blob: 1d418d18106e3cc84b875b41fc0b134291ff6f85 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
|
/*
* Copyright (C) 2012 Martin Willi
* Copyright (C) 2012 revosec AG
*
* This program is free software; you can redistribute it and/or modify it
* under the terms of the GNU General Public License as published by the
* Free Software Foundation; either version 2 of the License, or (at your
* option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
*
* This program is distributed in the hope that it will be useful, but
* WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
* or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
* for more details.
*/
/**
* @defgroup pt_tls_client pt_tls_client
* @{ @ingroup pt_tls
*/
#ifndef PT_TLS_CLIENT_H_
#define PT_TLS_CLIENT_H_
#include <networking/host.h>
#include <utils/identification.h>
#include <tnc/tnccs/tnccs.h>
typedef struct pt_tls_client_t pt_tls_client_t;
/**
* IF-T for TLS aka PT-TLS transport client.
*/
struct pt_tls_client_t {
/**
* Perform an assessment.
*
* @param tnccs upper layer TNC client used for assessment
* @return status of assessment
*/
status_t (*run_assessment)(pt_tls_client_t *this, tnccs_t *tnccs);
/**
* Destroy a pt_tls_client_t.
*/
void (*destroy)(pt_tls_client_t *this);
};
/**
* Create a pt_tls_client instance.
*
* The client identity is used for:
* - TLS authentication if an appropirate certificate is found
* - SASL authentication if requested from the server
*
* @param address address/port to run assessments against, gets owned
* @param server server identity to use for authentication, gets owned
* @param client client identity to use for authentication, gets owned
* @return PT-TLS context
*/
pt_tls_client_t *pt_tls_client_create(host_t *address, identification_t *server,
identification_t *client);
#endif /** PT_TLS_CLIENT_H_ @}*/
|