Home Explore Help
Register Sign In
huang_chao
/
EC600G
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 71afda5c85
Branches Tags
EC600G
/
components
/
net
/
mbedtls
/
programs
/
ssl
/
ssl_client2.c

ssl_client2.c 108 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315131613171318131913201321132213231324132513261327132813291330133113321333133413351336133713381339134013411342134313441345134613471348134913501351135213531354135513561357135813591360136113621363136413651366136713681369137013711372137313741375137613771378137913801381138213831384138513861387138813891390139113921393139413951396139713981399140014011402140314041405140614071408140914101411141214131414141514161417141814191420142114221423142414251426142714281429143014311432143314341435143614371438143914401441144214431444144514461447144814491450145114521453145414551456145714581459146014611462146314641465146614671468146914701471147214731474147514761477147814791480148114821483148414851486148714881489149014911492149314941495149614971498149915001501150215031504150515061507150815091510151115121513151415151516151715181519152015211522152315241525152615271528152915301531153215331534153515361537153815391540154115421543154415451546154715481549155015511552155315541555155615571558155915601561156215631564156515661567156815691570157115721573157415751576157715781579158015811582158315841585158615871588158915901591159215931594159515961597159815991600160116021603160416051606160716081609161016111612161316141615161616171618161916201621162216231624162516261627162816291630163116321633163416351636163716381639164016411642164316441645164616471648164916501651165216531654165516561657165816591660166116621663166416651666166716681669167016711672167316741675167616771678167916801681168216831684168516861687168816891690169116921693169416951696169716981699170017011702170317041705170617071708170917101711171217131714171517161717171817191720172117221723172417251726172717281729173017311732173317341735173617371738173917401741174217431744174517461747174817491750175117521753175417551756175717581759176017611762176317641765176617671768176917701771177217731774177517761777177817791780178117821783178417851786178717881789179017911792179317941795179617971798179918001801180218031804180518061807180818091810181118121813181418151816181718181819182018211822182318241825182618271828182918301831183218331834183518361837183818391840184118421843184418451846184718481849185018511852185318541855185618571858185918601861186218631864186518661867186818691870187118721873187418751876187718781879188018811882188318841885188618871888188918901891189218931894189518961897189818991900190119021903190419051906190719081909191019111912191319141915191619171918191919201921192219231924192519261927192819291930193119321933193419351936193719381939194019411942194319441945194619471948194919501951195219531954195519561957195819591960196119621963196419651966196719681969197019711972197319741975197619771978197919801981198219831984198519861987198819891990199119921993199419951996199719981999200020012002200320042005200620072008200920102011201220132014201520162017201820192020202120222023202420252026202720282029203020312032203320342035203620372038203920402041204220432044204520462047204820492050205120522053205420552056205720582059206020612062206320642065206620672068206920702071207220732074207520762077207820792080208120822083208420852086208720882089209020912092209320942095209620972098209921002101210221032104210521062107210821092110211121122113211421152116211721182119212021212122212321242125212621272128212921302131213221332134213521362137213821392140214121422143214421452146214721482149215021512152215321542155215621572158215921602161216221632164216521662167216821692170217121722173217421752176217721782179218021812182218321842185218621872188218921902191219221932194219521962197219821992200220122022203220422052206220722082209221022112212221322142215221622172218221922202221222222232224222522262227222822292230223122322233223422352236223722382239224022412242224322442245224622472248224922502251225222532254225522562257225822592260226122622263226422652266226722682269227022712272227322742275227622772278227922802281228222832284228522862287228822892290229122922293229422952296229722982299230023012302230323042305230623072308230923102311231223132314231523162317231823192320232123222323232423252326232723282329233023312332233323342335233623372338233923402341234223432344234523462347234823492350235123522353235423552356235723582359236023612362236323642365236623672368236923702371237223732374237523762377237823792380238123822383238423852386238723882389239023912392239323942395239623972398239924002401240224032404240524062407240824092410241124122413241424152416241724182419242024212422242324242425242624272428242924302431243224332434243524362437243824392440244124422443244424452446244724482449245024512452245324542455245624572458245924602461246224632464246524662467246824692470247124722473247424752476247724782479248024812482248324842485248624872488248924902491249224932494249524962497249824992500250125022503250425052506250725082509251025112512251325142515251625172518251925202521252225232524252525262527252825292530253125322533253425352536253725382539254025412542254325442545254625472548254925502551255225532554255525562557255825592560256125622563256425652566256725682569257025712572257325742575257625772578257925802581258225832584258525862587258825892590259125922593259425952596259725982599260026012602260326042605260626072608260926102611261226132614261526162617261826192620262126222623262426252626262726282629263026312632263326342635263626372638263926402641264226432644264526462647264826492650265126522653265426552656265726582659266026612662266326642665266626672668266926702671267226732674267526762677267826792680268126822683268426852686268726882689269026912692269326942695269626972698269927002701270227032704270527062707270827092710271127122713271427152716271727182719272027212722272327242725272627272728272927302731273227332734273527362737273827392740274127422743274427452746274727482749275027512752275327542755275627572758275927602761276227632764276527662767276827692770277127722773277427752776277727782779278027812782278327842785278627872788278927902791279227932794279527962797279827992800280128022803280428052806280728082809281028112812281328142815281628172818281928202821282228232824282528262827282828292830283128322833283428352836283728382839284028412842284328442845284628472848284928502851285228532854285528562857285828592860286128622863286428652866286728682869287028712872287328742875287628772878287928802881288228832884288528862887288828892890289128922893289428952896289728982899290029012902290329042905290629072908290929102911291229132914291529162917291829192920292129222923292429252926292729282929293029312932293329342935293629372938293929402941294229432944294529462947294829492950295129522953295429552956295729582959296029612962296329642965296629672968296929702971297229732974297529762977297829792980298129822983298429852986298729882989299029912992299329942995299629972998299930003001300230033004300530063007300830093010301130123013301430153016301730183019302030213022302330243025302630273028302930303031303230333034303530363037303830393040304130423043304430453046304730483049305030513052305330543055305630573058305930603061306230633064306530663067306830693070307130723073307430753076307730783079308030813082308330843085308630873088308930903091309230933094309530963097309830993100 
  1. /*
    2. 

  2.  *  SSL client with certificate authentication
    3. 

  3.  *
    4. 

  4.  *  Copyright The Mbed TLS Contributors
    5. 

  5.  *  SPDX-License-Identifier: Apache-2.0
    6. 

  6.  *
    7. 

  7.  *  Licensed under the Apache License, Version 2.0 (the "License"); you may
    8. 

  8.  *  not use this file except in compliance with the License.
    9. 

  9.  *  You may obtain a copy of the License at
    10. 

  10.  *
    11. 

  11.  *  http://www.apache.org/licenses/LICENSE-2.0
    12. 

  12.  *
    13. 

  13.  *  Unless required by applicable law or agreed to in writing, software
    14. 

  14.  *  distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
    15. 

  15.  *  WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    16. 

  16.  *  See the License for the specific language governing permissions and
    17. 

  17.  *  limitations under the License.
    18. 

  18.  */
    19. 

  19. 

  20. #include "ssl_test_lib.h"
    21. 

  21. 

  22. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    23. 

  23. #include "test/psa_crypto_helpers.h"
    24. 

  24. #endif
    25. 

  25. 

  26. #if defined(MBEDTLS_SSL_TEST_IMPOSSIBLE)
    27. 

  27. int main( void )
    28. 

  28. {
    29. 

  29.     mbedtls_printf( MBEDTLS_SSL_TEST_IMPOSSIBLE );
    30. 

  30.     mbedtls_exit( 0 );
    31. 

  31. }
    32. 

  32. #elif !defined(MBEDTLS_SSL_CLI_C)
    33. 

  33. int main( void )
    34. 

  34. {
    35. 

  35.     mbedtls_printf( "MBEDTLS_SSL_CLI_C not defined.\n" );
    36. 

  36.     mbedtls_exit( 0 );
    37. 

  37. }
    38. 

  38. #else /* !MBEDTLS_SSL_TEST_IMPOSSIBLE && MBEDTLS_SSL_CLI_C */
    39. 

  39. 

  40. /* Size of memory to be allocated for the heap, when using the library's memory
    41. 

  41.  * management and MBEDTLS_MEMORY_BUFFER_ALLOC_C is enabled. */
    42. 

  42. #define MEMORY_HEAP_SIZE      120000
    43. 

  43. 

  44. #define MAX_REQUEST_SIZE      20000
    45. 

  45. #define MAX_REQUEST_SIZE_STR "20000"
    46. 

  46. 

  47. #define DFL_SERVER_NAME         "localhost"
    48. 

  48. #define DFL_SERVER_ADDR         NULL
    49. 

  49. #define DFL_SERVER_PORT         "4433"
    50. 

  50. #define DFL_REQUEST_PAGE        "/"
    51. 

  51. #define DFL_REQUEST_SIZE        -1
    52. 

  52. #define DFL_DEBUG_LEVEL         0
    53. 

  53. #define DFL_CONTEXT_CRT_CB      0
    54. 

  54. #define DFL_NBIO                0
    55. 

  55. #define DFL_EVENT               0
    56. 

  56. #define DFL_READ_TIMEOUT        0
    57. 

  57. #define DFL_MAX_RESEND          0
    58. 

  58. #define DFL_CA_FILE             ""
    59. 

  59. #define DFL_CA_PATH             ""
    60. 

  60. #define DFL_CRT_FILE            ""
    61. 

  61. #define DFL_KEY_FILE            ""
    62. 

  62. #define DFL_KEY_OPAQUE          0
    63. 

  63. #define DFL_KEY_PWD             ""
    64. 

  64. #define DFL_PSK                 ""
    65. 

  65. #define DFL_PSK_OPAQUE          0
    66. 

  66. #define DFL_PSK_IDENTITY        "Client_identity"
    67. 

  67. #define DFL_ECJPAKE_PW          NULL
    68. 

  68. #define DFL_EC_MAX_OPS          -1
    69. 

  69. #define DFL_FORCE_CIPHER        0
    70. 

  70. #define DFL_RENEGOTIATION       MBEDTLS_SSL_RENEGOTIATION_DISABLED
    71. 

  71. #define DFL_ALLOW_LEGACY        -2
    72. 

  72. #define DFL_RENEGOTIATE         0
    73. 

  73. #define DFL_EXCHANGES           1
    74. 

  74. #define DFL_MIN_VERSION         -1
    75. 

  75. #define DFL_MAX_VERSION         -1
    76. 

  76. #define DFL_ARC4                -1
    77. 

  77. #define DFL_SHA1                -1
    78. 

  78. #define DFL_AUTH_MODE           -1
    79. 

  79. #define DFL_MFL_CODE            MBEDTLS_SSL_MAX_FRAG_LEN_NONE
    80. 

  80. #define DFL_TRUNC_HMAC          -1
    81. 

  81. #define DFL_RECSPLIT            -1
    82. 

  82. #define DFL_DHMLEN              -1
    83. 

  83. #define DFL_RECONNECT           0
    84. 

  84. #define DFL_RECO_DELAY          0
    85. 

  85. #define DFL_RECO_MODE           1
    86. 

  86. #define DFL_CID_ENABLED         0
    87. 

