Lines Matching refs:ssl
425 size_t mbedtls_ssl_get_output_max_frag_len(const mbedtls_ssl_context *ssl);
441 size_t mbedtls_ssl_get_input_max_frag_len(const mbedtls_ssl_context *ssl);
454 size_t mbedtls_ssl_get_output_record_size_limit(const mbedtls_ssl_context *ssl);
1279 int mbedtls_ssl_tls12_write_client_hello_exts(mbedtls_ssl_context *ssl,
1300 mbedtls_ssl_context *ssl,
1320 void mbedtls_ssl_handshake_free(mbedtls_ssl_context *ssl);
1323 void mbedtls_ssl_set_inbound_transform(mbedtls_ssl_context *ssl,
1327 void mbedtls_ssl_set_outbound_transform(mbedtls_ssl_context *ssl,
1331 int mbedtls_ssl_handshake_client_step(mbedtls_ssl_context *ssl);
1333 int mbedtls_ssl_handshake_server_step(mbedtls_ssl_context *ssl);
1334 void mbedtls_ssl_handshake_wrapup(mbedtls_ssl_context *ssl);
1335 static inline void mbedtls_ssl_handshake_set_state(mbedtls_ssl_context *ssl, in mbedtls_ssl_handshake_set_state() argument
1338 ssl->state = (int) state; in mbedtls_ssl_handshake_set_state()
1342 int mbedtls_ssl_send_fatal_handshake_failure(mbedtls_ssl_context *ssl);
1345 int mbedtls_ssl_reset_checksum(mbedtls_ssl_context *ssl);
1349 int mbedtls_ssl_derive_keys(mbedtls_ssl_context *ssl);
1353 int mbedtls_ssl_handle_message_type(mbedtls_ssl_context *ssl);
1355 int mbedtls_ssl_prepare_handshake_record(mbedtls_ssl_context *ssl);
1357 int mbedtls_ssl_update_handshake_status(mbedtls_ssl_context *ssl);
1436 int mbedtls_ssl_read_record(mbedtls_ssl_context *ssl,
1439 int mbedtls_ssl_fetch_input(mbedtls_ssl_context *ssl, size_t nb_want);
1445 int mbedtls_ssl_start_handshake_msg(mbedtls_ssl_context *ssl, unsigned char hs_type,
1449 int mbedtls_ssl_write_handshake_msg_ext(mbedtls_ssl_context *ssl,
1452 static inline int mbedtls_ssl_write_handshake_msg(mbedtls_ssl_context *ssl) in mbedtls_ssl_write_handshake_msg() argument
1454 return mbedtls_ssl_write_handshake_msg_ext(ssl, 1 /* update checksum */, 1 /* force flush */); in mbedtls_ssl_write_handshake_msg()
1461 int mbedtls_ssl_finish_handshake_msg(mbedtls_ssl_context *ssl,
1465 int mbedtls_ssl_write_record(mbedtls_ssl_context *ssl, int force_flush);
1467 int mbedtls_ssl_flush_output(mbedtls_ssl_context *ssl);
1470 int mbedtls_ssl_parse_certificate(mbedtls_ssl_context *ssl);
1472 int mbedtls_ssl_write_certificate(mbedtls_ssl_context *ssl);
1475 int mbedtls_ssl_parse_change_cipher_spec(mbedtls_ssl_context *ssl);
1477 int mbedtls_ssl_write_change_cipher_spec(mbedtls_ssl_context *ssl);
1480 int mbedtls_ssl_parse_finished(mbedtls_ssl_context *ssl);
1482 int mbedtls_ssl_write_finished(mbedtls_ssl_context *ssl);
1484 void mbedtls_ssl_optimize_checksum(mbedtls_ssl_context *ssl,
1491 int mbedtls_ssl_add_hs_msg_to_checksum(mbedtls_ssl_context *ssl,
1497 int mbedtls_ssl_add_hs_hdr_to_checksum(mbedtls_ssl_context *ssl,
1504 int mbedtls_ssl_psk_derive_premaster(mbedtls_ssl_context *ssl,
1523 const mbedtls_ssl_context *ssl) in mbedtls_ssl_get_opaque_psk() argument
1525 if (!mbedtls_svc_key_id_is_null(ssl->handshake->psk_opaque)) { in mbedtls_ssl_get_opaque_psk()
1526 return ssl->handshake->psk_opaque; in mbedtls_ssl_get_opaque_psk()
