Move headers from server/include to include/maxscale

- Headers now to be included as <maxscale/xyz.h> - First step, no cleanup of headers has been made. Only moving from one place to another + necessary modifications.
2016-10-13 15:20:51 +03:00
parent ef5bbd9353
commit e41589be10
235 changed files with 1010 additions and 1010 deletions
--- a/include/maxscale/gw_ssl.h
+++ b/include/maxscale/gw_ssl.h
@ -0,0 +1,81 @@
+#ifndef _GW_SSL_H
+#define _GW_SSL_H
+/*
+ * Copyright (c) 2016 MariaDB Corporation Ab
+ *
+ * Use of this software is governed by the Business Source License included
+ * in the LICENSE.TXT file and at www.mariadb.com/bsl.
+ *
+ * Change Date: 2019-07-01
+ *
+ * On the date above, in accordance with the Business Source License, use
+ * of this software will be governed by version 2 or later of the General
+ * Public License.
+ */
+
+/**
+ * @file gw_ssl.h
+ *
+ * The SSL definitions for MaxScale
+ *
+ * @verbatim
+ * Revision History
+ *
+ * Date         Who                     Description
+ * 27/01/16     Martin Brampton         Initial implementation
+ *
+ * @endverbatim
+ */
+
+#include <maxscale/gw_protocol.h>
+#include <openssl/crypto.h>
+#include <openssl/ssl.h>
+#include <openssl/err.h>
+#include <openssl/dh.h>
+
+struct dcb;
+
+typedef enum ssl_method_type
+{
+    SERVICE_TLS10,
+#ifdef OPENSSL_1_0
+    SERVICE_TLS11,
+    SERVICE_TLS12,
+#endif
+    SERVICE_SSL_MAX,
+    SERVICE_TLS_MAX,
+    SERVICE_SSL_TLS_MAX
+} ssl_method_type_t;
+
+/**
+ * Return codes for SSL authentication checks
+ */
+#define SSL_AUTH_CHECKS_OK 0
+#define SSL_ERROR_CLIENT_NOT_SSL 1
+#define SSL_ERROR_ACCEPT_FAILED 2
+
+/**
+ * The ssl_listener structure is used to aggregate the SSL configuration items
+ * and data for a particular listener
+ */
+typedef struct ssl_listener
+{
+    SSL_CTX *ctx;
+    SSL_METHOD *method;                 /*<  SSLv3 or TLS1.0/1.1/1.2 methods
+                                         * see: https://www.openssl.org/docs/ssl/SSL_CTX_new.html */
+    int ssl_cert_verify_depth;          /*< SSL certificate verification depth */
+    int ssl_method_type;                /*< Which of the SSLv3 or TLS1.0/1.1/1.2 methods to use */
+    char *ssl_cert;                     /*< SSL certificate */
+    char *ssl_key;                      /*< SSL private key */
+    char *ssl_ca_cert;                  /*< SSL CA certificate */
+    bool ssl_init_done;                 /*< If SSL has already been initialized for this service */
+} SSL_LISTENER;
+
+int ssl_authenticate_client(struct dcb *dcb, bool is_capable);
+bool ssl_is_connection_healthy(struct dcb *dcb);
+bool ssl_check_data_to_process(struct dcb *dcb);
+bool ssl_required_by_dcb(struct dcb *dcb);
+bool ssl_required_but_not_negotiated(struct dcb *dcb);
+const char* ssl_method_type_to_string(ssl_method_type_t method_type);
+
+#endif /* _GW_SSL_H */