Lines Matching refs:g_context
245 coap_gnutls_context_t *g_context = in coap_dtls_context_set_pki() local
248 if (!g_context || !setup_data) in coap_dtls_context_set_pki()
251 g_context->setup_data = *setup_data; in coap_dtls_context_set_pki()
252 if (!g_context->setup_data.verify_peer_cert) { in coap_dtls_context_set_pki()
254 g_context->setup_data.check_common_ca = 0; in coap_dtls_context_set_pki()
255 if (g_context->setup_data.is_rpk_not_cert) { in coap_dtls_context_set_pki()
257 g_context->setup_data.allow_self_signed = 0; in coap_dtls_context_set_pki()
258 g_context->setup_data.allow_expired_certs = 0; in coap_dtls_context_set_pki()
259 g_context->setup_data.cert_chain_validation = 0; in coap_dtls_context_set_pki()
260 g_context->setup_data.cert_chain_verify_depth = 0; in coap_dtls_context_set_pki()
261 g_context->setup_data.check_cert_revocation = 0; in coap_dtls_context_set_pki()
262 g_context->setup_data.allow_no_crl = 0; in coap_dtls_context_set_pki()
263 g_context->setup_data.allow_expired_crl = 0; in coap_dtls_context_set_pki()
264 g_context->setup_data.allow_bad_md_hash = 0; in coap_dtls_context_set_pki()
265 g_context->setup_data.allow_short_rsa_length = 0; in coap_dtls_context_set_pki()
269 g_context->setup_data.allow_self_signed = 1; in coap_dtls_context_set_pki()
270 g_context->setup_data.allow_expired_certs = 1; in coap_dtls_context_set_pki()
271 g_context->setup_data.cert_chain_validation = 1; in coap_dtls_context_set_pki()
272 g_context->setup_data.cert_chain_verify_depth = 10; in coap_dtls_context_set_pki()
273 g_context->setup_data.check_cert_revocation = 1; in coap_dtls_context_set_pki()
274 g_context->setup_data.allow_no_crl = 1; in coap_dtls_context_set_pki()
275 g_context->setup_data.allow_expired_crl = 1; in coap_dtls_context_set_pki()
276 g_context->setup_data.allow_bad_md_hash = 1; in coap_dtls_context_set_pki()
277 g_context->setup_data.allow_short_rsa_length = 1; in coap_dtls_context_set_pki()
280 g_context->psk_pki_enabled |= IS_PKI; in coap_dtls_context_set_pki()
293 coap_gnutls_context_t *g_context = in coap_dtls_context_set_pki_root_cas() local
295 if (!g_context) { in coap_dtls_context_set_pki_root_cas()
308 if (g_context->root_ca_file) { in coap_dtls_context_set_pki_root_cas()
309 gnutls_free(g_context->root_ca_file); in coap_dtls_context_set_pki_root_cas()
310 g_context->root_ca_file = NULL; in coap_dtls_context_set_pki_root_cas()
313 g_context->root_ca_file = gnutls_strdup(ca_file); in coap_dtls_context_set_pki_root_cas()
315 if (g_context->root_ca_path) { in coap_dtls_context_set_pki_root_cas()
316 gnutls_free(g_context->root_ca_path); in coap_dtls_context_set_pki_root_cas()
317 g_context->root_ca_path = NULL; in coap_dtls_context_set_pki_root_cas()
321 g_context->root_ca_path = gnutls_strdup(ca_path); in coap_dtls_context_set_pki_root_cas()
337 coap_gnutls_context_t *g_context = in coap_dtls_context_set_spsk() local
340 if (!g_context || !setup_data) in coap_dtls_context_set_spsk()
343 g_context->psk_pki_enabled |= IS_PSK; in coap_dtls_context_set_spsk()
355 coap_gnutls_context_t *g_context = in coap_dtls_context_set_cpsk() local
358 if (!g_context || !setup_data) in coap_dtls_context_set_cpsk()
361 g_context->psk_pki_enabled |= IS_PSK; in coap_dtls_context_set_cpsk()
372 coap_gnutls_context_t *g_context = in coap_dtls_context_check_keys_enabled() local
374 return g_context->psk_pki_enabled ? 1 : 0; in coap_dtls_context_check_keys_enabled()
426 coap_gnutls_context_t *g_context = in coap_dtls_new_context() local
430 if (g_context) { in coap_dtls_new_context()
435 memset(g_context, 0, sizeof(coap_gnutls_context_t)); in coap_dtls_new_context()
436 g_context->alpn_proto.data = gnutls_malloc(4); in coap_dtls_new_context()
437 if (g_context->alpn_proto.data) { in coap_dtls_new_context()
438 memcpy(g_context->alpn_proto.data, "coap", 4); in coap_dtls_new_context()
439 g_context->alpn_proto.size = 4; in coap_dtls_new_context()
451 ret = gnutls_priority_init(&g_context->priority_cache, priority, &err); in coap_dtls_new_context()
462 return g_context; in coap_dtls_new_context()
465 if (g_context) in coap_dtls_new_context()
466 coap_dtls_free_context(g_context); in coap_dtls_new_context()
473 coap_gnutls_context_t *g_context = (coap_gnutls_context_t *)handle; in coap_dtls_free_context() local
475 gnutls_free(g_context->alpn_proto.data); in coap_dtls_free_context()
476 gnutls_free(g_context->root_ca_file); in coap_dtls_free_context()
477 gnutls_free(g_context->root_ca_path); in coap_dtls_free_context()
478 for (i = 0; i < g_context->pki_sni_count; i++) { in coap_dtls_free_context()
479 gnutls_free(g_context->pki_sni_entry_list[i].sni); in coap_dtls_free_context()
481 g_context->pki_sni_entry_list[i].pki_credentials); in coap_dtls_free_context()
483 if (g_context->pki_sni_entry_list) in coap_dtls_free_context()
484 gnutls_free(g_context->pki_sni_entry_list); in coap_dtls_free_context()
486 for (i = 0; i < g_context->psk_sni_count; i++) { in coap_dtls_free_context()
487 gnutls_free(g_context->psk_sni_entry_list[i].sni); in coap_dtls_free_context()
490 g_context->psk_sni_entry_list[i].psk_credentials); in coap_dtls_free_context()
492 if (g_context->psk_sni_entry_list) in coap_dtls_free_context()
493 gnutls_free(g_context->psk_sni_entry_list); in coap_dtls_free_context()
495 gnutls_priority_deinit(g_context->priority_cache); in coap_dtls_free_context()
498 gnutls_free(g_context); in coap_dtls_free_context()
513 coap_gnutls_context_t *g_context; in psk_client_callback() local
535 g_context = (coap_gnutls_context_t *)c_session->context->dtls_context; in psk_client_callback()
536 if (g_context == NULL) in psk_client_callback()
709 check_rpk_cert(coap_gnutls_context_t *g_context, in check_rpk_cert() argument
714 if (g_context->setup_data.validate_cn_call_back) { in check_rpk_cert()
727 if (!g_context->setup_data.validate_cn_call_back(COAP_DTLS_RPK_CERT_CN, in check_rpk_cert()
733 g_context->setup_data.cn_call_back_arg)) { in check_rpk_cert()
753 coap_gnutls_context_t *g_context = in cert_verify_gnutls() local
765 if (!check_rpk_cert(g_context, &cert_info, c_session)) { in cert_verify_gnutls()
773 if (cert_info.cert_list_size == 0 && !g_context->setup_data.verify_peer_cert) in cert_verify_gnutls()
783 if (g_context->setup_data.allow_expired_certs) { in cert_verify_gnutls()
803 if (g_context->setup_data.allow_expired_crl) { in cert_verify_gnutls()
822 if (g_context->setup_data.allow_self_signed && in cert_verify_gnutls()
823 !g_context->setup_data.check_common_ca) { in cert_verify_gnutls()
841 if (!g_context->setup_data.verify_peer_cert) { in cert_verify_gnutls()
872 if (g_context->setup_data.validate_cn_call_back) { in cert_verify_gnutls()
890 if (!g_context->setup_data.validate_cn_call_back(OUTPUT_CERT_NAME, in cert_verify_gnutls()
896 g_context->setup_data.cn_call_back_arg)) { in cert_verify_gnutls()
902 if (g_context->setup_data.additional_tls_setup_call_back) { in cert_verify_gnutls()
904 if (!g_context->setup_data.additional_tls_setup_call_back(g_session, in cert_verify_gnutls()
905 &g_context->setup_data)) { in cert_verify_gnutls()
1029 coap_gnutls_context_t *g_context, in setup_pki_credentials() argument
1381 if (g_context->root_ca_file) { in setup_pki_credentials()
1383 g_context->root_ca_file, in setup_pki_credentials()
1390 if (g_context->root_ca_path) { in setup_pki_credentials()
1393 g_context->root_ca_path, in setup_pki_credentials()
1400 if (!(g_context->psk_pki_enabled & IS_PKI)) { in setup_pki_credentials()
1438 coap_gnutls_context_t *g_context COAP_UNUSED, in setup_psk_credentials()
1471 coap_gnutls_context_t *g_context = in post_client_hello_gnutls_psk() local
1519 for (i = 0; i < g_context->psk_sni_count; i++) { in post_client_hello_gnutls_psk()
1520 if (strcasecmp(name, g_context->psk_sni_entry_list[i].sni) == 0) { in post_client_hello_gnutls_psk()
1524 if (i == g_context->psk_sni_count) { in post_client_hello_gnutls_psk()
1540 g_context->psk_sni_entry_list = in post_client_hello_gnutls_psk()
1541 gnutls_realloc(g_context->psk_sni_entry_list, in post_client_hello_gnutls_psk()
1543 g_context->psk_sni_entry_list[i].sni = gnutls_strdup(name); in post_client_hello_gnutls_psk()
1544 g_context->psk_sni_entry_list[i].psk_info = *new_entry; in post_client_hello_gnutls_psk()
