diff options
| author | bubulle <bubulle@alioth.debian.org> | 2009-07-06 18:17:09 +0000 |
|---|---|---|
| committer | bubulle <bubulle@alioth.debian.org> | 2009-07-06 18:17:09 +0000 |
| commit | 1e4514a1edfdd1dde65a7567a7d7328de40e3493 (patch) | |
| tree | 889204356442a0e13d8b3b2deaa1e0b310cea940 /source4/lib/tls/tls.h | |
| parent | 956e238a6ed95a84c85c14ac898ffee166c35287 (diff) | |
| download | samba-1e4514a1edfdd1dde65a7567a7d7328de40e3493.tar.gz | |
merge upstream 3.4.0
git-svn-id: svn://svn.debian.org/svn/pkg-samba/trunk/samba@2936 fc4039ab-9d04-0410-8cac-899223bdd6b0
Diffstat (limited to 'source4/lib/tls/tls.h')
| -rw-r--r-- | source4/lib/tls/tls.h | 68 |
1 files changed, 68 insertions, 0 deletions
diff --git a/source4/lib/tls/tls.h b/source4/lib/tls/tls.h new file mode 100644 index 0000000000..c5bd5c87cc --- /dev/null +++ b/source4/lib/tls/tls.h @@ -0,0 +1,68 @@ +/* + Unix SMB/CIFS implementation. + + transport layer security handling code + + Copyright (C) Andrew Tridgell 2005 + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see <http://www.gnu.org/licenses/>. +*/ + +#ifndef _TLS_H_ +#define _TLS_H_ + +#include "lib/socket/socket.h" + +struct loadparm_context; + +/* + call tls_initialise() once per task to startup the tls subsystem +*/ +struct tls_params *tls_initialise(TALLOC_CTX *mem_ctx, struct loadparm_context *lp_ctx); + +/* + call tls_init_server() on each new server connection + + the 'plain_chars' parameter is a list of chars that when they occur + as the first character from the client on the connection tell the + tls code that this is a non-tls connection. This can be used to have + tls and non-tls servers on the same port. If this is NULL then only + tls connections will be allowed +*/ +struct socket_context *tls_init_server(struct tls_params *parms, + struct socket_context *sock, + struct tevent_fd *fde, + const char *plain_chars); + +/* + call tls_init_client() on each new client connection +*/ +struct socket_context *tls_init_client(struct socket_context *sock, + struct tevent_fd *fde, + const char *cafile); + +/* + return True if a connection used tls +*/ +bool tls_enabled(struct socket_context *tls); + + +/* + true if tls support is compiled in +*/ +bool tls_support(struct tls_params *parms); + +const struct socket_ops *socket_tls_ops(enum socket_type type); + +#endif |