TLS (Transport Layer Security) More...

Data Structures
struct	TlsCipherSuiteInfo
	Structure describing a cipher suite. More...
struct	TlsSession
	TLS session. More...
struct	TlsCache
	Session cache. More...
struct	TlsCertDesc
	Certificate descriptor. More...
struct	_TlsContext
	TLS context. More...
Typedefs
typedef uint16_t	TlsCipherSuite
	Cipher suite.
typedef uint8_t	TlsCompressionMethod
	Compression method.
typedef uint8_t	TlsSequenceNumber [8]
	Sequence number.
typedef void *	TlsIoHandle
	Handle for I/O operations.
typedef error_t(*	TlsIoSendCallback )(TlsIoHandle handle, const void data, size_t length, size_t written, uint_t flags)
	Send callback function.
typedef error_t(*	TlsIoReceiveCallback )(TlsIoHandle handle, void data, size_t size, size_t received, uint_t flags)
	Receive callback function.
typedef error_t(*	TlsPskCallback )(TlsContext context, const char_t pskIdentity)
	Pre-shared key callback function.
Enumerations
enum	TlsConnectionEnd
	TLS connection end. More...
enum	TlsClientAuthMode
	Client authentication mode. More...
enum	TlsFlags
	Flags used by read and write functions. More...
enum	TlsContentType
	Content type. More...
enum	TlsMessageType
	Handshake message type. More...
enum	TlsAlertLevel
	Alert level. More...
enum	TlsAlertDescription
	Alert description. More...
enum	TlsCompressionMethodList
	Compression methods. More...
enum	TlsKeyExchMethod
	Key exchange methods. More...
enum	TlsCertificateType
	Certificate types. More...
enum	TlsHashAlgo
	Hash algorithms. More...
enum	TlsSignatureAlgo
	Signature algorithms. More...
enum	TlsExtensionType
	TLS extension types. More...
enum	TlsNameType
	Name type. More...
enum	TlsEcNamedCurve
	EC named curves. More...
enum	TlsEcPointFormat
	EC point formats. More...
enum	TlsEcCurveType
	EC curve types. More...
enum	TlsState
	TLS FSM states. More...
Functions
TlsContext *	tlsInit (void)
	TLS context initialization.
error_t	tlsSetIoCallbacks (TlsContext *context, TlsIoHandle handle, TlsIoSendCallback sendCallback, TlsIoReceiveCallback receiveCallback)
	Set send and receive callbacks (I/O abstraction layer)
error_t	tlsSetConnectionEnd (TlsContext *context, TlsConnectionEnd entity)
	Set operation mode (client or server)
error_t	tlsSetPrng (TlsContext context, const PrngAlgo prngAlgo, void *prngContext)
	Set the pseudo-random number generator to be used.
error_t	tlsSetServerName (TlsContext context, const char_t serverName)
	Set the name of the remote server.
error_t	tlsSetCache (TlsContext context, TlsCache cache)
	Set session cache.
error_t	tlsSetClientAuthMode (TlsContext *context, TlsClientAuthMode mode)
	Set client authentication mode.
error_t	tlsSetBufferSize (TlsContext *context, size_t txBufferSize, size_t rxBufferSize)
	Set TLS buffer size.
error_t	tlsSetCipherSuites (TlsContext context, const uint16_t cipherSuites, uint_t length)
	Specify the list of allowed cipher suites.
error_t	tlsSetDhParameters (TlsContext context, const char_t params, size_t length)
	Import Diffie-Hellman parameters.
error_t	tlsSetAlpnProtocolList (TlsContext context, const char_t protocolList)
	Set the list of supported ALPN protocols.
const char_t *	tlsGetAlpnProtocol (TlsContext *context)
	Get the name of the negotiated ALPN protocol.
error_t	tlsSetPsk (TlsContext context, const uint8_t psk, size_t pskLength)
	Set the pre-shared key to be used.
error_t	tlsSetPskIdentity (TlsContext context, const char_t pskIdentity)
	Set the PSK identity to be used by the client.
error_t	tlsSetPskIdentityHint (TlsContext context, const char_t pskIdentityHint)
	Set the PSK identity hint to be used by the server.
error_t	tlsSetPskCallback (TlsContext *context, TlsPskCallback pskCallback)
	Register the PSK callback function.
error_t	tlsSetTrustedCaList (TlsContext context, const char_t trustedCaList, size_t length)
	Import a trusted CA list.
error_t	tlsAddCertificate (TlsContext context, const char_t certChain, size_t certChainLength, const char_t *privateKey, size_t privateKeyLength)
	Import a certificate and the corresponding private key.
error_t	tlsConnect (TlsContext *context)
	Initiate the TLS handshake.
error_t	tlsWrite (TlsContext context, const void data, size_t length, size_t *written, uint_t flags)
	Send application data to the remote host using TLS.
error_t	tlsRead (TlsContext context, void data, size_t size, size_t *received, uint_t flags)
	Receive application data from a the remote host using TLS.
error_t	tlsShutdown (TlsContext *context)
	Gracefully close TLS session.
error_t	tlsShutdownEx (TlsContext *context, bool_t waitForCloseNotify)
	Gracefully close TLS session.
void	tlsFree (TlsContext *context)
	Release TLS context.
error_t	tlsSaveSession (const TlsContext context, TlsSession session)
	Save TLS session.
error_t	tlsRestoreSession (TlsContext context, const TlsSession session)
	Restore TLS session.
TlsCache *	tlsInitCache (uint_t size)
	Session cache initialization.
void	tlsFreeCache (TlsCache *cache)
	Properly dispose a session cache.

