Lines Matching defs:conf
83 int mbedtls_ssl_conf_cid(mbedtls_ssl_config *conf,
96 conf->ignore_unexpected_cid = ignore_other_cid;
97 conf->cid_len = len;
106 if (ssl->conf->transport != MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
118 if (own_cid_len != ssl->conf->cid_len) {
121 (unsigned) ssl->conf->cid_len));
140 if (ssl->conf->transport != MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
170 if (ssl->conf->transport != MBEDTLS_SSL_TRANSPORT_DATAGRAM ||
1141 ssl->conf->new_session_tickets_count;
1145 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
1148 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_CLIENT) {
1166 if (ssl->conf->curve_list != NULL) {
1168 const mbedtls_ecp_group_id *curve_list = ssl->conf->curve_list;
1194 ssl->handshake->group_list = ssl->conf->group_list;
1205 if (mbedtls_ssl_conf_is_tls12_only(ssl->conf) &&
1206 ssl->conf->sig_hashes != NULL) {
1208 const int *sig_hashes = ssl->conf->sig_hashes;
1311 const mbedtls_ssl_config *conf = ssl->conf;
1314 if (mbedtls_ssl_conf_is_tls13_only(conf)) {
1315 if (conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
1326 if (mbedtls_ssl_conf_is_tls12_only(conf)) {
1333 if (mbedtls_ssl_conf_is_hybrid_tls12_tls13(conf)) {
1334 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
1369 ssl->conf->endpoint == MBEDTLS_SSL_IS_CLIENT &&
1370 ssl->conf->max_tls_version == MBEDTLS_SSL_VERSION_TLS1_3 &&
1371 ssl->conf->min_tls_version == MBEDTLS_SSL_VERSION_TLS1_3 &&
1372 ssl->conf->authmode == MBEDTLS_SSL_VERIFY_OPTIONAL) {
1380 if (ssl->conf->f_rng == NULL) {
1395 const mbedtls_ssl_config *conf)
1401 ssl->conf = conf;
1406 ssl->tls_version = ssl->conf->max_tls_version;
1451 ssl->conf = NULL;
1569 ssl->tls_version = ssl->conf->max_tls_version;
1627 void mbedtls_ssl_conf_endpoint(mbedtls_ssl_config *conf, int endpoint)
1629 conf->endpoint = endpoint;
1632 void mbedtls_ssl_conf_transport(mbedtls_ssl_config *conf, int transport)
1634 conf->transport = transport;
1638 void mbedtls_ssl_conf_dtls_anti_replay(mbedtls_ssl_config *conf, char mode)
1640 conf->anti_replay = mode;
1644 void mbedtls_ssl_conf_dtls_badmac_limit(mbedtls_ssl_config *conf, unsigned limit)
1646 conf->badmac_limit = limit;
1657 void mbedtls_ssl_conf_handshake_timeout(mbedtls_ssl_config *conf,
1660 conf->hs_timeout_min = min;
1661 conf->hs_timeout_max = max;
1665 void mbedtls_ssl_conf_authmode(mbedtls_ssl_config *conf, int authmode)
1667 conf->authmode = authmode;
1671 void mbedtls_ssl_conf_verify(mbedtls_ssl_config *conf,
1675 conf->f_vrfy = f_vrfy;
1676 conf->p_vrfy = p_vrfy;
1680 void mbedtls_ssl_conf_rng(mbedtls_ssl_config *conf,
1684 conf->f_rng = f_rng;
1685 conf->p_rng = p_rng;
1688 void mbedtls_ssl_conf_dbg(mbedtls_ssl_config *conf,
1692 conf->f_dbg = f_dbg;
1693 conf->p_dbg = p_dbg;
1715 void mbedtls_ssl_conf_read_timeout(mbedtls_ssl_config *conf, uint32_t timeout)
1717 conf->read_timeout = timeout;
1734 void mbedtls_ssl_conf_session_cache(mbedtls_ssl_config *conf,
