Lines Matching defs:options
465 struct options { struct
466 const char *server_name; /* hostname of the server (client only) */
467 const char *server_addr; /* address of the server (client only) */
468 const char *server_port; /* port on which the ssl service runs */
469 int debug_level; /* level of debugging */
470 int nbio; /* should I/O be blocking? */
471 int event; /* loop or event-driven IO? level or edge triggered? */
472 uint32_t read_timeout; /* timeout on mbedtls_ssl_read() in milliseconds */
473 int max_resend; /* DTLS times to resend on read timeout */
474 const char *request_page; /* page on server to request */
475 int request_size; /* pad request with header to requested size */
476 const char *ca_file; /* the file with the CA certificate(s) */
477 const char *ca_path; /* the path with the CA certificate(s) reside */
478 const char *crt_file; /* the file with the client certificate */
479 const char *key_file; /* the file with the client key */
480 int key_opaque; /* handle private key as if it were opaque */
482 int psk_opaque;
485 int ca_callback; /* Use callback for trusted certificate list */
487 const char *key_pwd; /* the password for the client key */
488 const char *psk; /* the pre-shared key */
489 const char *psk_identity; /* the pre-shared key identity */
490 const char *ecjpake_pw; /* the EC J-PAKE password */
492 int ecjpake_pw_opaque; /* set to 1 to use the opaque method for setting the password */
494 int ec_max_ops; /* EC consecutive operations limit */
495 int force_ciphersuite[2]; /* protocol/ciphersuite to use, or all */
497 int tls13_kex_modes; /* supported TLS 1.3 key exchange modes */
499 int renegotiation; /* enable / disable renegotiation */
500 int allow_legacy; /* allow legacy renegotiation */
501 int renegotiate; /* attempt renegotiation? */
502 int renego_delay; /* delay before enforcing renegotiation */
503 int exchanges; /* number of data exchanges */
504 int min_version; /* minimum protocol version accepted */
505 int max_version; /* maximum protocol version accepted */
506 int allow_sha1; /* flag for SHA-1 support */
507 int auth_mode; /* verify mode for connection */
508 unsigned char mfl_code; /* code for maximum fragment length */
509 int trunc_hmac; /* negotiate truncated hmac or not */
510 int recsplit; /* enable record splitting? */
511 int dhmlen; /* minimum DHM params len in bits */
512 int reconnect; /* attempt to resume session */
513 const char *reco_server_name; /* hostname of the server (re-connect) */
514 int reco_delay; /* delay in seconds before resuming session */
515 int reco_mode; /* how to keep the session around */
516 int reconnect_hard; /* unexpectedly reconnect from the same port */
517 int tickets; /* enable / disable session tickets */
518 const char *groups; /* list of supported groups */
519 const char *sig_algs; /* supported TLS 1.3 signature algorithms */
520 const char *alpn_string; /* ALPN supported protocols */
521 int transport; /* TLS or DTLS? */
522 uint32_t hs_to_min; /* Initial value of DTLS handshake timer */
523 uint32_t hs_to_max; /* Max value of DTLS handshake timer */
524 int dtls_mtu; /* UDP Maximum transport unit for DTLS */
525 int fallback; /* is this a fallback connection? */
526 int dgram_packing; /* allow/forbid datagram packing */
527 int extended_ms; /* negotiate extended master secret? */
528 int etm; /* negotiate encrypt then mac? */
529 int context_crt_cb; /* use context-specific CRT verify callback */
530 int eap_tls; /* derive EAP-TLS keying material? */
531 int nss_keylog; /* export NSS key log material */
532 const char *nss_keylog_file; /* NSS key log file */
533 int cid_enabled; /* whether to use the CID extension or not */
534 int cid_enabled_renego; /* whether to use the CID extension or not
536 const char *cid_val; /* the CID to use for incoming messages */
537 int serialize; /* serialize/deserialize connection */
538 const char *context_file; /* the file to write a serialized connection
541 const char *cid_val_renego; /* the CID to use for incoming messages
543 int reproducible; /* make communication reproducible */
544 int skip_close_notify; /* skip sending the close_notify alert */
546 int early_data; /* support for early data */
548 int query_config_mode; /* whether to read config */
549 int use_srtp; /* Support SRTP */
550 int force_srtp_profile; /* SRTP protection profile to use or all */
551 const char *mki; /* The dtls mki value to use */
552 const char *key_opaque_alg1; /* Allowed opaque key alg 1 */
553 const char *key_opaque_alg2; /* Allowed Opaque key alg 2 */