Lines Matching defs:mbedtls_ssl_config
529 typedef struct mbedtls_ssl_config mbedtls_ssl_config; typedef
582 struct mbedtls_ssl_config struct
590 const int *ciphersuite_list[4]; /*!< allowed ciphersuites per version */
593 void (*f_dbg)(void *, int, const char *, int, const char *);
594 void *p_dbg; /*!< context for the debug function */
597 int (*f_rng)(void *, unsigned char *, size_t);
598 void *p_rng; /*!< context for the RNG function */
601 int (*f_get_cache)(void *, mbedtls_ssl_session *);
603 int (*f_set_cache)(void *, const mbedtls_ssl_session *);
604 void *p_cache; /*!< context for cache callbacks */
608 int (*f_sni)(void *, mbedtls_ssl_context *, const unsigned char *, size_t);
609 void *p_sni; /*!< context for SNI callback */
614 int (*f_vrfy)(void *, mbedtls_x509_crt *, int, uint32_t *);
615 void *p_vrfy; /*!< context for X.509 verify calllback */
620 int (*f_psk)(void *, mbedtls_ssl_context *, const unsigned char *, size_t);
621 void *p_psk; /*!< context for PSK callback */
626 int (*f_cookie_write)( void *, unsigned char **, unsigned char *,
629 int (*f_cookie_check)( void *, const unsigned char *, size_t,
631 void *p_cookie; /*!< context for the cookie callbacks */
636 int (*f_ticket_write)( void *, const mbedtls_ssl_session *,
639 int (*f_ticket_parse)( void *, mbedtls_ssl_session *, unsigned char *, size_t);
640 void *p_ticket; /*!< context for the ticket callbacks */
645 int (*f_export_keys)( void *, const unsigned char *,
647 void *p_export_keys; /*!< context for key export callback */
651 const mbedtls_x509_crt_profile *cert_profile; /*!< verification profile */
652 mbedtls_ssl_key_cert *key_cert; /*!< own certificate/key pair(s) */
653 mbedtls_x509_crt *ca_chain; /*!< trusted CAs */
654 mbedtls_x509_crl *ca_crl; /*!< trusted CAs CRLs */
658 const int *sig_hashes; /*!< allowed signature hashes */
662 const mbedtls_ecp_group_id *curve_list; /*!< allowed curves */
666 mbedtls_mpi dhm_P; /*!< prime modulus for DHM */
667 mbedtls_mpi dhm_G; /*!< generator for DHM */
671 unsigned char *psk; /*!< pre-shared key */
672 size_t psk_len; /*!< length of the pre-shared key */
673 unsigned char *psk_identity; /*!< identity for PSK negotiation */
674 size_t psk_identity_len;/*!< length of identity */
678 const char **alpn_list; /*!< ordered list of protocols */
685 uint32_t read_timeout; /*!< timeout for mbedtls_ssl_read (ms) */
688 uint32_t hs_timeout_min; /*!< initial value of the handshake
690 uint32_t hs_timeout_max; /*!< maximum value of the handshake
695 int renego_max_records; /*!< grace period for renegotiation */
696 unsigned char renego_period[8]; /*!< value of the record counters
701 unsigned int badmac_limit; /*!< limit of records with a bad MAC */
705 unsigned int dhm_min_bitlen; /*!< min. bit length of the DHM prime */
708 unsigned char max_major_ver; /*!< max. major version used */
709 unsigned char max_minor_ver; /*!< max. minor version used */
710 unsigned char min_major_ver; /*!< min. major version used */
711 unsigned char min_minor_ver; /*!< min. minor version used */
717 unsigned int endpoint : 1; /*!< 0: client, 1: server */
718 unsigned int transport : 1; /*!< stream (TLS) or datagram (DTLS) */
719 unsigned int authmode : 2; /*!< MBEDTLS_SSL_VERIFY_XXX */
721 unsigned int allow_legacy_renegotiation : 2 ; /*!< MBEDTLS_LEGACY_XXX */
723 unsigned int arc4_disabled : 1; /*!< blacklist RC4 ciphersuites? */
726 unsigned int mfl_code : 3; /*!< desired fragment length */
729 unsigned int encrypt_then_mac : 1 ; /*!< negotiate encrypt-then-mac? */
732 unsigned int extended_ms : 1; /*!< negotiate extended master secret? */
757 const mbedtls_ssl_config *conf; /*!< configuration information */ argument