mbedtls-client.c - OpenGrok cross reference for /third_party/libwebsockets/lib/tls/mbedtls/mbedtls-client.c

Lines Matching refs:tls
26 #include "private-lib-tls-mbedtls.h"
75 	const char *alpn_comma = wsi->a.context->tls.alpn_default;
102 	wsi->tls.ssl = SSL_new(wsi->a.vhost->tls.ssl_client_ctx);
103 	if (!wsi->tls.ssl) {
113 	if (wsi->a.vhost->tls.ssl_info_event_mask)
114 		SSL_set_info_callback(wsi->tls.ssl, lws_ssl_info_callback);
116 	if (!(wsi->tls.use_ssl & LCCSCF_SKIP_SERVER_CERT_HOSTNAME_CHECK)) {
117 		X509_VERIFY_PARAM *param = SSL_get0_param(wsi->tls.ssl);
126 	if (wsi->a.vhost->tls.alpn)
127 		alpn_comma = wsi->a.vhost->tls.alpn;
147 	SSL_set_alpn_select_cb(wsi->tls.ssl, &protos);
162 	SSL_set_verify(wsi->tls.ssl, SSL_VERIFY_PEER,
166 	SSL_set_verify(wsi->tls.ssl, fl, NULL);
169 	SSL_set_fd(wsi->tls.ssl, (int)wsi->desc.sockfd);
201 		err = SSL_use_certificate_ASN1(wsi->tls.ssl, data, (int)size);
224 		err = SSL_use_PrivateKey_ASN1(0, wsi->tls.ssl, data, (int)size);
252 	int m, n = SSL_connect(wsi->tls.ssl), en;
264 	m = SSL_get_error(wsi->tls.ssl, n);
266 	if (m == SSL_ERROR_WANT_READ || SSL_want_read(wsi->tls.ssl))
269 	if (m == SSL_ERROR_WANT_WRITE || SSL_want_write(wsi->tls.ssl))
289 	X509 *peer = SSL_get_peer_certificate(wsi->tls.ssl);
298 						   "tls=\"nocert\"");
306 	n = (int)SSL_get_verify_result(wsi->tls.ssl);
338 		lws_snprintf(buckname, sizeof(buckname), "tls=\"%s\"", type);
344 	if (wsi->tls.use_ssl & avoid) {
352 	    lws_tls_jit_trust_sort_kids(wsi, &wsi->tls.ssl->kid_chain);
356 		type, (unsigned int)wsi->tls.use_ssl, n,
400 	vh->tls.ssl_client_ctx = SSL_CTX_new(method, &vh->context->mcdc);
401 	if (!vh->tls.ssl_client_ctx) {
421 		vh->tls.x509_client_CA = d2i_X509(NULL, buf, (long)len);
427 		vh->tls.x509_client_CA = d2i_X509(NULL, (uint8_t*)ca_mem, (long)ca_mem_len);
432 	if (!vh->tls.x509_client_CA) {
437 	if (!vh->tls.ssl_ctx)
438 		SSL_CTX_add_client_CA(vh->tls.ssl_client_ctx, vh->tls.x509_client_CA);
440 		SSL_CTX_add_client_CA(vh->tls.ssl_ctx, vh->tls.x509_client_CA);
461 		n = SSL_CTX_use_certificate_ASN1(vh->tls.ssl_client_ctx,
475 		n = SSL_CTX_use_certificate_ASN1(vh->tls.ssl_client_ctx,
500 		n = SSL_CTX_use_PrivateKey_ASN1(0, vh->tls.ssl_client_ctx,
515 		n = SSL_CTX_use_PrivateKey_ASN1(0, vh->tls.ssl_client_ctx,
535 	if (SSL_CTX_add_client_CA_ASN1(vh->tls.ssl_client_ctx, (int)der_len, der) != 1) {