Lines Matching refs:ssl
441 size_t mbedtls_ssl_get_output_max_frag_len(const mbedtls_ssl_context *ssl);
457 size_t mbedtls_ssl_get_input_max_frag_len(const mbedtls_ssl_context *ssl);
470 size_t mbedtls_ssl_get_output_record_size_limit(const mbedtls_ssl_context *ssl);
1253 int mbedtls_ssl_tls12_write_client_hello_exts(mbedtls_ssl_context *ssl,
1274 mbedtls_ssl_context *ssl,
1294 void mbedtls_ssl_handshake_free(mbedtls_ssl_context *ssl);
1297 void mbedtls_ssl_set_inbound_transform(mbedtls_ssl_context *ssl,
1301 void mbedtls_ssl_set_outbound_transform(mbedtls_ssl_context *ssl,
1305 int mbedtls_ssl_handshake_client_step(mbedtls_ssl_context *ssl);
1307 int mbedtls_ssl_handshake_server_step(mbedtls_ssl_context *ssl);
1308 void mbedtls_ssl_handshake_wrapup(mbedtls_ssl_context *ssl);
1319 static inline void mbedtls_ssl_handshake_set_state(mbedtls_ssl_context *ssl, in mbedtls_ssl_handshake_set_state() argument
1323 ssl->state, mbedtls_ssl_states_str(ssl->state), in mbedtls_ssl_handshake_set_state()
1325 ssl->state = (int) state; in mbedtls_ssl_handshake_set_state()
1328 static inline void mbedtls_ssl_handshake_increment_state(mbedtls_ssl_context *ssl) in mbedtls_ssl_handshake_increment_state() argument
1330 mbedtls_ssl_handshake_set_state(ssl, ssl->state + 1); in mbedtls_ssl_handshake_increment_state()
1334 int mbedtls_ssl_send_fatal_handshake_failure(mbedtls_ssl_context *ssl);
1337 int mbedtls_ssl_reset_checksum(mbedtls_ssl_context *ssl);
1341 int mbedtls_ssl_derive_keys(mbedtls_ssl_context *ssl);
1345 int mbedtls_ssl_handle_message_type(mbedtls_ssl_context *ssl);
1347 int mbedtls_ssl_prepare_handshake_record(mbedtls_ssl_context *ssl);
1349 int mbedtls_ssl_update_handshake_status(mbedtls_ssl_context *ssl);
1428 int mbedtls_ssl_read_record(mbedtls_ssl_context *ssl,
1431 int mbedtls_ssl_fetch_input(mbedtls_ssl_context *ssl, size_t nb_want);
1437 int mbedtls_ssl_start_handshake_msg(mbedtls_ssl_context *ssl, unsigned char hs_type,
1441 int mbedtls_ssl_write_handshake_msg_ext(mbedtls_ssl_context *ssl,
1444 static inline int mbedtls_ssl_write_handshake_msg(mbedtls_ssl_context *ssl) in mbedtls_ssl_write_handshake_msg() argument
1446 return mbedtls_ssl_write_handshake_msg_ext(ssl, 1 /* update checksum */, 1 /* force flush */); in mbedtls_ssl_write_handshake_msg()
1453 int mbedtls_ssl_finish_handshake_msg(mbedtls_ssl_context *ssl,
1457 int mbedtls_ssl_write_record(mbedtls_ssl_context *ssl, int force_flush);
1459 int mbedtls_ssl_flush_output(mbedtls_ssl_context *ssl);
1462 int mbedtls_ssl_parse_certificate(mbedtls_ssl_context *ssl);
1464 int mbedtls_ssl_write_certificate(mbedtls_ssl_context *ssl);
1467 int mbedtls_ssl_parse_change_cipher_spec(mbedtls_ssl_context *ssl);
1469 int mbedtls_ssl_write_change_cipher_spec(mbedtls_ssl_context *ssl);
1472 int mbedtls_ssl_parse_finished(mbedtls_ssl_context *ssl);
1474 int mbedtls_ssl_write_finished(mbedtls_ssl_context *ssl);
1476 void mbedtls_ssl_optimize_checksum(mbedtls_ssl_context *ssl,
1483 int mbedtls_ssl_add_hs_msg_to_checksum(mbedtls_ssl_context *ssl,
1489 int mbedtls_ssl_add_hs_hdr_to_checksum(mbedtls_ssl_context *ssl,
1506 const mbedtls_ssl_context *ssl) in mbedtls_ssl_get_opaque_psk() argument
1508 if (!mbedtls_svc_key_id_is_null(ssl->handshake->psk_opaque)) { in mbedtls_ssl_get_opaque_psk()
1509 return ssl->handshake->psk_opaque; in mbedtls_ssl_get_opaque_psk()
1512 if (!mbedtls_svc_key_id_is_null(ssl->conf->psk_opaque)) { in mbedtls_ssl_get_opaque_psk()
1513 return ssl->conf->psk_opaque; in mbedtls_ssl_get_opaque_psk()
1532 int mbedtls_ssl_set_calc_verify_md(mbedtls_ssl_context *ssl, int md);
1536 int mbedtls_ssl_check_curve_tls_id(const mbedtls_ssl_context *ssl, uint16_t tls_id);
