1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
|
/*
* Copyright (C) 2000-2012 Free Software Foundation, Inc.
*
* Author: Nikos Mavrogiannopoulos
*
* This file is part of GnuTLS.
*
* The GnuTLS is free software; you can redistribute it and/or
* modify it under the terms of the GNU Lesser General Public License
* as published by the Free Software Foundation; either version 2.1 of
* the License, or (at your option) any later version.
*
* This library is distributed in the hope that it will be useful, but
* WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>
*
*/
#ifndef GNUTLS_STATE_H
#define GNUTLS_STATE_H
#include "gnutls_int.h"
void _gnutls_session_cert_type_set(gnutls_session_t session,
gnutls_certificate_type_t);
inline static gnutls_ecc_curve_t
_gnutls_session_ecc_curve_get(gnutls_session_t session)
{
return session->security_parameters.ecc_curve;
}
int _gnutls_session_is_ecc(gnutls_session_t session);
void
_gnutls_session_ecc_curve_set(gnutls_session_t session,
gnutls_ecc_curve_t c);
void
_gnutls_record_set_default_version(gnutls_session_t session,
unsigned char major,
unsigned char minor);
void
_gnutls_hello_set_default_version(gnutls_session_t session,
unsigned char major,
unsigned char minor);
#include <auth.h>
#define CHECK_AUTH(auth, ret) if (gnutls_auth_get_type(session) != auth) { \
gnutls_assert(); \
return ret; \
}
#endif
int _gnutls_session_cert_type_supported(gnutls_session_t,
gnutls_certificate_type_t);
int _gnutls_dh_set_secret_bits(gnutls_session_t session, unsigned bits);
int _gnutls_dh_set_peer_public(gnutls_session_t session, bigint_t public);
int _gnutls_dh_set_group(gnutls_session_t session, bigint_t gen,
bigint_t prime);
static inline int _gnutls_dh_get_min_prime_bits(gnutls_session_t session)
{
if (session->internals.priorities.dh_prime_bits != 0)
return session->internals.priorities.dh_prime_bits;
else
return gnutls_sec_param_to_pk_bits(GNUTLS_PK_DH,
session->internals.
priorities.level);
}
void _gnutls_handshake_internal_state_clear(gnutls_session_t);
int _gnutls_session_is_resumable(gnutls_session_t session);
int _gnutls_session_is_psk(gnutls_session_t session);
int _gnutls_openpgp_send_fingerprint(gnutls_session_t session);
inline static int
_gnutls_PRF(gnutls_session_t session,
const uint8_t * secret, unsigned int secret_size,
const char *label, int label_size, const uint8_t * seed,
int seed_size, int total_bytes, void *ret)
{
return _gnutls_prf_raw(session->security_parameters.prf_mac,
secret_size, secret,
label_size, label,
seed_size, seed,
total_bytes, ret);
}
#define DEFAULT_CERT_TYPE GNUTLS_CRT_X509
|