  87. #define DFL_CID_VALUE           ""
    88. 

  88. #define DFL_CID_ENABLED_RENEGO  -1
    89. 

  89. #define DFL_CID_VALUE_RENEGO    NULL
    90. 

  90. #define DFL_RECONNECT_HARD      0
    91. 

  91. #define DFL_TICKETS             MBEDTLS_SSL_SESSION_TICKETS_ENABLED
    92. 

  92. #define DFL_ALPN_STRING         NULL
    93. 

  93. #define DFL_CURVES              NULL
    94. 

  94. #define DFL_TRANSPORT           MBEDTLS_SSL_TRANSPORT_STREAM
    95. 

  95. #define DFL_HS_TO_MIN           0
    96. 

  96. #define DFL_HS_TO_MAX           0
    97. 

  97. #define DFL_DTLS_MTU            -1
    98. 

  98. #define DFL_DGRAM_PACKING        1
    99. 

  99. #define DFL_FALLBACK            -1
    100. 

  100. #define DFL_EXTENDED_MS         -1
    101. 

  101. #define DFL_ETM                 -1
    102. 

  102. #define DFL_SERIALIZE           0
    103. 

  103. #define DFL_CONTEXT_FILE        ""
    104. 

  104. #define DFL_EXTENDED_MS_ENFORCE -1
    105. 

  105. #define DFL_CA_CALLBACK         0
    106. 

  106. #define DFL_EAP_TLS             0
    107. 

  107. #define DFL_REPRODUCIBLE        0
    108. 

  108. #define DFL_NSS_KEYLOG          0
    109. 

  109. #define DFL_NSS_KEYLOG_FILE     NULL
    110. 

  110. #define DFL_SKIP_CLOSE_NOTIFY   0
    111. 

  111. #define DFL_QUERY_CONFIG_MODE   0
    112. 

  112. #define DFL_USE_SRTP            0
    113. 

  113. #define DFL_SRTP_FORCE_PROFILE  0
    114. 

  114. #define DFL_SRTP_MKI            ""
    115. 

  115. 

  116. #define GET_REQUEST "GET %s HTTP/1.0\r\nExtra-header: "
    117. 

  117. #define GET_REQUEST_END "\r\n\r\n"
    118. 

  118. 

  119. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    120. 

  120. #define USAGE_CONTEXT_CRT_CB \
    121. 

  121.     "    context_crt_cb=%%d   This determines whether the CRT verification callback is bound\n" \
    122. 

  122.     "                        to the SSL configuration of the SSL context.\n" \
    123. 

  123.     "                        Possible values:\n"\
    124. 

  124.     "                        - 0 (default): Use CRT callback bound to configuration\n" \
    125. 

  125.     "                        - 1: Use CRT callback bound to SSL context\n"
    126. 

  126. #else
    127. 

  127. #define USAGE_CONTEXT_CRT_CB ""
    128. 

  128. #endif /* MBEDTLS_X509_CRT_PARSE_C */
    129. 

  129. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    130. 

  130. #if defined(MBEDTLS_FS_IO)
    131. 

  131. #define USAGE_IO \
    132. 

  132.     "    ca_file=%%s          The single file containing the top-level CA(s) you fully trust\n" \
    133. 

  133.     "                        default: \"\" (pre-loaded)\n" \
    134. 

  134.     "                        use \"none\" to skip loading any top-level CAs.\n" \
    135. 

  135.     "    ca_path=%%s          The path containing the top-level CA(s) you fully trust\n" \
    136. 

  136.     "                        default: \"\" (pre-loaded) (overrides ca_file)\n" \
    137. 

  137.     "                        use \"none\" to skip loading any top-level CAs.\n" \
    138. 

  138.     "    crt_file=%%s         Your own cert and chain (in bottom to top order, top may be omitted)\n" \
    139. 

  139.     "                        default: \"\" (pre-loaded)\n" \
    140. 

  140.     "    key_file=%%s         default: \"\" (pre-loaded)\n"\
    141. 

  141.     "    key_pwd=%%s          Password for key specified by key_file argument\n"\
    142. 

  142.     "                        default: none\n"
    143. 

  143. #else
    144. 

  144. #define USAGE_IO \
    145. 

  145.     "    No file operations available (MBEDTLS_FS_IO not defined)\n"
    146. 

  146. #endif /* MBEDTLS_FS_IO */
    147. 

  147. #else /* MBEDTLS_X509_CRT_PARSE_C */
    148. 

  148. #define USAGE_IO ""
    149. 

  149. #endif /* MBEDTLS_X509_CRT_PARSE_C */
    150. 

  150. #if defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_X509_CRT_PARSE_C)
    151. 

  151. #define USAGE_KEY_OPAQUE \
    152. 

  152.     "    key_opaque=%%d       Handle your private key as if it were opaque\n" \
    153. 

  153.     "                        default: 0 (disabled)\n"
    154. 

  154. #else
    155. 

  155. #define USAGE_KEY_OPAQUE ""
    156. 

  156. #endif
    157. 

  157. 

  158. #if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
    159. 

  159. #define USAGE_CID \
    160. 

  160.     "    cid=%%d             Disable (0) or enable (1) the use of the DTLS Connection ID extension.\n" \
    161. 

  161.     "                       default: 0 (disabled)\n"     \
    162. 

  162.     "    cid_renego=%%d      Disable (0) or enable (1) the use of the DTLS Connection ID extension during renegotiation.\n" \
    163. 

  163.     "                       default: same as 'cid' parameter\n"     \
    164. 

  164.     "    cid_val=%%s          The CID to use for incoming messages (in hex, without 0x).\n"  \
    165. 

  165.     "                        default: \"\"\n" \
    166. 

  166.     "    cid_val_renego=%%s   The CID to use for incoming messages (in hex, without 0x) after renegotiation.\n"  \
    167. 

  167.     "                        default: same as 'cid_val' parameter\n"
    168. 

  168. #else /* MBEDTLS_SSL_DTLS_CONNECTION_ID */
    169. 

  169. #define USAGE_CID ""
    170. 

  170. #endif /* MBEDTLS_SSL_DTLS_CONNECTION_ID */
    171. 

  171. 

  172. #if defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED)
    173. 

  173. #define USAGE_PSK_RAW                                               \
    174. 

  174.     "    psk=%%s              default: \"\" (disabled)\n"     \
    175. 

  175.     "                          The PSK values are in hex, without 0x.\n" \
    176. 

  176.     "    psk_identity=%%s     default: \"Client_identity\"\n"
    177. 

  177. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    178. 

  178. #define USAGE_PSK_SLOT                          \
    179. 

  179.     "    psk_opaque=%%d       default: 0 (don't use opaque static PSK)\n"     \
    180. 

  180.     "                          Enable this to store the PSK configured through command line\n" \
    181. 

  181.     "                          parameter `psk` in a PSA-based key slot.\n" \
    182. 

  182.     "                          Note: Currently only supported in conjunction with\n"                  \
    183. 

  183.     "                          the use of min_version to force TLS 1.2 and force_ciphersuite \n"      \
    184. 

  184.     "                          to force a particular PSK-only ciphersuite.\n"                         \
    185. 

  185.     "                          Note: This is to test integration of PSA-based opaque PSKs with\n"     \
    186. 

  186.     "                          Mbed TLS only. Production systems are likely to configure Mbed TLS\n"  \
    187. 

  187.     "                          with prepopulated key slots instead of importing raw key material.\n"
    188. 

  188. #else
    189. 

  189. #define USAGE_PSK_SLOT ""
    190. 

  190. #endif /* MBEDTLS_USE_PSA_CRYPTO */
    191. 

  191. #define USAGE_PSK USAGE_PSK_RAW USAGE_PSK_SLOT
    192. 

  192. #else
    193. 

  193. #define USAGE_PSK ""
    194. 

  194. #endif /* MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED */
    195. 

  195. 

  196. #if defined(MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK)
    197. 

  197. #define USAGE_CA_CALLBACK                       \
    198. 

  198.     "   ca_callback=%%d       default: 0 (disabled)\n"      \
    199. 

  199.     "                         Enable this to use the trusted certificate callback function\n"
    200. 

  200. #else
    201. 

  201. #define USAGE_CA_CALLBACK ""
    202. 

  202. #endif /* MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK */
    203. 

  203. 

  204. #if defined(MBEDTLS_SSL_SESSION_TICKETS)
    205. 

  205. #define USAGE_TICKETS                                       \
    206. 

  206.     "    tickets=%%d          default: 1 (enabled)\n"
    207. 

  207. #else
    208. 

  208. #define USAGE_TICKETS ""
    209. 

  209. #endif /* MBEDTLS_SSL_SESSION_TICKETS */
    210. 

  210. 

  211. #if defined(MBEDTLS_SSL_EXPORT_KEYS)
    212. 

  212. #define USAGE_EAP_TLS                                       \
    213. 

  213.     "    eap_tls=%%d          default: 0 (disabled)\n"
    214. 

  214. #define USAGE_NSS_KEYLOG                                    \
    215. 

  215.     "    nss_keylog=%%d          default: 0 (disabled)\n"               \
    216. 

  216.     "                             This cannot be used with eap_tls=1\n"
    217. 

  217. #define USAGE_NSS_KEYLOG_FILE                               \
    218. 

  218.     "    nss_keylog_file=%%s\n"
    219. 

  219. #if defined(MBEDTLS_SSL_DTLS_SRTP)
    220. 

  220. #define USAGE_SRTP \
    221. 

  221.     "    use_srtp=%%d         default: 0 (disabled)\n" \
    222. 

  222.     "                          This cannot be used with eap_tls=1 or "\
    223. 

  223.     "                          nss_keylog=1\n"             \
    224. 

  224.     "    srtp_force_profile=%%d  default: 0 (all enabled)\n"   \
    225. 

  225.     "                        available profiles:\n"       \
    226. 

  226.     "                        1 - SRTP_AES128_CM_HMAC_SHA1_80\n"  \
    227. 

  227.     "                        2 - SRTP_AES128_CM_HMAC_SHA1_32\n"  \
    228. 

  228.     "                        3 - SRTP_NULL_HMAC_SHA1_80\n"       \
    229. 

  229.     "                        4 - SRTP_NULL_HMAC_SHA1_32\n"       \
    230. 

  230.     "    mki=%%s              default: \"\" (in hex, without 0x)\n"
    231. 

  231. #else /* MBEDTLS_SSL_DTLS_SRTP */
    232. 

  232. #define USAGE_SRTP ""
    233. 

  233. #endif
    234. 

  234. #else /* MBEDTLS_SSL_EXPORT_KEYS */
    235. 

  235. #define USAGE_EAP_TLS ""
    236. 

  236. #define USAGE_NSS_KEYLOG ""
    237. 

  237. #define USAGE_NSS_KEYLOG_FILE ""
    238. 

  238. #define USAGE_SRTP ""
    239. 

  239. #endif /* MBEDTLS_SSL_EXPORT_KEYS */
    240. 

  240. 

  241. #if defined(MBEDTLS_SSL_TRUNCATED_HMAC)
    242. 

  242. #define USAGE_TRUNC_HMAC                                    \
    243. 