1739 conf->p_cache = p_cache;
1740 conf->f_get_cache = f_get_cache;
1741 conf->f_set_cache = f_set_cache;
1753 ssl->conf->endpoint != MBEDTLS_SSL_IS_CLIENT) {
1787 void mbedtls_ssl_conf_ciphersuites(mbedtls_ssl_config *conf,
1790 conf->ciphersuite_list = ciphersuites;
1794 void mbedtls_ssl_conf_tls13_key_exchange_modes(mbedtls_ssl_config *conf,
1797 conf->tls13_kex_modes = kex_modes & MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_ALL;
1801 void mbedtls_ssl_conf_early_data(mbedtls_ssl_config *conf,
1804 conf->early_data_enabled = early_data_enabled;
1809 mbedtls_ssl_config *conf, uint32_t max_early_data_size)
1811 conf->max_early_data_size = max_early_data_size;
1819 void mbedtls_ssl_conf_cert_profile(mbedtls_ssl_config *conf,
1822 conf->cert_profile = profile;
1874 int mbedtls_ssl_conf_own_cert(mbedtls_ssl_config *conf,
1878 return ssl_append_key_cert(&conf->key_cert, own_cert, pk_key);
1881 void mbedtls_ssl_conf_ca_chain(mbedtls_ssl_config *conf,
1885 conf->ca_chain = ca_chain;
1886 conf->ca_crl = ca_crl;
1891 conf->f_ca_cb = NULL;
1892 conf->p_ca_cb = NULL;
1897 void mbedtls_ssl_conf_ca_cb(mbedtls_ssl_config *conf,
1901 conf->f_ca_cb = f_ca_cb;
1902 conf->p_ca_cb = p_ca_cb;
1906 conf->ca_chain = NULL;
1907 conf->ca_crl = NULL;
1989 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_SERVER) {
2028 if (ssl->handshake == NULL || ssl->conf == NULL) {
2063 if (ssl->handshake == NULL || ssl->conf == NULL) {
2086 if (ssl->handshake == NULL || ssl->conf == NULL) {
2095 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_SERVER) {
2111 int mbedtls_ssl_conf_has_static_psk(mbedtls_ssl_config const *conf)
2113 if (conf->psk_identity == NULL ||
2114 conf->psk_identity_len == 0) {
2119 if (!mbedtls_svc_key_id_is_null(conf->psk_opaque)) {
2124 if (conf->psk != NULL && conf->psk_len != 0) {
2131 static void ssl_conf_remove_psk(mbedtls_ssl_config *conf)
2135 if (!mbedtls_svc_key_id_is_null(conf->psk_opaque)) {
2138 conf->psk_opaque = MBEDTLS_SVC_KEY_ID_INIT;
2141 if (conf->psk != NULL) {
2142 mbedtls_zeroize_and_free(conf->psk, conf->psk_len);
2143 conf->psk = NULL;
2144 conf->psk_len = 0;
2148 if (conf->psk_identity != NULL) {
2149 mbedtls_free(conf->psk_identity);
2150 conf->psk_identity = NULL;
2151 conf->psk_identity_len = 0;
2160 static int ssl_conf_set_psk_identity(mbedtls_ssl_config *conf,
2172 conf->psk_identity = mbedtls_calloc(1, psk_identity_len);
2173 if (conf->psk_identity == NULL) {
2177 conf->psk_identity_len = psk_identity_len;
2178 memcpy(conf->psk_identity, psk_identity, conf->psk_identity_len);
2183 int mbedtls_ssl_conf_psk(mbedtls_ssl_config *conf,
2190 if (mbedtls_ssl_conf_has_static_psk(conf)) {
2205 if ((conf->psk = mbedtls_calloc(1, psk_len)) == NULL) {
2208 conf->psk_len = psk_len;
2209 memcpy(conf->psk, psk, conf->psk_len);
2212 ret = ssl_conf_set_psk_identity(conf, psk_identity, psk_identity_len);
2214 ssl_conf_remove_psk(conf);
2305 int mbedtls_ssl_conf_psk_opaque(mbedtls_ssl_config *conf,
