Lines Matching refs:ssl
429 size_t mbedtls_ssl_get_output_max_frag_len(const mbedtls_ssl_context *ssl);
445 size_t mbedtls_ssl_get_input_max_frag_len(const mbedtls_ssl_context *ssl);
458 size_t mbedtls_ssl_get_output_record_size_limit(const mbedtls_ssl_context *ssl);
1284 int mbedtls_ssl_tls12_write_client_hello_exts(mbedtls_ssl_context *ssl,
1305 mbedtls_ssl_context *ssl,
1325 void mbedtls_ssl_handshake_free(mbedtls_ssl_context *ssl);
1328 void mbedtls_ssl_set_inbound_transform(mbedtls_ssl_context *ssl,
1332 void mbedtls_ssl_set_outbound_transform(mbedtls_ssl_context *ssl,
1336 int mbedtls_ssl_handshake_client_step(mbedtls_ssl_context *ssl);
1338 int mbedtls_ssl_handshake_server_step(mbedtls_ssl_context *ssl);
1339 void mbedtls_ssl_handshake_wrapup(mbedtls_ssl_context *ssl);
1350 static inline void mbedtls_ssl_handshake_set_state(mbedtls_ssl_context *ssl, in mbedtls_ssl_handshake_set_state() argument
1354 ssl->state, mbedtls_ssl_states_str(ssl->state), in mbedtls_ssl_handshake_set_state()
1356 ssl->state = (int) state; in mbedtls_ssl_handshake_set_state()
1359 static inline void mbedtls_ssl_handshake_increment_state(mbedtls_ssl_context *ssl) in mbedtls_ssl_handshake_increment_state() argument
1361 mbedtls_ssl_handshake_set_state(ssl, ssl->state + 1); in mbedtls_ssl_handshake_increment_state()
1365 int mbedtls_ssl_send_fatal_handshake_failure(mbedtls_ssl_context *ssl);
1368 int mbedtls_ssl_reset_checksum(mbedtls_ssl_context *ssl);
1372 int mbedtls_ssl_derive_keys(mbedtls_ssl_context *ssl);
1376 int mbedtls_ssl_handle_message_type(mbedtls_ssl_context *ssl);
1378 int mbedtls_ssl_prepare_handshake_record(mbedtls_ssl_context *ssl);
1380 int mbedtls_ssl_update_handshake_status(mbedtls_ssl_context *ssl);
1459 int mbedtls_ssl_read_record(mbedtls_ssl_context *ssl,
1462 int mbedtls_ssl_fetch_input(mbedtls_ssl_context *ssl, size_t nb_want);
1468 int mbedtls_ssl_start_handshake_msg(mbedtls_ssl_context *ssl, unsigned char hs_type,
1472 int mbedtls_ssl_write_handshake_msg_ext(mbedtls_ssl_context *ssl,
1475 static inline int mbedtls_ssl_write_handshake_msg(mbedtls_ssl_context *ssl) in mbedtls_ssl_write_handshake_msg() argument
1477 return mbedtls_ssl_write_handshake_msg_ext(ssl, 1 /* update checksum */, 1 /* force flush */); in mbedtls_ssl_write_handshake_msg()
1484 int mbedtls_ssl_finish_handshake_msg(mbedtls_ssl_context *ssl,
1488 int mbedtls_ssl_write_record(mbedtls_ssl_context *ssl, int force_flush);
1490 int mbedtls_ssl_flush_output(mbedtls_ssl_context *ssl);
1493 int mbedtls_ssl_parse_certificate(mbedtls_ssl_context *ssl);
1495 int mbedtls_ssl_write_certificate(mbedtls_ssl_context *ssl);
1498 int mbedtls_ssl_parse_change_cipher_spec(mbedtls_ssl_context *ssl);
1500 int mbedtls_ssl_write_change_cipher_spec(mbedtls_ssl_context *ssl);
1503 int mbedtls_ssl_parse_finished(mbedtls_ssl_context *ssl);
1505 int mbedtls_ssl_write_finished(mbedtls_ssl_context *ssl);
1507 void mbedtls_ssl_optimize_checksum(mbedtls_ssl_context *ssl,
1514 int mbedtls_ssl_add_hs_msg_to_checksum(mbedtls_ssl_context *ssl,
1520 int mbedtls_ssl_add_hs_hdr_to_checksum(mbedtls_ssl_context *ssl,
1527 int mbedtls_ssl_psk_derive_premaster(mbedtls_ssl_context *ssl,