  243.     "    trunc_hmac=%%d       default: library default\n"
    244. 

  244. #else
    245. 

  245. #define USAGE_TRUNC_HMAC ""
    246. 

  246. #endif /* MBEDTLS_SSL_TRUNCATED_HMAC */
    247. 

  247. 

  248. #if defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH)
    249. 

  249. #define USAGE_MAX_FRAG_LEN                                      \
    250. 

  250.     "    max_frag_len=%%d     default: 16384 (tls default)\n"   \
    251. 

  251.     "                        options: 512, 1024, 2048, 4096\n"
    252. 

  252. #else
    253. 

  253. #define USAGE_MAX_FRAG_LEN ""
    254. 

  254. #endif /* MBEDTLS_SSL_MAX_FRAGMENT_LENGTH */
    255. 

  255. 

  256. #if defined(MBEDTLS_SSL_CBC_RECORD_SPLITTING)
    257. 

  257. #define USAGE_RECSPLIT \
    258. 

  258.     "    recsplit=0/1        default: (library default: on)\n"
    259. 

  259. #else
    260. 

  260. #define USAGE_RECSPLIT
    261. 

  261. #endif
    262. 

  262. 

  263. #if defined(MBEDTLS_DHM_C)
    264. 

  264. #define USAGE_DHMLEN \
    265. 

  265.     "    dhmlen=%%d           default: (library default: 1024 bits)\n"
    266. 

  266. #else
    267. 

  267. #define USAGE_DHMLEN
    268. 

  268. #endif
    269. 

  269. 

  270. #if defined(MBEDTLS_SSL_ALPN)
    271. 

  271. #define USAGE_ALPN \
    272. 

  272.     "    alpn=%%s             default: \"\" (disabled)\n"   \
    273. 

  273.     "                        example: spdy/1,http/1.1\n"
    274. 

  274. #else
    275. 

  275. #define USAGE_ALPN ""
    276. 

  276. #endif /* MBEDTLS_SSL_ALPN */
    277. 

  277. 

  278. #if defined(MBEDTLS_ECP_C)
    279. 

  279. #define USAGE_CURVES \
    280. 

  280.     "    curves=a,b,c,d      default: \"default\" (library default)\n"  \
    281. 

  281.     "                        example: \"secp521r1,brainpoolP512r1\"\n"  \
    282. 

  282.     "                        - use \"none\" for empty list\n"           \
    283. 

  283.     "                        - see mbedtls_ecp_curve_list()\n"          \
    284. 

  284.     "                          for acceptable curve names\n"
    285. 

  285. #else
    286. 

  286. #define USAGE_CURVES ""
    287. 

  287. #endif
    288. 

  288. 

  289. #if defined(MBEDTLS_SSL_PROTO_DTLS)
    290. 

  290. #define USAGE_DTLS \
    291. 

  291.     "    dtls=%%d             default: 0 (TLS)\n"                           \
    292. 

  292.     "    hs_timeout=%%d-%%d    default: (library default: 1000-60000)\n"    \
    293. 

  293.     "                        range of DTLS handshake timeouts in millisecs\n" \
    294. 

  294.     "    mtu=%%d              default: (library default: unlimited)\n"  \
    295. 

  295.     "    dgram_packing=%%d    default: 1 (allowed)\n"                   \
    296. 

  296.     "                        allow or forbid packing of multiple\n" \
    297. 

  297.     "                        records within a single datgram.\n"
    298. 

  298. #else
    299. 

  299. #define USAGE_DTLS ""
    300. 

  300. #endif
    301. 

  301. 

  302. #if defined(MBEDTLS_SSL_FALLBACK_SCSV)
    303. 

  303. #define USAGE_FALLBACK \
    304. 

  304.     "    fallback=0/1        default: (library default: off)\n"
    305. 

  305. #else
    306. 

  306. #define USAGE_FALLBACK ""
    307. 

  307. #endif
    308. 

  308. 

  309. #if defined(MBEDTLS_SSL_EXTENDED_MASTER_SECRET)
    310. 

  310. #define USAGE_EMS \
    311. 

  311.     "    extended_ms=0/1     default: (library default: on)\n"
    312. 

  312. #else
    313. 

  313. #define USAGE_EMS ""
    314. 

  314. #endif
    315. 

  315. 

  316. #if defined(MBEDTLS_SSL_ENCRYPT_THEN_MAC)
    317. 

  317. #define USAGE_ETM \
    318. 

  318.     "    etm=0/1             default: (library default: on)\n"
    319. 

  319. #else
    320. 

  320. #define USAGE_ETM ""
    321. 

  321. #endif
    322. 

  322. 

  323. #define USAGE_REPRODUCIBLE \
    324. 

  324.     "    reproducible=0/1     default: 0 (disabled)\n"
    325. 

  325. 

  326. #if defined(MBEDTLS_SSL_RENEGOTIATION)
    327. 

  327. #define USAGE_RENEGO \
    328. 

  328.     "    renegotiation=%%d    default: 0 (disabled)\n"      \
    329. 

  329.     "    renegotiate=%%d      default: 0 (disabled)\n"
    330. 

  330. #else
    331. 

  331. #define USAGE_RENEGO ""
    332. 

  332. #endif
    333. 

  333. 

  334. #if defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED)
    335. 

  335. #define USAGE_ECJPAKE \
    336. 

  336.     "    ecjpake_pw=%%s       default: none (disabled)\n"
    337. 

  337. #else
    338. 

  338. #define USAGE_ECJPAKE ""
    339. 

  339. #endif
    340. 

  340. 

  341. #if defined(MBEDTLS_ECP_RESTARTABLE)
    342. 

  342. #define USAGE_ECRESTART \
    343. 

  343.     "    ec_max_ops=%%s       default: library default (restart disabled)\n"
    344. 

  344. #else
    345. 

  345. #define USAGE_ECRESTART ""
    346. 

  346. #endif
    347. 

  347. 

  348. #if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
    349. 

  349. #define USAGE_SERIALIZATION \
    350. 

  350.     "    serialize=%%d        default: 0 (do not serialize/deserialize)\n"     \
    351. 

  351.     "                        options: 1 (serialize)\n"                         \
    352. 

  352.     "                                 2 (serialize with re-initialization)\n"  \
    353. 

  353.     "    context_file=%%s     The file path to write a serialized connection\n"\
    354. 

  354.     "                        in the form of base64 code (serialize option\n"   \
    355. 

  355.     "                        must be set)\n"                                   \
    356. 

  356.     "                         default: \"\" (do nothing)\n"                    \
    357. 

  357.     "                         option: a file path\n"
    358. 

  358. #else
    359. 

  359. #define USAGE_SERIALIZATION ""
    360. 

  360. #endif
    361. 

  361. 

  362. /* USAGE is arbitrarily split to stay under the portable string literal
    363. 

  363.  * length limit: 4095 bytes in C99. */
    364. 

  364. #define USAGE1 \
    365. 

  365.     "\n usage: ssl_client2 param=<>...\n"                   \
    366. 

  366.     "\n acceptable parameters:\n"                           \
    367. 

  367.     "    server_name=%%s      default: localhost\n"         \
    368. 

  368.     "    server_addr=%%s      default: given by name\n"     \
    369. 

  369.     "    server_port=%%d      default: 4433\n"              \
    370. 

  370.     "    request_page=%%s     default: \".\"\n"             \
    371. 

  371.     "    request_size=%%d     default: about 34 (basic request)\n"           \
    372. 

  372.     "                        (minimum: 0, max: " MAX_REQUEST_SIZE_STR ")\n"  \
    373. 

  373.     "                        If 0, in the first exchange only an empty\n"    \
    374. 

  374.     "                        application data message is sent followed by\n" \
    375. 

  375.     "                        a second non-empty message before attempting\n" \
    376. 

  376.     "                        to read a response from the server\n"           \
    377. 

  377.     "    debug_level=%%d      default: 0 (disabled)\n"             \
    378. 

  378.     "    nbio=%%d             default: 0 (blocking I/O)\n"         \
    379. 

  379.     "                        options: 1 (non-blocking), 2 (added delays)\n"   \
    380. 

  380.     "    event=%%d            default: 0 (loop)\n"                            \
    381. 

  381.     "                        options: 1 (level-triggered, implies nbio=1),\n" \
    382. 

  382.     "    read_timeout=%%d     default: 0 ms (no timeout)\n"        \
    383. 

  383.     "    max_resend=%%d       default: 0 (no resend on timeout)\n" \
    384. 

  384.     "    skip_close_notify=%%d default: 0 (send close_notify)\n" \
    385. 

  385.     "\n"                                                    \
    386. 

  386.     USAGE_DTLS                                              \
    387. 

  387.     USAGE_CID                                               \
    388. 

  388.     USAGE_SRTP                                              \
    389. 

  389.     "\n"
    390. 

  390. #define USAGE2 \
    391. 

  391.     "    auth_mode=%%s        default: (library default: none)\n" \
    392. 

  392.     "                        options: none, optional, required\n" \
    393. 

  393.     USAGE_IO                                                \
    394. 

  394.     USAGE_KEY_OPAQUE                                        \
    395. 

  395.     USAGE_CA_CALLBACK                                       \
    396. 

  396.     "\n"                                                    \
    397. 

  397.     USAGE_PSK                                               \
    398. 

  398.     USAGE_ECJPAKE                                           \
    399. 

  399.     USAGE_ECRESTART                                         \
    400. 

  400.     "\n"
    401. 

  401. #define USAGE3 \
    402. 

  402.     "    allow_legacy=%%d     default: (library default: no)\n"   \
    403. 

  403.     USAGE_RENEGO                                            \
    404. 

  404.     "    exchanges=%%d        default: 1\n"                 \
    405. 

  405.     "    reconnect=%%d        number of reconnections using session resumption\n" \
    406. 

  406.     "                        default: 0 (disabled)\n"      \
    407. 

  407.     "    reco_delay=%%d       default: 0 seconds\n"         \
    408. 

  408.     "    reco_mode=%%d        0: copy session, 1: serialize session\n" \
    409. 

  409.     "                        default: 1\n"      \
    410. 

  410.     "    reconnect_hard=%%d   default: 0 (disabled)\n"      \
    411. 

  411.     USAGE_TICKETS                                           \
    412. 

  412.     USAGE_EAP_TLS                                           \
    413. 

  413.     USAGE_MAX_FRAG_LEN                                      \
    414. 

  414.     USAGE_TRUNC_HMAC                                        \
    415. 

  415.     USAGE_CONTEXT_CRT_CB                                    \
    416. 

  416.     USAGE_ALPN                                              \
    417. 

  417.     USAGE_FALLBACK                                          \
    418. 

  418.     USAGE_EMS                                               \
    419. 

  419.     USAGE_ETM                                               \
    420. 

  420.     USAGE_REPRODUCIBLE                                      \
    421. 

  421.     USAGE_CURVES                                            \
    422. 

  422.     USAGE_RECSPLIT                                          \
    423. 

  423.     USAGE_DHMLEN                                            \
    424. 

  424.     "\n"
    425. 

  425. #define USAGE4 \
    426. 

  426.     "    arc4=%%d             default: (library default: 0)\n" \
    427. 

  427.     "    allow_sha1=%%d       default: 0\n"                             \
    428. 

