671 static int ssl_tls13_key_schedule_stage_application(mbedtls_ssl_context *ssl)  in ssl_tls13_key_schedule_stage_application()  argument
674     mbedtls_ssl_handshake_params *handshake = ssl->handshake;  in ssl_tls13_key_schedule_stage_application()
772 int mbedtls_ssl_tls13_calculate_verify_data(mbedtls_ssl_context *ssl,  in mbedtls_ssl_tls13_calculate_verify_data()  argument
786         &ssl->handshake->tls13_hs_secrets;  in mbedtls_ssl_tls13_calculate_verify_data()
788     mbedtls_md_type_t const md_type = (mbedtls_md_type_t) ssl->handshake->ciphersuite_info->mac;  in mbedtls_ssl_tls13_calculate_verify_data()
791         (mbedtls_md_type_t) ssl->handshake->ciphersuite_info->mac);  in mbedtls_ssl_tls13_calculate_verify_data()
809     ret = mbedtls_ssl_get_handshake_transcript(ssl, md_type,  in mbedtls_ssl_tls13_calculate_verify_data()
834 int mbedtls_ssl_tls13_create_psk_binder(mbedtls_ssl_context *ssl,  in mbedtls_ssl_tls13_create_psk_binder()  argument
848     ssl = NULL; /* make sure we don't use it except for debug */  in mbedtls_ssl_tls13_create_psk_binder()
849     ((void) ssl);  in mbedtls_ssl_tls13_create_psk_binder()
928     mbedtls_ssl_context *ssl /* DEBUG ONLY */)  in mbedtls_ssl_tls13_populate_transform()  argument
949     ssl = NULL; /* make sure we don't use it except for those cases */  in mbedtls_ssl_tls13_populate_transform()
950     (void) ssl;  in mbedtls_ssl_tls13_populate_transform()
1134 static int ssl_tls13_generate_early_key(mbedtls_ssl_context *ssl,  in ssl_tls13_generate_early_key()  argument
1147     mbedtls_ssl_handshake_params *handshake = ssl->handshake;  in ssl_tls13_generate_early_key()
1164     ret = mbedtls_ssl_get_handshake_transcript(ssl, md_type,  in ssl_tls13_generate_early_key()
1191     if (ssl->f_export_keys != NULL) {  in ssl_tls13_generate_early_key()
1192         ssl->f_export_keys(  in ssl_tls13_generate_early_key()
1193             ssl->p_export_keys,  in ssl_tls13_generate_early_key()
1232 int mbedtls_ssl_tls13_compute_early_transform(mbedtls_ssl_context *ssl)  in mbedtls_ssl_tls13_compute_early_transform()  argument
1237     mbedtls_ssl_handshake_params *handshake = ssl->handshake;  in mbedtls_ssl_tls13_compute_early_transform()
1241     ret = ssl_tls13_generate_early_key(ssl, &traffic_keys);  in mbedtls_ssl_tls13_compute_early_transform()
1256         ssl->conf->endpoint,  in mbedtls_ssl_tls13_compute_early_transform()
1259         ssl);  in mbedtls_ssl_tls13_compute_early_transform()
1276 int mbedtls_ssl_tls13_key_schedule_stage_early(mbedtls_ssl_context *ssl)  in mbedtls_ssl_tls13_key_schedule_stage_early()  argument
1280     mbedtls_ssl_handshake_params *handshake = ssl->handshake;  in mbedtls_ssl_tls13_key_schedule_stage_early()
1291     if (mbedtls_ssl_tls13_key_exchange_mode_with_psk(ssl)) {  in mbedtls_ssl_tls13_key_schedule_stage_early()
1292         ret = mbedtls_ssl_tls13_export_handshake_psk(ssl, &psk, &psk_len);  in mbedtls_ssl_tls13_key_schedule_stage_early()
1335 static int ssl_tls13_generate_handshake_keys(mbedtls_ssl_context *ssl,  in ssl_tls13_generate_handshake_keys()  argument
1347     mbedtls_ssl_handshake_params *handshake = ssl->handshake;  in ssl_tls13_generate_handshake_keys()
1366     ret = mbedtls_ssl_get_handshake_transcript(ssl, md_type,  in ssl_tls13_generate_handshake_keys()
1396     if (ssl->f_export_keys != NULL) {  in ssl_tls13_generate_handshake_keys()
1397         ssl->f_export_keys(  in ssl_tls13_generate_handshake_keys()
1398             ssl->p_export_keys,  in ssl_tls13_generate_handshake_keys()
1406         ssl->f_export_keys(  in ssl_tls13_generate_handshake_keys()
1407             ssl->p_export_keys,  in ssl_tls13_generate_handshake_keys()
1466 static int ssl_tls13_key_schedule_stage_handshake(mbedtls_ssl_context *ssl)  in ssl_tls13_key_schedule_stage_handshake()  argument
1469     mbedtls_ssl_handshake_params *handshake = ssl->handshake;  in ssl_tls13_key_schedule_stage_handshake()
