Lines Matching defs:options
601 struct options { struct
602 const char *server_addr; /* address on which the ssl service runs */
603 const char *server_port; /* port on which the ssl service runs */
604 int debug_level; /* level of debugging */
605 int nbio; /* should I/O be blocking? */
606 int event; /* loop or event-driven IO? level or edge triggered? */
607 uint32_t read_timeout; /* timeout on mbedtls_ssl_read() in milliseconds */
608 int response_size; /* pad response with header to requested size */
609 uint16_t buffer_size; /* IO buffer size */
610 const char *ca_file; /* the file with the CA certificate(s) */
611 const char *ca_path; /* the path with the CA certificate(s) reside */
612 const char *crt_file; /* the file with the server certificate */
613 const char *key_file; /* the file with the server key */
614 int key_opaque; /* handle private key as if it were opaque */
615 const char *key_pwd; /* the password for the server key */
616 const char *crt_file2; /* the file with the 2nd server certificate */
617 const char *key_file2; /* the file with the 2nd server key */
618 const char *key_pwd2; /* the password for the 2nd server key */
619 const char *async_operations; /* supported SSL asynchronous operations */
620 …ate_delay1; /* number of times f_async_resume needs to be called for key 1, or -1 for no async */
621 …ate_delay2; /* number of times f_async_resume needs to be called for key 2, or -1 for no async */
622 int async_private_error; /* inject error in async private callback */
624 int psk_opaque;
625 int psk_list_opaque;
628 int ca_callback; /* Use callback for trusted certificate list */
630 const char *psk; /* the pre-shared key */
631 const char *psk_identity; /* the pre-shared key identity */
632 char *psk_list; /* list of PSK id/key pairs for callback */
633 const char *ecjpake_pw; /* the EC J-PAKE password */
635 int ecjpake_pw_opaque; /* set to 1 to use the opaque method for setting the password */
637 int force_ciphersuite[2]; /* protocol/ciphersuite to use, or all */
639 int tls13_kex_modes; /* supported TLS 1.3 key exchange modes */
641 int renegotiation; /* enable / disable renegotiation */
642 int allow_legacy; /* allow legacy renegotiation */
643 int renegotiate; /* attempt renegotiation? */
644 int renego_delay; /* delay before enforcing renegotiation */
645 uint64_t renego_period; /* period for automatic renegotiation */
646 int exchanges; /* number of data exchanges */
647 int min_version; /* minimum protocol version accepted */
648 int max_version; /* maximum protocol version accepted */
649 int allow_sha1; /* flag for SHA-1 support */
650 int auth_mode; /* verify mode for connection */
651 int cert_req_ca_list; /* should we send the CA list? */
652 int cert_req_dn_hint; /* mode to set DN hints for CA list to send */
653 unsigned char mfl_code; /* code for maximum fragment length */
654 int trunc_hmac; /* accept truncated hmac? */
655 int tickets; /* enable / disable session tickets */
656 int dummy_ticket; /* enable / disable dummy ticket generator */
657 int ticket_rotate; /* session ticket rotate (code coverage) */
658 int ticket_timeout; /* session ticket lifetime */
659 int ticket_aead; /* session ticket protection */
660 int cache_max; /* max number of session cache entries */
662 int cache_timeout; /* expiration delay of session cache entries*/
664 int cache_remove; /* enable / disable cache entry removal */
665 char *sni; /* string describing sni information */
666 const char *groups; /* list of supported groups */
667 const char *sig_algs; /* supported TLS 1.3 signature algorithms */
668 const char *alpn_string; /* ALPN supported protocols */
669 const char *dhm_file; /* the file with the DH parameters */
670 int extended_ms; /* allow negotiation of extended MS? */
671 int etm; /* allow negotiation of encrypt-then-MAC? */
672 int transport; /* TLS or DTLS? */
673 int cookies; /* Use cookies for DTLS? -1 to break them */
674 int anti_replay; /* Use anti-replay for DTLS? -1 for default */
675 uint32_t hs_to_min; /* Initial value of DTLS handshake timer */
676 uint32_t hs_to_max; /* Max value of DTLS handshake timer */
677 int dtls_mtu; /* UDP Maximum transport unit for DTLS */
678 int dgram_packing; /* allow/forbid datagram packing */
679 int badmac_limit; /* Limit of records with bad MAC */
680 int eap_tls; /* derive EAP-TLS keying material? */
681 int nss_keylog; /* export NSS key log material */
682 const char *nss_keylog_file; /* NSS key log file */
683 int cid_enabled; /* whether to use the CID extension or not */
684 int cid_enabled_renego; /* whether to use the CID extension or not
686 const char *cid_val; /* the CID to use for incoming messages */
687 int serialize; /* serialize/deserialize connection */
688 const char *context_file; /* the file to write a serialized connection
691 const char *cid_val_renego; /* the CID to use for incoming messages
693 int reproducible; /* make communication reproducible */
694 uint32_t max_early_data_size; /* max amount of early data */
695 int query_config_mode; /* whether to read config */
696 int use_srtp; /* Support SRTP */
697 int force_srtp_profile; /* SRTP protection profile to use or all */
698 int support_mki; /* The dtls mki mki support */
699 const char *key1_opaque_alg1; /* Allowed opaque key 1 alg 1 */
700 const char *key1_opaque_alg2; /* Allowed opaque key 1 alg 2 */
701 const char *key2_opaque_alg1; /* Allowed opaque key 2 alg 1 */
702 const char *key2_opaque_alg2; /* Allowed opaque key 2 alg 2 */