1546 const mbedtls_ssl_context *ssl) in mbedtls_ssl_get_opaque_psk() argument
1548 if (!mbedtls_svc_key_id_is_null(ssl->handshake->psk_opaque)) { in mbedtls_ssl_get_opaque_psk()
1549 return ssl->handshake->psk_opaque; in mbedtls_ssl_get_opaque_psk()
1552 if (!mbedtls_svc_key_id_is_null(ssl->conf->psk_opaque)) { in mbedtls_ssl_get_opaque_psk()
1553 return ssl->conf->psk_opaque; in mbedtls_ssl_get_opaque_psk()
1565 static inline int mbedtls_ssl_get_psk(const mbedtls_ssl_context *ssl, in mbedtls_ssl_get_psk() argument
1568 if (ssl->handshake->psk != NULL && ssl->handshake->psk_len > 0) { in mbedtls_ssl_get_psk()
1569 *psk = ssl->handshake->psk; in mbedtls_ssl_get_psk()
1570 *psk_len = ssl->handshake->psk_len; in mbedtls_ssl_get_psk()
1571 } else if (ssl->conf->psk != NULL && ssl->conf->psk_len > 0) { in mbedtls_ssl_get_psk()
1572 *psk = ssl->conf->psk; in mbedtls_ssl_get_psk()
1573 *psk_len = ssl->conf->psk_len; in mbedtls_ssl_get_psk()
1597 int mbedtls_ssl_set_calc_verify_md(mbedtls_ssl_context *ssl, int md);
1601 int mbedtls_ssl_check_curve_tls_id(const mbedtls_ssl_context *ssl, uint16_t tls_id);
1604 int mbedtls_ssl_check_curve(const mbedtls_ssl_context *ssl, mbedtls_ecp_group_id grp_id);
1673 static inline mbedtls_pk_context *mbedtls_ssl_own_key(mbedtls_ssl_context *ssl) in mbedtls_ssl_own_key() argument
1677 if (ssl->handshake != NULL && ssl->handshake->key_cert != NULL) { in mbedtls_ssl_own_key()
1678 key_cert = ssl->handshake->key_cert; in mbedtls_ssl_own_key()
1680 key_cert = ssl->conf->key_cert; in mbedtls_ssl_own_key()
1686 static inline mbedtls_x509_crt *mbedtls_ssl_own_cert(mbedtls_ssl_context *ssl) in mbedtls_ssl_own_cert() argument
1690 if (ssl->handshake != NULL && ssl->handshake->key_cert != NULL) { in mbedtls_ssl_own_cert()
1691 key_cert = ssl->handshake->key_cert; in mbedtls_ssl_own_cert()
1693 key_cert = ssl->conf->key_cert; in mbedtls_ssl_own_cert()
1725 int mbedtls_ssl_verify_certificate(mbedtls_ssl_context *ssl,
1755 static inline size_t mbedtls_ssl_in_hdr_len(const mbedtls_ssl_context *ssl) in mbedtls_ssl_in_hdr_len() argument
1758 ((void) ssl); in mbedtls_ssl_in_hdr_len()
1762 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) { in mbedtls_ssl_in_hdr_len()
1771 static inline size_t mbedtls_ssl_out_hdr_len(const mbedtls_ssl_context *ssl) in mbedtls_ssl_out_hdr_len() argument
1773 return (size_t) (ssl->out_iv - ssl->out_hdr); in mbedtls_ssl_out_hdr_len()
1776 static inline size_t mbedtls_ssl_hs_hdr_len(const mbedtls_ssl_context *ssl) in mbedtls_ssl_hs_hdr_len() argument
1779 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) { in mbedtls_ssl_hs_hdr_len()
1783 ((void) ssl); in mbedtls_ssl_hs_hdr_len()
1789 void mbedtls_ssl_send_flight_completed(mbedtls_ssl_context *ssl);
1790 void mbedtls_ssl_recv_flight_completed(mbedtls_ssl_context *ssl);
1792 int mbedtls_ssl_resend(mbedtls_ssl_context *ssl);
1794 int mbedtls_ssl_flight_transmit(mbedtls_ssl_context *ssl);
1800 int mbedtls_ssl_dtls_replay_check(mbedtls_ssl_context const *ssl);
1801 void mbedtls_ssl_dtls_replay_update(mbedtls_ssl_context *ssl);
1811 int mbedtls_ssl_get_key_exchange_md_tls1_2(mbedtls_ssl_context *ssl,