Detailed Description

TLS (Transport Layer Security)

License

This file is part of CycloneSSL Open.

This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.

Author:: Oryx Embedded SARL (www.oryx-embedded.com)

Version:: 1.7.6

Definition in file tls.h.

Typedef Documentation

typedef uint16_t TlsCipherSuite

Cipher suite.

Definition at line 905 of file tls.h.

typedef uint8_t TlsCompressionMethod

Compression method.

Definition at line 923 of file tls.h.

typedef void* TlsIoHandle

Handle for I/O operations.

Definition at line 1283 of file tls.h.

typedef error_t(* TlsIoReceiveCallback)(TlsIoHandle handle, void *data, size_t size, size_t *received, uint_t flags)

Receive callback function.

Definition at line 1298 of file tls.h.

typedef error_t(* TlsIoSendCallback)(TlsIoHandle handle, const void *data, size_t length, size_t *written, uint_t flags)

Send callback function.

Definition at line 1290 of file tls.h.

typedef error_t(* TlsPskCallback)(TlsContext *context, const char_t *pskIdentity)

Pre-shared key callback function.

Definition at line 1306 of file tls.h.

typedef uint8_t TlsSequenceNumber[8]

Sequence number.

Definition at line 1276 of file tls.h.

Enumeration Type Documentation

enum TlsAlertDescription

Alert description.

Definition at line 625 of file tls.h.

enum TlsAlertLevel

Alert level.

Definition at line 614 of file tls.h.

enum TlsCertificateType

Certificate types.

Definition at line 704 of file tls.h.

enum TlsClientAuthMode

Client authentication mode.

Definition at line 544 of file tls.h.

enum TlsCompressionMethodList

Compression methods.

Definition at line 665 of file tls.h.

enum TlsConnectionEnd

TLS connection end.

Definition at line 533 of file tls.h.

enum TlsContentType

Content type.

Definition at line 575 of file tls.h.

enum TlsEcCurveType

EC curve types.

Definition at line 850 of file tls.h.

enum TlsEcNamedCurve

EC named curves.

Definition at line 791 of file tls.h.

enum TlsEcPointFormat

EC point formats.

Definition at line 838 of file tls.h.

enum TlsExtensionType

TLS extension types.

Definition at line 753 of file tls.h.

enum TlsFlags

Flags used by read and write functions.

Definition at line 556 of file tls.h.

enum TlsHashAlgo

Hash algorithms.

Definition at line 724 of file tls.h.

enum TlsKeyExchMethod

Key exchange methods.

Definition at line 676 of file tls.h.

enum TlsMessageType

Handshake message type.

Definition at line 590 of file tls.h.

enum TlsNameType

Name type.

Definition at line 781 of file tls.h.

enum TlsSignatureAlgo

Signature algorithms.

Definition at line 740 of file tls.h.

enum TlsState

TLS FSM states.

Definition at line 862 of file tls.h.

Function Documentation

error_t tlsAddCertificate	(	TlsContext *	context,
		const char_t *	certChain,
		size_t	certChainLength,
		const char_t *	privateKey,
		size_t	privateKeyLength
	)

Import a certificate and the corresponding private key.

Parameters:

[in]	context	Pointer to the TLS context
[in]	certChain	Certificate chain (PEM format)
[in]	certChainLength	Total length of the certificate chain
[in]	privateKey	Private key (PEM format)
[in]	privateKeyLength	Total length of the private key

Returns:: Error code

Definition at line 674 of file tls.c.

error_t tlsConnect ( TlsContext * context )

Initiate the TLS handshake.

