Lines Matching full:backend
316 struct mbed_ssl_backend_data *backend = in set_ssl_version_min_max() local
317 (struct mbed_ssl_backend_data *)connssl->backend; in set_ssl_version_min_max()
337 DEBUGASSERT(backend); in set_ssl_version_min_max()
369 mbedtls_ssl_conf_min_tls_version(&backend->config, mbedtls_ver_min); in set_ssl_version_min_max()
370 mbedtls_ssl_conf_max_tls_version(&backend->config, mbedtls_ver_max); in set_ssl_version_min_max()
372 mbedtls_ssl_conf_min_version(&backend->config, MBEDTLS_SSL_MAJOR_VERSION_3, in set_ssl_version_min_max()
374 mbedtls_ssl_conf_max_version(&backend->config, MBEDTLS_SSL_MAJOR_VERSION_3, in set_ssl_version_min_max()
380 mbedtls_ssl_conf_authmode(&backend->config, MBEDTLS_SSL_VERIFY_REQUIRED); in set_ssl_version_min_max()
383 mbedtls_ssl_conf_authmode(&backend->config, MBEDTLS_SSL_VERIFY_OPTIONAL); in set_ssl_version_min_max()
386 mbedtls_ssl_conf_authmode(&backend->config, MBEDTLS_SSL_VERIFY_OPTIONAL); in set_ssl_version_min_max()
427 struct mbed_ssl_backend_data *backend, in mbed_set_selected_ciphers() argument
480 backend->ciphersuites = selected; in mbed_set_selected_ciphers()
481 mbedtls_ssl_conf_ciphersuites(&backend->config, backend->ciphersuites); in mbed_set_selected_ciphers()
489 struct mbed_ssl_backend_data *backend = in mbed_connect_step1() local
490 (struct mbed_ssl_backend_data *)connssl->backend; in mbed_connect_step1()
506 DEBUGASSERT(backend); in mbed_connect_step1()
525 mbedtls_ctr_drbg_init(&backend->ctr_drbg); in mbed_connect_step1()
527 ret = mbedtls_ctr_drbg_seed(&backend->ctr_drbg, entropy_func_mutex, in mbed_connect_step1()
536 mbedtls_entropy_init(&backend->entropy); in mbed_connect_step1()
537 mbedtls_ctr_drbg_init(&backend->ctr_drbg); in mbed_connect_step1()
539 ret = mbedtls_ctr_drbg_seed(&backend->ctr_drbg, mbedtls_entropy_func, in mbed_connect_step1()
540 &backend->entropy, NULL, 0); in mbed_connect_step1()
550 mbedtls_x509_crt_init(&backend->cacert); in mbed_connect_step1()
560 ret = mbedtls_x509_crt_parse(&backend->cacert, newblob, in mbed_connect_step1()
573 ret = mbedtls_x509_crt_parse_file(&backend->cacert, ssl_cafile); in mbed_connect_step1()
589 ret = mbedtls_x509_crt_parse_path(&backend->cacert, ssl_capath); in mbed_connect_step1()
606 mbedtls_x509_crt_init(&backend->clicert); in mbed_connect_step1()
610 ret = mbedtls_x509_crt_parse_file(&backend->clicert, ssl_cert); in mbed_connect_step1()
633 ret = mbedtls_x509_crt_parse(&backend->clicert, newblob, in mbed_connect_step1()
646 mbedtls_pk_init(&backend->pk); in mbed_connect_step1()
652 ret = mbedtls_pk_parse_keyfile(&backend->pk, ssl_config->key, in mbed_connect_step1()
655 &backend->ctr_drbg); in mbed_connect_step1()
657 ret = mbedtls_pk_parse_keyfile(&backend->pk, ssl_config->key, in mbed_connect_step1()
678 ret = mbedtls_pk_parse_key(&backend->pk, key_data, ssl_key_blob->len, in mbed_connect_step1()
682 &backend->ctr_drbg); in mbed_connect_step1()
684 ret = mbedtls_pk_parse_key(&backend->pk, key_data, ssl_key_blob->len, in mbed_connect_step1()
697 if(ret == 0 && !(mbedtls_pk_can_do(&backend->pk, MBEDTLS_PK_RSA) || in mbed_connect_step1()
698 mbedtls_pk_can_do(&backend->pk, MBEDTLS_PK_ECKEY))) in mbed_connect_step1()
704 mbedtls_x509_crl_init(&backend->crl); in mbed_connect_step1()
708 ret = mbedtls_x509_crl_parse_file(&backend->crl, ssl_crlfile); in mbed_connect_step1()
731 mbedtls_ssl_config_init(&backend->config); in mbed_connect_step1()
732 ret = mbedtls_ssl_config_defaults(&backend->config, in mbed_connect_step1()
741 mbedtls_ssl_init(&backend->ssl); in mbed_connect_step1()
744 mbedtls_ssl_conf_cert_profile(&backend->config, in mbed_connect_step1()