1823 int mbedtls_ssl_encrypt_buf(mbedtls_ssl_context *ssl,
1829 int mbedtls_ssl_decrypt_buf(mbedtls_ssl_context const *ssl,
1834 static inline size_t mbedtls_ssl_ep_len(const mbedtls_ssl_context *ssl) in mbedtls_ssl_ep_len() argument
1837 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) { in mbedtls_ssl_ep_len()
1841 ((void) ssl); in mbedtls_ssl_ep_len()
1848 int mbedtls_ssl_resend_hello_request(mbedtls_ssl_context *ssl);
1851 void mbedtls_ssl_set_timer(mbedtls_ssl_context *ssl, uint32_t millisecs);
1853 int mbedtls_ssl_check_timer(mbedtls_ssl_context *ssl);
1855 void mbedtls_ssl_reset_in_pointers(mbedtls_ssl_context *ssl);
1856 void mbedtls_ssl_update_in_pointers(mbedtls_ssl_context *ssl);
1857 void mbedtls_ssl_reset_out_pointers(mbedtls_ssl_context *ssl);
1858 void mbedtls_ssl_update_out_pointers(mbedtls_ssl_context *ssl,
1862 int mbedtls_ssl_session_reset_int(mbedtls_ssl_context *ssl, int partial);
1863 void mbedtls_ssl_session_reset_msg_layer(mbedtls_ssl_context *ssl,
1870 int mbedtls_ssl_handle_pending_alert(mbedtls_ssl_context *ssl);
1875 void mbedtls_ssl_pend_fatal_alert(mbedtls_ssl_context *ssl,
1881 mbedtls_ssl_pend_fatal_alert(ssl, type, user_return_value)
1884 void mbedtls_ssl_dtls_replay_reset(mbedtls_ssl_context *ssl);
1887 void mbedtls_ssl_handshake_wrapup_free_hs_transform(mbedtls_ssl_context *ssl);
1891 int mbedtls_ssl_start_renegotiation(mbedtls_ssl_context *ssl);
1895 size_t mbedtls_ssl_get_current_mtu(const mbedtls_ssl_context *ssl);
1896 void mbedtls_ssl_buffering_free(mbedtls_ssl_context *ssl);
1971 int mbedtls_ssl_tls13_crypto_init(mbedtls_ssl_context *ssl);
1976 int mbedtls_ssl_tls13_process_finished_message(mbedtls_ssl_context *ssl);
1978 int mbedtls_ssl_tls13_write_finished_message(mbedtls_ssl_context *ssl);
1979 void mbedtls_ssl_tls13_handshake_wrapup(mbedtls_ssl_context *ssl);
1991 int mbedtls_ssl_tls13_write_client_hello_exts(mbedtls_ssl_context *ssl,
2002 int mbedtls_ssl_tls13_handshake_client_step(mbedtls_ssl_context *ssl);
2010 int mbedtls_ssl_tls13_handshake_server_step(mbedtls_ssl_context *ssl);
2016 static inline int mbedtls_ssl_conf_tls13_is_kex_mode_enabled(mbedtls_ssl_context *ssl, in mbedtls_ssl_conf_tls13_is_kex_mode_enabled() argument
2019 return (ssl->conf->tls13_kex_modes & kex_mode_mask) != 0; in mbedtls_ssl_conf_tls13_is_kex_mode_enabled()
2022 static inline int mbedtls_ssl_conf_tls13_is_psk_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_psk_enabled() argument
2024 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_psk_enabled()
2028 static inline int mbedtls_ssl_conf_tls13_is_psk_ephemeral_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_psk_ephemeral_enabled() argument
2030 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_psk_ephemeral_enabled()
2034 static inline int mbedtls_ssl_conf_tls13_is_ephemeral_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_ephemeral_enabled() argument
2036 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_ephemeral_enabled()
2040 static inline int mbedtls_ssl_conf_tls13_is_some_ephemeral_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_some_ephemeral_enabled() argument