  428.     "    min_version=%%s      default: (library default: tls1)\n"       \
    429. 

  429.     "    max_version=%%s      default: (library default: tls12)\n"      \
    430. 

  430.     "    force_version=%%s    default: \"\" (none)\n"       \
    431. 

  431.     "                        options: ssl3, tls1, tls1_1, tls12, dtls1, dtls12\n" \
    432. 

  432.     "\n"                                                    \
    433. 

  433.     "    force_ciphersuite=<name>    default: all enabled\n"\
    434. 

  434.     "    query_config=<name>         return 0 if the specified\n"       \
    435. 

  435.     "                                configuration macro is defined and 1\n"  \
    436. 

  436.     "                                otherwise. The expansion of the macro\n" \
    437. 

  437.     "                                is printed if it is defined\n"     \
    438. 

  438.     USAGE_SERIALIZATION                                     \
    439. 

  439.     " acceptable ciphersuite names:\n"
    440. 

  440. 

  441. #define ALPN_LIST_SIZE  10
    442. 

  442. #define CURVE_LIST_SIZE 20
    443. 

  443. 

  444. 

  445. /*
    446. 

  446.  * global options
    447. 

  447.  */
    448. 

  448. struct options
    449. 

  449. {
    450. 

  450.     const char *server_name;    /* hostname of the server (client only)     */
    451. 

  451.     const char *server_addr;    /* address of the server (client only)      */
    452. 

  452.     const char *server_port;    /* port on which the ssl service runs       */
    453. 

  453.     int debug_level;            /* level of debugging                       */
    454. 

  454.     int nbio;                   /* should I/O be blocking?                  */
    455. 

  455.     int event;                  /* loop or event-driven IO? level or edge triggered? */
    456. 

  456.     uint32_t read_timeout;      /* timeout on mbedtls_ssl_read() in milliseconds     */
    457. 

  457.     int max_resend;             /* DTLS times to resend on read timeout     */
    458. 

  458.     const char *request_page;   /* page on server to request                */
    459. 

  459.     int request_size;           /* pad request with header to requested size */
    460. 

  460.     const char *ca_file;        /* the file with the CA certificate(s)      */
    461. 

  461.     const char *ca_path;        /* the path with the CA certificate(s) reside */
    462. 

  462.     const char *crt_file;       /* the file with the client certificate     */
    463. 

  463.     const char *key_file;       /* the file with the client key             */
    464. 

  464.     int key_opaque;             /* handle private key as if it were opaque  */
    465. 

  465. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    466. 

  466.     int psk_opaque;
    467. 

  467. #endif
    468. 

  468. #if defined(MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK)
    469. 

  469.     int ca_callback;            /* Use callback for trusted certificate list */
    470. 

  470. #endif
    471. 

  471.     const char *key_pwd;        /* the password for the client key          */
    472. 

  472.     const char *psk;            /* the pre-shared key                       */
    473. 

  473.     const char *psk_identity;   /* the pre-shared key identity              */
    474. 

  474.     const char *ecjpake_pw;     /* the EC J-PAKE password                   */
    475. 

  475.     int ec_max_ops;             /* EC consecutive operations limit          */
    476. 

  476.     int force_ciphersuite[2];   /* protocol/ciphersuite to use, or all      */
    477. 

  477.     int renegotiation;          /* enable / disable renegotiation           */
    478. 

  478.     int allow_legacy;           /* allow legacy renegotiation               */
    479. 

  479.     int renegotiate;            /* attempt renegotiation?                   */
    480. 

  480.     int renego_delay;           /* delay before enforcing renegotiation     */
    481. 

  481.     int exchanges;              /* number of data exchanges                 */
    482. 

  482.     int min_version;            /* minimum protocol version accepted        */
    483. 

  483.     int max_version;            /* maximum protocol version accepted        */
    484. 

  484.     int arc4;                   /* flag for arc4 suites support             */
    485. 

  485.     int allow_sha1;             /* flag for SHA-1 support                   */
    486. 

  486.     int auth_mode;              /* verify mode for connection               */
    487. 

  487.     unsigned char mfl_code;     /* code for maximum fragment length         */
    488. 

  488.     int trunc_hmac;             /* negotiate truncated hmac or not          */
    489. 

  489.     int recsplit;               /* enable record splitting?                 */
    490. 

  490.     int dhmlen;                 /* minimum DHM params len in bits           */
    491. 

  491.     int reconnect;              /* attempt to resume session                */
    492. 

  492.     int reco_delay;             /* delay in seconds before resuming session */
    493. 

  493.     int reco_mode;              /* how to keep the session around           */
    494. 

  494.     int reconnect_hard;         /* unexpectedly reconnect from the same port */
    495. 

  495.     int tickets;                /* enable / disable session tickets         */
    496. 

  496.     const char *curves;         /* list of supported elliptic curves        */
    497. 

  497.     const char *alpn_string;    /* ALPN supported protocols                 */
    498. 

  498.     int transport;              /* TLS or DTLS?                             */
    499. 

  499.     uint32_t hs_to_min;         /* Initial value of DTLS handshake timer    */
    500. 

  500.     uint32_t hs_to_max;         /* Max value of DTLS handshake timer        */
    501. 

  501.     int dtls_mtu;               /* UDP Maximum tranport unit for DTLS       */
    502. 

  502.     int fallback;               /* is this a fallback connection?           */
    503. 

  503.     int dgram_packing;          /* allow/forbid datagram packing            */
    504. 

  504.     int extended_ms;            /* negotiate extended master secret?        */
    505. 

  505.     int etm;                    /* negotiate encrypt then mac?              */
    506. 

  506.     int context_crt_cb;         /* use context-specific CRT verify callback */
    507. 

  507.     int eap_tls;                /* derive EAP-TLS keying material?          */
    508. 

  508.     int nss_keylog;             /* export NSS key log material              */
    509. 

  509.     const char *nss_keylog_file; /* NSS key log file                        */
    510. 

  510.     int cid_enabled;            /* whether to use the CID extension or not  */
    511. 

  511.     int cid_enabled_renego;     /* whether to use the CID extension or not
    512. 

  512.                                  * during renegotiation                     */
    513. 

  513.     const char *cid_val;        /* the CID to use for incoming messages     */
    514. 

  514.     int serialize;              /* serialize/deserialize connection         */
    515. 

  515.     const char *context_file;   /* the file to write a serialized connection
    516. 

  516.                                  * in the form of base64 code (serialize
    517. 

  517.                                  * option must be set)                      */
    518. 

  518.     const char *cid_val_renego; /* the CID to use for incoming messages
    519. 

  519.                                  * after renegotiation                      */
    520. 

  520.     int reproducible;           /* make communication reproducible          */
    521. 

  521.     int skip_close_notify;      /* skip sending the close_notify alert      */
    522. 

  522.     int query_config_mode;      /* whether to read config                   */
    523. 

  523.     int use_srtp;               /* Support SRTP                             */
    524. 

  524.     int force_srtp_profile;     /* SRTP protection profile to use or all    */
    525. 

  525.     const char *mki;            /* The dtls mki value to use                */
    526. 

  526. } opt;
    527. 

  527. 

  528. #include "ssl_test_common_source.c"
    529. 

  529. 

  530. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    531. 

  531. static unsigned char peer_crt_info[1024];
    532. 

  532. 

  533. /*
    534. 

  534.  * Enabled if debug_level > 1 in code below
    535. 

  535.  */
    536. 

  536. static int my_verify( void *data, mbedtls_x509_crt *crt,
    537. 

  537.                       int depth, uint32_t *flags )
    538. 

  538. {
    539. 

  539.     char buf[1024];
    540. 

  540.     ((void) data);
    541. 

  541. 

  542.     mbedtls_x509_crt_info( buf, sizeof( buf ) - 1, "", crt );
    543. 

  543.     if( depth == 0 )
    544. 

  544.         memcpy( peer_crt_info, buf, sizeof( buf ) );
    545. 

  545. 

  546.     if( opt.debug_level == 0 )
    547. 

  547.         return( 0 );
    548. 

  548. 

  549.     mbedtls_printf( "\nVerify requested for (Depth %d):\n", depth );
    550. 

  550.     mbedtls_printf( "%s", buf );
    551. 

  551. 

  552.     if ( ( *flags ) == 0 )
    553. 

  553.         mbedtls_printf( "  This certificate has no flags\n" );
    554. 

  554.     else
    555. 

  555.     {
    556. 

  556.         mbedtls_x509_crt_verify_info( buf, sizeof( buf ), "  ! ", *flags );
    557. 

  557.         mbedtls_printf( "%s\n", buf );
    558. 

  558.     }
    559. 

  559. 

  560.     return( 0 );
    561. 

  561. }
    562. 

  562. #endif /* MBEDTLS_X509_CRT_PARSE_C */
    563. 

  563. 

  564. #if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
    565. 

  565. int report_cid_usage( mbedtls_ssl_context *ssl,
    566. 

  566.                       const char *additional_description )
    567. 

  567. {
    568. 

  568.     int ret;
    569. 

  569.     unsigned char peer_cid[ MBEDTLS_SSL_CID_OUT_LEN_MAX ];
    570. 

  570.     size_t peer_cid_len;
    571. 

  571.     int cid_negotiated;
    572. 

  572. 

  573.     if( opt.transport != MBEDTLS_SSL_TRANSPORT_DATAGRAM )
    574. 

  574.         return( 0 );
    575. 

  575. 

  576.     /* Check if the use of a CID has been negotiated,
    577. 

  577.      * but don't ask for the CID value and length.
    578. 

  578.      *
    579. 

  579.      * Note: Here and below, we're demonstrating the various ways
    580. 

  580.      *       in which mbedtls_ssl_get_peer_cid() can be called,
    581. 

  581.      *       depending on whether or not the length/value of the
    582. 

  582.      *       peer's CID is needed.
    583. 

  583.      *
    584. 

  584.      *       An actual application, however, should use
    585. 

  585.      *       just one call to mbedtls_ssl_get_peer_cid(). */
    586. 

  586.     ret = mbedtls_ssl_get_peer_cid( ssl, &cid_negotiated,
    587. 

  587.                                     NULL, NULL );
    588. 

  588.     if( ret != 0 )
    589. 

  589.     {
    590. 

  590.         mbedtls_printf( " failed\n  ! mbedtls_ssl_get_peer_cid returned -0x%x\n\n",
    591. 

  591.                         (unsigned int) -ret );
    592. 

  592.         return( ret );
    593. 

  593.     }
    594. 

  594. 

  595.     if( cid_negotiated == MBEDTLS_SSL_CID_DISABLED )
    596. 

  596.     {
    597. 

  597.         if( opt.cid_enabled == MBEDTLS_SSL_CID_ENABLED )
    598. 

  598.         {
    599. 

  599.             mbedtls_printf( "(%s) Use of Connection ID was rejected by the server.\n",
    600. 

  600.                             additional_description );
    601. 

  601.         }
    602. 

  602.     }
    603. 

  603.     else
    604. 

  604.     {
    605. 

  605.         size_t idx=0;
    606. 

  606.         mbedtls_printf( "(%s) Use of Connection ID has been negotiated.\n",
    607. 

  607.                         additional_description );
    608. 

