家族 handshake netlink 规范

概要

用于请求传输层安全握手的 Netlink 协议。

操作

ready

通知处理程序新的握手请求正在等待

notify:

accept

accept

处理程序检索下一个排队的握手请求

attribute-set:

accept

flags:

[admin-perm]

do:

request

attributes:

[handler-class]

reply

attributes:

[sockfd, message-type, timeout, auth-mode, peer-identity, certificate, peername]

done

处理程序报告握手完成

attribute-set:

done

do:

request

attributes:

[status, sockfd, remote-auth]

多播组

• none

• tlshd

定义

handler-class

type:

enum

value-start:

0

entries:

• none

• tlshd

• max

msg-type

type:

enum

value-start:

0

entries:

• unspec

• clienthello

• serverhello

auth

type:

enum

value-start:

0

entries:

• unspec

• unauth

• psk

• x509

属性集

x509

cert (s32)

privkey (s32)

accept

sockfd (s32)

handler-class (u32)

enum:

handler-class

message-type (u32)

enum:

msg-type

timeout (u32)

auth-mode (u32)

enum:

auth

peer-identity (u32)

multi-attr:

True

certificate (nest)

nested-attributes:

x509

multi-attr:

True

peername (string)

done

status (u32)

sockfd (s32)

remote-auth (u32)

multi-attr:

True