tls_connection_params struct

struct tls_connection_params - Parameters for TLS connection @ca_cert: File or reference name for CA X.509 certificate in PEM or DER format @ca_cert_blob: ca_cert as inlined data or %NULL if not used @ca_cert_blob_len: ca_cert_blob length @ca_path: Path to CA certificates (OpenSSL specific) @subject_match: String to match in the subject of the peer certificate or %NULL to allow all subjects @altsubject_match: String to match in the alternative subject of the peer certificate or %NULL to allow all alternative subjects @suffix_match: Semicolon deliminated string of values to suffix match against the dNSName or CN of the peer certificate or %NULL to allow all domain names. This may allow subdomains and wildcard certificates. Each domain name label must have a full case-insensitive match. @domain_match: String to match in the dNSName or CN of the peer certificate or %NULL to allow all domain names. This requires a full, case-insensitive match. More than one match string can be provided by using semicolons to separate the strings (e.g., example.org;example.com). When multiple strings are specified, a match with any one of the values is considered a sufficient match for the certificate, i.e., the conditions are ORed together. @client_cert: File or reference name for client X.509 certificate in PEM or DER format @client_cert_blob: client_cert as inlined data or %NULL if not used @client_cert_blob_len: client_cert_blob length @private_key: File or reference name for client private key in PEM or DER format (traditional format (RSA PRIVATE KEY) or PKCS#8 (PRIVATE KEY) @private_key_blob: private_key as inlined data or %NULL if not used @private_key_blob_len: private_key_blob length @private_key_passwd: Passphrase for decrypted private key, %NULL if no passphrase is used. @dh_file: File name for DH/DSA data in PEM format, or %NULL if not used @dh_blob: dh_file as inlined data or %NULL if not used @dh_blob_len: dh_blob length @engine: 1 = use engine (e.g., a smartcard) for private key operations (this is OpenSSL specific for now) @engine_id: engine id string (this is OpenSSL specific for now) @ppin: pointer to the pin variable in the configuration (this is OpenSSL specific for now) @key_id: the private key's id when using engine (this is OpenSSL specific for now) @cert_id: the certificate's id when using engine @ca_cert_id: the CA certificate's id when using engine @openssl_ciphers: OpenSSL cipher configuration @openssl_ecdh_curves: OpenSSL ECDH curve configuration. %NULL for auto if supported, empty string to disable, or a colon-separated curve list. @flags: Parameter options (TLS_CONN_*) @ocsp_stapling_response: DER encoded file with cached OCSP stapling response or %NULL if OCSP is not enabled @ocsp_stapling_response_multi: DER encoded file with cached OCSP stapling response list (OCSPResponseList for ocsp_multi in RFC 6961) or %NULL if ocsp_multi is not enabled @check_cert_subject: Client certificate subject name matching string TLS connection parameters to be configured with tls_connection_set_params() and tls_global_set_params(). Certificates and private key can be configured either as a reference name (file path or reference to certificate store) or by providing the same data as a pointer to the data in memory. Only one option will be used for each field.

Found 10 other functions taking a tls_connection_params argument: