Lines Matching refs:ret
294 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_parse_ecjpake_kkpp() local
307 if ((ret = mbedtls_psa_ecjpake_read_round( in ssl_parse_ecjpake_kkpp()
313 MBEDTLS_SSL_DEBUG_RET(1, "psa_pake_input round one", ret); in ssl_parse_ecjpake_kkpp()
319 return ret; in ssl_parse_ecjpake_kkpp()
322 if ((ret = mbedtls_ecjpake_read_round_one(&ssl->handshake->ecjpake_ctx, in ssl_parse_ecjpake_kkpp()
324 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ecjpake_read_round_one", ret); in ssl_parse_ecjpake_kkpp()
327 return ret; in ssl_parse_ecjpake_kkpp()
474 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_parse_session_ticket_ext() local
503 if ((ret = ssl->conf->f_ticket_parse(ssl->conf->p_ticket, &session, in ssl_parse_session_ticket_ext()
507 if (ret == MBEDTLS_ERR_SSL_INVALID_MAC) { in ssl_parse_session_ticket_ext()
509 } else if (ret == MBEDTLS_ERR_SSL_SESSION_TICKET_EXPIRED) { in ssl_parse_session_ticket_ext()
512 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_ticket_parse", ret); in ssl_parse_session_ticket_ext()
891 int ret, got_common_suite; in ssl_parse_client_hello() local
933 if ((ret = mbedtls_ssl_fetch_input(ssl, 5)) != 0) { in ssl_parse_client_hello()
935 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_fetch_input", ret); in ssl_parse_client_hello()
936 return ret; in ssl_parse_client_hello()
1015 if ((ret = mbedtls_ssl_fetch_input(ssl, in ssl_parse_client_hello()
1017 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_fetch_input", ret); in ssl_parse_client_hello()
1018 return ret; in ssl_parse_client_hello()
1035 ret = ssl->handshake->update_checksum(ssl, buf, msg_len); in ssl_parse_client_hello()
1036 if (0 != ret) { in ssl_parse_client_hello()
1037 MBEDTLS_SSL_DEBUG_RET(1, ("update_checksum"), ret); in ssl_parse_client_hello()
1038 return ret; in ssl_parse_client_hello()
1342 ret = mbedtls_ssl_parse_server_name_ext(ssl, ext + 4, in ssl_parse_client_hello()
1344 if (ret != 0) { in ssl_parse_client_hello()
1345 return ret; in ssl_parse_client_hello()
1356 ret = ssl_parse_renegotiation_info(ssl, ext + 4, ext_size); in ssl_parse_client_hello()
1357 if (ret != 0) { in ssl_parse_client_hello()
1358 return ret; in ssl_parse_client_hello()
1366 ret = mbedtls_ssl_parse_sig_alg_ext(ssl, ext + 4, ext + 4 + ext_size); in ssl_parse_client_hello()
1367 if (ret != 0) { in ssl_parse_client_hello()
1368 return ret; in ssl_parse_client_hello()
1381 ret = ssl_parse_supported_groups_ext(ssl, ext + 4, ext_size); in ssl_parse_client_hello()
1382 if (ret != 0) { in ssl_parse_client_hello()
1383 return ret; in ssl_parse_client_hello()
1391 ret = ssl_parse_supported_point_formats(ssl, ext + 4, ext_size); in ssl_parse_client_hello()
1392 if (ret != 0) { in ssl_parse_client_hello()
1393 return ret; in ssl_parse_client_hello()
1404 ret = ssl_parse_ecjpake_kkpp(ssl, ext + 4, ext_size); in ssl_parse_client_hello()
1405 if (ret != 0) { in ssl_parse_client_hello()
1406 return ret; in ssl_parse_client_hello()
1415 ret = ssl_parse_max_fragment_length_ext(ssl, ext + 4, ext_size); in ssl_parse_client_hello()
1416 if (ret != 0) { in ssl_parse_client_hello()
1417 return ret; in ssl_parse_client_hello()
1426 ret = ssl_parse_cid_ext(ssl, ext + 4, ext_size); in ssl_parse_client_hello()
