Lines Matching refs:backend
1394 conn->ssl[0].backend->logger = data
1400 struct ssl_backend_data *backend = connssl->backend; in ossl_closeone() local
1401 if(backend->handle) { in ossl_closeone()
1407 (void)SSL_read(backend->handle, buf, (int)sizeof(buf)); in ossl_closeone()
1409 (void)SSL_shutdown(backend->handle); in ossl_closeone()
1410 SSL_set_connect_state(backend->handle); in ossl_closeone()
1412 SSL_free(backend->handle); in ossl_closeone()
1413 backend->handle = NULL; in ossl_closeone()
1415 if(backend->ctx) { in ossl_closeone()
1416 SSL_CTX_free(backend->ctx); in ossl_closeone()
1417 backend->ctx = NULL; in ossl_closeone()
1449 struct ssl_backend_data *backend = connssl->backend; in ossl_shutdown() local
1459 (void)SSL_shutdown(backend->handle); in ossl_shutdown()
1462 if(backend->handle) { in ossl_shutdown()
1472 nread = (ssize_t)SSL_read(backend->handle, buf, buffsize); in ossl_shutdown()
1473 err = SSL_get_error(backend->handle, (int)nread); in ossl_shutdown()
1518 switch(SSL_get_shutdown(backend->handle)) { in ossl_shutdown()
1533 SSL_free(backend->handle); in ossl_shutdown()
1534 backend->handle = NULL; in ossl_shutdown()
1854 struct ssl_backend_data *backend = connssl->backend; in verifystatus() local
1861 long len = SSL_get_tlsext_status_ocsp_resp(backend->handle, &status); in verifystatus()
1891 ch = SSL_get_peer_cert_chain(backend->handle); in verifystatus()
1892 st = SSL_CTX_get_cert_store(backend->ctx); in verifystatus()
1929 cert = SSL_get_peer_certificate(backend->handle); in verifystatus()
2115 struct ssl_backend_data *backend = connssl->backend; in ossl_trace() local
2116 struct Curl_easy *data = backend->logger; in ossl_trace()
2400 SSL_CTX_set_max_proto_version(backend->ctx, TLS1_3_VERSION); in set_ssl_version_min_max_legacy()
2621 struct ssl_backend_data *backend = connssl->backend; in ossl_connect_step1() local
2661 if(backend->ctx) in ossl_connect_step1()
2662 SSL_CTX_free(backend->ctx); in ossl_connect_step1()
2663 backend->ctx = SSL_CTX_new(req_method); in ossl_connect_step1()
2665 if(!backend->ctx) { in ossl_connect_step1()
2672 SSL_CTX_set_mode(backend->ctx, SSL_MODE_RELEASE_BUFFERS); in ossl_connect_step1()
2678 SSL_CTX_set_msg_callback(backend->ctx, ossl_trace); in ossl_connect_step1()
2679 SSL_CTX_set_msg_callback_arg(backend->ctx, conn); in ossl_connect_step1()
2760 result = set_ssl_version_min_max(backend->ctx, conn); in ossl_connect_step1()
2774 SSL_CTX_set_options(backend->ctx, ctx_options); in ossl_connect_step1()
2778 SSL_CTX_set_next_proto_select_cb(backend->ctx, select_next_proto_cb, data); in ossl_connect_step1()
2808 if(SSL_CTX_set_alpn_protos(backend->ctx, protocols, cur)) { in ossl_connect_step1()
2817 !cert_stuff(data, backend->ctx, in ossl_connect_step1()
2831 if(!SSL_CTX_set_cipher_list(backend->ctx, ciphers)) { in ossl_connect_step1()
2842 if(!SSL_CTX_set_ciphersuites(backend->ctx, ciphers13)) { in ossl_connect_step1()
2853 SSL_CTX_set_post_handshake_auth(backend->ctx, 1); in ossl_connect_step1()
2860 if(!SSL_CTX_set1_curves_list(backend->ctx, curves)) { in ossl_connect_step1()
2875 if(!SSL_CTX_set_srp_username(backend->ctx, ssl_username)) { in ossl_connect_step1()
2879 if(!SSL_CTX_set_srp_password(backend->ctx, ssl_password)) { in ossl_connect_step1()
2886 if(!SSL_CTX_set_cipher_list(backend->ctx, "SRP")) { in ossl_connect_step1()
