Donatien Garnier
A super trimmed down TLS stack, GPL licensed
Dependents: MiniTLS-HTTPS-Example
MiniTLS - A super trimmed down TLS/SSL Library for embedded devices Author: Donatien Garnier Copyright (C) 2013-2014 AppNearMe Ltd
This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
Diff: tls/tls_record.h
- Revision:
- 2:527a66d0a1a9
--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/tls/tls_record.h Mon Jun 09 14:57:54 2014 +0000
@@ -0,0 +1,77 @@
+/*
+MiniTLS - A super trimmed down TLS/SSL Library for embedded devices
+Author: Donatien Garnier
+Copyright (C) 2013-2014 AppNearMe Ltd
+
+This program is free software; you can redistribute it and/or
+modify it under the terms of the GNU General Public License
+as published by the Free Software Foundation; either version 2
+of the License, or (at your option) any later version.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+GNU General Public License for more details.
+
+You should have received a copy of the GNU General Public License
+along with this program; if not, write to the Free Software
+Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+*//**
+ * \file tls_record.h
+ * \copyright Copyright (c) AppNearMe Ltd 2013
+ * \author Donatien Garnier
+ */
+
+#ifndef TLS_RECORD_H_
+#define TLS_RECORD_H_
+
+#ifdef __cplusplus
+extern "C" {
+#endif
+
+#include "core/fwk.h"
+#include "inc/minitls_errors.h"
+
+#define TLS_DEFAULT_MAX_FRAGMENT_SIZE 18432 //(MAX 2^14 + 2048 = 18432) -- encrypted
+
+#define TLS_ENCRYPTION_MAX_OVERHEAD (20 + 256 + 16) //MAC + Max Padding + IV
+
+#include "tls_socket_defs.h"
+
+/*
+ * When a new session
+ begins, the record layer's connection state encryption, hash, and
+ compression algorithms are initialized to null. The current
+ connection state is used for renegotiation messages.
+ */
+minitls_err_t tls_record_init(tls_record_t* record, tls_socket_t* socket, uint8_t* buf, size_t buf_size);
+
+//Should be called after server hello message;
+void tls_record_set_protocol_version(tls_record_t* record, uint8_t major, uint8_t minor);
+void tls_record_get_protocol_version(tls_record_t* record, uint8_t* major, uint8_t* minor);
+
+minitls_err_t tls_record_change_cipher_spec(tls_record_t* record, bool tx_nrx);
+
+bool tls_record_is_secure(tls_record_t* record);
+
+//Read on message and process it
+//TODO mutex this
+minitls_err_t tls_record_connect(tls_record_t* record, const char* hostname, uint16_t port);
+
+minitls_err_t tls_record_process(tls_record_t* record);
+minitls_err_t tls_record_send(tls_record_t* record, tls_content_type_t content_type, buffer_t* payload);
+
+//Keys will be copied in local buffer
+minitls_err_t tls_record_set_keys(tls_record_t* record, tls_security_type_t security, const uint8_t* client_write_mac_key,
+ const uint8_t* server_write_mac_key, const uint8_t* client_write_cipher_key, const uint8_t* server_write_cipher_key);
+
+minitls_err_t tls_record_close(tls_record_t* record);
+
+minitls_err_t tls_record_set_read_timeout(tls_record_t* record, int timeout);
+minitls_err_t tls_record_set_write_timeout(tls_record_t* record, int timeout);
+
+#ifdef __cplusplus
+}
+#endif
+
+#endif /* TLS_RECORD_H_ */