2313 if (mbedtls_ssl_conf_has_static_psk(conf)) {
2321 conf->psk_opaque = psk;
2324 ret = ssl_conf_set_psk_identity(conf, psk_identity,
2327 ssl_conf_remove_psk(conf);
2348 void mbedtls_ssl_conf_psk_cb(mbedtls_ssl_config *conf,
2353 conf->f_psk = f_psk;
2354 conf->p_psk = p_psk;
2668 int mbedtls_ssl_conf_dh_param_bin(mbedtls_ssl_config *conf,
2674 mbedtls_mpi_free(&conf->dhm_P);
2675 mbedtls_mpi_free(&conf->dhm_G);
2677 if ((ret = mbedtls_mpi_read_binary(&conf->dhm_P, dhm_P, P_len)) != 0 ||
2678 (ret = mbedtls_mpi_read_binary(&conf->dhm_G, dhm_G, G_len)) != 0) {
2679 mbedtls_mpi_free(&conf->dhm_P);
2680 mbedtls_mpi_free(&conf->dhm_G);
2687 int mbedtls_ssl_conf_dh_param_ctx(mbedtls_ssl_config *conf, mbedtls_dhm_context *dhm_ctx)
2691 mbedtls_mpi_free(&conf->dhm_P);
2692 mbedtls_mpi_free(&conf->dhm_G);
2695 &conf->dhm_P)) != 0 ||
2697 &conf->dhm_G)) != 0) {
2698 mbedtls_mpi_free(&conf->dhm_P);
2699 mbedtls_mpi_free(&conf->dhm_G);
2711 void mbedtls_ssl_conf_dhm_min_bitlen(mbedtls_ssl_config *conf,
2714 conf->dhm_min_bitlen = bitlen;
2723 void mbedtls_ssl_conf_sig_hashes(mbedtls_ssl_config *conf,
2726 conf->sig_hashes = hashes;
2731 void mbedtls_ssl_conf_sig_algs(mbedtls_ssl_config *conf,
2735 conf->sig_hashes = NULL;
2737 conf->sig_algs = sig_algs;
2751 void mbedtls_ssl_conf_curves(mbedtls_ssl_config *conf,
2754 conf->curve_list = curve_list;
2755 conf->group_list = NULL;
2763 void mbedtls_ssl_conf_groups(mbedtls_ssl_config *conf,
2767 conf->curve_list = NULL;
2769 conf->group_list = group_list;
2815 void mbedtls_ssl_conf_sni(mbedtls_ssl_config *conf,
2820 conf->f_sni = f_sni;
2821 conf->p_sni = p_sni;
2826 int mbedtls_ssl_conf_alpn_protocols(mbedtls_ssl_config *conf, const char **protos)
2848 conf->alpn_list = protos;
2860 void mbedtls_ssl_conf_srtp_mki_value_supported(mbedtls_ssl_config *conf,
2863 conf->dtls_srtp_mki_support = support_mki_value;
2874 if (ssl->conf->dtls_srtp_mki_support == MBEDTLS_SSL_DTLS_SRTP_MKI_UNSUPPORTED) {
2883 int mbedtls_ssl_conf_dtls_srtp_protection_profiles(mbedtls_ssl_config *conf,
2903 conf->dtls_srtp_profile_list = NULL;
2904 conf->dtls_srtp_profile_list_len = 0;
2908 conf->dtls_srtp_profile_list = profiles;
2909 conf->dtls_srtp_profile_list_len = list_size;
2930 void mbedtls_ssl_conf_max_version(mbedtls_ssl_config *conf, int major, int minor)
2932 conf->max_tls_version = (mbedtls_ssl_protocol_version) ((major << 8) | minor);
2935 void mbedtls_ssl_conf_min_version(mbedtls_ssl_config *conf, int major, int minor)
2937 conf->min_tls_version = (mbedtls_ssl_protocol_version) ((major << 8) | minor);
2942 void mbedtls_ssl_conf_cert_req_ca_list(mbedtls_ssl_config *conf,
2945 conf->cert_req_ca_list = cert_req_ca_list;
2950 void mbedtls_ssl_conf_encrypt_then_mac(mbedtls_ssl_config *conf, char etm)
2952 conf->encrypt_then_mac = etm;
2957 void mbedtls_ssl_conf_extended_master_secret(mbedtls_ssl_config *conf, char ems)
2959 conf->extended_ms = ems;