2902 X509_STORE *store = SSL_CTX_get_cert_store(backend->ctx); in ossl_connect_step1()
3041 result = load_cacert_from_memory(backend->ctx, ca_info_blob); in ossl_connect_step1()
3057 if(!SSL_CTX_load_verify_file(backend->ctx, ssl_cafile)) { in ossl_connect_step1()
3069 if(!SSL_CTX_load_verify_dir(backend->ctx, ssl_capath)) { in ossl_connect_step1()
3085 if(!SSL_CTX_load_verify_locations(backend->ctx, ssl_cafile, ssl_capath)) { in ossl_connect_step1()
3113 SSL_CTX_set_default_verify_paths(backend->ctx); in ossl_connect_step1()
3120 lookup = X509_STORE_add_lookup(SSL_CTX_get_cert_store(backend->ctx), in ossl_connect_step1()
3129 X509_STORE_set_flags(SSL_CTX_get_cert_store(backend->ctx), in ossl_connect_step1()
3143 X509_STORE_set_flags(SSL_CTX_get_cert_store(backend->ctx), in ossl_connect_step1()
3156 X509_STORE_set_flags(SSL_CTX_get_cert_store(backend->ctx), in ossl_connect_step1()
3166 SSL_CTX_set_verify(backend->ctx, in ossl_connect_step1()
3172 SSL_CTX_set_keylog_callback(backend->ctx, ossl_keylog_callback); in ossl_connect_step1()
3180 SSL_CTX_set_session_cache_mode(backend->ctx, in ossl_connect_step1()
3182 SSL_CTX_sess_set_new_cb(backend->ctx, ossl_new_session_cb); in ossl_connect_step1()
3187 result = (*data->set.ssl.fsslctx)(data, backend->ctx, in ossl_connect_step1()
3197 if(backend->handle) in ossl_connect_step1()
3198 SSL_free(backend->handle); in ossl_connect_step1()
3199 backend->handle = SSL_new(backend->ctx); in ossl_connect_step1()
3200 if(!backend->handle) { in ossl_connect_step1()
3208 SSL_set_tlsext_status_type(backend->handle, TLSEXT_STATUSTYPE_ocsp); in ossl_connect_step1()
3212 SSL_set_renegotiate_mode(backend->handle, ssl_renegotiate_freely); in ossl_connect_step1()
3215 SSL_set_connect_state(backend->handle); in ossl_connect_step1()
3217 backend->server_cert = 0x0; in ossl_connect_step1()
3234 if(!SSL_set_tlsext_host_name(backend->handle, data->state.buffer)) in ossl_connect_step1()
3246 if(!SSL_set_session(backend->handle, ssl_sessionid)) { in ossl_connect_step1()
3261 SSL *handle = conn->proxy_ssl[sockindex].backend->handle; in ossl_connect_step1()
3266 SSL_set_bio(backend->handle, bio, bio); in ossl_connect_step1()
3270 if(!SSL_set_fd(backend->handle, (int)sockfd)) { in ossl_connect_step1()
3287 struct ssl_backend_data *backend = connssl->backend; in ossl_connect_step2() local
3294 err = SSL_connect(backend->handle); in ossl_connect_step2()
3300 ossl_log_tls12_secret(backend->handle, &backend->keylog_done); in ossl_connect_step2()
3308 int detail = SSL_get_error(backend->handle, err); in ossl_connect_step2()
3349 lerr = SSL_get_verify_result(backend->handle); in ossl_connect_step2()
3410 SSL_get_version(backend->handle), in ossl_connect_step2()
3411 SSL_get_cipher(backend->handle)); in ossl_connect_step2()
3420 SSL_get0_alpn_selected(backend->handle, &neg_protocol, &len); in ossl_connect_step2()
3559 struct ssl_backend_data *backend = connssl->backend; in get_cert_chain() local
3561 sk = SSL_get_peer_cert_chain(backend->handle); in get_cert_chain()
3845 struct ssl_backend_data *backend = connssl->backend; in servercert() local
3851 backend->server_cert = SSL_get_peer_certificate(backend->handle); in servercert()
3852 if(!backend->server_cert) { in servercert()
