216                 ssl->handshake->sig_alg = p[0];  in ssl_parse_signature_algorithms_ext()
228                    ssl->handshake->sig_alg ) );  in ssl_parse_signature_algorithms_ext()
254     if( ssl->handshake->curves != NULL )  in ssl_parse_supported_elliptic_curves()
269     ssl->handshake->curves = curves;  in ssl_parse_supported_elliptic_curves()
310             ssl->handshake->ecdh_ctx.point_format = p[0];  in ssl_parse_supported_point_formats()
313             ssl->handshake->ecjpake_ctx.point_format = p[0];  in ssl_parse_supported_point_formats()
335     if( mbedtls_ecjpake_check( &ssl->handshake->ecjpake_ctx ) != 0 )  in ssl_parse_ecjpake_kkpp()
341     if( ( ret = mbedtls_ecjpake_read_round_one( &ssl->handshake->ecjpake_ctx,  in ssl_parse_ecjpake_kkpp()
349     ssl->handshake->cli_exts |= MBEDTLS_TLS_EXT_ECJPAKE_KKPP_OK;  in ssl_parse_ecjpake_kkpp()
431         ssl->handshake->extended_ms = MBEDTLS_SSL_EXTENDED_MS_ENABLED;  in ssl_parse_extended_ms_ext()
455     ssl->handshake->new_session_ticket = 1;  in ssl_parse_session_ticket_ext()
503     ssl->handshake->resume = 1;  in ssl_parse_session_ticket_ext()
506     ssl->handshake->new_session_ticket = 0;  in ssl_parse_session_ticket_ext()
614     if( ssl->handshake->sni_key_cert != NULL )  in ssl_pick_cert()
615         list = ssl->handshake->sni_key_cert;  in ssl_pick_cert()
660             ssl_check_key_curve( cur->key, ssl->handshake->curves ) != 0 )  in ssl_pick_cert()
694         ssl->handshake->key_cert = cur;  in ssl_pick_cert()
696                           ssl->handshake->key_cert->cert );  in ssl_pick_cert()
746         ( ssl->handshake->cli_exts & MBEDTLS_TLS_EXT_ECJPAKE_KKPP_OK ) == 0 )  in ssl_ciphersuite_match()
757         ( ssl->handshake->curves == NULL ||  in ssl_ciphersuite_match()
758           ssl->handshake->curves[0] == NULL ) )  in ssl_ciphersuite_match()
876     ssl->handshake->max_major_ver = buf[3];
877     ssl->handshake->max_minor_ver = buf[4];
885     ssl->handshake->update_checksum( ssl, buf + 2, n );
948     memset( ssl->handshake->randbytes, 0, 64 );
949     memcpy( ssl->handshake->randbytes + 32 - chal_len, p, chal_len );
1226     ssl->handshake->update_checksum( ssl, buf, msg_len );
1275             if( cli_msg_seq != ssl->handshake->in_msg_seq )
1279                                     ssl->handshake->in_msg_seq ) );
1283             ssl->handshake->in_msg_seq++;
1290             ssl->handshake->out_msg_seq = cli_msg_seq;
1291             ssl->handshake->in_msg_seq  = cli_msg_seq + 1;
1345     ssl->handshake->max_major_ver = ssl->major_ver;
1346     ssl->handshake->max_minor_ver = ssl->minor_ver;
1375     memcpy( ssl->handshake->randbytes, buf + 2, 32 );
1427                 ssl->handshake->verify_cookie_len = 1;
1432                 ssl->handshake->verify_cookie_len = 0;
1605                 ssl->handshake->cli_exts |= MBEDTLS_TLS_EXT_SUPPORTED_POINT_FORMATS_PRESENT;
1930     if( ssl->handshake->extended_ms == MBEDTLS_SSL_EXTENDED_MS_DISABLED ||
1957     if( ssl->handshake->new_session_ticket == 0 )
2051     if( ( ssl->handshake->cli_exts &
2101     ret = mbedtls_ecjpake_write_round_one( &ssl->handshake->ecjpake_ctx,
2229         ssl->handshake->verify_cookie_len != 0 )
2281     memcpy( ssl->handshake->randbytes + 32, buf + 6, 32 );
2290     if( ssl->handshake->resume == 0 &&
2299         ssl->handshake->resume = 1;
2302     if( ssl->handshake->resume == 0 )
2315         if( ssl->handshake->new_session_ticket != 0 )
2359                    ssl->handshake->resume ? "a" : "no" ) );
2490     if( ssl->handshake->sni_authmode != MBEDTLS_SSL_VERIFY_UNSET )
2491         authmode = ssl->handshake->sni_authmode;