1427 if (ret != 0) { in ssl_parse_client_hello()
1428 return ret; in ssl_parse_client_hello()
1437 ret = ssl_parse_encrypt_then_mac_ext(ssl, ext + 4, ext_size); in ssl_parse_client_hello()
1438 if (ret != 0) { in ssl_parse_client_hello()
1439 return ret; in ssl_parse_client_hello()
1448 ret = ssl_parse_extended_ms_ext(ssl, ext + 4, ext_size); in ssl_parse_client_hello()
1449 if (ret != 0) { in ssl_parse_client_hello()
1450 return ret; in ssl_parse_client_hello()
1459 ret = ssl_parse_session_ticket_ext(ssl, ext + 4, ext_size); in ssl_parse_client_hello()
1460 if (ret != 0) { in ssl_parse_client_hello()
1461 return ret; in ssl_parse_client_hello()
1470 ret = mbedtls_ssl_parse_alpn_ext(ssl, ext + 4, in ssl_parse_client_hello()
1472 if (ret != 0) { in ssl_parse_client_hello()
1473 return ret; in ssl_parse_client_hello()
1482 ret = ssl_parse_use_srtp_ext(ssl, ext + 4, ext_size); in ssl_parse_client_hello()
1483 if (ret != 0) { in ssl_parse_client_hello()
1484 return ret; in ssl_parse_client_hello()
1583 if (ssl->conf->f_cert_cb && (ret = ssl->conf->f_cert_cb(ssl)) != 0) { in ssl_parse_client_hello()
1584 MBEDTLS_SSL_DEBUG_RET(1, "f_cert_cb", ret); in ssl_parse_client_hello()
1585 return ret; in ssl_parse_client_hello()
1611 if ((ret = ssl_ciphersuite_match(ssl, ciphersuites[i], in ssl_parse_client_hello()
1613 return ret; in ssl_parse_client_hello()
1630 if ((ret = ssl_ciphersuite_match(ssl, ciphersuites[i], in ssl_parse_client_hello()
1632 return ret; in ssl_parse_client_hello()
1929 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_write_ecjpake_kkpp_ext() local
1953 ret = mbedtls_psa_ecjpake_write_round(&ssl->handshake->psa_pake_ctx, in ssl_write_ecjpake_kkpp_ext()
1956 if (ret != 0) { in ssl_write_ecjpake_kkpp_ext()
1959 MBEDTLS_SSL_DEBUG_RET(1, "psa_pake_output", ret); in ssl_write_ecjpake_kkpp_ext()
1963 ret = mbedtls_ecjpake_write_round_one(&ssl->handshake->ecjpake_ctx, in ssl_write_ecjpake_kkpp_ext()
1966 if (ret != 0) { in ssl_write_ecjpake_kkpp_ext()
1967 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ecjpake_write_round_one", ret); in ssl_write_ecjpake_kkpp_ext()
2046 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_write_hello_verify_request() local
2074 if ((ret = ssl->conf->f_cookie_write(ssl->conf->p_cookie, in ssl_write_hello_verify_request()
2077 MBEDTLS_SSL_DEBUG_RET(1, "f_cookie_write", ret); in ssl_write_hello_verify_request()
2078 return ret; in ssl_write_hello_verify_request()
2091 if ((ret = mbedtls_ssl_write_handshake_msg(ssl)) != 0) { in ssl_write_hello_verify_request()
2092 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_write_handshake_msg", ret); in ssl_write_hello_verify_request()
2093 return ret; in ssl_write_hello_verify_request()
2098 (ret = mbedtls_ssl_flight_transmit(ssl)) != 0) { in ssl_write_hello_verify_request()
2099 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_flight_transmit", ret); in ssl_write_hello_verify_request()
2100 return ret; in ssl_write_hello_verify_request()
2112 int ret; in ssl_handle_id_based_session_resumption() local
2135 ret = ssl->conf->f_get_cache(ssl->conf->p_cache, in ssl_handle_id_based_session_resumption()
2139 if (ret != 0) { in ssl_handle_id_based_session_resumption()