2964 int mbedtls_ssl_conf_max_frag_len(mbedtls_ssl_config *conf, unsigned char mfl_code)
2971 conf->mfl_code = mfl_code;
2977 void mbedtls_ssl_conf_legacy_renegotiation(mbedtls_ssl_config *conf, int allow_legacy)
2979 conf->allow_legacy_renegotiation = allow_legacy;
2983 void mbedtls_ssl_conf_renegotiation(mbedtls_ssl_config *conf, int renegotiation)
2985 conf->disable_renegotiation = renegotiation;
2988 void mbedtls_ssl_conf_renegotiation_enforced(mbedtls_ssl_config *conf, int max_records)
2990 conf->renego_max_records = max_records;
2993 void mbedtls_ssl_conf_renegotiation_period(mbedtls_ssl_config *conf,
2996 memcpy(conf->renego_period, period, 8);
3002 void mbedtls_ssl_conf_session_tickets(mbedtls_ssl_config *conf, int use_tickets)
3004 conf->session_tickets = use_tickets;
3011 void mbedtls_ssl_conf_new_session_tickets(mbedtls_ssl_config *conf,
3014 conf->new_session_tickets_count = num_tickets;
3018 void mbedtls_ssl_conf_session_tickets_cb(mbedtls_ssl_config *conf,
3023 conf->f_ticket_write = f_ticket_write;
3024 conf->f_ticket_parse = f_ticket_parse;
3025 conf->p_ticket = p_ticket;
3040 mbedtls_ssl_config *conf,
3047 conf->f_async_sign_start = f_async_sign;
3048 conf->f_async_decrypt_start = f_async_decrypt;
3049 conf->f_async_resume = f_async_resume;
3050 conf->f_async_cancel = f_async_cancel;
3051 conf->p_async_config_data = async_config_data;
3054 void *mbedtls_ssl_conf_get_async_config_data(const mbedtls_ssl_config *conf)
3056 return conf->p_async_config_data;
3114 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
3167 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_CLIENT &&
3169 return ssl_mfl_code_to_length(ssl->conf->mfl_code);
3199 max_len = ssl_mfl_code_to_length(ssl->conf->mfl_code);
3221 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_CLIENT &&
3355 ssl->conf->endpoint != MBEDTLS_SSL_IS_CLIENT) {
4487 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM &&
4503 ssl->conf == NULL ||
4519 /* If ssl->conf->endpoint is not one of MBEDTLS_SSL_IS_CLIENT or
4524 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_CLIENT) {
4555 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_SERVER) {
4593 if (ssl == NULL || ssl->conf == NULL) {
4598 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM &&
4671 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM &&
4673 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_SERVER) {
4702 if (ssl == NULL || ssl->conf == NULL) {
4708 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_SERVER) {
4782 if (ssl->conf->f_async_cancel != NULL && handshake->async_in_progress != 0) {
4783 ssl->conf->f_async_cancel(ssl);
5076 if (ssl->conf->transport != MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
5092 if (ssl->conf->disable_renegotiation != MBEDTLS_SSL_RENEGOTIATION_DISABLED) {
5263 ssl->conf->disable_renegotiation != MBEDTLS_SSL_RENEGOTIATION_DISABLED ||
5265 ssl->conf->transport != MBEDTLS_SSL_TRANSPORT_DATAGRAM ||
