moved more code to tlscommon, fixed a couple of minor lint warnings

git-svn-id: https://svn.testnett.uninett.no/radsecproxy/trunk@447 e88ac4ed-0b26-0410-9574-a7f39faa03bf
author: venaas <venaas> 2008-12-22 13:14:41 +0000
committer: venaas <venaas@e88ac4ed-0b26-0410-9574-a7f39faa03bf> 2008-12-22 13:14:41 +0000
commit: e0c9e33cc484025e2b80bec19f7130554e9e3781 (patch)
tree: 8e59eef2efd7c569707224edbc67ade716d8673f /tlscommon.h
parent: a99d921cf322a09d779500c2cdeb55e3df260fb8 (diff)
1 files changed, 22 insertions, 0 deletions
diff --git a/tlscommon.h b/tlscommon.h
index 2b7a5e4..97388e4 100644
--- a/tlscommon.h
+++ b/tlscommon.h
@@ -6,8 +6,30 @@
  * copyright notice and this permission notice appear in all copies.
  */
 
+#include <openssl/ssl.h>
+
+struct tls {
+    char *name;
+    char *cacertfile;
+    char *cacertpath;
+    char *certfile;
+    char *certkeyfile;
+    char *certkeypwd;
+    uint8_t crlcheck;
+    char **policyoids;
+    uint32_t cacheexpiry;
+    uint32_t tlsexpiry;
+    uint32_t dtlsexpiry;
+    X509_VERIFY_PARAM *vpm;
+    SSL_CTX *tlsctx;
+    SSL_CTX *dtlsctx;
+};
+
 #if defined(RADPROT_TLS) || defined(RADPROT_DTLS)
 struct tls *tlsgettls(char *alt1, char *alt2);
 SSL_CTX *tlsgetctx(uint8_t type, struct tls *t);
+X509 *verifytlscert(SSL *ssl);
+int verifyconfcert(X509 *cert, struct clsrvconf *conf);
 int conftls_cb(struct gconffile **cf, void *arg, char *block, char *opt, char *val);
+int addmatchcertattr(struct clsrvconf *conf);
 #endif
author	venaas <venaas>	2008-12-22 13:14:41 +0000
committer	venaas <venaas@e88ac4ed-0b26-0410-9574-a7f39faa03bf>	2008-12-22 13:14:41 +0000
commit	e0c9e33cc484025e2b80bec19f7130554e9e3781 (patch)
tree	8e59eef2efd7c569707224edbc67ade716d8673f /tlscommon.h
parent	a99d921cf322a09d779500c2cdeb55e3df260fb8 (diff)