2167 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_write_server_hello() local
2207 if ((ret = ssl->conf->f_rng(ssl->conf->p_rng, p, 4)) != 0) { in ssl_write_server_hello()
2208 return ret; in ssl_write_server_hello()
2214 if ((ret = ssl->conf->f_rng(ssl->conf->p_rng, p, 20)) != 0) { in ssl_write_server_hello()
2215 return ret; in ssl_write_server_hello()
2240 if ((ret = ssl->conf->f_rng(ssl->conf->p_rng, p, 8)) != 0) { in ssl_write_server_hello()
2241 return ret; in ssl_write_server_hello()
2271 if ((ret = ssl->conf->f_rng(ssl->conf->p_rng, ssl->session_negotiate->id, in ssl_write_server_hello()
2273 return ret; in ssl_write_server_hello()
2283 if ((ret = mbedtls_ssl_derive_keys(ssl)) != 0) { in ssl_write_server_hello()
2284 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_derive_keys", ret); in ssl_write_server_hello()
2285 return ret; in ssl_write_server_hello()
2364 if ((ret = mbedtls_ssl_write_alpn_ext(ssl, p + 2 + ext_len, end, &olen)) in ssl_write_server_hello()
2366 return ret; in ssl_write_server_hello()
2389 ret = mbedtls_ssl_write_handshake_msg(ssl); in ssl_write_server_hello()
2393 return ret; in ssl_write_server_hello()
2418 int ret = MBEDTLS_ERR_SSL_FEATURE_UNAVAILABLE; in ssl_write_certificate_request() local
2579 ret = mbedtls_ssl_write_handshake_msg(ssl); in ssl_write_certificate_request()
2583 return ret; in ssl_write_certificate_request()
2593 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_get_ecdh_params_from_cert() local
2630 ret = PSA_TO_MBEDTLS_ERR(status); in ssl_get_ecdh_params_from_cert()
2652 ret = PSA_TO_MBEDTLS_ERR(status); in ssl_get_ecdh_params_from_cert()
2658 ret = PSA_TO_MBEDTLS_ERR(status); in ssl_get_ecdh_params_from_cert()
2666 ret = 0; in ssl_get_ecdh_params_from_cert()
2676 ret = 0; in ssl_get_ecdh_params_from_cert()
2708 ret = mbedtls_ecp_write_key_ext(key, &key_len, buf, sizeof(buf)); in ssl_get_ecdh_params_from_cert()
2709 if (ret != 0) { in ssl_get_ecdh_params_from_cert()
2717 ret = PSA_TO_MBEDTLS_ERR(status); in ssl_get_ecdh_params_from_cert()
2723 ret = 0; in ssl_get_ecdh_params_from_cert()
2727 ret = MBEDTLS_ERR_SSL_PK_TYPE_MISMATCH; in ssl_get_ecdh_params_from_cert()
2734 return ret; in ssl_get_ecdh_params_from_cert()
2740 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_get_ecdh_params_from_cert() local
2753 if ((ret = mbedtls_ecdh_get_params(&ssl->handshake->ecdh_ctx, in ssl_get_ecdh_params_from_cert()
2756 MBEDTLS_SSL_DEBUG_RET(1, ("mbedtls_ecdh_get_params"), ret); in ssl_get_ecdh_params_from_cert()
2757 return ret; in ssl_get_ecdh_params_from_cert()
2780 int ret = ssl->conf->f_async_resume(ssl, in ssl_resume_server_key_exchange() local
2782 if (ret != MBEDTLS_ERR_SSL_ASYNC_IN_PROGRESS) { in ssl_resume_server_key_exchange()
2786 MBEDTLS_SSL_DEBUG_RET(2, "ssl_resume_server_key_exchange", ret); in ssl_resume_server_key_exchange()
2787 return ret; in ssl_resume_server_key_exchange()
2834 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_prepare_server_key_exchange() local
2859 ret = mbedtls_psa_ecjpake_write_round(&ssl->handshake->psa_pake_ctx, in ssl_prepare_server_key_exchange()
2863 if (ret != 0) { in ssl_prepare_server_key_exchange()
2866 MBEDTLS_SSL_DEBUG_RET(1, "psa_pake_output", ret); in ssl_prepare_server_key_exchange()
