#include <tls.h>
ca_cert | File or reference name for CA X.509 certificate in PEM or DER format | |
ca_cert_blob | ca_cert as inlined data or NULL if not used | |
ca_cert_blob_len | ca_cert_blob length | |
ca_path | Path to CA certificates (OpenSSL specific) | |
subject_match | String to match in the subject of the peer certificate or NULL to allow all subjects | |
altsubject_match | String to match in the alternative subject of the peer certificate or NULL to allow all alternative subjects | |
client_cert | File or reference name for client X.509 certificate in PEM or DER format | |
client_cert_blob | client_cert as inlined data or NULL if not used | |
client_cert_blob_len | client_cert_blob length | |
private_key | File or reference name for client private key in PEM or DER format (traditional format (RSA PRIVATE KEY) or PKCS#8 (PRIVATE KEY) | |
private_key_blob | private_key as inlined data or NULL if not used | |
private_key_blob_len | private_key_blob length | |
private_key_passwd | Passphrase for decrypted private key, NULL if no passphrase is used. | |
dh_file | File name for DH/DSA data in PEM format, or NULL if not used | |
dh_blob | dh_file as inlined data or NULL if not used | |
dh_blob_len | dh_blob length | |
engine | 1 = use engine (e.g., a smartcard) for private key operations (this is OpenSSL specific for now) | |
engine_id | engine id string (this is OpenSSL specific for now) | |
ppin | pointer to the pin variable in the configuration (this is OpenSSL specific for now) | |
key_id | the private key's key id (this is OpenSSL specific for now) |
Certificates and private key can be configured either as a reference name (file path or reference to certificate store) or by providing the same data as a pointer to the data in memory. Only one option will be used for each field.
Definition at line 84 of file tls.h.