diff options
author | Ben Laurie <ben@openssl.org> | 2012-05-29 17:27:48 +0000 |
---|---|---|
committer | Ben Laurie <ben@openssl.org> | 2012-05-29 17:27:48 +0000 |
commit | 8a02a46a5cb92790c79bfbf04c043e234e2af6bf (patch) | |
tree | b1f3963b25a9be2887d673228df7d811a1572d59 /ssl/tls1.h | |
parent | 0de5a0feeef1e43aa080189c25af691448a2d860 (diff) |
RFC 5878 support.
Diffstat (limited to 'ssl/tls1.h')
-rw-r--r-- | ssl/tls1.h | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/ssl/tls1.h b/ssl/tls1.h index a11caf820a..dd1b4fb22d 100644 --- a/ssl/tls1.h +++ b/ssl/tls1.h @@ -281,6 +281,14 @@ extern "C" { #define TLSEXT_MAXLEN_host_name 255 +/* From RFC 5878 */ +#define TLSEXT_SUPPLEMENTALDATATYPE_authz_data 16386 +/* This is not IANA assigned. See + * https://www.iana.org/assignments/tls-parameters/tls-parameters.xml#authorization-data-rules */ +#define TLSEXT_AUTHZDATAFORMAT_audit_proof 182 + +#define TLSEXT_MAXLEN_supplemental_data 1024*16 /* Let's limit to 16k */ + const char *SSL_get_servername(const SSL *s, const int type); int SSL_get_servername_type(const SSL *s); /* SSL_export_keying_material exports a value derived from the master secret, @@ -360,6 +368,13 @@ SSL_CTX_ctrl(ctx,SSL_CTRL_SET_TLSEXT_OPAQUE_PRF_INPUT_CB_ARG, 0, arg) #define SSL_CTX_set_tlsext_ticket_key_cb(ssl, cb) \ SSL_CTX_callback_ctrl(ssl,SSL_CTRL_SET_TLSEXT_TICKET_KEY_CB,(void (*)(void))cb) +/* Used by clients to process audit proofs. */ +#define SSL_CTX_set_tlsext_authz_server_audit_proof_cb(ctx, cb) \ +SSL_CTX_callback_ctrl(ctx, SSL_CTRL_SET_TLSEXT_AUTHZ_SERVER_AUDIT_PROOF_CB,(void (*)(void))cb) + +#define SSL_CTX_set_tlsext_authz_server_audit_proof_cb_arg(ctx, arg) \ +SSL_CTX_ctrl(ctx, SSL_CTRL_SET_TLSEXT_AUTHZ_SERVER_AUDIT_PROOF_CB_ARG, 0, arg); + #ifndef OPENSSL_NO_HEARTBEATS #define SSL_TLSEXT_HB_ENABLED 0x01 #define SSL_TLSEXT_HB_DONT_SEND_REQUESTS 0x02 |