  608. 

  609.         /* Ask for just the length of the peer's CID. */
    610. 

  610.         ret = mbedtls_ssl_get_peer_cid( ssl, &cid_negotiated,
    611. 

  611.                                         NULL, &peer_cid_len );
    612. 

  612.         if( ret != 0 )
    613. 

  613.         {
    614. 

  614.             mbedtls_printf( " failed\n  ! mbedtls_ssl_get_peer_cid returned -0x%x\n\n",
    615. 

  615.                             (unsigned int) -ret );
    616. 

  616.             return( ret );
    617. 

  617.         }
    618. 

  618. 

  619.         /* Ask for just length + value of the peer's CID. */
    620. 

  620.         ret = mbedtls_ssl_get_peer_cid( ssl, &cid_negotiated,
    621. 

  621.                                         peer_cid, &peer_cid_len );
    622. 

  622.         if( ret != 0 )
    623. 

  623.         {
    624. 

  624.             mbedtls_printf( " failed\n  ! mbedtls_ssl_get_peer_cid returned -0x%x\n\n",
    625. 

  625.                             (unsigned int) -ret );
    626. 

  626.             return( ret );
    627. 

  627.         }
    628. 

  628.         mbedtls_printf( "(%s) Peer CID (length %u Bytes): ",
    629. 

  629.                         additional_description,
    630. 

  630.                         (unsigned) peer_cid_len );
    631. 

  631.         while( idx < peer_cid_len )
    632. 

  632.         {
    633. 

  633.             mbedtls_printf( "%02x ", peer_cid[ idx ] );
    634. 

  634.             idx++;
    635. 

  635.         }
    636. 

  636.         mbedtls_printf( "\n" );
    637. 

  637.     }
    638. 

  638. 

  639.     return( 0 );
    640. 

  640. }
    641. 

  641. #endif /* MBEDTLS_SSL_DTLS_CONNECTION_ID */
    642. 

  642. 

  643. int main( int argc, char *argv[] )
    644. 

  644. {
    645. 

  645.     int ret = 0, len, tail_len, i, written, frags, retry_left;
    646. 

  646.     int query_config_ret = 0;
    647. 

  647.     mbedtls_net_context server_fd;
    648. 

  648.     io_ctx_t io_ctx;
    649. 

  649. 

  650.     unsigned char buf[MAX_REQUEST_SIZE + 1];
    651. 

  651. 

  652. #if defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED)
    653. 

  653.     unsigned char psk[MBEDTLS_PSK_MAX_LEN];
    654. 

  654.     size_t psk_len = 0;
    655. 

  655. #endif
    656. 

  656. 

  657. #if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
    658. 

  658.     unsigned char cid[MBEDTLS_SSL_CID_IN_LEN_MAX];
    659. 

  659.     unsigned char cid_renego[MBEDTLS_SSL_CID_IN_LEN_MAX];
    660. 

  660.     size_t cid_len = 0;
    661. 

  661.     size_t cid_renego_len = 0;
    662. 

  662. #endif
    663. 

  663. 

  664. #if defined(MBEDTLS_SSL_ALPN)
    665. 

  665.     const char *alpn_list[ALPN_LIST_SIZE];
    666. 

  666. #endif
    667. 

  667. 

  668. #if defined(MBEDTLS_MEMORY_BUFFER_ALLOC_C)
    669. 

  669.     unsigned char alloc_buf[MEMORY_HEAP_SIZE];
    670. 

  670. #endif
    671. 

  671. 

  672. #if defined(MBEDTLS_ECP_C)
    673. 

  673.     mbedtls_ecp_group_id curve_list[CURVE_LIST_SIZE];
    674. 

  674.     const mbedtls_ecp_curve_info *curve_cur;
    675. 

  675. #endif
    676. 

  676. #if defined(MBEDTLS_SSL_DTLS_SRTP)
    677. 

  677.     unsigned char mki[MBEDTLS_TLS_SRTP_MAX_MKI_LENGTH];
    678. 

  678.     size_t mki_len=0;
    679. 

  679. #endif
    680. 

  680. 

  681.     const char *pers = "ssl_client2";
    682. 

  682. 

  683. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    684. 

  684.     psa_key_id_t slot = 0;
    685. 

  685.     psa_algorithm_t alg = 0;
    686. 

  686.     psa_key_attributes_t key_attributes;
    687. 

  687.     psa_status_t status;
    688. 

  688. #endif
    689. 

  689. 

  690. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    691. 

  691.     mbedtls_x509_crt_profile crt_profile_for_test = mbedtls_x509_crt_profile_default;
    692. 

  692. #endif
    693. 

  693.     rng_context_t rng;
    694. 

  694.     mbedtls_ssl_context ssl;
    695. 

  695.     mbedtls_ssl_config conf;
    696. 

  696.     mbedtls_ssl_session saved_session;
    697. 

  697.     unsigned char *session_data = NULL;
    698. 

  698.     size_t session_data_len = 0;
    699. 

  699. #if defined(MBEDTLS_TIMING_C)
    700. 

  700.     mbedtls_timing_delay_context timer;
    701. 

  701. #endif
    702. 

  702. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    703. 

  703.     uint32_t flags;
    704. 

  704.     mbedtls_x509_crt cacert;
    705. 

  705.     mbedtls_x509_crt clicert;
    706. 

  706.     mbedtls_pk_context pkey;
    707. 

  707. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    708. 

  708.     psa_key_id_t key_slot = 0; /* invalid key slot */
    709. 

  709. #endif
    710. 

  710. #endif  /* MBEDTLS_X509_CRT_PARSE_C */
    711. 

  711.     char *p, *q;
    712. 

  712.     const int *list;
    713. 

  713. #if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
    714. 

  714.     unsigned char *context_buf = NULL;
    715. 

  715.     size_t context_buf_len;
    716. 

  716. #endif
    717. 

  717. #if defined(MBEDTLS_SSL_EXPORT_KEYS)
    718. 

  718.     unsigned char eap_tls_keymaterial[16];
    719. 

  719.     unsigned char eap_tls_iv[8];
    720. 

  720.     const char* eap_tls_label = "client EAP encryption";
    721. 

  721.     eap_tls_keys eap_tls_keying;
    722. 

  722. #if defined( MBEDTLS_SSL_DTLS_SRTP )
    723. 

  723.     /*! master keys and master salt for SRTP generated during handshake */
    724. 

  724.     unsigned char dtls_srtp_key_material[MBEDTLS_TLS_SRTP_MAX_KEY_MATERIAL_LENGTH];
    725. 

  725.     const char* dtls_srtp_label = "EXTRACTOR-dtls_srtp";
    726. 

  726.     dtls_srtp_keys dtls_srtp_keying;
    727. 

  727.     const mbedtls_ssl_srtp_profile default_profiles[] = {
    728. 

  728.         MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_80,
    729. 

  729.         MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32,
    730. 

  730.         MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_80,
    731. 

  731.         MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_32,
    732. 

  732.         MBEDTLS_TLS_SRTP_UNSET
    733. 

  733.     };
    734. 

  734. #endif /* MBEDTLS_SSL_DTLS_SRTP */
    735. 

  735. #endif /* MBEDTLS_SSL_EXPORT_KEYS */
    736. 

  736. 

  737. #if defined(MBEDTLS_MEMORY_BUFFER_ALLOC_C)
    738. 

  738.     mbedtls_memory_buffer_alloc_init( alloc_buf, sizeof(alloc_buf) );
    739. 

  739. #endif
    740. 

  740. 

  741. #if defined(MBEDTLS_TEST_HOOKS)
    742. 

  742.     test_hooks_init( );
    743. 

  743. #endif /* MBEDTLS_TEST_HOOKS */
    744. 

  744. 

  745.     /*
    746. 

  746.      * Make sure memory references are valid.
    747. 

  747.      */
    748. 

  748.     mbedtls_net_init( &server_fd );
    749. 

  749.     mbedtls_ssl_init( &ssl );
    750. 

  750.     mbedtls_ssl_config_init( &conf );
    751. 

  751.     memset( &saved_session, 0, sizeof( mbedtls_ssl_session ) );
    752. 

  752.     rng_init( &rng );
    753. 

  753. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    754. 

  754.     mbedtls_x509_crt_init( &cacert );
    755. 

  755.     mbedtls_x509_crt_init( &clicert );
    756. 

  756.     mbedtls_pk_init( &pkey );
    757. 

  757. #endif
    758. 

  758. #if defined(MBEDTLS_SSL_ALPN)
    759. 

  759.     memset( (void * ) alpn_list, 0, sizeof( alpn_list ) );
    760. 

  760. #endif
    761. 

  761. 

  762. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    763. 

  763.     status = psa_crypto_init();
    764. 

  764.     if( status != PSA_SUCCESS )
    765. 

  765.     {
    766. 

  766.         mbedtls_fprintf( stderr, "Failed to initialize PSA Crypto implementation: %d\n",
    767. 

  767.                          (int) status );
    768. 

  768.         ret = MBEDTLS_ERR_SSL_HW_ACCEL_FAILED;
    769. 

  769.         goto exit;
    770. 

  770.     }
    771. 

  771. #endif  /* MBEDTLS_USE_PSA_CRYPTO */
    772. 

  772. #if defined(MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG)
    773. 

  773.     mbedtls_test_enable_insecure_external_rng( );
    774. 

  774. #endif  /* MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG */
    775. 

  775. 

  776.     if( argc == 0 )
    777. 

  777.     {
    778. 

  778.     usage:
    779. 

  779.         if( ret == 0 )
    780. 

  780.             ret = 1;
    781. 

  781. 

  782.         mbedtls_printf( USAGE1 );
    783. 

  783.         mbedtls_printf( USAGE2 );
    784. 

  784.         mbedtls_printf( USAGE3 );
    785. 

  785.         mbedtls_printf( USAGE4 );
    786. 

  786. 

  787.         list = mbedtls_ssl_list_ciphersuites();
    788. 

  788.         while( *list )
    789. 

  789.         {
    790. 

  790.             mbedtls_printf(" %-42s", mbedtls_ssl_get_ciphersuite_name( *list ) );
    791. 

  791.             list++;
    792. 

  792.             if( !*list )
    793. 

  793.                 break;
    794. 

  794.             mbedtls_printf(" %s\n", mbedtls_ssl_get_ciphersuite_name( *list ) );
    795. 

  795.             list++;
    796. 

  796.         }
    797. 

  797.         mbedtls_printf("\n");
    798. 

  798.         goto exit;
    799. 

  799.     }
    800. 

  800. 

  801.     opt.server_name         = DFL_SERVER_NAME;
    802. 

  802.     opt.server_addr         = DFL_SERVER_ADDR;
    803. 

  803.     opt.server_port         = DFL_SERVER_PORT;
    804. 

  804.     opt.debug_level         = DFL_DEBUG_LEVEL;
    805. 

  805.     opt.cid_enabled         = DFL_CID_ENABLED;
    806. 

  806.     opt.cid_val             = DFL_CID_VALUE;
    807. 

  807.     opt.cid_enabled_renego  = DFL_CID_ENABLED_RENEGO;
    808. 

  808.     opt.cid_val_renego      = DFL_CID_VALUE_RENEGO;
    809. 

