mbed TLS v2.3.0
|
SSL/TLS configuration to be shared between mbedtls_ssl_context structures. More...
#include <ssl.h>
Data Fields | |
const int * | ciphersuite_list [4] |
void(* | f_dbg )(void *, int, const char *, int, const char *) |
Callback for printing debug output. More... | |
void * | p_dbg |
int(* | f_rng )(void *, unsigned char *, size_t) |
Callback for getting (pseudo-)random numbers. More... | |
void * | p_rng |
int(* | f_get_cache )(void *, mbedtls_ssl_session *) |
Callback to retrieve a session from the cache. More... | |
int(* | f_set_cache )(void *, const mbedtls_ssl_session *) |
Callback to store a session into the cache. More... | |
void * | p_cache |
int(* | f_sni )(void *, mbedtls_ssl_context *, const unsigned char *, size_t) |
Callback for setting cert according to SNI extension. More... | |
void * | p_sni |
int(* | f_vrfy )(void *, mbedtls_x509_crt *, int, uint32_t *) |
Callback to customize X.509 certificate chain verification. More... | |
void * | p_vrfy |
int(* | f_psk )(void *, mbedtls_ssl_context *, const unsigned char *, size_t) |
Callback to retrieve PSK key from identity. More... | |
void * | p_psk |
int(* | f_cookie_write )(void *, unsigned char **, unsigned char *, const unsigned char *, size_t) |
Callback to create & write a cookie for ClientHello veirifcation. More... | |
int(* | f_cookie_check )(void *, const unsigned char *, size_t, const unsigned char *, size_t) |
Callback to verify validity of a ClientHello cookie. More... | |
void * | p_cookie |
int(* | f_ticket_write )(void *, const mbedtls_ssl_session *, unsigned char *, const unsigned char *, size_t *, uint32_t *) |
Callback to create & write a session ticket. More... | |
int(* | f_ticket_parse )(void *, mbedtls_ssl_session *, unsigned char *, size_t) |
Callback to parse a session ticket into a session structure. More... | |
void * | p_ticket |
int(* | f_export_keys )(void *, const unsigned char *, const unsigned char *, size_t, size_t, size_t) |
Callback to export key block and master secret. More... | |
void * | p_export_keys |
const mbedtls_x509_crt_profile * | cert_profile |
mbedtls_ssl_key_cert * | key_cert |
mbedtls_x509_crt * | ca_chain |
mbedtls_x509_crl * | ca_crl |
const int * | sig_hashes |
const mbedtls_ecp_group_id * | curve_list |
mbedtls_mpi | dhm_P |
mbedtls_mpi | dhm_G |
unsigned char * | psk |
size_t | psk_len |
unsigned char * | psk_identity |
size_t | psk_identity_len |
const char ** | alpn_list |
uint32_t | read_timeout |
uint32_t | hs_timeout_min |
uint32_t | hs_timeout_max |
int | renego_max_records |
unsigned char | renego_period [8] |
unsigned int | badmac_limit |
unsigned int | dhm_min_bitlen |
unsigned char | max_major_ver |
unsigned char | max_minor_ver |
unsigned char | min_major_ver |
unsigned char | min_minor_ver |
unsigned int | endpoint: 1 |
unsigned int | transport: 1 |
unsigned int | authmode: 2 |
unsigned int | allow_legacy_renegotiation: 2 |
unsigned int | arc4_disabled: 1 |
unsigned int | mfl_code: 3 |
unsigned int | encrypt_then_mac: 1 |
unsigned int | extended_ms: 1 |
unsigned int | anti_replay: 1 |
unsigned int | cbc_record_splitting: 1 |
unsigned int | disable_renegotiation: 1 |
unsigned int | trunc_hmac: 1 |
unsigned int | session_tickets: 1 |
unsigned int | fallback: 1 |
SSL/TLS configuration to be shared between mbedtls_ssl_context structures.