1529 if (!mbedtls_svc_key_id_is_null(ssl->conf->psk_opaque)) { in mbedtls_ssl_get_opaque_psk()
1530 return ssl->conf->psk_opaque; in mbedtls_ssl_get_opaque_psk()
1542 static inline int mbedtls_ssl_get_psk(const mbedtls_ssl_context *ssl, in mbedtls_ssl_get_psk() argument
1545 if (ssl->handshake->psk != NULL && ssl->handshake->psk_len > 0) { in mbedtls_ssl_get_psk()
1546 *psk = ssl->handshake->psk; in mbedtls_ssl_get_psk()
1547 *psk_len = ssl->handshake->psk_len; in mbedtls_ssl_get_psk()
1548 } else if (ssl->conf->psk != NULL && ssl->conf->psk_len > 0) { in mbedtls_ssl_get_psk()
1549 *psk = ssl->conf->psk; in mbedtls_ssl_get_psk()
1550 *psk_len = ssl->conf->psk_len; in mbedtls_ssl_get_psk()
1574 int mbedtls_ssl_set_calc_verify_md(mbedtls_ssl_context *ssl, int md);
1578 int mbedtls_ssl_check_curve_tls_id(const mbedtls_ssl_context *ssl, uint16_t tls_id);
1581 int mbedtls_ssl_check_curve(const mbedtls_ssl_context *ssl, mbedtls_ecp_group_id grp_id);
1650 static inline mbedtls_pk_context *mbedtls_ssl_own_key(mbedtls_ssl_context *ssl) in mbedtls_ssl_own_key() argument
1654 if (ssl->handshake != NULL && ssl->handshake->key_cert != NULL) { in mbedtls_ssl_own_key()
1655 key_cert = ssl->handshake->key_cert; in mbedtls_ssl_own_key()
1657 key_cert = ssl->conf->key_cert; in mbedtls_ssl_own_key()
1663 static inline mbedtls_x509_crt *mbedtls_ssl_own_cert(mbedtls_ssl_context *ssl) in mbedtls_ssl_own_cert() argument
1667 if (ssl->handshake != NULL && ssl->handshake->key_cert != NULL) { in mbedtls_ssl_own_cert()
1668 key_cert = ssl->handshake->key_cert; in mbedtls_ssl_own_cert()
1670 key_cert = ssl->conf->key_cert; in mbedtls_ssl_own_cert()
1702 int mbedtls_ssl_verify_certificate(mbedtls_ssl_context *ssl,
1732 static inline size_t mbedtls_ssl_in_hdr_len(const mbedtls_ssl_context *ssl) in mbedtls_ssl_in_hdr_len() argument
1735 ((void) ssl); in mbedtls_ssl_in_hdr_len()
1739 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) { in mbedtls_ssl_in_hdr_len()
1748 static inline size_t mbedtls_ssl_out_hdr_len(const mbedtls_ssl_context *ssl) in mbedtls_ssl_out_hdr_len() argument
1750 return (size_t) (ssl->out_iv - ssl->out_hdr); in mbedtls_ssl_out_hdr_len()
1753 static inline size_t mbedtls_ssl_hs_hdr_len(const mbedtls_ssl_context *ssl) in mbedtls_ssl_hs_hdr_len() argument
1756 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) { in mbedtls_ssl_hs_hdr_len()
1760 ((void) ssl); in mbedtls_ssl_hs_hdr_len()
1766 void mbedtls_ssl_send_flight_completed(mbedtls_ssl_context *ssl);
1767 void mbedtls_ssl_recv_flight_completed(mbedtls_ssl_context *ssl);
1769 int mbedtls_ssl_resend(mbedtls_ssl_context *ssl);
1771 int mbedtls_ssl_flight_transmit(mbedtls_ssl_context *ssl);
1777 int mbedtls_ssl_dtls_replay_check(mbedtls_ssl_context const *ssl);
1778 void mbedtls_ssl_dtls_replay_update(mbedtls_ssl_context *ssl);
1788 int mbedtls_ssl_get_key_exchange_md_tls1_2(mbedtls_ssl_context *ssl,
1800 int mbedtls_ssl_encrypt_buf(mbedtls_ssl_context *ssl,
1806 int mbedtls_ssl_decrypt_buf(mbedtls_ssl_context const *ssl,
