Lines Matching refs:ssl
38 static int write_early_data(mbedtls_ssl_context *ssl,
41 int ret = mbedtls_ssl_get_max_out_record_payload(ssl);
46 ret = mbedtls_ssl_flush_output(ssl);
48 TEST_EQUAL(ssl->out_left, 0);
50 ssl->out_msglen = len;
51 ssl->out_msgtype = MBEDTLS_SSL_MSG_APPLICATION_DATA;
53 memcpy(ssl->out_msg, buf, len);
56 ret = mbedtls_ssl_write_record(ssl, 1);
1168 mbedtls_ssl_context ssl;
1171 mbedtls_ssl_init(&ssl);
1181 TEST_ASSERT(mbedtls_ssl_setup(&ssl, &conf) == 0);
1185 memcpy(ssl.in_ctr + 2, prevs->x + len, 6);
1186 mbedtls_ssl_dtls_replay_update(&ssl);
1190 memcpy(ssl.in_ctr + 2, new->x, 6);
1191 TEST_ASSERT(mbedtls_ssl_dtls_replay_check(&ssl) == ret);
1194 mbedtls_ssl_free(&ssl);
1204 mbedtls_ssl_context ssl;
1206 mbedtls_ssl_init(&ssl);
1209 TEST_ASSERT(mbedtls_ssl_set_hostname(&ssl, input_hostname0) == 0);
1210 output_hostname = mbedtls_ssl_get_hostname(&ssl);
1213 TEST_ASSERT(mbedtls_ssl_set_hostname(&ssl, input_hostname1) == 0);
1214 output_hostname = mbedtls_ssl_get_hostname(&ssl);
1218 mbedtls_ssl_free(&ssl);
1236 mbedtls_ssl_context ssl; /* ONLY for debugging */
1243 mbedtls_ssl_init(&ssl);
1301 ret = mbedtls_ssl_encrypt_buf(&ssl, t_enc, &rec,
1327 ret = mbedtls_ssl_decrypt_buf(&ssl, t_dec, &rec);
1345 mbedtls_ssl_free(&ssl);
1379 mbedtls_ssl_context ssl; /* ONLY for debugging */
1397 mbedtls_ssl_init(&ssl);
1455 ret = mbedtls_ssl_encrypt_buf(&ssl, t_enc, &rec,
1487 TEST_ASSERT(mbedtls_ssl_decrypt_buf(&ssl, t_dec, &rec) == 0);
1507 mbedtls_ssl_free(&ssl);
2579 ret = mbedtls_test_move_handshake_to_state(&(base_ep.ssl),
2580 &(second_ep.ssl),
2586 TEST_ASSERT(base_ep.ssl.state == state);
2591 TEST_ASSERT(base_ep.ssl.state != state);
2988 mbedtls_ssl_context ssl;
2991 mbedtls_ssl_init(&ssl);
3000 TEST_ASSERT(mbedtls_ssl_setup(&ssl, &conf) == expected_ssl_setup_result);
3002 mbedtls_ssl_context_get_config(&ssl)), endpoint);
3004 mbedtls_ssl_free(&ssl);
3036 mbedtls_ssl_context ssl;
3037 mbedtls_ssl_init(&ssl);
3042 TEST_ASSERT(mbedtls_ssl_setup(&ssl, &conf) == 0);
3044 TEST_ASSERT(ssl.handshake != NULL && ssl.handshake->group_list != NULL);
3045 TEST_ASSERT(ssl.conf != NULL && ssl.conf->group_list == NULL);
3047 TEST_EQUAL(ssl.handshake->
3052 TEST_EQUAL(iana_tls_group_list[i], ssl.handshake->group_list[i]);
3056 mbedtls_ssl_free(&ssl);
3079 mbedtls_ssl_context ssl;
3080 mbedtls_ssl_init(&ssl);
3083 TEST_ASSERT(mbedtls_ssl_setup(&ssl, &conf) == 0);
3085 TEST_ASSERT(ssl.conf != NULL && ssl.conf->group_list != NULL);
3087 TEST_EQUAL(ssl.conf->
3092 TEST_EQUAL(iana_tls_group_list[i], ssl.conf->group_list[i]);
3096 mbedtls_ssl_free(&ssl);
3141 &(client.ssl), &(server.ssl), MBEDTLS_SSL_HANDSHAKE_WRAPUP)
3145 server.ssl.session_negotiate->id_len = 33;
3149 &(client.ssl), options.cli_msg_len,
3151 &(server.ssl), options.srv_msg_len,