unsigned int mbedtls_ssl_config::allow_legacy_renegotiation |
const char** mbedtls_ssl_config::alpn_list |
unsigned int mbedtls_ssl_config::anti_replay |
unsigned int mbedtls_ssl_config::arc4_disabled |
unsigned int mbedtls_ssl_config::authmode |
unsigned int mbedtls_ssl_config::badmac_limit |
mbedtls_x509_crt* mbedtls_ssl_config::ca_chain |
mbedtls_x509_crl* mbedtls_ssl_config::ca_crl |
unsigned int mbedtls_ssl_config::cbc_record_splitting |
const mbedtls_x509_crt_profile* mbedtls_ssl_config::cert_profile |
const int* mbedtls_ssl_config::ciphersuite_list[4] |
const mbedtls_ecp_group_id* mbedtls_ssl_config::curve_list |
mbedtls_mpi mbedtls_ssl_config::dhm_G |
unsigned int mbedtls_ssl_config::dhm_min_bitlen |
mbedtls_mpi mbedtls_ssl_config::dhm_P |
unsigned int mbedtls_ssl_config::disable_renegotiation |
unsigned int mbedtls_ssl_config::encrypt_then_mac |
unsigned int mbedtls_ssl_config::endpoint |
unsigned int mbedtls_ssl_config::extended_ms |
int(* mbedtls_ssl_config::f_cookie_check) (void *, const unsigned char *, size_t, const unsigned char *, size_t) |
int(* mbedtls_ssl_config::f_cookie_write) (void *, unsigned char **, unsigned char *, const unsigned char *, size_t) |
void(* mbedtls_ssl_config::f_dbg) (void *, int, const char *, int, const char *) |
int(* mbedtls_ssl_config::f_export_keys) (void *, const unsigned char *, const unsigned char *, size_t, size_t, size_t) |
int(* mbedtls_ssl_config::f_get_cache) (void *, mbedtls_ssl_session *) |
int(* mbedtls_ssl_config::f_psk) (void *, mbedtls_ssl_context *, const unsigned char *, size_t) |
int(* mbedtls_ssl_config::f_rng) (void *, unsigned char *, size_t) |
int(* mbedtls_ssl_config::f_set_cache) (void *, const mbedtls_ssl_session *) |
int(* mbedtls_ssl_config::f_sni) (void *, mbedtls_ssl_context *, const unsigned char *, size_t) |
int(* mbedtls_ssl_config::f_ticket_parse) (void *, mbedtls_ssl_session *, unsigned char *, size_t) |
int(* mbedtls_ssl_config::f_ticket_write) (void *, const mbedtls_ssl_session *, unsigned char *, const unsigned char *, size_t *, uint32_t *) |
int(* mbedtls_ssl_config::f_vrfy) (void *, mbedtls_x509_crt *, int, uint32_t *) |
uint32_t mbedtls_ssl_config::hs_timeout_max |
uint32_t mbedtls_ssl_config::hs_timeout_min |
mbedtls_ssl_key_cert* mbedtls_ssl_config::key_cert |
unsigned char mbedtls_ssl_config::max_major_ver |
unsigned char mbedtls_ssl_config::max_minor_ver |
unsigned int mbedtls_ssl_config::mfl_code |
unsigned char mbedtls_ssl_config::min_major_ver |
unsigned char mbedtls_ssl_config::min_minor_ver |
void* mbedtls_ssl_config::p_cookie |
void* mbedtls_ssl_config::p_dbg |
void* mbedtls_ssl_config::p_export_keys |
void* mbedtls_ssl_config::p_ticket |
void* mbedtls_ssl_config::p_vrfy |
unsigned char* mbedtls_ssl_config::psk_identity |
size_t mbedtls_ssl_config::psk_identity_len |
size_t mbedtls_ssl_config::psk_len |
uint32_t mbedtls_ssl_config::read_timeout |
int mbedtls_ssl_config::renego_max_records |
unsigned char mbedtls_ssl_config::renego_period[8] |
unsigned int mbedtls_ssl_config::session_tickets |
const int* mbedtls_ssl_config::sig_hashes |
unsigned int mbedtls_ssl_config::transport |
unsigned int mbedtls_ssl_config::trunc_hmac |