  809.     opt.nbio                = DFL_NBIO;
    810. 

  810.     opt.event               = DFL_EVENT;
    811. 

  811.     opt.context_crt_cb      = DFL_CONTEXT_CRT_CB;
    812. 

  812.     opt.read_timeout        = DFL_READ_TIMEOUT;
    813. 

  813.     opt.max_resend          = DFL_MAX_RESEND;
    814. 

  814.     opt.request_page        = DFL_REQUEST_PAGE;
    815. 

  815.     opt.request_size        = DFL_REQUEST_SIZE;
    816. 

  816.     opt.ca_file             = DFL_CA_FILE;
    817. 

  817.     opt.ca_path             = DFL_CA_PATH;
    818. 

  818.     opt.crt_file            = DFL_CRT_FILE;
    819. 

  819.     opt.key_file            = DFL_KEY_FILE;
    820. 

  820.     opt.key_opaque          = DFL_KEY_OPAQUE;
    821. 

  821.     opt.key_pwd             = DFL_KEY_PWD;
    822. 

  822.     opt.psk                 = DFL_PSK;
    823. 

  823. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    824. 

  824.     opt.psk_opaque          = DFL_PSK_OPAQUE;
    825. 

  825. #endif
    826. 

  826. #if defined(MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK)
    827. 

  827.     opt.ca_callback         = DFL_CA_CALLBACK;
    828. 

  828. #endif
    829. 

  829.     opt.psk_identity        = DFL_PSK_IDENTITY;
    830. 

  830.     opt.ecjpake_pw          = DFL_ECJPAKE_PW;
    831. 

  831.     opt.ec_max_ops          = DFL_EC_MAX_OPS;
    832. 

  832.     opt.force_ciphersuite[0]= DFL_FORCE_CIPHER;
    833. 

  833.     opt.renegotiation       = DFL_RENEGOTIATION;
    834. 

  834.     opt.allow_legacy        = DFL_ALLOW_LEGACY;
    835. 

  835.     opt.renegotiate         = DFL_RENEGOTIATE;
    836. 

  836.     opt.exchanges           = DFL_EXCHANGES;
    837. 

  837.     opt.min_version         = DFL_MIN_VERSION;
    838. 

  838.     opt.max_version         = DFL_MAX_VERSION;
    839. 

  839.     opt.arc4                = DFL_ARC4;
    840. 

  840.     opt.allow_sha1          = DFL_SHA1;
    841. 

  841.     opt.auth_mode           = DFL_AUTH_MODE;
    842. 

  842.     opt.mfl_code            = DFL_MFL_CODE;
    843. 

  843.     opt.trunc_hmac          = DFL_TRUNC_HMAC;
    844. 

  844.     opt.recsplit            = DFL_RECSPLIT;
    845. 

  845.     opt.dhmlen              = DFL_DHMLEN;
    846. 

  846.     opt.reconnect           = DFL_RECONNECT;
    847. 

  847.     opt.reco_delay          = DFL_RECO_DELAY;
    848. 

  848.     opt.reco_mode           = DFL_RECO_MODE;
    849. 

  849.     opt.reconnect_hard      = DFL_RECONNECT_HARD;
    850. 

  850.     opt.tickets             = DFL_TICKETS;
    851. 

  851.     opt.alpn_string         = DFL_ALPN_STRING;
    852. 

  852.     opt.curves              = DFL_CURVES;
    853. 

  853.     opt.transport           = DFL_TRANSPORT;
    854. 

  854.     opt.hs_to_min           = DFL_HS_TO_MIN;
    855. 

  855.     opt.hs_to_max           = DFL_HS_TO_MAX;
    856. 

  856.     opt.dtls_mtu            = DFL_DTLS_MTU;
    857. 

  857.     opt.fallback            = DFL_FALLBACK;
    858. 

  858.     opt.extended_ms         = DFL_EXTENDED_MS;
    859. 

  859.     opt.etm                 = DFL_ETM;
    860. 

  860.     opt.dgram_packing       = DFL_DGRAM_PACKING;
    861. 

  861.     opt.serialize           = DFL_SERIALIZE;
    862. 

  862.     opt.context_file        = DFL_CONTEXT_FILE;
    863. 

  863.     opt.eap_tls             = DFL_EAP_TLS;
    864. 

  864.     opt.reproducible        = DFL_REPRODUCIBLE;
    865. 

  865.     opt.nss_keylog          = DFL_NSS_KEYLOG;
    866. 

  866.     opt.nss_keylog_file     = DFL_NSS_KEYLOG_FILE;
    867. 

  867.     opt.skip_close_notify   = DFL_SKIP_CLOSE_NOTIFY;
    868. 

  868.     opt.query_config_mode   = DFL_QUERY_CONFIG_MODE;
    869. 

  869.     opt.use_srtp            = DFL_USE_SRTP;
    870. 

  870.     opt.force_srtp_profile  = DFL_SRTP_FORCE_PROFILE;
    871. 

  871.     opt.mki                 = DFL_SRTP_MKI;
    872. 

  872. 

  873.     for( i = 1; i < argc; i++ )
    874. 

  874.     {
    875. 

  875.         p = argv[i];
    876. 

  876.         if( ( q = strchr( p, '=' ) ) == NULL )
    877. 

  877.             goto usage;
    878. 

  878.         *q++ = '\0';
    879. 

  879. 

  880.         if( strcmp( p, "server_name" ) == 0 )
    881. 

  881.             opt.server_name = q;
    882. 

  882.         else if( strcmp( p, "server_addr" ) == 0 )
    883. 

  883.             opt.server_addr = q;
    884. 

  884.         else if( strcmp( p, "server_port" ) == 0 )
    885. 

  885.             opt.server_port = q;
    886. 

  886.         else if( strcmp( p, "dtls" ) == 0 )
    887. 

  887.         {
    888. 

  888.             int t = atoi( q );
    889. 

  889.             if( t == 0 )
    890. 

  890.                 opt.transport = MBEDTLS_SSL_TRANSPORT_STREAM;
    891. 

  891.             else if( t == 1 )
    892. 

  892.                 opt.transport = MBEDTLS_SSL_TRANSPORT_DATAGRAM;
    893. 

  893.             else
    894. 

  894.                 goto usage;
    895. 

  895.         }
    896. 

  896.         else if( strcmp( p, "debug_level" ) == 0 )
    897. 

  897.         {
    898. 

  898.             opt.debug_level = atoi( q );
    899. 

  899.             if( opt.debug_level < 0 || opt.debug_level > 65535 )
    900. 

  900.                 goto usage;
    901. 

  901.         }
    902. 

  902.         else if( strcmp( p, "context_crt_cb" ) == 0 )
    903. 

  903.         {
    904. 

  904.             opt.context_crt_cb = atoi( q );
    905. 

  905.             if( opt.context_crt_cb != 0 && opt.context_crt_cb != 1 )
    906. 

  906.                 goto usage;
    907. 

  907.         }
    908. 

  908.         else if( strcmp( p, "nbio" ) == 0 )
    909. 

  909.         {
    910. 

  910.             opt.nbio = atoi( q );
    911. 

  911.             if( opt.nbio < 0 || opt.nbio > 2 )
    912. 

  912.                 goto usage;
    913. 

  913.         }
    914. 

  914.         else if( strcmp( p, "event" ) == 0 )
    915. 

  915.         {
    916. 

  916.             opt.event = atoi( q );
    917. 

  917.             if( opt.event < 0 || opt.event > 2 )
    918. 

  918.                 goto usage;
    919. 

  919.         }
    920. 

  920.         else if( strcmp( p, "read_timeout" ) == 0 )
    921. 

  921.             opt.read_timeout = atoi( q );
    922. 

  922.         else if( strcmp( p, "max_resend" ) == 0 )
    923. 

  923.         {
    924. 

  924.             opt.max_resend = atoi( q );
    925. 

  925.             if( opt.max_resend < 0 )
    926. 

  926.                 goto usage;
    927. 

  927.         }
    928. 

  928.         else if( strcmp( p, "request_page" ) == 0 )
    929. 

  929.             opt.request_page = q;
    930. 

  930.         else if( strcmp( p, "request_size" ) == 0 )
    931. 

  931.         {
    932. 

  932.             opt.request_size = atoi( q );
    933. 

  933.             if( opt.request_size < 0 ||
    934. 

  934.                 opt.request_size > MAX_REQUEST_SIZE )
    935. 

  935.                 goto usage;
    936. 

  936.         }
    937. 

  937.         else if( strcmp( p, "ca_file" ) == 0 )
    938. 

  938.             opt.ca_file = q;
    939. 

  939.         else if( strcmp( p, "ca_path" ) == 0 )
    940. 

  940.             opt.ca_path = q;
    941. 

  941.         else if( strcmp( p, "crt_file" ) == 0 )
    942. 

  942.             opt.crt_file = q;
    943. 

  943.         else if( strcmp( p, "key_file" ) == 0 )
    944. 

  944.             opt.key_file = q;
    945. 

  945.         else if( strcmp( p, "key_pwd" ) == 0 )
    946. 

  946.             opt.key_pwd = q;
    947. 

  947. #if defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_X509_CRT_PARSE_C)
    948. 

  948.         else if( strcmp( p, "key_opaque" ) == 0 )
    949. 

  949.             opt.key_opaque = atoi( q );
    950. 

  950. #endif
    951. 

  951. #if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
    952. 

  952.         else if( strcmp( p, "cid" ) == 0 )
    953. 

  953.         {
    954. 

  954.             opt.cid_enabled = atoi( q );
    955. 

  955.             if( opt.cid_enabled != 0 && opt.cid_enabled != 1 )
    956. 

  956.                 goto usage;
    957. 

  957.         }
    958. 

  958.         else if( strcmp( p, "cid_renego" ) == 0 )
    959. 

  959.         {
    960. 

  960.             opt.cid_enabled_renego = atoi( q );
    961. 

  961.             if( opt.cid_enabled_renego != 0 && opt.cid_enabled_renego != 1 )
    962. 

  962.                 goto usage;
    963. 

  963.         }
    964. 

  964.         else if( strcmp( p, "cid_val" ) == 0 )
    965. 

  965.         {
    966. 

  966.             opt.cid_val = q;
    967. 

  967.         }
    968. 

  968.         else if( strcmp( p, "cid_val_renego" ) == 0 )
    969. 

  969.         {
    970. 

  970.             opt.cid_val_renego = q;
    971. 

  971.         }
    972. 

  972. #endif /* MBEDTLS_SSL_DTLS_CONNECTION_ID */
    973. 

  973.         else if( strcmp( p, "psk" ) == 0 )
    974. 

  974.             opt.psk = q;
    975. 

  975. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    976. 

  976.         else if( strcmp( p, "psk_opaque" ) == 0 )
    977. 

  977.             opt.psk_opaque = atoi( q );
    978. 

  978. #endif
    979. 

  979. #if defined(MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK)
    980. 

  980.         else if( strcmp( p, "ca_callback" ) == 0)
    981. 

  981.             opt.ca_callback = atoi( q );
    982. 

  982. #endif
    983. 

  983.         else if( strcmp( p, "psk_identity" ) == 0 )
    984. 

  984.             opt.psk_identity = q;
    985. 