Parameters:

[in] context Pointer to the TLS context

Returns:: Error code

Definition at line 778 of file tls.c.

void tlsFree ( TlsContext * context )

Release TLS context.

Parameters:

[in] context Pointer to the TLS context

Definition at line 1230 of file tls.c.

void tlsFreeCache ( TlsCache * cache )

Properly dispose a session cache.

Parameters:

[in] cache Pointer to the session cache to be released

Definition at line 286 of file tls_cache.c.

const char_t* tlsGetAlpnProtocol ( TlsContext * context )

Get the name of the negotiated ALPN protocol.

Parameters:

[in] context Pointer to the TLS context

Returns:: Pointer to the protocol name

Definition at line 450 of file tls.c.

TlsContext* tlsInit ( void )

TLS context initialization.

Returns:: Handle referencing the fully initialized TLS context

Definition at line 60 of file tls.c.

TlsCache* tlsInitCache ( uint_t size )

Session cache initialization.

Parameters:

[in] size Maximum number of cache entries

Returns:: Handle referencing the fully initialized session cache

Definition at line 48 of file tls_cache.c.

error_t tlsRead	(	TlsContext *	context,
		void *	data,
		size_t	size,
		size_t *	received,
		uint_t	flags
	)

Receive application data from a the remote host using TLS.

Parameters:

[in]	context	Pointer to the TLS context
[out]	data	Buffer into which received data will be placed
[in]	size	Maximum number of bytes that can be received
[out]	received	Number of bytes that have been received
[in]	flags	Set of flags that influences the behavior of this function

Returns:: Error code

Definition at line 932 of file tls.c.

error_t tlsRestoreSession	(	TlsContext *	context,
		const TlsSession *	session
	)

Restore TLS session.

Parameters:

[in]	context	Pointer to the TLS context
[in]	session	Pointer to the session to be restored

Returns:: Error code

Definition at line 1408 of file tls.c.

error_t tlsSaveSession	(	const TlsContext *	context,
		TlsSession *	session
	)

Save TLS session.

Parameters:

[in]	context	Pointer to the TLS context
[out]	session	Buffer where to store the current session parameters

Returns:: Error code

Definition at line 1372 of file tls.c.

error_t tlsSetAlpnProtocolList	(	TlsContext *	context,
		const char_t *	protocolList
	)

Set the list of supported ALPN protocols.

Parameters:

[in]	context	Pointer to the TLS context
[in]	protocolList	Comma-delimited list of supported protocols

Returns:: Error code

Definition at line 402 of file tls.c.

error_t tlsSetBufferSize	(	TlsContext *	context,
		size_t	txBufferSize,
		size_t	rxBufferSize
	)

Set TLS buffer size.

Parameters:

[in]	context	Pointer to the TLS context
[in]	txBufferSize	TX buffer size
[in]	rxBufferSize	RX buffer size

Returns:: Error code

Definition at line 310 of file tls.c.

error_t tlsSetCache	(	TlsContext *	context,
		TlsCache *	cache
	)

Set session cache.

Parameters:

[in]	context	Pointer to the TLS context
[in]	cache	Session cache that will be used to save/resume TLS sessions

Returns:: Error code

Definition at line 267 of file tls.c.

error_t tlsSetCipherSuites	(	TlsContext *	context,
		const uint16_t *	cipherSuites,
		uint_t	length
	)

Specify the list of allowed cipher suites.

Parameters:

[in]	context	Pointer to the TLS context
[in]	cipherSuites	Pointer to the cipher suite list
[in]	length	Number of cipher suites in the list

Returns:: Error code

Definition at line 347 of file tls.c.

error_t tlsSetClientAuthMode	(	TlsContext *	context,
		TlsClientAuthMode	mode
	)

Set client authentication mode.

Parameters:

[in]	context	Pointer to the TLS context
[in]	mode	Client authentication mode

Returns:: Error code

Definition at line 288 of file tls.c.

error_t tlsSetConnectionEnd	(	TlsContext *	context,
		TlsConnectionEnd	entity
	)

Set operation mode (client or server)

Parameters:

[in]	context	Pointer to the TLS context
[in]	entity	Specifies whether this entity is considered a client or a server

Returns:: Error code

Definition at line 167 of file tls.c.

error_t tlsSetDhParameters	(	TlsContext *	context,
		const char_t *	params,
		size_t	length
	)

Import Diffie-Hellman parameters.

