#ifndef _RLM_EAP_TLS_H
#define _RLM_EAP_TLS_H
#include <freeradius-devel/ident.h>
RCSIDH(rlm_eap_tls_h, "$Id$")
#include "eap_tls.h"
#include <freeradius-devel/radiusd.h>
#include <freeradius-devel/modules.h>
typedef struct eap_tls_conf {
char *private_key_password;
char *private_key_file;
char *certificate_file;
char *random_file;
char *ca_path;
char *ca_file;
char *dh_file;
char *rsa_file;
char *make_cert_command;
int rsa_key;
int dh_key;
int rsa_key_length;
int dh_key_length;
int verify_depth;
int file_type;
int include_length;
int fragment_size;
int check_crl;
int allow_expired_crl;
char *check_cert_cn;
char *cipher_list;
char *check_cert_issuer;
int session_cache_enable;
int session_timeout;
int session_cache_size;
char *session_id_name;
char session_context_id[128];
time_t session_last_flushed;
char *verify_tmp_dir;
char *verify_client_cert_cmd;
#ifdef HAVE_OPENSSL_OCSP_H
int ocsp_enable;
int ocsp_override_url;
char *ocsp_url;
#endif
#if OPENSSL_VERSION_NUMBER >= 0x0090800fL
#ifndef OPENSSL_NO_ECDH
char *ecdh_curve;
#endif
#endif
} EAP_TLS_CONF;
typedef struct _eap_tls_t {
EAP_TLS_CONF *conf;
SSL_CTX *ctx;
#ifdef HAVE_OPENSSL_OCSP_H
X509_STORE *store;
#endif
} eap_tls_t;
#endif