3170 mbedtls_ssl_context ssl;
3174 mbedtls_ssl_init(&ssl);
3184 TEST_EQUAL(mbedtls_ssl_setup(&ssl, &conf), 0);
3185 TEST_EQUAL(mbedtls_ssl_check_dtls_clihlo_cookie(&ssl, ssl.cli_id,
3186 ssl.cli_id_len,
3188 ssl.out_buf,
3194 mbedtls_ssl_free(&ssl);
3218 mbedtls_ssl_context ssl;
3228 mbedtls_ssl_init(&ssl);
3239 TEST_ASSERT(mbedtls_ssl_setup(&ssl, &conf) == 0);
3242 TEST_ASSERT(mbedtls_ssl_set_cid(&ssl, MBEDTLS_SSL_CID_ENABLED, own_cid,
3246 TEST_ASSERT(mbedtls_ssl_get_own_cid(&ssl, &cid_enabled, test_cid,
3266 TEST_ASSERT(mbedtls_ssl_set_cid(&ssl, MBEDTLS_SSL_CID_ENABLED, own_cid,
3270 TEST_ASSERT(mbedtls_ssl_set_cid(&ssl, MBEDTLS_SSL_CID_ENABLED, own_cid,
3275 TEST_ASSERT(mbedtls_ssl_get_own_cid(&ssl, &cid_enabled, test_cid,
3283 TEST_ASSERT(mbedtls_ssl_set_cid(&ssl, MBEDTLS_SSL_CID_DISABLED, NULL,
3287 TEST_ASSERT(mbedtls_ssl_get_own_cid(&ssl, &cid_enabled, test_cid,
3294 mbedtls_ssl_free(&ssl);
3339 &(client.ssl), &(server.ssl),
3350 (client.ssl).handshake->xxdh_psa_peerkey[0] ^= 0x02;
3354 &(client.ssl), &(server.ssl), MBEDTLS_SSL_HANDSHAKE_OVER),
3415 &(server_ep.ssl), &(client_ep.ssl),
3419 ret = mbedtls_ssl_flush_output(&(server_ep.ssl));
3423 &(client_ep.ssl), &(server_ep.ssl),
3427 ret = mbedtls_ssl_tls13_fetch_handshake_msg(&(client_ep.ssl),
3445 ret = mbedtls_ssl_tls13_parse_certificate(&(client_ep.ssl), buf, end);
3453 ret = mbedtls_ssl_session_reset(&(client_ep.ssl));
3456 ret = mbedtls_ssl_session_reset(&(server_ep.ssl));
3473 mbedtls_ssl_context ssl;
3484 mbedtls_ssl_init(&ssl);
3498 TEST_EQUAL(mbedtls_ssl_setup(&ssl, &conf), 0);
3543 mbedtls_ssl_free(&ssl);
3677 ret = mbedtls_ssl_set_session(&(client_ep.ssl), &saved_session);
3688 &(server_ep.ssl), &(client_ep.ssl),
3691 TEST_EQUAL(server_ep.ssl.handshake->resume, 1);
3692 TEST_EQUAL(server_ep.ssl.handshake->new_session_tickets_count, 1);
3693 TEST_EQUAL(server_ep.ssl.handshake->key_exchange_mode,
3840 ret = mbedtls_ssl_set_session(&(client_ep.ssl), &saved_session);
3847 &(client_ep.ssl), &(server_ep.ssl),
3850 ret = mbedtls_ssl_write_early_data(&(client_ep.ssl),
3854 if (client_ep.ssl.early_data_state !=
3862 &(server_ep.ssl), &(client_ep.ssl),
3871 TEST_EQUAL(server_ep.ssl.handshake->early_data_accepted, 1);
3872 TEST_EQUAL(mbedtls_ssl_read_early_data(&(server_ep.ssl),
3879 TEST_EQUAL(server_ep.ssl.handshake->early_data_accepted, 0);
3890 TEST_EQUAL(server_ep.ssl.handshake->early_data_accepted, 0);
3899 &(server_ep.ssl), &(client_ep.ssl),
3992 ret = mbedtls_ssl_set_session(&(client_ep.ssl), &saved_session);
4000 int state = client_ep.ssl.state;
4003 while (client_ep.ssl.state == state) {
4004 ret = mbedtls_ssl_handshake_step(&(client_ep.ssl));
4008 if (client_ep.ssl.state != state) {
4011 ret = mbedtls_ssl_handshake_step(&(server_ep.ssl));