1539 int mbedtls_ssl_check_curve(const mbedtls_ssl_context *ssl, mbedtls_ecp_group_id grp_id);
1608 static inline mbedtls_pk_context *mbedtls_ssl_own_key(mbedtls_ssl_context *ssl) in mbedtls_ssl_own_key() argument
1612 if (ssl->handshake != NULL && ssl->handshake->key_cert != NULL) { in mbedtls_ssl_own_key()
1613 key_cert = ssl->handshake->key_cert; in mbedtls_ssl_own_key()
1615 key_cert = ssl->conf->key_cert; in mbedtls_ssl_own_key()
1621 static inline mbedtls_x509_crt *mbedtls_ssl_own_cert(mbedtls_ssl_context *ssl) in mbedtls_ssl_own_cert() argument
1625 if (ssl->handshake != NULL && ssl->handshake->key_cert != NULL) { in mbedtls_ssl_own_cert()
1626 key_cert = ssl->handshake->key_cert; in mbedtls_ssl_own_cert()
1628 key_cert = ssl->conf->key_cert; in mbedtls_ssl_own_cert()
1660 int mbedtls_ssl_verify_certificate(mbedtls_ssl_context *ssl,
1690 static inline size_t mbedtls_ssl_in_hdr_len(const mbedtls_ssl_context *ssl) in mbedtls_ssl_in_hdr_len() argument
1693 ((void) ssl); in mbedtls_ssl_in_hdr_len()
1697 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) { in mbedtls_ssl_in_hdr_len()
1706 static inline size_t mbedtls_ssl_out_hdr_len(const mbedtls_ssl_context *ssl) in mbedtls_ssl_out_hdr_len() argument
1708 return (size_t) (ssl->out_iv - ssl->out_hdr); in mbedtls_ssl_out_hdr_len()
1711 static inline size_t mbedtls_ssl_hs_hdr_len(const mbedtls_ssl_context *ssl) in mbedtls_ssl_hs_hdr_len() argument
1714 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) { in mbedtls_ssl_hs_hdr_len()
1718 ((void) ssl); in mbedtls_ssl_hs_hdr_len()
1724 void mbedtls_ssl_send_flight_completed(mbedtls_ssl_context *ssl);
1725 void mbedtls_ssl_recv_flight_completed(mbedtls_ssl_context *ssl);
1727 int mbedtls_ssl_resend(mbedtls_ssl_context *ssl);
1729 int mbedtls_ssl_flight_transmit(mbedtls_ssl_context *ssl);
1735 int mbedtls_ssl_dtls_replay_check(mbedtls_ssl_context const *ssl);
1736 void mbedtls_ssl_dtls_replay_update(mbedtls_ssl_context *ssl);
1746 int mbedtls_ssl_get_key_exchange_md_tls1_2(mbedtls_ssl_context *ssl,
1758 int mbedtls_ssl_encrypt_buf(mbedtls_ssl_context *ssl,
1762 int mbedtls_ssl_decrypt_buf(mbedtls_ssl_context const *ssl,
1767 static inline size_t mbedtls_ssl_ep_len(const mbedtls_ssl_context *ssl) in mbedtls_ssl_ep_len() argument
1770 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) { in mbedtls_ssl_ep_len()
1774 ((void) ssl); in mbedtls_ssl_ep_len()
1781 int mbedtls_ssl_resend_hello_request(mbedtls_ssl_context *ssl);
1784 void mbedtls_ssl_set_timer(mbedtls_ssl_context *ssl, uint32_t millisecs);
1786 int mbedtls_ssl_check_timer(mbedtls_ssl_context *ssl);
1788 void mbedtls_ssl_reset_in_pointers(mbedtls_ssl_context *ssl);
1789 void mbedtls_ssl_update_in_pointers(mbedtls_ssl_context *ssl);
1790 void mbedtls_ssl_reset_out_pointers(mbedtls_ssl_context *ssl);
1791 void mbedtls_ssl_update_out_pointers(mbedtls_ssl_context *ssl,
1795 int mbedtls_ssl_session_reset_int(mbedtls_ssl_context *ssl, int partial);
1796 void mbedtls_ssl_session_reset_msg_layer(mbedtls_ssl_context *ssl,
1803 int mbedtls_ssl_handle_pending_alert(mbedtls_ssl_context *ssl);
1808 void mbedtls_ssl_pend_fatal_alert(mbedtls_ssl_context *ssl,
1814 mbedtls_ssl_pend_fatal_alert(ssl, type, user_return_value)
1817 void mbedtls_ssl_dtls_replay_reset(mbedtls_ssl_context *ssl);
1820 void mbedtls_ssl_handshake_wrapup_free_hs_transform(mbedtls_ssl_context *ssl);
1824 int mbedtls_ssl_start_renegotiation(mbedtls_ssl_context *ssl);
1828 size_t mbedtls_ssl_get_current_mtu(const mbedtls_ssl_context *ssl);
1829 void mbedtls_ssl_buffering_free(mbedtls_ssl_context *ssl);