1481     if (mbedtls_ssl_tls13_key_exchange_mode_with_ephemeral(ssl)) {  in ssl_tls13_key_schedule_stage_handshake()
1574     mbedtls_ssl_context *ssl,  in ssl_tls13_generate_application_keys()  argument
1578     mbedtls_ssl_handshake_params *handshake = ssl->handshake;  in ssl_tls13_generate_application_keys()
1582         &ssl->session_negotiate->app_secrets;  in ssl_tls13_generate_application_keys()
1616     ret = mbedtls_ssl_get_handshake_transcript(ssl, md_type,  in ssl_tls13_generate_application_keys()
1657     if (ssl->f_export_keys != NULL) {  in ssl_tls13_generate_application_keys()
1658         ssl->f_export_keys(  in ssl_tls13_generate_application_keys()
1659             ssl->p_export_keys,  in ssl_tls13_generate_application_keys()
1667         ssl->f_export_keys(  in ssl_tls13_generate_application_keys()
1668             ssl->p_export_keys,  in ssl_tls13_generate_application_keys()
1690     mbedtls_platform_zeroize(ssl->handshake->randbytes,  in ssl_tls13_generate_application_keys()
1691                              sizeof(ssl->handshake->randbytes));  in ssl_tls13_generate_application_keys()
1697 int mbedtls_ssl_tls13_compute_handshake_transform(mbedtls_ssl_context *ssl)  in mbedtls_ssl_tls13_compute_handshake_transform()  argument
1702     mbedtls_ssl_handshake_params *handshake = ssl->handshake;  in mbedtls_ssl_tls13_compute_handshake_transform()
1705     ret = ssl_tls13_key_schedule_stage_handshake(ssl);  in mbedtls_ssl_tls13_compute_handshake_transform()
1713     ret = ssl_tls13_generate_handshake_keys(ssl, &traffic_keys);  in mbedtls_ssl_tls13_compute_handshake_transform()
1728         ssl->conf->endpoint,  in mbedtls_ssl_tls13_compute_handshake_transform()
1731         ssl);  in mbedtls_ssl_tls13_compute_handshake_transform()
1747 int mbedtls_ssl_tls13_compute_resumption_master_secret(mbedtls_ssl_context *ssl)  in mbedtls_ssl_tls13_compute_resumption_master_secret()  argument
1751     mbedtls_ssl_handshake_params *handshake = ssl->handshake;  in mbedtls_ssl_tls13_compute_resumption_master_secret()
1760     ret = mbedtls_ssl_get_handshake_transcript(ssl, md_type,  in mbedtls_ssl_tls13_compute_resumption_master_secret()
1771         &ssl->session_negotiate->app_secrets);  in mbedtls_ssl_tls13_compute_resumption_master_secret()
1782         ssl->session_negotiate->app_secrets.resumption_master_secret,  in mbedtls_ssl_tls13_compute_resumption_master_secret()
1790 int mbedtls_ssl_tls13_compute_application_transform(mbedtls_ssl_context *ssl)  in mbedtls_ssl_tls13_compute_application_transform()  argument
1796     ret = ssl_tls13_key_schedule_stage_application(ssl);  in mbedtls_ssl_tls13_compute_application_transform()
1803     ret = ssl_tls13_generate_application_keys(ssl, &traffic_keys);  in mbedtls_ssl_tls13_compute_application_transform()
1819         ssl->conf->endpoint,  in mbedtls_ssl_tls13_compute_application_transform()
1820         ssl->handshake->ciphersuite_info->id,  in mbedtls_ssl_tls13_compute_application_transform()
1822         ssl);  in mbedtls_ssl_tls13_compute_application_transform()
1828     ssl->transform_application = transform_application;  in mbedtls_ssl_tls13_compute_application_transform()
1840 int mbedtls_ssl_tls13_export_handshake_psk(mbedtls_ssl_context *ssl,  in mbedtls_ssl_tls13_export_handshake_psk()  argument
1851     if (mbedtls_svc_key_id_is_null(ssl->handshake->psk_opaque)) {  in mbedtls_ssl_tls13_export_handshake_psk()
1855     status = psa_get_key_attributes(ssl->handshake->psk_opaque, &key_attributes);  in mbedtls_ssl_tls13_export_handshake_psk()
1866     status = psa_export_key(ssl->handshake->psk_opaque,  in mbedtls_ssl_tls13_export_handshake_psk()
1875     *psk = ssl->handshake->psk;  in mbedtls_ssl_tls13_export_handshake_psk()
1876     *psk_len = ssl->handshake->psk_len;  in mbedtls_ssl_tls13_export_handshake_psk()