4017 if (client_ep.ssl.state != MBEDTLS_SSL_HANDSHAKE_OVER) {
4018 TEST_EQUAL(mbedtls_ssl_get_early_data_status(&(client_ep.ssl)),
4022 switch (client_ep.ssl.state) {
4028 TEST_EQUAL(client_ep.ssl.early_data_state,
4033 if (!client_ep.ssl.handshake->hello_retry_request_flag) {
4034 TEST_EQUAL(client_ep.ssl.early_data_state,
4037 TEST_EQUAL(client_ep.ssl.early_data_state,
4051 TEST_EQUAL(client_ep.ssl.early_data_state,
4056 TEST_EQUAL(client_ep.ssl.early_data_state,
4061 if (!client_ep.ssl.handshake->hello_retry_request_flag) {
4062 TEST_EQUAL(client_ep.ssl.early_data_state,
4065 client_ep.ssl.handshake->randbytes,
4068 TEST_EQUAL(client_ep.ssl.early_data_state,
4072 client_ep.ssl.handshake->randbytes,
4086 TEST_EQUAL(client_ep.ssl.early_data_state,
4091 TEST_EQUAL(client_ep.ssl.early_data_state,
4096 TEST_EQUAL(client_ep.ssl.early_data_state,
4108 TEST_EQUAL(client_ep.ssl.early_data_state,
4113 TEST_EQUAL(client_ep.ssl.early_data_state,
4119 TEST_EQUAL(client_ep.ssl.early_data_state,
4130 TEST_EQUAL(client_ep.ssl.early_data_state,
4137 TEST_EQUAL(client_ep.ssl.early_data_state,
4142 TEST_EQUAL(client_ep.ssl.early_data_state,
4148 TEST_EQUAL(client_ep.ssl.early_data_state,
4160 TEST_EQUAL(client_ep.ssl.early_data_state,
4165 TEST_EQUAL(client_ep.ssl.early_data_state,
4171 TEST_EQUAL(client_ep.ssl.early_data_state,
4186 TEST_EQUAL(client_ep.ssl.early_data_state,
4197 TEST_EQUAL(client_ep.ssl.early_data_state,
4204 TEST_EQUAL(client_ep.ssl.early_data_state,
4210 TEST_EQUAL(client_ep.ssl.early_data_state,
4225 TEST_EQUAL(client_ep.ssl.early_data_state,
4230 TEST_EQUAL(client_ep.ssl.early_data_state,
4236 TEST_EQUAL(client_ep.ssl.early_data_state,
4248 } while (client_ep.ssl.state != MBEDTLS_SSL_HANDSHAKE_OVER);
4250 ret = mbedtls_ssl_get_early_data_status(&(client_ep.ssl));
4269 ret = mbedtls_ssl_get_early_data_status(&(server_ep.ssl));
4273 TEST_EQUAL(client_ep.ssl.handshake->ccs_sent, 1);
4369 ret = mbedtls_ssl_set_session(&(client_ep.ssl), &saved_session);
4381 int client_state = client_ep.ssl.state;
4389 write_early_data_ret = mbedtls_ssl_write_early_data(&(client_ep.ssl),
4395 TEST_EQUAL(client_ep.ssl.state, client_state);
4406 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_SERVER_HELLO);
4410 if (!client_ep.ssl.handshake->hello_retry_request_flag) {
4412 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_SERVER_HELLO);
4417 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_CLIENT_HELLO);
4431 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_SERVER_HELLO);
4435 if (!client_ep.ssl.handshake->hello_retry_request_flag) {
4437 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_SERVER_HELLO);
4441 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_SERVER_HELLO);
4455 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_ENCRYPTED_EXTENSIONS);