2042 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_some_ephemeral_enabled()
2046 static inline int mbedtls_ssl_conf_tls13_is_some_psk_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_some_psk_enabled() argument
2048 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_some_psk_enabled()
2064 static inline int mbedtls_ssl_tls13_is_kex_mode_supported(mbedtls_ssl_context *ssl, in mbedtls_ssl_tls13_is_kex_mode_supported() argument
2067 return (ssl->handshake->tls13_kex_modes & kex_modes_mask) != 0; in mbedtls_ssl_tls13_is_kex_mode_supported()
2070 static inline int mbedtls_ssl_tls13_is_psk_supported(mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_psk_supported() argument
2072 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_psk_supported()
2077 mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_psk_ephemeral_supported() argument
2079 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_psk_ephemeral_supported()
2083 static inline int mbedtls_ssl_tls13_is_ephemeral_supported(mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_ephemeral_supported() argument
2085 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_ephemeral_supported()
2089 static inline int mbedtls_ssl_tls13_is_some_ephemeral_supported(mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_some_ephemeral_supported() argument
2091 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_some_ephemeral_supported()
2095 static inline int mbedtls_ssl_tls13_is_some_psk_supported(mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_some_psk_supported() argument
2097 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_some_psk_supported()
2109 mbedtls_ssl_context *ssl,
2115 mbedtls_ssl_context *ssl, unsigned int extension_type) in mbedtls_ssl_tls13_set_hs_sent_ext_mask() argument
2117 ssl->handshake->sent_extensions |= in mbedtls_ssl_tls13_set_hs_sent_ext_mask()
2125 mbedtls_ssl_context *ssl, int kex_mask) in mbedtls_ssl_tls13_key_exchange_mode_check() argument
2127 return (ssl->handshake->key_exchange_mode & kex_mask) != 0; in mbedtls_ssl_tls13_key_exchange_mode_check()
2131 mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_key_exchange_mode_with_psk() argument
2133 return mbedtls_ssl_tls13_key_exchange_mode_check(ssl, in mbedtls_ssl_tls13_key_exchange_mode_with_psk()
2138 mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_key_exchange_mode_with_ephemeral() argument
2140 return mbedtls_ssl_tls13_key_exchange_mode_check(ssl, in mbedtls_ssl_tls13_key_exchange_mode_with_ephemeral()
2148 int mbedtls_ssl_tls13_fetch_handshake_msg(mbedtls_ssl_context *ssl,
2175 mbedtls_ssl_context *ssl,
2184 int mbedtls_ssl_tls13_process_certificate(mbedtls_ssl_context *ssl);
2191 int mbedtls_ssl_tls13_write_certificate(mbedtls_ssl_context *ssl);
2197 int mbedtls_ssl_tls13_write_certificate_verify(mbedtls_ssl_context *ssl);
2205 int mbedtls_ssl_tls13_process_certificate_verify(mbedtls_ssl_context *ssl);
2211 int mbedtls_ssl_tls13_write_change_cipher_spec(mbedtls_ssl_context *ssl);
2214 int mbedtls_ssl_reset_transcript_for_hrr(mbedtls_ssl_context *ssl);
2219 mbedtls_ssl_context *ssl,
2227 int mbedtls_ssl_tls13_write_early_data_ext(mbedtls_ssl_context *ssl,