  985.         else if( strcmp( p, "ecjpake_pw" ) == 0 )
    986. 

  986.             opt.ecjpake_pw = q;
    987. 

  987.         else if( strcmp( p, "ec_max_ops" ) == 0 )
    988. 

  988.             opt.ec_max_ops = atoi( q );
    989. 

  989.         else if( strcmp( p, "force_ciphersuite" ) == 0 )
    990. 

  990.         {
    991. 

  991.             opt.force_ciphersuite[0] = mbedtls_ssl_get_ciphersuite_id( q );
    992. 

  992. 

  993.             if( opt.force_ciphersuite[0] == 0 )
    994. 

  994.             {
    995. 

  995.                 ret = 2;
    996. 

  996.                 goto usage;
    997. 

  997.             }
    998. 

  998.             opt.force_ciphersuite[1] = 0;
    999. 

  999.         }
    1000. 

  1000.         else if( strcmp( p, "renegotiation" ) == 0 )
    1001. 

  1001.         {
    1002. 

  1002.             opt.renegotiation = (atoi( q )) ?
    1003. 

  1003.                 MBEDTLS_SSL_RENEGOTIATION_ENABLED :
    1004. 

  1004.                 MBEDTLS_SSL_RENEGOTIATION_DISABLED;
    1005. 

  1005.         }
    1006. 

  1006.         else if( strcmp( p, "allow_legacy" ) == 0 )
    1007. 

  1007.         {
    1008. 

  1008.             switch( atoi( q ) )
    1009. 

  1009.             {
    1010. 

  1010.                 case -1:
    1011. 

  1011.                     opt.allow_legacy = MBEDTLS_SSL_LEGACY_BREAK_HANDSHAKE;
    1012. 

  1012.                     break;
    1013. 

  1013.                 case 0:
    1014. 

  1014.                     opt.allow_legacy = MBEDTLS_SSL_LEGACY_NO_RENEGOTIATION;
    1015. 

  1015.                     break;
    1016. 

  1016.                 case 1:
    1017. 

  1017.                     opt.allow_legacy = MBEDTLS_SSL_LEGACY_ALLOW_RENEGOTIATION;
    1018. 

  1018.                     break;
    1019. 

  1019.                 default: goto usage;
    1020. 

  1020.             }
    1021. 

  1021.         }
    1022. 

  1022.         else if( strcmp( p, "renegotiate" ) == 0 )
    1023. 

  1023.         {
    1024. 

  1024.             opt.renegotiate = atoi( q );
    1025. 

  1025.             if( opt.renegotiate < 0 || opt.renegotiate > 1 )
    1026. 

  1026.                 goto usage;
    1027. 

  1027.         }
    1028. 

  1028.         else if( strcmp( p, "exchanges" ) == 0 )
    1029. 

  1029.         {
    1030. 

  1030.             opt.exchanges = atoi( q );
    1031. 

  1031.             if( opt.exchanges < 1 )
    1032. 

  1032.                 goto usage;
    1033. 

  1033.         }
    1034. 

  1034.         else if( strcmp( p, "reconnect" ) == 0 )
    1035. 

  1035.         {
    1036. 

  1036.             opt.reconnect = atoi( q );
    1037. 

  1037.             if( opt.reconnect < 0 || opt.reconnect > 2 )
    1038. 

  1038.                 goto usage;
    1039. 

  1039.         }
    1040. 

  1040.         else if( strcmp( p, "reco_delay" ) == 0 )
    1041. 

  1041.         {
    1042. 

  1042.             opt.reco_delay = atoi( q );
    1043. 

  1043.             if( opt.reco_delay < 0 )
    1044. 

  1044.                 goto usage;
    1045. 

  1045.         }
    1046. 

  1046.         else if( strcmp( p, "reco_mode" ) == 0 )
    1047. 

  1047.         {
    1048. 

  1048.             opt.reco_mode = atoi( q );
    1049. 

  1049.             if( opt.reco_mode < 0 )
    1050. 

  1050.                 goto usage;
    1051. 

  1051.         }
    1052. 

  1052.         else if( strcmp( p, "reconnect_hard" ) == 0 )
    1053. 

  1053.         {
    1054. 

  1054.             opt.reconnect_hard = atoi( q );
    1055. 

  1055.             if( opt.reconnect_hard < 0 || opt.reconnect_hard > 1 )
    1056. 

  1056.                 goto usage;
    1057. 

  1057.         }
    1058. 

  1058.         else if( strcmp( p, "tickets" ) == 0 )
    1059. 

  1059.         {
    1060. 

  1060.             opt.tickets = atoi( q );
    1061. 

  1061.             if( opt.tickets < 0 || opt.tickets > 2 )
    1062. 

  1062.                 goto usage;
    1063. 

  1063.         }
    1064. 

  1064.         else if( strcmp( p, "alpn" ) == 0 )
    1065. 

  1065.         {
    1066. 

  1066.             opt.alpn_string = q;
    1067. 

  1067.         }
    1068. 

  1068.         else if( strcmp( p, "fallback" ) == 0 )
    1069. 

  1069.         {
    1070. 

  1070.             switch( atoi( q ) )
    1071. 

  1071.             {
    1072. 

  1072.                 case 0: opt.fallback = MBEDTLS_SSL_IS_NOT_FALLBACK; break;
    1073. 

  1073.                 case 1: opt.fallback = MBEDTLS_SSL_IS_FALLBACK; break;
    1074. 

  1074.                 default: goto usage;
    1075. 

  1075.             }
    1076. 

  1076.         }
    1077. 

  1077.         else if( strcmp( p, "extended_ms" ) == 0 )
    1078. 

  1078.         {
    1079. 

  1079.             switch( atoi( q ) )
    1080. 

  1080.             {
    1081. 

  1081.                 case 0:
    1082. 

  1082.                     opt.extended_ms = MBEDTLS_SSL_EXTENDED_MS_DISABLED;
    1083. 

  1083.                     break;
    1084. 

  1084.                 case 1:
    1085. 

  1085.                     opt.extended_ms = MBEDTLS_SSL_EXTENDED_MS_ENABLED;
    1086. 

  1086.                     break;
    1087. 

  1087.                 default: goto usage;
    1088. 

  1088.             }
    1089. 

  1089.         }
    1090. 

  1090.         else if( strcmp( p, "curves" ) == 0 )
    1091. 

  1091.             opt.curves = q;
    1092. 

  1092.         else if( strcmp( p, "etm" ) == 0 )
    1093. 

  1093.         {
    1094. 

  1094.             switch( atoi( q ) )
    1095. 

  1095.             {
    1096. 

  1096.                 case 0: opt.etm = MBEDTLS_SSL_ETM_DISABLED; break;
    1097. 

  1097.                 case 1: opt.etm = MBEDTLS_SSL_ETM_ENABLED; break;
    1098. 

  1098.                 default: goto usage;
    1099. 

  1099.             }
    1100. 

  1100.         }
    1101. 

  1101.         else if( strcmp( p, "min_version" ) == 0 )
    1102. 

  1102.         {
    1103. 

  1103.             if( strcmp( q, "ssl3" ) == 0 )
    1104. 

  1104.                 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_0;
    1105. 

  1105.             else if( strcmp( q, "tls1" ) == 0 )
    1106. 

  1106.                 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_1;
    1107. 

  1107.             else if( strcmp( q, "tls1_1" ) == 0 ||
    1108. 

  1108.                      strcmp( q, "dtls1" ) == 0 )
    1109. 

  1109.                 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_2;
    1110. 

  1110.             else if( strcmp( q, "tls12" ) == 0 ||
    1111. 

  1111.                      strcmp( q, "dtls12" ) == 0 )
    1112. 

  1112.                 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_3;
    1113. 

  1113.             else
    1114. 

  1114.                 goto usage;
    1115. 

  1115.         }
    1116. 

  1116.         else if( strcmp( p, "max_version" ) == 0 )
    1117. 

  1117.         {
    1118. 

  1118.             if( strcmp( q, "ssl3" ) == 0 )
    1119. 

  1119.                 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_0;
    1120. 

  1120.             else if( strcmp( q, "tls1" ) == 0 )
    1121. 

  1121.                 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_1;
    1122. 

  1122.             else if( strcmp( q, "tls1_1" ) == 0 ||
    1123. 

  1123.                      strcmp( q, "dtls1" ) == 0 )
    1124. 

  1124.                 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_2;
    1125. 

  1125.             else if( strcmp( q, "tls12" ) == 0 ||
    1126. 

  1126.                      strcmp( q, "dtls12" ) == 0 )
    1127. 

  1127.                 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_3;
    1128. 

  1128.             else
    1129. 

  1129.                 goto usage;
    1130. 

  1130.         }
    1131. 

  1131.         else if( strcmp( p, "arc4" ) == 0 )
    1132. 

  1132.         {
    1133. 

  1133.             switch( atoi( q ) )
    1134. 

  1134.             {
    1135. 

  1135.                 case 0:     opt.arc4 = MBEDTLS_SSL_ARC4_DISABLED;   break;
    1136. 

  1136.                 case 1:     opt.arc4 = MBEDTLS_SSL_ARC4_ENABLED;    break;
    1137. 

  1137.                 default:    goto usage;
    1138. 

  1138.             }
    1139. 

  1139.         }
    1140. 

  1140.         else if( strcmp( p, "allow_sha1" ) == 0 )
    1141. 

  1141.         {
    1142. 

  1142.             switch( atoi( q ) )
    1143. 

  1143.             {
    1144. 

  1144.                 case 0:     opt.allow_sha1 = 0;   break;
    1145. 

  1145.                 case 1:     opt.allow_sha1 = 1;    break;
    1146. 

  1146.                 default:    goto usage;
    1147. 

  1147.             }
    1148. 

  1148.         }
    1149. 

  1149.         else if( strcmp( p, "force_version" ) == 0 )
    1150. 

  1150.         {
    1151. 

  1151.             if( strcmp( q, "ssl3" ) == 0 )
    1152. 

  1152.             {
    1153. 

  1153.                 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_0;
    1154. 

  1154.                 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_0;
    1155. 

  1155.             }
    1156. 

  1156.             else if( strcmp( q, "tls1" ) == 0 )
    1157. 

  1157.             {
    1158. 

  1158.                 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_1;
    1159. 

  1159.                 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_1;
    1160. 

  1160.             }
    1161. 

  1161.             else if( strcmp( q, "tls1_1" ) == 0 )
    1162. 

  1162.             {
    1163. 

  1163.                 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_2;
    1164. 

  1164.                 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_2;
    1165. 

  1165.             }
    1166. 

  1166.             else if( strcmp( q, "tls12" ) == 0 )
    1167. 

  1167.             {
    1168. 

  1168.                 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_3;
    1169. 

  1169.                 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_3;
    1170. 

  1170.             }
    1171. 

  1171.             else if( strcmp( q, "dtls1" ) == 0 )
    1172. 

  1172.             {
    1173. 

  1173.                 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_2;
    1174. 

  1174.                 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_2;
    1175. 

  1175.                 opt.transport = MBEDTLS_SSL_TRANSPORT_DATAGRAM;
    1176. 

  1176.             }
    1177. 