5266 ssl->conf->max_tls_version < MBEDTLS_SSL_VERSION_TLS1_2 ||
5267 ssl->conf->min_tls_version > MBEDTLS_SSL_VERSION_TLS1_2
5349 ssl->conf->endpoint,
5438 if (alpn_len != 0 && ssl->conf->alpn_list != NULL) {
5440 for (cur = ssl->conf->alpn_list; *cur != NULL; cur++) {
5449 /* can only happen on conf mismatch */
5592 void mbedtls_ssl_config_init(mbedtls_ssl_config *conf)
5594 memset(conf, 0, sizeof(mbedtls_ssl_config));
5828 int mbedtls_ssl_config_defaults(mbedtls_ssl_config *conf,
5861 mbedtls_ssl_conf_endpoint(conf, endpoint);
5862 mbedtls_ssl_conf_transport(conf, transport);
5869 conf->authmode = MBEDTLS_SSL_VERIFY_REQUIRED;
5871 conf->session_tickets = MBEDTLS_SSL_SESSION_TICKETS_ENABLED;
5877 conf->encrypt_then_mac = MBEDTLS_SSL_ETM_ENABLED;
5881 conf->extended_ms = MBEDTLS_SSL_EXTENDED_MS_ENABLED;
5885 conf->f_cookie_write = ssl_cookie_write_dummy;
5886 conf->f_cookie_check = ssl_cookie_check_dummy;
5890 conf->anti_replay = MBEDTLS_SSL_ANTI_REPLAY_ENABLED;
5894 conf->cert_req_ca_list = MBEDTLS_SSL_CERT_REQ_CA_LIST_ENABLED;
5895 conf->respect_cli_pref = MBEDTLS_SSL_SRV_CIPHERSUITE_ORDER_SERVER;
5899 conf->hs_timeout_min = MBEDTLS_SSL_DTLS_TIMEOUT_DFL_MIN;
5900 conf->hs_timeout_max = MBEDTLS_SSL_DTLS_TIMEOUT_DFL_MAX;
5904 conf->renego_max_records = MBEDTLS_SSL_RENEGO_MAX_RECORDS_DEFAULT;
5905 memset(conf->renego_period, 0x00, 2);
5906 memset(conf->renego_period + 2, 0xFF, 6);
5916 if ((ret = mbedtls_ssl_conf_dh_param_bin(conf,
5927 mbedtls_ssl_conf_early_data(conf, MBEDTLS_SSL_EARLY_DATA_DISABLED);
5929 mbedtls_ssl_conf_max_early_data_size(conf, MBEDTLS_SSL_MAX_EARLY_DATA_SIZE);
5935 conf, MBEDTLS_SSL_TLS1_3_DEFAULT_NEW_SESSION_TICKETS);
5940 conf->tls13_kex_modes = MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_ALL;
5945 conf->min_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
5946 conf->max_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
5952 conf->min_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
5953 conf->max_tls_version = MBEDTLS_SSL_VERSION_TLS1_3;
5955 conf->min_tls_version = MBEDTLS_SSL_VERSION_TLS1_3;
5956 conf->max_tls_version = MBEDTLS_SSL_VERSION_TLS1_3;
5958 conf->min_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
5959 conf->max_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
5974 conf->ciphersuite_list = ssl_preset_suiteb_ciphersuites;
5977 conf->cert_profile = &mbedtls_x509_crt_profile_suiteb;
5982 if (mbedtls_ssl_conf_is_tls12_only(conf)) {
5983 conf->sig_algs = ssl_tls12_preset_suiteb_sig_algs;
5986 conf->sig_algs = ssl_preset_suiteb_sig_algs;
5990 conf->curve_list = NULL;
5992 conf->group_list = ssl_preset_suiteb_groups;
6000 conf->ciphersuite_list = mbedtls_ssl_list_ciphersuites();
6003 conf->cert_profile = &mbedtls_x509_crt_profile_default;
6008 if (mbedtls_ssl_conf_is_tls12_only(conf)) {
6009 conf->sig_algs = ssl_tls12_preset_default_sig_algs;
6012 conf->sig_algs = ssl_preset_default_sig_algs;
6016 conf->curve_list = NULL;
6018 conf->group_list = ssl_preset_default_groups;