1548 &g_context->psk_sni_entry_list[i].psk_credentials, in post_client_hello_gnutls_psk()
1549 g_context, in post_client_hello_gnutls_psk()
1558 g_context->psk_sni_count++; in post_client_hello_gnutls_psk()
1561 g_context->psk_sni_entry_list[i].psk_credentials), in post_client_hello_gnutls_psk()
1564 &g_context->psk_sni_entry_list[i].psk_info.hint); in post_client_hello_gnutls_psk()
1566 &g_context->psk_sni_entry_list[i].psk_info.key); in post_client_hello_gnutls_psk()
1586 coap_gnutls_context_t *g_context = in post_client_hello_gnutls_pki() local
1592 if (g_context->setup_data.validate_sni_call_back) { in post_client_hello_gnutls_pki()
1634 for (i = 0; i < g_context->pki_sni_count; i++) { in post_client_hello_gnutls_pki()
1635 if (strcasecmp(name, g_context->pki_sni_entry_list[i].sni) == 0) { in post_client_hello_gnutls_pki()
1639 if (i == g_context->pki_sni_count) { in post_client_hello_gnutls_pki()
1644 g_context->setup_data.validate_sni_call_back(name, in post_client_hello_gnutls_pki()
1645 g_context->setup_data.sni_call_back_arg); in post_client_hello_gnutls_pki()
1654 g_context->pki_sni_entry_list = gnutls_realloc( in post_client_hello_gnutls_pki()
1655 g_context->pki_sni_entry_list, in post_client_hello_gnutls_pki()
1657 g_context->pki_sni_entry_list[i].sni = gnutls_strdup(name); in post_client_hello_gnutls_pki()
1658 g_context->pki_sni_entry_list[i].pki_key = *new_entry; in post_client_hello_gnutls_pki()
1659 sni_setup_data = g_context->setup_data; in post_client_hello_gnutls_pki()
1662 &g_context->pki_sni_entry_list[i].pki_credentials, in post_client_hello_gnutls_pki()
1664 g_context, in post_client_hello_gnutls_pki()
1673 g_context->pki_sni_count++; in post_client_hello_gnutls_pki()
1676 g_context->pki_sni_entry_list[i].pki_credentials), in post_client_hello_gnutls_pki()
1695 coap_gnutls_context_t *g_context = in setup_client_ssl_session() local
1699 g_context->psk_pki_enabled |= IS_CLIENT; in setup_client_ssl_session()
1700 if (g_context->psk_pki_enabled & IS_PSK) { in setup_client_ssl_session()
1745 if ((g_context->psk_pki_enabled & IS_PKI) || in setup_client_ssl_session()
1746 (g_context->psk_pki_enabled & (IS_PSK | IS_PKI)) == 0) { in setup_client_ssl_session()
1751 coap_dtls_pki_t *setup_data = &g_context->setup_data; in setup_client_ssl_session()
1753 g_context, setup_data, in setup_client_ssl_session()
1763 &g_context->alpn_proto, 1, 0), in setup_client_ssl_session()
1794 coap_gnutls_context_t *g_context; in psk_server_callback() local
1804 g_context = (coap_gnutls_context_t *)c_session->context->dtls_context; in psk_server_callback()
1805 if (g_context == NULL) in psk_server_callback()
1860 coap_gnutls_context_t *g_context = in setup_server_ssl_session() local
1864 g_context->psk_pki_enabled |= IS_SERVER; in setup_server_ssl_session()
1865 if (g_context->psk_pki_enabled & IS_PSK) { in setup_server_ssl_session()
1868 g_context, in setup_server_ssl_session()
1879 if (g_context->psk_pki_enabled & IS_PKI) { in setup_server_ssl_session()
1880 coap_dtls_pki_t *setup_data = &g_context->setup_data; in setup_server_ssl_session()
1882 g_context, setup_data, in setup_server_ssl_session()
2021 coap_gnutls_context_t *g_context = in coap_dtls_new_gnutls_env() local
2048 G_CHECK(gnutls_priority_set(g_env->g_session, g_context->priority_cache), in coap_dtls_new_gnutls_env()
2074 coap_dtls_free_gnutls_env(coap_gnutls_context_t *g_context, in coap_dtls_free_gnutls_env() argument
2089 if (g_context->psk_pki_enabled & IS_PSK) { in coap_dtls_free_gnutls_env()
2090 if ((g_context->psk_pki_enabled & IS_CLIENT) && in coap_dtls_free_gnutls_env()
2102 if ((g_context->psk_pki_enabled & IS_PKI) || in coap_dtls_free_gnutls_env()
2103 (g_context->psk_pki_enabled & in coap_dtls_free_gnutls_env()
2663 coap_gnutls_context_t *g_context = in coap_tls_new_client_session() local
2686 gnutls_priority_set(g_env->g_session, g_context->priority_cache); in coap_tls_new_client_session()
2708 coap_gnutls_context_t *g_context = in coap_tls_new_server_session() local
2732 gnutls_priority_set(g_env->g_session, g_context->priority_cache); in coap_tls_new_server_session()