// OpenVPN -- An application to securely tunnel IP networks // over a single port, with support for SSL/TLS-based // session authentication and key exchange, // packet encryption, packet authentication, and // packet compression. // // Copyright (C) 2012-2017 OpenVPN Inc. // // This program is free software: you can redistribute it and/or modify // it under the terms of the GNU Affero General Public License Version 3 // as published by the Free Software Foundation. // // This program is distributed in the hope that it will be useful, // but WITHOUT ANY WARRANTY; without even the implied warranty of // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the // GNU Affero General Public License for more details. // // You should have received a copy of the GNU Affero General Public License // along with this program in the COPYING file. // If not, see . // Select appropriate OpenVPN protocol data channel implementation #ifndef OPENVPN_CRYPTO_CRYPTODCSEL_H #define OPENVPN_CRYPTO_CRYPTODCSEL_H #include #include #include #include #include namespace openvpn { OPENVPN_EXCEPTION(crypto_dc_select); template class CryptoDCSelect : public CryptoDCFactory { public: typedef RCPtr Ptr; CryptoDCSelect(const Frame::Ptr& frame_arg, const SessionStats::Ptr& stats_arg, const RandomAPI::Ptr& prng_arg) : frame(frame_arg), stats(stats_arg), prng(prng_arg) { } virtual CryptoDCContext::Ptr new_obj(const CryptoAlgs::Type cipher, const CryptoAlgs::Type digest) { const CryptoAlgs::Alg& alg = CryptoAlgs::get(cipher); if (alg.flags() & CryptoAlgs::CBC_HMAC) return new CryptoContextCHM(cipher, digest, frame, stats, prng); else if (alg.flags() & CryptoAlgs::AEAD) return new AEAD::CryptoContext(cipher, frame, stats); else OPENVPN_THROW(crypto_dc_select, alg.name() << ": only CBC/HMAC and AEAD cipher modes supported"); } private: Frame::Ptr frame; SessionStats::Ptr stats; RandomAPI::Ptr prng; }; } #endif