4460 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_ENCRYPTED_EXTENSIONS);
4472 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_SERVER_FINISHED);
4477 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_SERVER_FINISHED);
4482 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_SERVER_FINISHED);
4493 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_END_OF_EARLY_DATA);
4503 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_SERVER_HELLO);
4513 TEST_EQUAL(client_ep.ssl.state, MBEDTLS_SSL_CLIENT_CCS_BEFORE_2ND_CLIENT_HELLO);
4522 TEST_EQUAL(client_ep.ssl.state,
4541 TEST_EQUAL(client_ep.ssl.state, client_state);
4555 &(server_ep.ssl), &(client_ep.ssl),
4560 &(server_ep.ssl), read_buf, sizeof(read_buf));
4568 &(client_ep.ssl), &(server_ep.ssl),
4574 ret = mbedtls_ssl_session_reset(&(client_ep.ssl));
4577 ret = mbedtls_ssl_set_session(&(client_ep.ssl), &saved_session);
4580 ret = mbedtls_ssl_session_reset(&(server_ep.ssl));
4598 &(client_ep.ssl), &(server_ep.ssl),
4601 &(client_ep.ssl), &(server_ep.ssl),
4606 &(client_ep.ssl), &(server_ep.ssl),
4610 while (client_ep.ssl.state == previous_client_state) {
4611 ret = mbedtls_ssl_handshake_step(&(client_ep.ssl));
4615 if (client_ep.ssl.state != previous_client_state) {
4618 ret = mbedtls_ssl_handshake_step(&(server_ep.ssl));
4712 ret = mbedtls_ssl_set_session(&(client_ep.ssl), &saved_session);
4722 ret = mbedtls_ssl_write_early_data(&(client_ep.ssl),
4733 TEST_EQUAL(client_ep.ssl.total_early_data_size, max_early_data_size);
4735 ret = mbedtls_ssl_write_early_data(&(client_ep.ssl), buf, 1);
4737 TEST_EQUAL(client_ep.ssl.total_early_data_size, max_early_data_size);
4738 TEST_EQUAL(client_ep.ssl.early_data_state,
4749 ret = mbedtls_ssl_handshake(&(server_ep.ssl));
4752 ret = mbedtls_ssl_read_early_data(&(server_ep.ssl),
4765 ret = mbedtls_ssl_handshake(&(server_ep.ssl));
4769 &(client_ep.ssl), &(server_ep.ssl), MBEDTLS_SSL_HANDSHAKE_OVER)
4898 ret = mbedtls_ssl_set_session(&(client_ep.ssl), &saved_session);
4909 &(client_ep.ssl), &(server_ep.ssl),
4912 TEST_ASSERT(client_ep.ssl.early_data_state !=
4915 ret = mbedtls_ssl_handshake(&(server_ep.ssl));
4941 ((server_ep.ssl.total_early_data_size +
4950 ret = write_early_data(&(client_ep.ssl), buf_write, write_size);
4957 ret = mbedtls_ssl_handshake(&(server_ep.ssl));
4960 ret = mbedtls_ssl_read_early_data(&(server_ep.ssl),
4968 TEST_EQUAL(server_ep.ssl.total_early_data_size,
4975 ret = mbedtls_ssl_handshake(&(server_ep.ssl));
5007 expanded_early_data_chunk_size = server_ep.ssl.total_early_data_size;
5011 TEST_LE_U(server_ep.ssl.total_early_data_size, max_early_data_size);
5015 ret = write_early_data(&(client_ep.ssl), buf_write, write_size);
5022 ret = mbedtls_ssl_handshake(&(server_ep.ssl));