Parameters:

[in]	context	Pointer to the TLS context
[in]	params	PEM structure that holds Diffie-Hellman parameters
[in]	length	Total length of the DER structure

Returns:: Error code

Definition at line 374 of file tls.c.

error_t tlsSetIoCallbacks	(	TlsContext *	context,
		TlsIoHandle	handle,
		TlsIoSendCallback	sendCallback,
		TlsIoReceiveCallback	receiveCallback
	)

Set send and receive callbacks (I/O abstraction layer)

Parameters:

[in]	context	Pointer to the TLS context
[in]	handle	Handle for I/O operations
[in]	sendCallback	Send callback function
[in]	receiveCallback	Receive callback function

Returns:: Error code

Definition at line 141 of file tls.c.

error_t tlsSetPrng	(	TlsContext *	context,
		const PrngAlgo *	prngAlgo,
		void *	prngContext
	)

Set the pseudo-random number generator to be used.

Parameters:

[in]	context	Pointer to the TLS context
[in]	prngAlgo	PRNG algorithm
[in]	prngContext	Pointer to the PRNG context

Returns:: Error code

Definition at line 192 of file tls.c.

error_t tlsSetPsk	(	TlsContext *	context,
		const uint8_t *	psk,
		size_t	pskLength
	)

Set the pre-shared key to be used.

Parameters:

[in]	context	Pointer to the TLS context
[in]	psk	Pointer to the pre-shared key
[in]	pskLength	Length of the pre-shared key, in bytes

Returns:: Error code

Definition at line 465 of file tls.c.

error_t tlsSetPskCallback	(	TlsContext *	context,
		TlsPskCallback	pskCallback
	)

Register the PSK callback function.

Parameters:

[in]	context	Pointer to the TLS context
[in]	pskCallback	PSK callback function

Returns:: Error code

Definition at line 617 of file tls.c.

error_t tlsSetPskIdentity	(	TlsContext *	context,
		const char_t *	pskIdentity
	)

Set the PSK identity to be used by the client.

Parameters:

[in]	context	Pointer to the TLS context
[in]	pskIdentity	NULL-terminated string that contains the PSK identity

Returns:: Error code

Definition at line 517 of file tls.c.

error_t tlsSetPskIdentityHint	(	TlsContext *	context,
		const char_t *	pskIdentityHint
	)

Set the PSK identity hint to be used by the server.

Parameters:

[in]	context	Pointer to the TLS context
[in]	pskIdentityHint	NULL-terminated string that contains the PSK identity hint

Returns:: Error code

Definition at line 567 of file tls.c.

error_t tlsSetServerName	(	TlsContext *	context,
		const char_t *	serverName
	)

Set the name of the remote server.

Parameters:

[in]	context	Pointer to the TLS context
[in]	serverName	Fully qualified domain name of the server

Returns:: Error code

Definition at line 218 of file tls.c.

error_t tlsSetTrustedCaList	(	TlsContext *	context,
		const char_t *	trustedCaList,
		size_t	length
	)

Import a trusted CA list.

Parameters:

[in]	context	Pointer to the TLS context
[in]	trustedCaList	List of trusted CA (PEM format)
[in]	length	Total length of the list

Returns:: Error code

Definition at line 645 of file tls.c.

error_t tlsShutdown ( TlsContext * context )

Gracefully close TLS session.

Parameters:

[in] context Pointer to the TLS context

Definition at line 1097 of file tls.c.

error_t tlsShutdownEx	(	TlsContext *	context,
		bool_t	waitForCloseNotify
	)

Gracefully close TLS session.

Parameters:

[in]	context	Pointer to the TLS context
[in]	waitForCloseNotify	Wait for the close notify alert from the peer

Definition at line 1110 of file tls.c.

error_t tlsWrite	(	TlsContext *	context,
		const void *	data,
		size_t	length,
		size_t *	written,
		uint_t	flags
	)

Send application data to the remote host using TLS.

Parameters:

[in]	context	Pointer to the TLS context
[in]	data	Pointer to a buffer containing the data to be transmitted
[in]	length	Number of bytes to be transmitted
[out]	written	Actual number of bytes written (optional parameter)
[in]	flags	Set of flags that influences the behavior of this function

Returns:: Error code

Definition at line 849 of file tls.c.

Type:	Library
Created:	04 Feb 2017
Imports:	72
Forks:	0
Commits:	1
Dependents:	1
Dependencies:	0
Followers:	6

tls.h File Reference

Data Structures

Typedefs

Enumerations

Functions

Detailed Description

License

Typedef Documentation

Enumeration Type Documentation

Function Documentation

Repository toolbox

Repository details

Important Information for this Arm website

tls.h File Reference

Data Structures

Typedefs

Enumerations

Functions

Detailed Description

License

Typedef Documentation

Enumeration Type Documentation

Function Documentation

Repository toolbox

Repository details

Important Information for this Arm website

Access Warning