
  24 #include <errno.h>
  25
  26 struct tls_s
  27 {
  28   gnutls_session_t ses;
  29   char *fp;
  30 };
  31
  32 struct client_s;
  33
  34 gnutls_dh_params_t dh_params;
  35 gnutls_rsa_params_t rsa_params;
  36 gnutls_certificate_credentials_t x509_cred;
  37
  38 struct tls_s *tls_init (int fd, int timeout, const char *prio);
  39 int tls_get_params (gnutls_session_t ses, gnutls_params_type_t type,
  40                     gnutls_params_st * st);
  41 void tls_log (int level, const char *msg);
  42 void tls_audit_log (gnutls_session_t, const char *);
  43 ssize_t tls_read_hook (assuan_context_t ctx, assuan_fd_t fd, void *data,
  44                        size_t len);
  45 ssize_t tls_write_hook (assuan_context_t ctx, assuan_fd_t fd,
  46                         const void *data, size_t len);
  47 void tls_deinit_params ();
  48 gpg_error_t tls_init_params ();
  49 gpg_error_t tls_validate_access (struct client_s *client,
  50                                  const char *filename);
  51
  52 #endif