Lines Matching defs:options
600 struct options struct
602 const char *server_addr; /* address on which the ssl service runs */
603 const char *server_port; /* port on which the ssl service runs */
604 int debug_level; /* level of debugging */
605 int nbio; /* should I/O be blocking? */
606 int event; /* loop or event-driven IO? level or edge triggered? */
607 uint32_t read_timeout; /* timeout on mbedtls_ssl_read() in milliseconds */
608 int response_size; /* pad response with header to requested size */
609 uint16_t buffer_size; /* IO buffer size */
610 const char *ca_file; /* the file with the CA certificate(s) */
611 const char *ca_path; /* the path with the CA certificate(s) reside */
612 const char *crt_file; /* the file with the server certificate */
613 const char *key_file; /* the file with the server key */
614 int key_opaque; /* handle private key as if it were opaque */
615 const char *key_pwd; /* the password for the server key */
616 const char *crt_file2; /* the file with the 2nd server certificate */
617 const char *key_file2; /* the file with the 2nd server key */
618 const char *key_pwd2; /* the password for the 2nd server key */
619 const char *async_operations; /* supported SSL asynchronous operations */
620 …ate_delay1; /* number of times f_async_resume needs to be called for key 1, or -1 for no async */
621 …ate_delay2; /* number of times f_async_resume needs to be called for key 2, or -1 for no async */
622 int async_private_error; /* inject error in async private callback */
624 int psk_opaque;
625 int psk_list_opaque;
628 int ca_callback; /* Use callback for trusted certificate list */
630 const char *psk; /* the pre-shared key */
631 const char *psk_identity; /* the pre-shared key identity */
632 char *psk_list; /* list of PSK id/key pairs for callback */
633 const char *ecjpake_pw; /* the EC J-PAKE password */
634 int force_ciphersuite[2]; /* protocol/ciphersuite to use, or all */
636 int tls13_kex_modes; /* supported TLS 1.3 key exchange modes */
638 int renegotiation; /* enable / disable renegotiation */
639 int allow_legacy; /* allow legacy renegotiation */
640 int renegotiate; /* attempt renegotiation? */
641 int renego_delay; /* delay before enforcing renegotiation */
642 uint64_t renego_period; /* period for automatic renegotiation */
643 int exchanges; /* number of data exchanges */
644 int min_version; /* minimum protocol version accepted */
645 int max_version; /* maximum protocol version accepted */
646 int allow_sha1; /* flag for SHA-1 support */
647 int auth_mode; /* verify mode for connection */
648 int cert_req_ca_list; /* should we send the CA list? */
649 int cert_req_dn_hint; /* mode to set DN hints for CA list to send */
650 unsigned char mfl_code; /* code for maximum fragment length */
651 int trunc_hmac; /* accept truncated hmac? */
652 int tickets; /* enable / disable session tickets */
653 int dummy_ticket; /* enable / disable dummy ticket generator */
654 int ticket_rotate; /* session ticket rotate (code coverage) */
655 int ticket_timeout; /* session ticket lifetime */
656 int ticket_aead; /* session ticket protection */
657 int cache_max; /* max number of session cache entries */
659 int cache_timeout; /* expiration delay of session cache entries*/
661 char *sni; /* string describing sni information */
662 const char *curves; /* list of supported elliptic curves */
663 const char *sig_algs; /* supported TLS 1.3 signature algorithms */
664 const char *alpn_string; /* ALPN supported protocols */
665 const char *dhm_file; /* the file with the DH parameters */
666 int extended_ms; /* allow negotiation of extended MS? */
667 int etm; /* allow negotiation of encrypt-then-MAC? */
668 int transport; /* TLS or DTLS? */
669 int cookies; /* Use cookies for DTLS? -1 to break them */
670 int anti_replay; /* Use anti-replay for DTLS? -1 for default */
671 uint32_t hs_to_min; /* Initial value of DTLS handshake timer */
672 uint32_t hs_to_max; /* Max value of DTLS handshake timer */
673 int dtls_mtu; /* UDP Maximum transport unit for DTLS */
674 int dgram_packing; /* allow/forbid datagram packing */
675 int badmac_limit; /* Limit of records with bad MAC */
676 int eap_tls; /* derive EAP-TLS keying material? */
677 int nss_keylog; /* export NSS key log material */
678 const char *nss_keylog_file; /* NSS key log file */
679 int cid_enabled; /* whether to use the CID extension or not */
680 int cid_enabled_renego; /* whether to use the CID extension or not
682 const char *cid_val; /* the CID to use for incoming messages */
683 int serialize; /* serialize/deserialize connection */
684 const char *context_file; /* the file to write a serialized connection
687 const char *cid_val_renego; /* the CID to use for incoming messages
689 int reproducible; /* make communication reproducible */
690 uint32_t max_early_data_size; /* max amount of early data */
691 int query_config_mode; /* whether to read config */
692 int use_srtp; /* Support SRTP */
693 int force_srtp_profile; /* SRTP protection profile to use or all */
694 int support_mki; /* The dtls mki mki support */
695 const char *key1_opaque_alg1; /* Allowed opaque key 1 alg 1 */
696 const char *key1_opaque_alg2; /* Allowed opaque key 1 alg 2 */
697 const char *key2_opaque_alg1; /* Allowed opaque key 2 alg 1 */
698 const char *key2_opaque_alg2; /* Allowed opaque key 2 alg 2 */