2867 return ret; in ssl_prepare_server_key_exchange()
2875 ret = mbedtls_ecjpake_write_round_two( in ssl_prepare_server_key_exchange()
2880 if (ret != 0) { in ssl_prepare_server_key_exchange()
2881 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ecjpake_write_round_two", ret); in ssl_prepare_server_key_exchange()
2882 return ret; in ssl_prepare_server_key_exchange()
2910 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_prepare_server_key_exchange() local
2927 if ((ret = mbedtls_dhm_set_group(&ssl->handshake->dhm_ctx, in ssl_prepare_server_key_exchange()
2930 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_dhm_set_group", ret); in ssl_prepare_server_key_exchange()
2931 return ret; in ssl_prepare_server_key_exchange()
2934 if ((ret = mbedtls_dhm_make_params( in ssl_prepare_server_key_exchange()
2939 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_dhm_make_params", ret); in ssl_prepare_server_key_exchange()
2940 return ret; in ssl_prepare_server_key_exchange()
2971 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_prepare_server_key_exchange() local
3042 ret = PSA_TO_MBEDTLS_ERR(status); in ssl_prepare_server_key_exchange()
3043 MBEDTLS_SSL_DEBUG_RET(1, "psa_generate_key", ret); in ssl_prepare_server_key_exchange()
3044 return ret; in ssl_prepare_server_key_exchange()
3066 ret = PSA_TO_MBEDTLS_ERR(status); in ssl_prepare_server_key_exchange()
3067 MBEDTLS_SSL_DEBUG_RET(1, "psa_export_public_key", ret); in ssl_prepare_server_key_exchange()
3070 return ret; in ssl_prepare_server_key_exchange()
3082 if ((ret = mbedtls_ecdh_setup(&ssl->handshake->ecdh_ctx, in ssl_prepare_server_key_exchange()
3084 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ecp_group_load", ret); in ssl_prepare_server_key_exchange()
3085 return ret; in ssl_prepare_server_key_exchange()
3088 if ((ret = mbedtls_ecdh_make_params( in ssl_prepare_server_key_exchange()
3093 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ecdh_make_params", ret); in ssl_prepare_server_key_exchange()
3094 return ret; in ssl_prepare_server_key_exchange()
3126 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_prepare_server_key_exchange() local
3158 ret = mbedtls_ssl_get_key_exchange_md_tls1_2(ssl, hash, &hashlen, in ssl_prepare_server_key_exchange()
3162 if (ret != 0) { in ssl_prepare_server_key_exchange()
3163 return ret; in ssl_prepare_server_key_exchange()
3196 ret = ssl->conf->f_async_sign_start(ssl, in ssl_prepare_server_key_exchange()
3199 switch (ret) { in ssl_prepare_server_key_exchange()
3210 MBEDTLS_SSL_DEBUG_RET(1, "f_async_sign_start", ret); in ssl_prepare_server_key_exchange()
3211 return ret; in ssl_prepare_server_key_exchange()
3226 if ((ret = mbedtls_pk_sign(mbedtls_ssl_own_key(ssl), in ssl_prepare_server_key_exchange()
3233 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_pk_sign", ret); in ssl_prepare_server_key_exchange()
3234 return ret; in ssl_prepare_server_key_exchange()
3249 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_write_server_key_exchange() local
3266 ret = ssl_get_ecdh_params_from_cert(ssl); in ssl_write_server_key_exchange()
3267 if (ret != 0) { in ssl_write_server_key_exchange()
3268 MBEDTLS_SSL_DEBUG_RET(1, "ssl_get_ecdh_params_from_cert", ret); in ssl_write_server_key_exchange()