2233 int mbedtls_ssl_tls13_check_early_data_len(mbedtls_ssl_context *ssl,
2295 int mbedtls_ssl_write_sig_alg_ext(mbedtls_ssl_context *ssl, unsigned char *buf,
2301 int mbedtls_ssl_parse_sig_alg_ext(mbedtls_ssl_context *ssl,
2308 int mbedtls_ssl_get_handshake_transcript(mbedtls_ssl_context *ssl,
2325 static inline const void *mbedtls_ssl_get_groups(const mbedtls_ssl_context *ssl) in mbedtls_ssl_get_groups() argument
2328 return ssl->conf->group_list; in mbedtls_ssl_get_groups()
2330 if ((ssl->handshake != NULL) && (ssl->handshake->group_list != NULL)) { in mbedtls_ssl_get_groups()
2331 return ssl->handshake->group_list; in mbedtls_ssl_get_groups()
2333 return ssl->conf->group_list; in mbedtls_ssl_get_groups()
2378 const mbedtls_ssl_context *ssl, uint16_t named_group) in mbedtls_ssl_named_group_is_offered() argument
2380 const uint16_t *group_list = mbedtls_ssl_get_groups(ssl); in mbedtls_ssl_named_group_is_offered()
2429 const mbedtls_ssl_context *ssl) in mbedtls_ssl_get_sig_algs() argument
2434 if (ssl->handshake != NULL && in mbedtls_ssl_get_sig_algs()
2435 ssl->handshake->sig_algs_heap_allocated == 1 && in mbedtls_ssl_get_sig_algs()
2436 ssl->handshake->sig_algs != NULL) { in mbedtls_ssl_get_sig_algs()
2437 return ssl->handshake->sig_algs; in mbedtls_ssl_get_sig_algs()
2440 return ssl->conf->sig_algs; in mbedtls_ssl_get_sig_algs()
2444 ((void) ssl); in mbedtls_ssl_get_sig_algs()
2450 static inline int mbedtls_ssl_sig_alg_is_received(const mbedtls_ssl_context *ssl, in mbedtls_ssl_sig_alg_is_received() argument
2453 const uint16_t *sig_alg = ssl->handshake->received_sig_algs; in mbedtls_ssl_sig_alg_is_received()
2537 static inline int mbedtls_ssl_sig_alg_is_offered(const mbedtls_ssl_context *ssl, in mbedtls_ssl_sig_alg_is_offered() argument
2540 const uint16_t *sig_alg = mbedtls_ssl_get_sig_algs(ssl); in mbedtls_ssl_sig_alg_is_offered()
2653 const mbedtls_ssl_context *ssl, in mbedtls_ssl_sig_alg_is_supported() argument
2658 if (ssl->tls_version == MBEDTLS_SSL_VERSION_TLS1_2) { in mbedtls_ssl_sig_alg_is_supported()
2664 if (ssl->tls_version == MBEDTLS_SSL_VERSION_TLS1_3) { in mbedtls_ssl_sig_alg_is_supported()
2668 ((void) ssl); in mbedtls_ssl_sig_alg_is_supported()
2808 int mbedtls_ssl_tls13_read_public_xxdhe_share(mbedtls_ssl_context *ssl,
2815 mbedtls_ssl_context *ssl, int cipher_suite) in mbedtls_ssl_tls13_cipher_suite_is_offered() argument
2817 const int *ciphersuite_list = ssl->conf->ciphersuite_list; in mbedtls_ssl_tls13_cipher_suite_is_offered()
2840 const mbedtls_ssl_context *ssl,
2847 int mbedtls_ssl_parse_server_name_ext(mbedtls_ssl_context *ssl,
2857 int mbedtls_ssl_tls13_parse_record_size_limit_ext(mbedtls_ssl_context *ssl,
2862 int mbedtls_ssl_tls13_write_record_size_limit_ext(mbedtls_ssl_context *ssl,
2870 int mbedtls_ssl_parse_alpn_ext(mbedtls_ssl_context *ssl,
2876 int mbedtls_ssl_write_alpn_ext(mbedtls_ssl_context *ssl,
2884 mbedtls_ssl_context *ssl,
2906 mbedtls_ssl_context *ssl,
2921 mbedtls_ssl_context *ssl,
2934 const char *mbedtls_ssl_get_hostname_pointer(const mbedtls_ssl_context *ssl);
3042 int mbedtls_ssl_tls13_finalize_client_hello(mbedtls_ssl_context *ssl);