1811 static inline size_t mbedtls_ssl_ep_len(const mbedtls_ssl_context *ssl) in mbedtls_ssl_ep_len() argument
1814 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) { in mbedtls_ssl_ep_len()
1818 ((void) ssl); in mbedtls_ssl_ep_len()
1825 int mbedtls_ssl_resend_hello_request(mbedtls_ssl_context *ssl);
1828 void mbedtls_ssl_set_timer(mbedtls_ssl_context *ssl, uint32_t millisecs);
1830 int mbedtls_ssl_check_timer(mbedtls_ssl_context *ssl);
1832 void mbedtls_ssl_reset_in_out_pointers(mbedtls_ssl_context *ssl);
1833 void mbedtls_ssl_update_out_pointers(mbedtls_ssl_context *ssl,
1835 void mbedtls_ssl_update_in_pointers(mbedtls_ssl_context *ssl);
1838 int mbedtls_ssl_session_reset_int(mbedtls_ssl_context *ssl, int partial);
1839 void mbedtls_ssl_session_reset_msg_layer(mbedtls_ssl_context *ssl,
1846 int mbedtls_ssl_handle_pending_alert(mbedtls_ssl_context *ssl);
1851 void mbedtls_ssl_pend_fatal_alert(mbedtls_ssl_context *ssl,
1857 mbedtls_ssl_pend_fatal_alert(ssl, type, user_return_value)
1860 void mbedtls_ssl_dtls_replay_reset(mbedtls_ssl_context *ssl);
1863 void mbedtls_ssl_handshake_wrapup_free_hs_transform(mbedtls_ssl_context *ssl);
1867 int mbedtls_ssl_start_renegotiation(mbedtls_ssl_context *ssl);
1871 size_t mbedtls_ssl_get_current_mtu(const mbedtls_ssl_context *ssl);
1872 void mbedtls_ssl_buffering_free(mbedtls_ssl_context *ssl);
1947 int mbedtls_ssl_tls13_crypto_init(mbedtls_ssl_context *ssl);
1952 int mbedtls_ssl_tls13_process_finished_message(mbedtls_ssl_context *ssl);
1954 int mbedtls_ssl_tls13_write_finished_message(mbedtls_ssl_context *ssl);
1955 void mbedtls_ssl_tls13_handshake_wrapup(mbedtls_ssl_context *ssl);
1967 int mbedtls_ssl_tls13_write_client_hello_exts(mbedtls_ssl_context *ssl,
1978 int mbedtls_ssl_tls13_handshake_client_step(mbedtls_ssl_context *ssl);
1986 int mbedtls_ssl_tls13_handshake_server_step(mbedtls_ssl_context *ssl);
1992 static inline int mbedtls_ssl_conf_tls13_is_kex_mode_enabled(mbedtls_ssl_context *ssl, in mbedtls_ssl_conf_tls13_is_kex_mode_enabled() argument
1995 return (ssl->conf->tls13_kex_modes & kex_mode_mask) != 0; in mbedtls_ssl_conf_tls13_is_kex_mode_enabled()
1998 static inline int mbedtls_ssl_conf_tls13_is_psk_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_psk_enabled() argument
2000 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_psk_enabled()
2004 static inline int mbedtls_ssl_conf_tls13_is_psk_ephemeral_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_psk_ephemeral_enabled() argument
2006 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_psk_ephemeral_enabled()
2010 static inline int mbedtls_ssl_conf_tls13_is_ephemeral_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_ephemeral_enabled() argument
2012 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_ephemeral_enabled()
2016 static inline int mbedtls_ssl_conf_tls13_is_some_ephemeral_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_some_ephemeral_enabled() argument
2018 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_some_ephemeral_enabled()