1889 int mbedtls_ssl_tls13_process_finished_message(mbedtls_ssl_context *ssl);
1891 int mbedtls_ssl_tls13_write_finished_message(mbedtls_ssl_context *ssl);
1892 void mbedtls_ssl_tls13_handshake_wrapup(mbedtls_ssl_context *ssl);
1904 int mbedtls_ssl_tls13_write_client_hello_exts(mbedtls_ssl_context *ssl,
1915 int mbedtls_ssl_tls13_handshake_client_step(mbedtls_ssl_context *ssl);
1923 int mbedtls_ssl_tls13_handshake_server_step(mbedtls_ssl_context *ssl);
1929 static inline int mbedtls_ssl_conf_tls13_is_kex_mode_enabled(mbedtls_ssl_context *ssl, in mbedtls_ssl_conf_tls13_is_kex_mode_enabled() argument
1932 return (ssl->conf->tls13_kex_modes & kex_mode_mask) != 0; in mbedtls_ssl_conf_tls13_is_kex_mode_enabled()
1935 static inline int mbedtls_ssl_conf_tls13_is_psk_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_psk_enabled() argument
1937 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_psk_enabled()
1941 static inline int mbedtls_ssl_conf_tls13_is_psk_ephemeral_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_psk_ephemeral_enabled() argument
1943 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_psk_ephemeral_enabled()
1947 static inline int mbedtls_ssl_conf_tls13_is_ephemeral_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_ephemeral_enabled() argument
1949 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_ephemeral_enabled()
1953 static inline int mbedtls_ssl_conf_tls13_is_some_ephemeral_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_some_ephemeral_enabled() argument
1955 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_some_ephemeral_enabled()
1959 static inline int mbedtls_ssl_conf_tls13_is_some_psk_enabled(mbedtls_ssl_context *ssl) in mbedtls_ssl_conf_tls13_is_some_psk_enabled() argument
1961 return mbedtls_ssl_conf_tls13_is_kex_mode_enabled(ssl, in mbedtls_ssl_conf_tls13_is_some_psk_enabled()
1977 static inline int mbedtls_ssl_tls13_is_kex_mode_supported(mbedtls_ssl_context *ssl, in mbedtls_ssl_tls13_is_kex_mode_supported() argument
1980 return (ssl->handshake->tls13_kex_modes & kex_modes_mask) != 0; in mbedtls_ssl_tls13_is_kex_mode_supported()
1983 static inline int mbedtls_ssl_tls13_is_psk_supported(mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_psk_supported() argument
1985 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_psk_supported()
1990 mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_psk_ephemeral_supported() argument
1992 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_psk_ephemeral_supported()
1996 static inline int mbedtls_ssl_tls13_is_ephemeral_supported(mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_ephemeral_supported() argument
1998 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_ephemeral_supported()
2002 static inline int mbedtls_ssl_tls13_is_some_ephemeral_supported(mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_some_ephemeral_supported() argument
2004 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_some_ephemeral_supported()
2008 static inline int mbedtls_ssl_tls13_is_some_psk_supported(mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_is_some_psk_supported() argument
2010 return mbedtls_ssl_tls13_is_kex_mode_supported(ssl, in mbedtls_ssl_tls13_is_some_psk_supported()
2022 mbedtls_ssl_context *ssl,
2028 mbedtls_ssl_context *ssl, unsigned int extension_type) in mbedtls_ssl_tls13_set_hs_sent_ext_mask() argument
2030 ssl->handshake->sent_extensions |= in mbedtls_ssl_tls13_set_hs_sent_ext_mask()
2038 mbedtls_ssl_context *ssl, int kex_mask) in mbedtls_ssl_tls13_key_exchange_mode_check() argument
2040 return (ssl->handshake->key_exchange_mode & kex_mask) != 0; in mbedtls_ssl_tls13_key_exchange_mode_check()
