Lines Matching +full:engine +full:- +full:specific
3 * Copyright (c) 2004-2013, Jouni Malinen <j@w1.fi>
125 * struct tls_connection_params - Parameters for TLS connection
130 * @ca_path: Path to CA certificates (OpenSSL specific)
138 * must have a full case-insensitive match.
141 * case-insensitive match.
159 * @engine: 1 = use engine (e.g., a smartcard) for private key operations
160 * (this is OpenSSL specific for now)
161 * @engine_id: engine id string (this is OpenSSL specific for now)
163 * (this is OpenSSL specific for now)
164 * @key_id: the private key's id when using engine (this is OpenSSL
165 * specific for now)
166 * @cert_id: the certificate's id when using engine
167 * @ca_cert_id: the CA certificate's id when using engine
170 * supported, empty string to disable, or a colon-separated curve list.
208 /* OpenSSL specific variables */
209 int engine; member
226 * tls_init - Initialize TLS library
231 * Called once during program startup and once for each RSN pre-authentication
240 * tls_deinit - Deinitialize TLS library
243 * Called once during program shutdown and once for each RSN pre-authentication
252 * tls_get_errors - Process pending errors
261 * tls_connection_init - Initialize a new TLS connection
268 * tls_connection_deinit - Free TLS connection data
277 * tls_connection_established - Has the TLS connection been completed?
285 * tls_connection_peer_serial_num - Fetch peer certificate serial number
297 * tls_connection_shutdown - Shutdown TLS connection
300 * Returns: 0 on success, -1 on failure
310 TLS_SET_PARAMS_ENGINE_PRV_BAD_PIN = -4,
311 TLS_SET_PARAMS_ENGINE_PRV_VERIFY_FAILED = -3,
312 TLS_SET_PARAMS_ENGINE_PRV_INIT_FAILED = -2
316 * tls_connection_set_params - Set TLS connection parameters
320 * Returns: 0 on success, -1 on failure,
321 * TLS_SET_PARAMS_ENGINE_PRV_INIT_FAILED (-2) on error causing PKCS#11 engine
323 * TLS_SET_PARAMS_ENGINE_PRV_VERIFY_FAILED (-3) on failure to verify the
324 * PKCS#11 engine private key, or
325 * TLS_SET_PARAMS_ENGINE_PRV_BAD_PIN (-4) on PIN error causing PKCS#11 engine
333 * tls_global_set_params - Set TLS parameters for all TLS connection
336 * Returns: 0 on success, -1 on failure,
337 * TLS_SET_PARAMS_ENGINE_PRV_INIT_FAILED (-2) on error causing PKCS#11 engine
339 * TLS_SET_PARAMS_ENGINE_PRV_VERIFY_FAILED (-3) on failure to verify the
340 * PKCS#11 engine private key, or
341 * TLS_SET_PARAMS_ENGINE_PRV_BAD_PIN (-4) on PIN error causing PKCS#11 engine
348 * tls_global_set_verify - Set global certificate verification options
353 * Returns: 0 on success, -1 on failure
359 * tls_connection_set_verify - Set certificate verification options
368 * Returns: 0 on success, -1 on failure
378 * tls_connection_get_random - Get random data from TLS connection
382 * Returns: 0 on success, -1 on failure
389 * tls_connection_export_key - Derive keying material from a TLS connection
393 * @context: Optional extra upper-layer context (max len 2^16)
395 * @out: Buffer for output data from TLS-PRF
397 * Returns: 0 on success, -1 on failure
411 * tls_connection_get_eap_fast_key - Derive key material for EAP-FAST
414 * @out: Buffer for output data from TLS-PRF
416 * Returns: 0 on success, -1 on failure
419 * EAP-FAST. Most callers will want tls_connection_export_key(), but EAP-FAST
427 * tls_connection_handshake - Process TLS handshake (client side)
465 * tls_connection_server_handshake - Process TLS handshake (server side)
480 * tls_connection_encrypt - Encrypt data into TLS tunnel
495 * tls_connection_decrypt - Decrypt data from TLS tunnel
515 * tls_connection_resumed - Was session resumption used
533 * tls_connection_set_cipher_list - Configure acceptable cipher suites
538 * Returns: 0 on success, -1 on failure
545 * tls_get_version - Get the current TLS version number
550 * Returns: 0 on success, -1 on failure
558 * tls_get_cipher - Get current cipher name
563 * Returns: 0 on success, -1 on failure
571 * tls_connection_enable_workaround - Enable TLS workaround options
574 * Returns: 0 on success, -1 on failure
576 * This function is used to enable connection-specific workaround options for
583 * tls_connection_client_hello_ext - Set TLS extension for ClientHello
589 * Returns: 0 on success, -1 on failure
597 * tls_connection_get_failed - Get connection failure status
606 * tls_connection_get_read_alerts - Get connection read alert status
615 * tls_connection_get_write_alerts - Get connection write alert status
660 * tls_get_tls_unique - Fetch "tls-unique" for channel binding
664 * Returns: Number of bytes written to buf or -1 on error
666 * This function can be used to fetch "tls-unique" (RFC 5929, Section 3) which
673 * tls_connection_get_cipher_suite - Get current TLS cipher suite
680 * tls_connection_get_peer_subject - Get peer subject
687 * tls_connection_get_own_cert_used - Was own certificate used