2022 static inline int mbedtls_ssl_conf_tls13_is_some_psk_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_some_psk_enabled() argument
2024 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_some_psk_enabled()
2040 static inline int mbedtls_ssl_tls13_is_kex_mode_supported(mbedtls_ssl_context *ssl, in mbedtls_ssl_tls13_is_kex_mode_supported() argument
2043 return (ssl->handshake->tls13_kex_modes & kex_modes_mask) != 0; in mbedtls_ssl_tls13_is_kex_mode_supported()
2046 static inline int mbedtls_ssl_tls13_is_psk_supported(mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_psk_supported() argument
2048 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_psk_supported()
2053 mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_psk_ephemeral_supported() argument
2055 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_psk_ephemeral_supported()
2059 static inline int mbedtls_ssl_tls13_is_ephemeral_supported(mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_ephemeral_supported() argument
2061 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_ephemeral_supported()
2065 static inline int mbedtls_ssl_tls13_is_some_ephemeral_supported(mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_some_ephemeral_supported() argument
2067 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_some_ephemeral_supported()
2071 static inline int mbedtls_ssl_tls13_is_some_psk_supported(mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_some_psk_supported() argument
2073 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_some_psk_supported()
2085 mbedtls_ssl_context *ssl,
2091 mbedtls_ssl_context *ssl, unsigned int extension_type) in mbedtls_ssl_tls13_set_hs_sent_ext_mask() argument
2093 ssl->handshake->sent_extensions |= in mbedtls_ssl_tls13_set_hs_sent_ext_mask()
2101 mbedtls_ssl_context *ssl, int kex_mask) in mbedtls_ssl_tls13_key_exchange_mode_check() argument
2103 return (ssl->handshake->key_exchange_mode & kex_mask) != 0; in mbedtls_ssl_tls13_key_exchange_mode_check()
2107 mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_key_exchange_mode_with_psk() argument
2109 return mbedtls_ssl_tls13_key_exchange_mode_check(ssl, in mbedtls_ssl_tls13_key_exchange_mode_with_psk()
2114 mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_key_exchange_mode_with_ephemeral() argument
2116 return mbedtls_ssl_tls13_key_exchange_mode_check(ssl, in mbedtls_ssl_tls13_key_exchange_mode_with_ephemeral()
2124 int mbedtls_ssl_tls13_fetch_handshake_msg(mbedtls_ssl_context *ssl,
2151 mbedtls_ssl_context *ssl,
2160 int mbedtls_ssl_tls13_process_certificate(mbedtls_ssl_context *ssl);
2167 int mbedtls_ssl_tls13_write_certificate(mbedtls_ssl_context *ssl);
2173 int mbedtls_ssl_tls13_write_certificate_verify(mbedtls_ssl_context *ssl);
2181 int mbedtls_ssl_tls13_process_certificate_verify(mbedtls_ssl_context *ssl);
2187 int mbedtls_ssl_tls13_write_change_cipher_spec(mbedtls_ssl_context *ssl);
2190 int mbedtls_ssl_reset_transcript_for_hrr(mbedtls_ssl_context *ssl);
2195 mbedtls_ssl_context *ssl,
2203 int mbedtls_ssl_tls13_write_early_data_ext(mbedtls_ssl_context *ssl,
