Mbed TLS v2.28.8
Loading...
Searching...
No Matches
ssl_ticket.h
Go to the documentation of this file.
1
6/*
7 * Copyright The Mbed TLS Contributors
8 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
9 */
10#ifndef MBEDTLS_SSL_TICKET_H
11#define MBEDTLS_SSL_TICKET_H
12
13#if !defined(MBEDTLS_CONFIG_FILE)
14#include "mbedtls/config.h"
15#else
16#include MBEDTLS_CONFIG_FILE
17#endif
18
19/*
20 * This implementation of the session ticket callbacks includes key
21 * management, rotating the keys periodically in order to preserve forward
22 * secrecy, when MBEDTLS_HAVE_TIME is defined.
23 */
24
25#include "mbedtls/ssl.h"
26#include "mbedtls/cipher.h"
27
28#if defined(MBEDTLS_THREADING_C)
29#include "mbedtls/threading.h"
30#endif
31
32#ifdef __cplusplus
33extern "C" {
34#endif
35
39typedef struct mbedtls_ssl_ticket_key {
40 unsigned char name[4];
41 uint32_t generation_time;
43}
45
51 unsigned char active;
53 uint32_t ticket_lifetime;
56 int (*f_rng)(void *, unsigned char *, size_t);
57 void *p_rng;
59#if defined(MBEDTLS_THREADING_C)
61#endif
62}
64
73
97 int (*f_rng)(void *, unsigned char *, size_t), void *p_rng,
99 uint32_t lifetime);
100
107
114
121
122#ifdef __cplusplus
123}
124#endif
125
126#endif /* ssl_ticket.h */
This file contains an abstraction interface for use with the cipher primitives provided by the librar...
mbedtls_cipher_type_t
Supported {cipher type, cipher mode} pairs.
Definition cipher.h:98
Configuration options (set of defines)
SSL/TLS functions.
int mbedtls_ssl_ticket_write_t(void *p_ticket, const mbedtls_ssl_session *session, unsigned char *start, const unsigned char *end, size_t *tlen, uint32_t *lifetime)
Callback type: generate and write session ticket.
Definition ssl.h:2019
int mbedtls_ssl_ticket_parse_t(void *p_ticket, mbedtls_ssl_session *session, unsigned char *buf, size_t len)
Callback type: parse and load session ticket.
Definition ssl.h:2113
void mbedtls_ssl_ticket_init(mbedtls_ssl_ticket_context *ctx)
Initialize a ticket context. (Just make it ready for mbedtls_ssl_ticket_setup() or mbedtls_ssl_ticket...
void mbedtls_ssl_ticket_free(mbedtls_ssl_ticket_context *ctx)
Free a context's content and zeroize it.
int mbedtls_ssl_ticket_setup(mbedtls_ssl_ticket_context *ctx, int(*f_rng)(void *, unsigned char *, size_t), void *p_rng, mbedtls_cipher_type_t cipher, uint32_t lifetime)
Prepare context to be actually used.
struct mbedtls_ssl_ticket_key mbedtls_ssl_ticket_key
Information for session ticket protection.
struct mbedtls_ssl_ticket_context mbedtls_ssl_ticket_context
Context for session ticket handling functions.
mbedtls_ssl_ticket_write_t mbedtls_ssl_ticket_write
Implementation of the ticket write callback.
Definition ssl_ticket.h:106
mbedtls_ssl_ticket_parse_t mbedtls_ssl_ticket_parse
Implementation of the ticket parse callback.
Definition ssl_ticket.h:113
Context for session ticket handling functions.
Definition ssl_ticket.h:49
int(* f_rng)(void *, unsigned char *, size_t)
Definition ssl_ticket.h:56
mbedtls_threading_mutex_t mutex
Definition ssl_ticket.h:60
mbedtls_ssl_ticket_key keys[2]
Definition ssl_ticket.h:50
Information for session ticket protection.
Definition ssl_ticket.h:39
unsigned char name[4]
Definition ssl_ticket.h:40
mbedtls_cipher_context_t ctx
Definition ssl_ticket.h:42
Threading abstraction layer.