3269 return ret; in ssl_write_server_key_exchange()
3288 ret = ssl_resume_server_key_exchange(ssl, &signature_len); in ssl_write_server_key_exchange()
3294 ret = ssl_prepare_server_key_exchange(ssl, &signature_len); in ssl_write_server_key_exchange()
3297 if (ret != 0) { in ssl_write_server_key_exchange()
3302 if (ret == MBEDTLS_ERR_SSL_ASYNC_IN_PROGRESS) { in ssl_write_server_key_exchange()
3307 return ret; in ssl_write_server_key_exchange()
3333 if ((ret = mbedtls_ssl_write_handshake_msg(ssl)) != 0) { in ssl_write_server_key_exchange()
3334 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_write_handshake_msg", ret); in ssl_write_server_key_exchange()
3335 return ret; in ssl_write_server_key_exchange()
3345 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_write_server_hello_done() local
3361 if ((ret = mbedtls_ssl_write_handshake_msg(ssl)) != 0) { in ssl_write_server_hello_done()
3362 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_write_handshake_msg", ret); in ssl_write_server_hello_done()
3363 return ret; in ssl_write_server_hello_done()
3368 (ret = mbedtls_ssl_flight_transmit(ssl)) != 0) { in ssl_write_server_hello_done()
3369 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_flight_transmit", ret); in ssl_write_server_hello_done()
3370 return ret; in ssl_write_server_hello_done()
3385 int ret = MBEDTLS_ERR_SSL_FEATURE_UNAVAILABLE; in ssl_parse_client_dh_public() local
3404 if ((ret = mbedtls_dhm_read_public(&ssl->handshake->dhm_ctx, *p, n)) != 0) { in ssl_parse_client_dh_public()
3405 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_dhm_read_public", ret); in ssl_parse_client_dh_public()
3413 return ret; in ssl_parse_client_dh_public()
3428 int ret = ssl->conf->f_async_resume(ssl, in ssl_resume_decrypt_pms() local
3430 if (ret != MBEDTLS_ERR_SSL_ASYNC_IN_PROGRESS) { in ssl_resume_decrypt_pms()
3434 MBEDTLS_SSL_DEBUG_RET(2, "ssl_decrypt_encrypted_pms", ret); in ssl_resume_decrypt_pms()
3435 return ret; in ssl_resume_decrypt_pms()
3447 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_decrypt_encrypted_pms() local
3491 ret = ssl->conf->f_async_decrypt_start(ssl, in ssl_decrypt_encrypted_pms()
3494 switch (ret) { in ssl_decrypt_encrypted_pms()
3508 MBEDTLS_SSL_DEBUG_RET(1, "f_async_decrypt_start", ret); in ssl_decrypt_encrypted_pms()
3509 return ret; in ssl_decrypt_encrypted_pms()
3519 ret = mbedtls_pk_decrypt(private_key, p, len, in ssl_decrypt_encrypted_pms()
3522 return ret; in ssl_decrypt_encrypted_pms()
3531 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_parse_encrypted_pms() local
3548 ret = ssl_decrypt_encrypted_pms(ssl, p, end, in ssl_parse_encrypted_pms()
3554 if (ret == MBEDTLS_ERR_SSL_ASYNC_IN_PROGRESS) { in ssl_parse_encrypted_pms()
3555 return ret; in ssl_parse_encrypted_pms()
3565 diff = mbedtls_ct_bool(ret); in ssl_parse_encrypted_pms()
3579 ret = ssl->conf->f_rng(ssl->conf->p_rng, fake_pms, sizeof(fake_pms)); in ssl_parse_encrypted_pms()
3580 if (ret != 0) { in ssl_parse_encrypted_pms()
3583 return ret; in ssl_parse_encrypted_pms()
3613 int ret = 0; in ssl_parse_client_psk_identity() local
3639 ret = MBEDTLS_ERR_SSL_UNKNOWN_IDENTITY; in ssl_parse_client_psk_identity()
3646 ret = MBEDTLS_ERR_SSL_UNKNOWN_IDENTITY; in ssl_parse_client_psk_identity()
