21 #ifndef SRC_VNET_TLS_TLS_H_ 22 #define SRC_VNET_TLS_TLS_H_ 25 #define TLS_DEBUG_LEVEL_CLIENT 0 26 #define TLS_DEBUG_LEVEL_SERVER 0 28 #define TLS_CHUNK_SIZE (1 << 14) 29 #define TLS_CA_CERT_PATH "/etc/ssl/certs/ca-certificates.crt" 32 #define TLS_DBG(_lvl, _fmt, _args...) \ 33 if (_lvl <= TLS_DEBUG) \ 34 clib_warning (_fmt, ##_args) 36 #define TLS_DBG(_lvl, _fmt, _args...) 56 "ctx id must be less than TRANSPORT_CONN_ID_LEN");
65 #define parent_app_wrk_index c_tls_ctx_id.parent_app_wrk_index 66 #define app_session_handle c_tls_ctx_id.app_session_handle 67 #define tls_session_handle c_tls_ctx_id.tls_session_handle 68 #define listener_ctx_index c_tls_ctx_id.listener_ctx_index 69 #define tcp_is_ip4 c_tls_ctx_id.tcp_is_ip4 70 #define tls_ctx_engine c_tls_ctx_id.tls_engine_id 71 #define tls_ssl_ctx c_tls_ctx_id.ssl_ctx 72 #define tls_ctx_handle c_c_index 75 #define parent_app_api_context c_tls_ctx_id.parent_app_api_ctx STATIC_ASSERT(sizeof(tls_ctx_id_t)<=TRANSPORT_CONN_ID_LEN, "ctx id must be less than TRANSPORT_CONN_ID_LEN")
struct tls_cxt_id_ tls_ctx_id_t
clib_rwlock_t half_open_rwlock
struct tls_main_ tls_main_t
int tls_notify_app_accept(tls_ctx_t *ctx)
struct tls_engine_vft_ tls_engine_vft_t
session_handle_t tls_session_handle
int tls_notify_app_connected(tls_ctx_t *ctx, session_error_t err)
void tls_disconnect_transport(tls_ctx_t *ctx)
void tls_notify_app_enqueue(tls_ctx_t *ctx, session_t *app_session)
int tls_add_vpp_q_builtin_rx_evt(session_t *s)
vl_api_fib_path_type_t type
tls_ctx_id_t c_tls_ctx_id
int tls_add_vpp_q_rx_evt(session_t *s)
struct tls_ctx_ tls_ctx_t
struct _transport_connection transport_connection_t
transport_connection_t connection
#define TRANSPORT_CONN_ID_LEN
int tls_add_vpp_q_builtin_tx_evt(session_t *s)
tls_main_t * vnet_tls_get_main(void)
session_handle_t app_session_handle
tls_ctx_t * half_open_ctx_pool
enum session_error_ session_error_t
enum crypto_engine_type_ crypto_engine_type_t
int tls_add_vpp_q_tx_evt(session_t *s)
void tls_register_engine(const tls_engine_vft_t *vft, crypto_engine_type_t type)
tls_ctx_t * listener_ctx_pool