mirror of
https://github.com/OpenVPN/openvpn.git
synced 2024-09-20 03:52:28 +02:00
18597b93f7
it into QCA (Qt Cryptographic Architecture), so that KDE 4 will finally be able to use smartcards. The changes allows the following features: 1. Thread safe, is activated if USE_PTHREAD. 2. Slot event - Will allow us in the future to disconnect VPN when smartcard is removed. In order to support this OpenVPN must support threading... At least SIGUSR1 from a different thread. Threading should be supported in both Windows and Linux. -- currently disabled. When I talk about threading support it is just support in configuration script and that the method that SIGUSR1 self can be called from a different thread. I already handle the monitor threads. 3. Certificate enumeration - Will allow us to finally have one configuration file for all users! When you add the plugin GUI stuff you talked about, we will be able to display a list of available certificates for the user to select. -- currently disabled. 4. Data object manipulation - Will allow us to store tls-auth on the smartcard as well. -- currently disabled. 5. Many other minor improvements. Alon Bar-Lev git-svn-id: http://svn.openvpn.net/projects/openvpn/branches/BETA21/openvpn@990 e7ae566f-a301-0410-adde-c780ea21d3b5
76 lines
1.9 KiB
C
76 lines
1.9 KiB
C
/*
|
|
* OpenVPN -- An application to securely tunnel IP networks
|
|
* over a single TCP/UDP port, with support for SSL/TLS-based
|
|
* session authentication and key exchange,
|
|
* packet encryption, packet authentication, and
|
|
* packet compression.
|
|
*
|
|
* Copyright (C) 2002-2005 OpenVPN Solutions LLC <info@openvpn.net>
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License version 2
|
|
* as published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program (see the file COPYING included with this
|
|
* distribution); if not, write to the Free Software Foundation, Inc.,
|
|
* 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
|
*/
|
|
|
|
#ifndef OPENVPN_PKCS11_H
|
|
#define OPENVPN_PKCS11_H
|
|
|
|
#if defined(ENABLE_PKCS11)
|
|
|
|
#include <openssl/ssl.h>
|
|
|
|
bool
|
|
pkcs11_initialize (
|
|
const bool fProtectedAuthentication,
|
|
const int nPINCachePeriod
|
|
);
|
|
|
|
void
|
|
pkcs11_terminate ();
|
|
|
|
void
|
|
pkcs11_forkFixup ();
|
|
|
|
bool
|
|
pkcs11_addProvider (
|
|
const char * const provider,
|
|
const bool fProtectedAuthentication,
|
|
const char * const sign_mode,
|
|
const bool fCertIsPrivate
|
|
);
|
|
|
|
int
|
|
SSL_CTX_use_pkcs11 (
|
|
SSL_CTX * const ssl_ctx,
|
|
const char * const pkcs11_slot_type,
|
|
const char * const pkcs11_slot,
|
|
const char * const pkcs11_id_type,
|
|
const char * const pkcs11_id
|
|
);
|
|
|
|
void
|
|
show_pkcs11_slots (
|
|
const char * const provider
|
|
);
|
|
|
|
void
|
|
show_pkcs11_objects (
|
|
const char * const provider,
|
|
const char * const slot,
|
|
const char * const pin
|
|
);
|
|
|
|
#endif /* ENABLE_PKCS11 */
|
|
|
|
#endif /* OPENVPN_PKCS11H_H */
|