2209 int mbedtls_ssl_tls13_check_early_data_len(mbedtls_ssl_context *ssl,
2271 int mbedtls_ssl_write_sig_alg_ext(mbedtls_ssl_context *ssl, unsigned char *buf,
2277 int mbedtls_ssl_parse_sig_alg_ext(mbedtls_ssl_context *ssl,
2284 int mbedtls_ssl_get_handshake_transcript(mbedtls_ssl_context *ssl,
2301 static inline const void *mbedtls_ssl_get_groups(const mbedtls_ssl_context *ssl) in mbedtls_ssl_get_groups() argument
2304 return ssl->conf->group_list; in mbedtls_ssl_get_groups()
2306 if ((ssl->handshake != NULL) && (ssl->handshake->group_list != NULL)) { in mbedtls_ssl_get_groups()
2307 return ssl->handshake->group_list; in mbedtls_ssl_get_groups()
2309 return ssl->conf->group_list; in mbedtls_ssl_get_groups()
2354 const mbedtls_ssl_context *ssl, uint16_t named_group) in mbedtls_ssl_named_group_is_offered() argument
2356 const uint16_t *group_list = mbedtls_ssl_get_groups(ssl); in mbedtls_ssl_named_group_is_offered()
2405 const mbedtls_ssl_context *ssl) in mbedtls_ssl_get_sig_algs() argument
2410 if (ssl->handshake != NULL && in mbedtls_ssl_get_sig_algs()
2411 ssl->handshake->sig_algs_heap_allocated == 1 && in mbedtls_ssl_get_sig_algs()
2412 ssl->handshake->sig_algs != NULL) { in mbedtls_ssl_get_sig_algs()
2413 return ssl->handshake->sig_algs; in mbedtls_ssl_get_sig_algs()
2416 return ssl->conf->sig_algs; in mbedtls_ssl_get_sig_algs()
2420 ((void) ssl); in mbedtls_ssl_get_sig_algs()
2426 static inline int mbedtls_ssl_sig_alg_is_received(const mbedtls_ssl_context *ssl, in mbedtls_ssl_sig_alg_is_received() argument
2429 const uint16_t *sig_alg = ssl->handshake->received_sig_algs; in mbedtls_ssl_sig_alg_is_received()
2513 static inline int mbedtls_ssl_sig_alg_is_offered(const mbedtls_ssl_context *ssl, in mbedtls_ssl_sig_alg_is_offered() argument
2516 const uint16_t *sig_alg = mbedtls_ssl_get_sig_algs(ssl); in mbedtls_ssl_sig_alg_is_offered()
2629 const mbedtls_ssl_context *ssl, in mbedtls_ssl_sig_alg_is_supported() argument
2634 if (ssl->tls_version == MBEDTLS_SSL_VERSION_TLS1_2) { in mbedtls_ssl_sig_alg_is_supported()
2640 if (ssl->tls_version == MBEDTLS_SSL_VERSION_TLS1_3) { in mbedtls_ssl_sig_alg_is_supported()
2644 ((void) ssl); in mbedtls_ssl_sig_alg_is_supported()
2784 int mbedtls_ssl_tls13_read_public_xxdhe_share(mbedtls_ssl_context *ssl,
2791 mbedtls_ssl_context *ssl, int cipher_suite) in mbedtls_ssl_tls13_cipher_suite_is_offered() argument
2793 const int *ciphersuite_list = ssl->conf->ciphersuite_list; in mbedtls_ssl_tls13_cipher_suite_is_offered()
2816 const mbedtls_ssl_context *ssl,
2823 int mbedtls_ssl_parse_server_name_ext(mbedtls_ssl_context *ssl,
2833 int mbedtls_ssl_tls13_parse_record_size_limit_ext(mbedtls_ssl_context *ssl,
2838 int mbedtls_ssl_tls13_write_record_size_limit_ext(mbedtls_ssl_context *ssl,
2846 int mbedtls_ssl_parse_alpn_ext(mbedtls_ssl_context *ssl,
2852 int mbedtls_ssl_write_alpn_ext(mbedtls_ssl_context *ssl,
2860 mbedtls_ssl_context *ssl,
2882 mbedtls_ssl_context *ssl,
2897 mbedtls_ssl_context *ssl,
3004 int mbedtls_ssl_tls13_finalize_client_hello(mbedtls_ssl_context *ssl);