3650 if (ret == MBEDTLS_ERR_SSL_UNKNOWN_IDENTITY) { in ssl_parse_client_psk_identity()
3666 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_parse_client_key_exchange() local
3686 if ((ret = mbedtls_ssl_read_record(ssl, 1)) != 0) { in ssl_parse_client_key_exchange()
3687 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_read_record", ret); in ssl_parse_client_key_exchange()
3688 return ret; in ssl_parse_client_key_exchange()
3706 if ((ret = ssl_parse_client_dh_public(ssl, &p, end)) != 0) { in ssl_parse_client_key_exchange()
3707 MBEDTLS_SSL_DEBUG_RET(1, ("ssl_parse_client_dh_public"), ret); in ssl_parse_client_key_exchange()
3708 return ret; in ssl_parse_client_key_exchange()
3716 if ((ret = mbedtls_dhm_calc_secret(&ssl->handshake->dhm_ctx, in ssl_parse_client_key_exchange()
3721 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_dhm_calc_secret", ret); in ssl_parse_client_key_exchange()
3778 ret = PSA_TO_MBEDTLS_ERR(status); in ssl_parse_client_key_exchange()
3779 MBEDTLS_SSL_DEBUG_RET(1, "psa_raw_key_agreement", ret); in ssl_parse_client_key_exchange()
3784 return ret; in ssl_parse_client_key_exchange()
3791 ret = PSA_TO_MBEDTLS_ERR(status); in ssl_parse_client_key_exchange()
3792 MBEDTLS_SSL_DEBUG_RET(1, "psa_destroy_key", ret); in ssl_parse_client_key_exchange()
3793 return ret; in ssl_parse_client_key_exchange()
3798 if ((ret = mbedtls_ecdh_read_public(&ssl->handshake->ecdh_ctx, in ssl_parse_client_key_exchange()
3800 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ecdh_read_public", ret); in ssl_parse_client_key_exchange()
3807 if ((ret = mbedtls_ecdh_calc_secret(&ssl->handshake->ecdh_ctx, in ssl_parse_client_key_exchange()
3812 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ecdh_calc_secret", ret); in ssl_parse_client_key_exchange()
3826 if ((ret = ssl_parse_client_psk_identity(ssl, &p, end)) != 0) { in ssl_parse_client_key_exchange()
3827 MBEDTLS_SSL_DEBUG_RET(1, ("ssl_parse_client_psk_identity"), ret); in ssl_parse_client_key_exchange()
3828 return ret; in ssl_parse_client_key_exchange()
3837 if ((ret = mbedtls_ssl_psk_derive_premaster(ssl, in ssl_parse_client_key_exchange()
3840 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_psk_derive_premaster", ret); in ssl_parse_client_key_exchange()
3841 return ret; in ssl_parse_client_key_exchange()
3859 if ((ret = ssl_parse_client_psk_identity(ssl, &p, end)) != 0) { in ssl_parse_client_key_exchange()
3860 MBEDTLS_SSL_DEBUG_RET(1, ("ssl_parse_client_psk_identity"), ret); in ssl_parse_client_key_exchange()
3861 return ret; in ssl_parse_client_key_exchange()
3864 if ((ret = ssl_parse_encrypted_pms(ssl, p, end, 2)) != 0) { in ssl_parse_client_key_exchange()
3865 MBEDTLS_SSL_DEBUG_RET(1, ("ssl_parse_encrypted_pms"), ret); in ssl_parse_client_key_exchange()
3866 return ret; in ssl_parse_client_key_exchange()
3870 if ((ret = mbedtls_ssl_psk_derive_premaster(ssl, in ssl_parse_client_key_exchange()
3873 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_psk_derive_premaster", ret); in ssl_parse_client_key_exchange()
3874 return ret; in ssl_parse_client_key_exchange()
3881 if ((ret = ssl_parse_client_psk_identity(ssl, &p, end)) != 0) { in ssl_parse_client_key_exchange()