751 mbedtls_ssl_conf_min_version(&backend->config, MBEDTLS_SSL_MAJOR_VERSION_3, in mbed_connect_step1()
771 mbedtls_ssl_conf_rng(&backend->config, mbedtls_ctr_drbg_random, in mbed_connect_step1()
772 &backend->ctr_drbg); in mbed_connect_step1()
774 ret = mbedtls_ssl_setup(&backend->ssl, &backend->config); in mbed_connect_step1()
782 mbedtls_ssl_set_bio(&backend->ssl, cf, in mbed_connect_step1()
788 ret = mbed_set_selected_ciphers(data, backend, conn_config->cipher_list); in mbed_connect_step1()
795 mbedtls_ssl_conf_ciphersuites(&backend->config, in mbed_connect_step1()
801 mbedtls_ssl_conf_renegotiation(&backend->config, in mbed_connect_step1()
806 mbedtls_ssl_conf_session_tickets(&backend->config, in mbed_connect_step1()
816 ret = mbedtls_ssl_set_session(&backend->ssl, old_session); in mbed_connect_step1()
827 mbedtls_ssl_conf_ca_chain(&backend->config, in mbed_connect_step1()
828 &backend->cacert, in mbed_connect_step1()
830 &backend->crl); in mbed_connect_step1()
836 mbedtls_ssl_conf_own_cert(&backend->config, in mbed_connect_step1()
837 &backend->clicert, &backend->pk); in mbed_connect_step1()
840 if(mbedtls_ssl_set_hostname(&backend->ssl, connssl->peer.sni? in mbed_connect_step1()
855 backend->protocols[i] = connssl->alpn->entries[i]; in mbed_connect_step1()
859 if(mbedtls_ssl_conf_alpn_protocols(&backend->config, in mbed_connect_step1()
860 &backend->protocols[0])) { in mbed_connect_step1()
871 mbedtls_ssl_conf_dbg(&backend->config, mbed_debug, data); in mbed_connect_step1()
883 ret = (*data->set.ssl.fsslctx)(data, &backend->config, in mbed_connect_step1()
901 struct mbed_ssl_backend_data *backend = local
902 (struct mbed_ssl_backend_data *)connssl->backend;
915 DEBUGASSERT(backend);
917 ret = mbedtls_ssl_handshake(&backend->ssl);
936 mbedtls_ssl_get_ciphersuite_id_from_ssl(&backend->ssl);
940 ret = mbedtls_ssl_get_verify_result(&backend->ssl);
965 peercert = mbedtls_ssl_get_peer_cert(&backend->ssl);
1059 const char *proto = mbedtls_ssl_get_alpn_protocol(&backend->ssl);
1084 struct mbed_ssl_backend_data *backend = local
1085 (struct mbed_ssl_backend_data *)connssl->backend;
1089 DEBUGASSERT(backend);
1102 ret = mbedtls_ssl_get_session(&backend->ssl, our_ssl_sessionid);
1135 struct mbed_ssl_backend_data *backend = local
1136 (struct mbed_ssl_backend_data *)connssl->backend;
1140 DEBUGASSERT(backend);
1141 ret = mbedtls_ssl_write(&backend->ssl, (unsigned char *)mem, len);
1160 struct mbed_ssl_backend_data *backend = local
1161 (struct mbed_ssl_backend_data *)connssl->backend;
1165 DEBUGASSERT(backend);
1169 (void)mbedtls_ssl_read(&backend->ssl, (unsigned char *)buf, sizeof(buf));
1171 mbedtls_pk_free(&backend->pk);
1172 mbedtls_x509_crt_free(&backend->clicert);
1173 mbedtls_x509_crt_free(&backend->cacert);
1175 mbedtls_x509_crl_free(&backend->crl);
1177 Curl_safefree(backend->ciphersuites);
1178 mbedtls_ssl_config_free(&backend->config);
1179 mbedtls_ssl_free(&backend->ssl);
1180 mbedtls_ctr_drbg_free(&backend->ctr_drbg);
1182 mbedtls_entropy_free(&backend->entropy);
1191 struct mbed_ssl_backend_data *backend = local
1192 (struct mbed_ssl_backend_data *)connssl->backend;
1197 DEBUGASSERT(backend);
1199 ret = mbedtls_ssl_read(&backend->ssl, (unsigned char *)buf,
1433 struct mbed_ssl_backend_data *backend; local
1436 DEBUGASSERT(ctx && ctx->backend);
1437 backend = (struct mbed_ssl_backend_data *)ctx->backend;
1438 return mbedtls_ssl_get_bytes_avail(&backend->ssl) != 0;
1465 struct mbed_ssl_backend_data *backend = local
1466 (struct mbed_ssl_backend_data *)connssl->backend;
1468 DEBUGASSERT(backend);
1469 return &backend->ssl;