3863 rc = x509_name_oneline(X509_get_subject_name(backend->server_cert), in servercert()
3870 ASN1_TIME_print(mem, X509_get0_notBefore(backend->server_cert)); in servercert()
3875 ASN1_TIME_print(mem, X509_get0_notAfter(backend->server_cert)); in servercert()
3885 result = verifyhost(data, conn, backend->server_cert); in servercert()
3887 X509_free(backend->server_cert); in servercert()
3888 backend->server_cert = NULL; in servercert()
3893 rc = x509_name_oneline(X509_get_issuer_name(backend->server_cert), in servercert()
3919 X509_free(backend->server_cert); in servercert()
3920 backend->server_cert = NULL; in servercert()
3929 X509_free(backend->server_cert); in servercert()
3930 backend->server_cert = NULL; in servercert()
3942 X509_free(backend->server_cert); in servercert()
3943 backend->server_cert = NULL; in servercert()
3947 if(X509_check_issued(issuer, backend->server_cert) != X509_V_OK) { in servercert()
3953 X509_free(backend->server_cert); in servercert()
3954 backend->server_cert = NULL; in servercert()
3964 lerr = SSL_get_verify_result(backend->handle); in servercert()
3989 X509_free(backend->server_cert); in servercert()
3990 backend->server_cert = NULL; in servercert()
4002 result = pkp_pin_peer_pubkey(data, backend->server_cert, ptr); in servercert()
4007 X509_free(backend->server_cert); in servercert()
4008 backend->server_cert = NULL; in servercert()
4177 if(connssl->backend->handle && SSL_pending(connssl->backend->handle)) in ossl_data_pending()
4182 if(proxyssl->backend->handle && SSL_pending(proxyssl->backend->handle)) in ossl_data_pending()
4206 struct ssl_backend_data *backend = connssl->backend; in ossl_send() local
4212 rc = SSL_write(backend->handle, mem, memlen); in ossl_send()
4215 err = SSL_get_error(backend->handle, rc); in ossl_send()
4285 struct ssl_backend_data *backend = connssl->backend; in ossl_recv() local
4291 nread = (ssize_t)SSL_read(backend->handle, buf, buffsize); in ossl_recv()
4294 int err = SSL_get_error(backend->handle, (int)nread); in ossl_recv()
4485 struct ssl_backend_data *backend = connssl->backend; in ossl_get_internals() local
4487 (void *)backend->ctx : (void *)backend->handle; in ossl_get_internals()
4495 struct ssl_backend_data *backend = connssl->backend; in ossl_associate_connection() local
4498 if(!backend->handle) in ossl_associate_connection()
4511 SSL_set_ex_data(backend->handle, data_idx, data); in ossl_associate_connection()
4512 SSL_set_ex_data(backend->handle, connectdata_idx, conn); in ossl_associate_connection()
4513 SSL_set_ex_data(backend->handle, sockindex_idx, conn->sock + sockindex); in ossl_associate_connection()
4515 SSL_set_ex_data(backend->handle, proxy_idx, SSL_IS_PROXY() ? (void *) 1: in ossl_associate_connection()
4518 SSL_set_ex_data(backend->handle, proxy_idx, NULL); in ossl_associate_connection()
4537 struct ssl_backend_data *backend = connssl->backend; in ossl_disassociate_connection() local
4540 if(!backend->handle) in ossl_disassociate_connection()
4553 SSL_set_ex_data(backend->handle, data_idx, NULL); in ossl_disassociate_connection()
4554 SSL_set_ex_data(backend->handle, connectdata_idx, NULL); in ossl_disassociate_connection()
4555 SSL_set_ex_data(backend->handle, sockindex_idx, NULL); in ossl_disassociate_connection()
4556 SSL_set_ex_data(backend->handle, proxy_idx, NULL); in ossl_disassociate_connection()