3882 MBEDTLS_SSL_DEBUG_RET(1, ("ssl_parse_client_psk_identity"), ret); in ssl_parse_client_key_exchange()
3883 return ret; in ssl_parse_client_key_exchange()
3885 if ((ret = ssl_parse_client_dh_public(ssl, &p, end)) != 0) { in ssl_parse_client_key_exchange()
3886 MBEDTLS_SSL_DEBUG_RET(1, ("ssl_parse_client_dh_public"), ret); in ssl_parse_client_key_exchange()
3887 return ret; in ssl_parse_client_key_exchange()
3901 if ((ret = mbedtls_dhm_calc_secret(&ssl->handshake->dhm_ctx, in ssl_parse_client_key_exchange()
3904 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_dhm_calc_secret", ret); in ssl_parse_client_key_exchange()
3905 return ret; in ssl_parse_client_key_exchange()
3912 if ((ret = mbedtls_ssl_psk_derive_premaster(ssl, in ssl_parse_client_key_exchange()
3915 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_psk_derive_premaster", ret); in ssl_parse_client_key_exchange()
3916 return ret; in ssl_parse_client_key_exchange()
3930 if ((ret = ssl_parse_client_psk_identity(ssl, &p, end)) != 0) { in ssl_parse_client_key_exchange()
3931 MBEDTLS_SSL_DEBUG_RET(1, ("ssl_parse_client_psk_identity"), ret); in ssl_parse_client_key_exchange()
3934 return ret; in ssl_parse_client_key_exchange()
4006 if ((ret = ssl_parse_client_psk_identity(ssl, &p, end)) != 0) { in ssl_parse_client_key_exchange()
4007 MBEDTLS_SSL_DEBUG_RET(1, ("ssl_parse_client_psk_identity"), ret); in ssl_parse_client_key_exchange()
4008 return ret; in ssl_parse_client_key_exchange()
4011 if ((ret = mbedtls_ecdh_read_public(&ssl->handshake->ecdh_ctx, in ssl_parse_client_key_exchange()
4013 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ecdh_read_public", ret); in ssl_parse_client_key_exchange()
4020 if ((ret = mbedtls_ssl_psk_derive_premaster(ssl, in ssl_parse_client_key_exchange()
4023 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_psk_derive_premaster", ret); in ssl_parse_client_key_exchange()
4024 return ret; in ssl_parse_client_key_exchange()
4031 if ((ret = ssl_parse_encrypted_pms(ssl, p, end, 0)) != 0) { in ssl_parse_client_key_exchange()
4032 MBEDTLS_SSL_DEBUG_RET(1, ("ssl_parse_parse_encrypted_pms_secret"), ret); in ssl_parse_client_key_exchange()
4033 return ret; in ssl_parse_client_key_exchange()
4040 if ((ret = mbedtls_psa_ecjpake_read_round( in ssl_parse_client_key_exchange()
4046 MBEDTLS_SSL_DEBUG_RET(1, "psa_pake_input round two", ret); in ssl_parse_client_key_exchange()
4047 return ret; in ssl_parse_client_key_exchange()
4050 ret = mbedtls_ecjpake_read_round_two(&ssl->handshake->ecjpake_ctx, in ssl_parse_client_key_exchange()
4052 if (ret != 0) { in ssl_parse_client_key_exchange()
4053 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ecjpake_read_round_two", ret); in ssl_parse_client_key_exchange()
4057 ret = mbedtls_ecjpake_derive_secret(&ssl->handshake->ecjpake_ctx, in ssl_parse_client_key_exchange()
4060 if (ret != 0) { in ssl_parse_client_key_exchange()
4061 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ecjpake_derive_secret", ret); in ssl_parse_client_key_exchange()
4062 return ret; in ssl_parse_client_key_exchange()
4072 if ((ret = mbedtls_ssl_derive_keys(ssl)) != 0) { in ssl_parse_client_key_exchange()
4073 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_derive_keys", ret); in ssl_parse_client_key_exchange()