6021 conf->dhm_min_bitlen = 1024;
6031 void mbedtls_ssl_config_free(mbedtls_ssl_config *conf)
6034 mbedtls_mpi_free(&conf->dhm_P);
6035 mbedtls_mpi_free(&conf->dhm_G);
6040 if (!mbedtls_svc_key_id_is_null(conf->psk_opaque)) {
6041 conf->psk_opaque = MBEDTLS_SVC_KEY_ID_INIT;
6044 if (conf->psk != NULL) {
6045 mbedtls_zeroize_and_free(conf->psk, conf->psk_len);
6046 conf->psk = NULL;
6047 conf->psk_len = 0;
6050 if (conf->psk_identity != NULL) {
6051 mbedtls_zeroize_and_free(conf->psk_identity, conf->psk_identity_len);
6052 conf->psk_identity = NULL;
6053 conf->psk_identity_len = 0;
6058 ssl_key_cert_free(conf->key_cert);
6061 mbedtls_platform_zeroize(conf, sizeof(mbedtls_ssl_config));
7003 * debug: conf->f_dbg, conf->p_dbg
7005 * PSA-PSA: conf
7109 ssl->conf->psk, ssl->conf->psk_len,
7246 ssl->conf->endpoint,
7458 ssl->conf->f_rng, ssl->conf->p_rng)) != 0) {
7475 ssl->conf->f_rng, ssl->conf->p_rng)) != 0) {
7522 if (ssl->conf->renego_max_records < 0) {
7523 uint32_t ratio = ssl->conf->hs_timeout_max / ssl->conf->hs_timeout_min + 1;
7601 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_CLIENT) {
7610 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_SERVER) {
7813 ssl->conf->endpoint == MBEDTLS_SSL_IS_CLIENT &&
7877 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_CLIENT) {
7912 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_SERVER) {
7954 f_vrfy = ssl->conf->f_vrfy;
7955 p_vrfy = ssl->conf->p_vrfy;
7962 if (ssl->conf->f_ca_cb != NULL) {
7969 ssl->conf->f_ca_cb,
7970 ssl->conf->p_ca_cb,
7971 ssl->conf->cert_profile,
7988 ca_chain = ssl->conf->ca_chain;
7989 ca_crl = ssl->conf->ca_crl;
7999 ssl->conf->cert_profile,
8050 !ssl->conf->endpoint,
8179 : ssl->conf->authmode;
8181 const int authmode = ssl->conf->authmode;
8496 if (ssl->conf->f_set_cache != NULL &&
8499 if (ssl->conf->f_set_cache(ssl->conf->p_cache,
8508 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM &&
8534 ret = ssl->handshake->calc_finished(ssl, ssl->out_msg + 4, ssl->conf->endpoint);
8562 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_CLIENT) {
8567 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_SERVER) {
8582 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
8614 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
8625 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM &&
8647 ret = ssl->handshake->calc_finished(ssl, buf, ssl->conf->endpoint ^ 1);
8696 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_CLIENT) {
8701 if (ssl->conf->endpoint == MBEDTLS_SSL_IS_SERVER) {
8710 if (ssl->conf->transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM) {
8784 * - ssl->conf->{f,p}_export_keys
8786 * - MBEDTLS_DEBUG_C: ssl->conf->{f,p}_dbg
9533 mbedtls_ssl_conf_has_static_psk(ssl->conf) == 0) {
9701 if (ssl->conf->f_sni == NULL) {
9704 ret = ssl->conf->f_sni(ssl->conf->p_sni,
9735 if (ssl->conf->alpn_list == NULL) {
9777 for (const char **alpn = ssl->conf->alpn_list; *alpn != NULL; alpn++) {