2044 mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_key_exchange_mode_with_psk() argument
2046 return mbedtls_ssl_tls13_key_exchange_mode_check(ssl, in mbedtls_ssl_tls13_key_exchange_mode_with_psk()
2051 mbedtls_ssl_context *ssl) in mbedtls_ssl_tls13_key_exchange_mode_with_ephemeral() argument
2053 return mbedtls_ssl_tls13_key_exchange_mode_check(ssl, in mbedtls_ssl_tls13_key_exchange_mode_with_ephemeral()
2061 int mbedtls_ssl_tls13_fetch_handshake_msg(mbedtls_ssl_context *ssl,
2088 mbedtls_ssl_context *ssl,
2097 int mbedtls_ssl_tls13_process_certificate(mbedtls_ssl_context *ssl);
2104 int mbedtls_ssl_tls13_write_certificate(mbedtls_ssl_context *ssl);
2110 int mbedtls_ssl_tls13_write_certificate_verify(mbedtls_ssl_context *ssl);
2118 int mbedtls_ssl_tls13_process_certificate_verify(mbedtls_ssl_context *ssl);
2124 int mbedtls_ssl_tls13_write_change_cipher_spec(mbedtls_ssl_context *ssl);
2127 int mbedtls_ssl_reset_transcript_for_hrr(mbedtls_ssl_context *ssl);
2132 mbedtls_ssl_context *ssl,
2140 int mbedtls_ssl_tls13_write_early_data_ext(mbedtls_ssl_context *ssl,
2146 int mbedtls_ssl_tls13_check_early_data_len(mbedtls_ssl_context *ssl,
2208 int mbedtls_ssl_write_sig_alg_ext(mbedtls_ssl_context *ssl, unsigned char *buf,
2214 int mbedtls_ssl_parse_sig_alg_ext(mbedtls_ssl_context *ssl,
2221 int mbedtls_ssl_get_handshake_transcript(mbedtls_ssl_context *ssl,
2263 const mbedtls_ssl_context *ssl, uint16_t named_group) in mbedtls_ssl_named_group_is_offered() argument
2265 const uint16_t *group_list = ssl->conf->group_list; in mbedtls_ssl_named_group_is_offered()
2305 const mbedtls_ssl_context *ssl) in mbedtls_ssl_get_sig_algs() argument
2310 if (ssl->handshake != NULL && in mbedtls_ssl_get_sig_algs()
2311 ssl->handshake->sig_algs != NULL) { in mbedtls_ssl_get_sig_algs()
2312 return ssl->handshake->sig_algs; in mbedtls_ssl_get_sig_algs()
2315 return ssl->conf->sig_algs; in mbedtls_ssl_get_sig_algs()
2319 ((void) ssl); in mbedtls_ssl_get_sig_algs()
2325 static inline int mbedtls_ssl_sig_alg_is_received(const mbedtls_ssl_context *ssl, in mbedtls_ssl_sig_alg_is_received() argument
2328 const uint16_t *sig_alg = ssl->handshake->received_sig_algs; in mbedtls_ssl_sig_alg_is_received()
2412 static inline int mbedtls_ssl_sig_alg_is_offered(const mbedtls_ssl_context *ssl, in mbedtls_ssl_sig_alg_is_offered() argument
2415 const uint16_t *sig_alg = mbedtls_ssl_get_sig_algs(ssl); in mbedtls_ssl_sig_alg_is_offered()
2528 const mbedtls_ssl_context *ssl, in mbedtls_ssl_sig_alg_is_supported() argument
2533 if (ssl->tls_version == MBEDTLS_SSL_VERSION_TLS1_2) { in mbedtls_ssl_sig_alg_is_supported()
2539 if (ssl->tls_version == MBEDTLS_SSL_VERSION_TLS1_3) { in mbedtls_ssl_sig_alg_is_supported()
2543 ((void) ssl); in mbedtls_ssl_sig_alg_is_supported()
2680 int mbedtls_ssl_tls13_read_public_xxdhe_share(mbedtls_ssl_context *ssl,
2687 mbedtls_ssl_context *ssl, int cipher_suite) in mbedtls_ssl_tls13_cipher_suite_is_offered() argument
2689 const int *ciphersuite_list = ssl->conf->ciphersuite_list; in mbedtls_ssl_tls13_cipher_suite_is_offered()
2712 const mbedtls_ssl_context *ssl,
2719 int mbedtls_ssl_parse_server_name_ext(mbedtls_ssl_context *ssl,
2729 int mbedtls_ssl_tls13_parse_record_size_limit_ext(mbedtls_ssl_context *ssl,
2734 int mbedtls_ssl_tls13_write_record_size_limit_ext(mbedtls_ssl_context *ssl,
2742 int mbedtls_ssl_parse_alpn_ext(mbedtls_ssl_context *ssl,
2748 int mbedtls_ssl_write_alpn_ext(mbedtls_ssl_context *ssl,
2756 mbedtls_ssl_context *ssl,
2778 mbedtls_ssl_context *ssl,
2793 mbedtls_ssl_context *ssl,
2871 int mbedtls_ssl_tls13_finalize_client_hello(mbedtls_ssl_context *ssl);