4074 return ret; in ssl_parse_client_key_exchange()
4106 int ret = MBEDTLS_ERR_SSL_FEATURE_UNAVAILABLE; in ssl_parse_certificate_verify() local
4140 ret = mbedtls_ssl_read_record(ssl, 0 /* no checksum update */); in ssl_parse_certificate_verify()
4141 if (0 != ret) { in ssl_parse_certificate_verify()
4142 MBEDTLS_SSL_DEBUG_RET(1, ("mbedtls_ssl_read_record"), ret); in ssl_parse_certificate_verify()
4143 return ret; in ssl_parse_certificate_verify()
4236 ret = ssl->handshake->calc_verify(ssl, hash, &dummy_hlen); in ssl_parse_certificate_verify()
4237 if (0 != ret) { in ssl_parse_certificate_verify()
4238 MBEDTLS_SSL_DEBUG_RET(1, ("calc_verify"), ret); in ssl_parse_certificate_verify()
4239 return ret; in ssl_parse_certificate_verify()
4243 if ((ret = mbedtls_pk_verify(peer_pk, in ssl_parse_certificate_verify()
4246 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_pk_verify", ret); in ssl_parse_certificate_verify()
4247 return ret; in ssl_parse_certificate_verify()
4250 ret = mbedtls_ssl_update_handshake_status(ssl); in ssl_parse_certificate_verify()
4251 if (0 != ret) { in ssl_parse_certificate_verify()
4252 MBEDTLS_SSL_DEBUG_RET(1, ("mbedtls_ssl_update_handshake_status"), ret); in ssl_parse_certificate_verify()
4253 return ret; in ssl_parse_certificate_verify()
4258 return ret; in ssl_parse_certificate_verify()
4266 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; in ssl_write_new_session_ticket() local
4289 if ((ret = ssl->conf->f_ticket_write(ssl->conf->p_ticket, in ssl_write_new_session_ticket()
4294 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_ticket_write", ret); in ssl_write_new_session_ticket()
4308 if ((ret = mbedtls_ssl_write_handshake_msg(ssl)) != 0) { in ssl_write_new_session_ticket()
4309 MBEDTLS_SSL_DEBUG_RET(1, "mbedtls_ssl_write_handshake_msg", ret); in ssl_write_new_session_ticket()
4310 return ret; in ssl_write_new_session_ticket()
4324 int ret = 0; in mbedtls_ssl_handshake_server_step() local
4337 ret = ssl_parse_client_hello(ssl); in mbedtls_ssl_handshake_server_step()
4353 ret = ssl_write_server_hello(ssl); in mbedtls_ssl_handshake_server_step()
4357 ret = mbedtls_ssl_write_certificate(ssl); in mbedtls_ssl_handshake_server_step()
4361 ret = ssl_write_server_key_exchange(ssl); in mbedtls_ssl_handshake_server_step()
4365 ret = ssl_write_certificate_request(ssl); in mbedtls_ssl_handshake_server_step()
4369 ret = ssl_write_server_hello_done(ssl); in mbedtls_ssl_handshake_server_step()
4380 ret = mbedtls_ssl_parse_certificate(ssl); in mbedtls_ssl_handshake_server_step()
4384 ret = ssl_parse_client_key_exchange(ssl); in mbedtls_ssl_handshake_server_step()
4388 ret = ssl_parse_certificate_verify(ssl); in mbedtls_ssl_handshake_server_step()
4392 ret = mbedtls_ssl_parse_change_cipher_spec(ssl); in mbedtls_ssl_handshake_server_step()
4396 ret = mbedtls_ssl_parse_finished(ssl); in mbedtls_ssl_handshake_server_step()
4407 ret = ssl_write_new_session_ticket(ssl); in mbedtls_ssl_handshake_server_step()
4410 ret = mbedtls_ssl_write_change_cipher_spec(ssl); in mbedtls_ssl_handshake_server_step()
4414 ret = mbedtls_ssl_write_finished(ssl); in mbedtls_ssl_handshake_server_step()
4431 return ret; in mbedtls_ssl_handshake_server_step()