2592     if( ssl->handshake->sni_ca_chain != NULL )
2593         crt = ssl->handshake->sni_ca_chain;
2653     if( ( ret = mbedtls_ecdh_get_params( &ssl->handshake->ecdh_ctx,
2721         ret = mbedtls_ecjpake_write_round_two( &ssl->handshake->ecjpake_ctx,
2769         if( ( ret = mbedtls_mpi_copy( &ssl->handshake->dhm_ctx.P, &ssl->conf->dhm_P ) ) != 0 ||
2770             ( ret = mbedtls_mpi_copy( &ssl->handshake->dhm_ctx.G, &ssl->conf->dhm_G ) ) != 0 )
2776         if( ( ret = mbedtls_dhm_make_params( &ssl->handshake->dhm_ctx,
2777                         (int) mbedtls_mpi_size( &ssl->handshake->dhm_ctx.P ),
2790         MBEDTLS_SSL_DEBUG_MPI( 3, "DHM: X ", &ssl->handshake->dhm_ctx.X  );
2791         MBEDTLS_SSL_DEBUG_MPI( 3, "DHM: P ", &ssl->handshake->dhm_ctx.P  );
2792         MBEDTLS_SSL_DEBUG_MPI( 3, "DHM: G ", &ssl->handshake->dhm_ctx.G  );
2793         MBEDTLS_SSL_DEBUG_MPI( 3, "DHM: GX", &ssl->handshake->dhm_ctx.GX );
2816             for( curve = ssl->handshake->curves; *curve != NULL; curve++ )
2829         if( ( ret = mbedtls_ecp_group_load( &ssl->handshake->ecdh_ctx.grp,
2836         if( ( ret = mbedtls_ecdh_make_params( &ssl->handshake->ecdh_ctx, &len,
2850         MBEDTLS_SSL_DEBUG_ECP( 3, "ECDH: Q ", &ssl->handshake->ecdh_ctx.Q );
2872             md_alg = mbedtls_ssl_md_alg_from_hash( ssl->handshake->sig_alg );
2922             mbedtls_md5_update( &mbedtls_md5, ssl->handshake->randbytes,  64 );
2927             mbedtls_sha1_update( &mbedtls_sha1, ssl->handshake->randbytes,  64 );
2965             mbedtls_md_update( &ctx, ssl->handshake->randbytes, 64 );
2993             *(p++) = ssl->handshake->sig_alg;
3091     if( ( ret = mbedtls_dhm_read_public( &ssl->handshake->dhm_ctx, *p, n ) ) != 0 )
3099     MBEDTLS_SSL_DEBUG_MPI( 3, "DHM: GY", &ssl->handshake->dhm_ctx.GY );
3115     unsigned char *pms = ssl->handshake->premaster + pms_offset;
3150     mbedtls_ssl_write_version( ssl->handshake->max_major_ver,
3151                        ssl->handshake->max_minor_ver,
3180     if( sizeof( ssl->handshake->premaster ) < pms_offset ||
3181         sizeof( ssl->handshake->premaster ) - pms_offset < 48 )
3186     ssl->handshake->pmslen = 48;
3200     for( i = 0; i < ssl->handshake->pmslen; i++ )
3322         if( ( ret = mbedtls_dhm_calc_secret( &ssl->handshake->dhm_ctx,
3323                                       ssl->handshake->premaster,
3325                                      &ssl->handshake->pmslen,
3332         MBEDTLS_SSL_DEBUG_MPI( 3, "DHM: K ", &ssl->handshake->dhm_ctx.K  );
3345         if( ( ret = mbedtls_ecdh_read_public( &ssl->handshake->ecdh_ctx,
3352         MBEDTLS_SSL_DEBUG_ECP( 3, "ECDH: Qp ", &ssl->handshake->ecdh_ctx.Qp );
3354         if( ( ret = mbedtls_ecdh_calc_secret( &ssl->handshake->ecdh_ctx,
3355                                       &ssl->handshake->pmslen,
3356                                        ssl->handshake->premaster,
3364         MBEDTLS_SSL_DEBUG_MPI( 3, "ECDH: z  ", &ssl->handshake->ecdh_ctx.z );
3457         if( ( ret = mbedtls_ecdh_read_public( &ssl->handshake->ecdh_ctx,
3464         MBEDTLS_SSL_DEBUG_ECP( 3, "ECDH: Qp ", &ssl->handshake->ecdh_ctx.Qp );
3489         ret = mbedtls_ecjpake_read_round_two( &ssl->handshake->ecjpake_ctx,
3497         ret = mbedtls_ecjpake_derive_secret( &ssl->handshake->ecjpake_ctx,
3498                 ssl->handshake->premaster, 32, &ssl->handshake->pmslen,
3712     ssl->handshake->calc_verify( ssl, hash );
3782     ssl->handshake->new_session_ticket = 0;
3803     if( ssl->state == MBEDTLS_SSL_HANDSHAKE_OVER || ssl->handshake == NULL )
3813         ssl->handshake->retransmit_state == MBEDTLS_SSL_RETRANS_SENDING )
3899             if( ssl->handshake->new_session_ticket != 0 )