diff options
| author | venaas <venaas> | 2008-09-23 15:21:50 +0000 |
|---|---|---|
| committer | venaas <venaas@e88ac4ed-0b26-0410-9574-a7f39faa03bf> | 2008-09-23 15:21:50 +0000 |
| commit | 0aa4b1fb04dafb9767309afa5d6ad6805391670f (patch) | |
| tree | 49e25fb218817429cc1ae3e89d04e10e3d8f4829 /radsecproxy.h | |
| parent | 68d4aae0802ff658cf822976820493627f4948e4 (diff) | |
make clientwr not try to connect (left to reader), changed some timing stuff, issue with statusserver and connection down..., added optional cacheexpiry option for tls blocks
git-svn-id: https://svn.testnett.uninett.no/radsecproxy/trunk@398 e88ac4ed-0b26-0410-9574-a7f39faa03bf
Diffstat (limited to 'radsecproxy.h')
| -rw-r--r-- | radsecproxy.h | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/radsecproxy.h b/radsecproxy.h index 8c17c96..4cb102b 100644 --- a/radsecproxy.h +++ b/radsecproxy.h @@ -90,12 +90,12 @@ struct clsrvconf { uint8_t retrycount; uint8_t dupinterval; uint8_t certnamecheck; - SSL_CTX *ssl_ctx; struct rewrite *rewritein; struct rewrite *rewriteout; struct addrinfo *addrinfo; uint8_t prefixlen; pthread_mutex_t *lock; /* only used for updating clients so far */ + struct tls *tlsconf; struct list *clients; struct server *servers; }; @@ -150,6 +150,9 @@ struct tls { char *certkeyfile; char *certkeypwd; uint8_t crlcheck; + uint32_t cacheexpiry; + uint32_t tlsexpiry; + uint32_t dtlsexpiry; SSL_CTX *tlsctx; SSL_CTX *dtlsctx; }; @@ -212,3 +215,4 @@ int verifyconfcert(X509 *cert, struct clsrvconf *conf); void replyh(struct server *server, unsigned char *buf); int connecttcp(struct addrinfo *addrinfo, struct addrinfo *src); int bindtoaddr(struct addrinfo *addrinfo, int family, int reuse, int v6only); +SSL_CTX *tlsgetctx(uint8_t type, struct tls *t); |