OpenBSD manual page server

Manual Page Search Parameters

SSL_CTX_SET_PSK_CLIENT_CALLBACK(3) Library Functions Manual SSL_CTX_SET_PSK_CLIENT_CALLBACK(3)

SSL_CTX_set_psk_client_callback, SSL_set_psk_client_callbackset PSK client callback

#include <openssl/ssl.h>

void
SSL_CTX_set_psk_client_callback(SSL_CTX *ctx, unsigned int (*callback)(SSL *ssl, const char *hint, char *identity, unsigned int max_identity_len, unsigned char *psk, unsigned int max_psk_len));

void
SSL_set_psk_client_callback(SSL *ssl, unsigned int (*callback)(SSL *ssl, const char *hint, char *identity, unsigned int max_identity_len, unsigned char *psk, unsigned int max_psk_len));

A client application must provide a callback function which is called when the client is sending the ClientKeyExchange message to the server.

The purpose of the callback function is to select the PSK identity and the pre-shared key to use during the connection setup phase.

The callback is set using functions () or (). The callback function is given the connection in parameter ssl, a NULL-terminated PSK identity hint sent by the server in parameter hint, a buffer identity of length max_identity_len bytes where the resulting NULL-terminated identity is to be stored, and a buffer psk of length max_psk_len bytes where the resulting pre-shared key is to be stored.

Note that parameter hint given to the callback may be NULL.

Return values from the client callback are interpreted as follows:

On success (callback found a PSK identity and a pre-shared key to use) the length (> 0) of psk in bytes is returned.

Otherwise or on errors callback should return 0. In this case the connection setup fails.

December 2, 2014 OpenBSD-6.0