mirror of
https://github.com/nodemcu/nodemcu-firmware.git
synced 2025-01-30 21:12:55 +08:00
863dfb59ed
* Remove stale putative MD2 support This hasn't worked in a while, presumably since one of our upstream merges. Don't bother making it work, since MD2 is generally considered insecure. * Land mbedtls 2.16.3-77-gf02988e57 * TLS: remove some dead code from espconn_mbedtls There was some... frankly kind of scary buffer and data shuffling if ESP8266_PLATFORM was defined. Since we don't, in fact, define that preprocessor symbol, just drop the code lest anyone (possibly future-me) be scared. * TLS: espconn_mbedtls: run through astyle No functional changes * TLS: espconn_mbedtls: put the file_params on the stack There's no need to malloc a structure that's used only locally. * TLS: Further minor tidying of mbedtls glue What an absolute shitshow this is. mbedtls should absolutely not be mentioned inside sys/socket.h and app/mbedtls/app/lwIPSocket.c is not so much glue as it as a complete copy of a random subset of lwIP; it should go, but we aren't there yet. Get rid of the mysterious "mbedlts_record" struct, which housed merely a length of bytes sent solely for gating the "record sent" callback. Remove spurious __attribute__((weak)) from symbols not otherwise defined and rename them to emphasize that they are not actually part of mbedtls proper. * TLS: Rampage esp mbedtls glue and delete unused code This at least makes the shitshow smaller * TLS: lwip: fix some memp definitions I presume these also need the new arguments * TLS: Remove more non-NodeMCU code from our mbedtls * TLS: drop support for 1.1 Depending on who you ask it's either EOL already or EOL soon, so we may as well get rid of it now.
116 lines
3.2 KiB
C
116 lines
3.2 KiB
C
/**
|
|
* \file ssl_cookie.h
|
|
*
|
|
* \brief DTLS cookie callbacks implementation
|
|
*/
|
|
/*
|
|
* Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
|
|
* SPDX-License-Identifier: Apache-2.0
|
|
*
|
|
* Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
* not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
*
|
|
* This file is part of mbed TLS (https://tls.mbed.org)
|
|
*/
|
|
#ifndef MBEDTLS_SSL_COOKIE_H
|
|
#define MBEDTLS_SSL_COOKIE_H
|
|
|
|
#if !defined(MBEDTLS_CONFIG_FILE)
|
|
#include "config.h"
|
|
#else
|
|
#include MBEDTLS_CONFIG_FILE
|
|
#endif
|
|
|
|
#include "ssl.h"
|
|
|
|
#if defined(MBEDTLS_THREADING_C)
|
|
#include "threading.h"
|
|
#endif
|
|
|
|
/**
|
|
* \name SECTION: Module settings
|
|
*
|
|
* The configuration options you can set for this module are in this section.
|
|
* Either change them in config.h or define them on the compiler command line.
|
|
* \{
|
|
*/
|
|
#ifndef MBEDTLS_SSL_COOKIE_TIMEOUT
|
|
#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
|
|
#endif
|
|
|
|
/* \} name SECTION: Module settings */
|
|
|
|
#ifdef __cplusplus
|
|
extern "C" {
|
|
#endif
|
|
|
|
/**
|
|
* \brief Context for the default cookie functions.
|
|
*/
|
|
typedef struct mbedtls_ssl_cookie_ctx
|
|
{
|
|
mbedtls_md_context_t hmac_ctx; /*!< context for the HMAC portion */
|
|
#if !defined(MBEDTLS_HAVE_TIME)
|
|
unsigned long serial; /*!< serial number for expiration */
|
|
#endif
|
|
unsigned long timeout; /*!< timeout delay, in seconds if HAVE_TIME,
|
|
or in number of tickets issued */
|
|
|
|
#if defined(MBEDTLS_THREADING_C)
|
|
mbedtls_threading_mutex_t mutex;
|
|
#endif
|
|
} mbedtls_ssl_cookie_ctx;
|
|
|
|
/**
|
|
* \brief Initialize cookie context
|
|
*/
|
|
void mbedtls_ssl_cookie_init( mbedtls_ssl_cookie_ctx *ctx );
|
|
|
|
/**
|
|
* \brief Setup cookie context (generate keys)
|
|
*/
|
|
int mbedtls_ssl_cookie_setup( mbedtls_ssl_cookie_ctx *ctx,
|
|
int (*f_rng)(void *, unsigned char *, size_t),
|
|
void *p_rng );
|
|
|
|
/**
|
|
* \brief Set expiration delay for cookies
|
|
* (Default MBEDTLS_SSL_COOKIE_TIMEOUT)
|
|
*
|
|
* \param ctx Cookie contex
|
|
* \param delay Delay, in seconds if HAVE_TIME, or in number of cookies
|
|
* issued in the meantime.
|
|
* 0 to disable expiration (NOT recommended)
|
|
*/
|
|
void mbedtls_ssl_cookie_set_timeout( mbedtls_ssl_cookie_ctx *ctx, unsigned long delay );
|
|
|
|
/**
|
|
* \brief Free cookie context
|
|
*/
|
|
void mbedtls_ssl_cookie_free( mbedtls_ssl_cookie_ctx *ctx );
|
|
|
|
/**
|
|
* \brief Generate cookie, see \c mbedtls_ssl_cookie_write_t
|
|
*/
|
|
mbedtls_ssl_cookie_write_t mbedtls_ssl_cookie_write;
|
|
|
|
/**
|
|
* \brief Verify cookie, see \c mbedtls_ssl_cookie_write_t
|
|
*/
|
|
mbedtls_ssl_cookie_check_t mbedtls_ssl_cookie_check;
|
|
|
|
#ifdef __cplusplus
|
|
}
|
|
#endif
|
|
|
|
#endif /* ssl_cookie.h */
|