  1177.             else if( strcmp( q, "dtls12" ) == 0 )
    1178. 

  1178.             {
    1179. 

  1179.                 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_3;
    1180. 

  1180.                 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_3;
    1181. 

  1181.                 opt.transport = MBEDTLS_SSL_TRANSPORT_DATAGRAM;
    1182. 

  1182.             }
    1183. 

  1183.             else
    1184. 

  1184.                 goto usage;
    1185. 

  1185.         }
    1186. 

  1186.         else if( strcmp( p, "auth_mode" ) == 0 )
    1187. 

  1187.         {
    1188. 

  1188.             if( strcmp( q, "none" ) == 0 )
    1189. 

  1189.                 opt.auth_mode = MBEDTLS_SSL_VERIFY_NONE;
    1190. 

  1190.             else if( strcmp( q, "optional" ) == 0 )
    1191. 

  1191.                 opt.auth_mode = MBEDTLS_SSL_VERIFY_OPTIONAL;
    1192. 

  1192.             else if( strcmp( q, "required" ) == 0 )
    1193. 

  1193.                 opt.auth_mode = MBEDTLS_SSL_VERIFY_REQUIRED;
    1194. 

  1194.             else
    1195. 

  1195.                 goto usage;
    1196. 

  1196.         }
    1197. 

  1197.         else if( strcmp( p, "max_frag_len" ) == 0 )
    1198. 

  1198.         {
    1199. 

  1199.             if( strcmp( q, "512" ) == 0 )
    1200. 

  1200.                 opt.mfl_code = MBEDTLS_SSL_MAX_FRAG_LEN_512;
    1201. 

  1201.             else if( strcmp( q, "1024" ) == 0 )
    1202. 

  1202.                 opt.mfl_code = MBEDTLS_SSL_MAX_FRAG_LEN_1024;
    1203. 

  1203.             else if( strcmp( q, "2048" ) == 0 )
    1204. 

  1204.                 opt.mfl_code = MBEDTLS_SSL_MAX_FRAG_LEN_2048;
    1205. 

  1205.             else if( strcmp( q, "4096" ) == 0 )
    1206. 

  1206.                 opt.mfl_code = MBEDTLS_SSL_MAX_FRAG_LEN_4096;
    1207. 

  1207.             else
    1208. 

  1208.                 goto usage;
    1209. 

  1209.         }
    1210. 

  1210.         else if( strcmp( p, "trunc_hmac" ) == 0 )
    1211. 

  1211.         {
    1212. 

  1212.             switch( atoi( q ) )
    1213. 

  1213.             {
    1214. 

  1214.                 case 0: opt.trunc_hmac = MBEDTLS_SSL_TRUNC_HMAC_DISABLED; break;
    1215. 

  1215.                 case 1: opt.trunc_hmac = MBEDTLS_SSL_TRUNC_HMAC_ENABLED; break;
    1216. 

  1216.                 default: goto usage;
    1217. 

  1217.             }
    1218. 

  1218.         }
    1219. 

  1219.         else if( strcmp( p, "hs_timeout" ) == 0 )
    1220. 

  1220.         {
    1221. 

  1221.             if( ( p = strchr( q, '-' ) ) == NULL )
    1222. 

  1222.                 goto usage;
    1223. 

  1223.             *p++ = '\0';
    1224. 

  1224.             opt.hs_to_min = atoi( q );
    1225. 

  1225.             opt.hs_to_max = atoi( p );
    1226. 

  1226.             if( opt.hs_to_min == 0 || opt.hs_to_max < opt.hs_to_min )
    1227. 

  1227.                 goto usage;
    1228. 

  1228.         }
    1229. 

  1229.         else if( strcmp( p, "mtu" ) == 0 )
    1230. 

  1230.         {
    1231. 

  1231.             opt.dtls_mtu = atoi( q );
    1232. 

  1232.             if( opt.dtls_mtu < 0 )
    1233. 

  1233.                 goto usage;
    1234. 

  1234.         }
    1235. 

  1235.         else if( strcmp( p, "dgram_packing" ) == 0 )
    1236. 

  1236.         {
    1237. 

  1237.             opt.dgram_packing = atoi( q );
    1238. 

  1238.             if( opt.dgram_packing != 0 &&
    1239. 

  1239.                 opt.dgram_packing != 1 )
    1240. 

  1240.             {
    1241. 

  1241.                 goto usage;
    1242. 

  1242.             }
    1243. 

  1243.         }
    1244. 

  1244.         else if( strcmp( p, "recsplit" ) == 0 )
    1245. 

  1245.         {
    1246. 

  1246.             opt.recsplit = atoi( q );
    1247. 

  1247.             if( opt.recsplit < 0 || opt.recsplit > 1 )
    1248. 

  1248.                 goto usage;
    1249. 

  1249.         }
    1250. 

  1250.         else if( strcmp( p, "dhmlen" ) == 0 )
    1251. 

  1251.         {
    1252. 

  1252.             opt.dhmlen = atoi( q );
    1253. 

  1253.             if( opt.dhmlen < 0 )
    1254. 

  1254.                 goto usage;
    1255. 

  1255.         }
    1256. 

  1256.         else if( strcmp( p, "query_config" ) == 0 )
    1257. 

  1257.         {
    1258. 

  1258.             opt.query_config_mode = 1;
    1259. 

  1259.             query_config_ret = query_config( q );
    1260. 

  1260.             goto exit;
    1261. 

  1261.         }
    1262. 

  1262.         else if( strcmp( p, "serialize") == 0 )
    1263. 

  1263.         {
    1264. 

  1264.             opt.serialize = atoi( q );
    1265. 

  1265.             if( opt.serialize < 0 || opt.serialize > 2)
    1266. 

  1266.                 goto usage;
    1267. 

  1267.         }
    1268. 

  1268.         else if( strcmp( p, "context_file") == 0 )
    1269. 

  1269.         {
    1270. 

  1270.             opt.context_file = q;
    1271. 

  1271.         }
    1272. 

  1272.         else if( strcmp( p, "eap_tls" ) == 0 )
    1273. 

  1273.         {
    1274. 

  1274.             opt.eap_tls = atoi( q );
    1275. 

  1275.             if( opt.eap_tls < 0 || opt.eap_tls > 1 )
    1276. 

  1276.                 goto usage;
    1277. 

  1277.         }
    1278. 

  1278.         else if( strcmp( p, "reproducible" ) == 0 )
    1279. 

  1279.         {
    1280. 

  1280.             opt.reproducible = 1;
    1281. 

  1281.         }
    1282. 

  1282.         else if( strcmp( p, "nss_keylog" ) == 0 )
    1283. 

  1283.         {
    1284. 

  1284.             opt.nss_keylog = atoi( q );
    1285. 

  1285.             if( opt.nss_keylog < 0 || opt.nss_keylog > 1 )
    1286. 

  1286.                 goto usage;
    1287. 

  1287.         }
    1288. 

  1288.         else if( strcmp( p, "nss_keylog_file" ) == 0 )
    1289. 

  1289.         {
    1290. 

  1290.             opt.nss_keylog_file = q;
    1291. 

  1291.         }
    1292. 

  1292.         else if( strcmp( p, "skip_close_notify" ) == 0 )
    1293. 

  1293.         {
    1294. 

  1294.             opt.skip_close_notify = atoi( q );
    1295. 

  1295.             if( opt.skip_close_notify < 0 || opt.skip_close_notify > 1 )
    1296. 

  1296.                 goto usage;
    1297. 

  1297.         }
    1298. 

  1298.         else if( strcmp( p, "use_srtp" ) == 0 )
    1299. 

  1299.         {
    1300. 

  1300.             opt.use_srtp = atoi ( q );
    1301. 

  1301.         }
    1302. 

  1302.         else if( strcmp( p, "srtp_force_profile" ) == 0 )
    1303. 

  1303.         {
    1304. 

  1304.             opt.force_srtp_profile = atoi( q );
    1305. 

  1305.         }
    1306. 

  1306.         else if( strcmp( p, "mki" ) == 0 )
    1307. 

  1307.         {
    1308. 

  1308.             opt.mki = q;
    1309. 

  1309.         }
    1310. 

  1310.         else
    1311. 

  1311.             goto usage;
    1312. 

  1312.     }
    1313. 

  1313. 

  1314.     if( opt.nss_keylog != 0 && opt.eap_tls != 0 )
    1315. 

  1315.     {
    1316. 

  1316.         mbedtls_printf( "Error: eap_tls and nss_keylog options cannot be used together.\n" );
    1317. 

  1317.         goto usage;
    1318. 

  1318.     }
    1319. 

  1319. 

  1320.     /* Event-driven IO is incompatible with the above custom
    1321. 

  1321.      * receive and send functions, as the polling builds on
    1322. 

  1322.      * refers to the underlying net_context. */
    1323. 

  1323.     if( opt.event == 1 && opt.nbio != 1 )
    1324. 

  1324.     {
    1325. 

  1325.         mbedtls_printf( "Warning: event-driven IO mandates nbio=1 - overwrite\n" );
    1326. 

  1326.         opt.nbio = 1;
    1327. 

  1327.     }
    1328. 

  1328. 

  1329. #if defined(MBEDTLS_DEBUG_C)
    1330. 

  1330.     mbedtls_debug_set_threshold( opt.debug_level );
    1331. 

  1331. #endif
    1332. 

  1332. 

  1333. #if defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED)
    1334. 

  1334.     /*
    1335. 

  1335.      * Unhexify the pre-shared key if any is given
    1336. 

  1336.      */
    1337. 

  1337.     if( strlen( opt.psk ) )
    1338. 

  1338.     {
    1339. 

  1339.         if( mbedtls_test_unhexify( psk, sizeof( psk ),
    1340. 

  1340.                                    opt.psk, &psk_len ) != 0 )
    1341. 

  1341.         {
    1342. 

  1342.             mbedtls_printf( "pre-shared key not valid\n" );
    1343. 

  1343.             goto exit;
    1344. 

  1344.         }
    1345. 

  1345.     }
    1346. 

  1346. #endif /* MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED */
    1347. 

  1347. 

  1348. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    1349. 

  1349.     if( opt.psk_opaque != 0 )
    1350. 

  1350.     {
    1351. 

  1351.         if( opt.psk == NULL )
    1352. 

  1352.         {
    1353. 

  1353.             mbedtls_printf( "psk_opaque set but no psk to be imported specified.\n" );
    1354. 

  1354.             ret = 2;
    1355. 

  1355.             goto usage;
    1356. 

  1356.         }
    1357. 

  1357. 

  1358.         if( opt.force_ciphersuite[0] <= 0 )
    1359. 

  1359.         {
    1360. 

  1360.             mbedtls_printf( "opaque PSKs are only supported in conjunction with forcing TLS 1.2 and a PSK-only ciphersuite through the 'force_ciphersuite' option.\n" );
    1361. 

  1361.             ret = 2;
    1362. 

  1362.             goto usage;
    1363. 

  1363.         }
    1364. 

  1364.     }
    1365. 

  1365. #endif /* MBEDTLS_USE_PSA_CRYPTO */
    1366. 

  1366. 

  1367.     if( opt.force_ciphersuite[0] > 0 )
    1368. 

  1368.     {
    1369. 

  1369.         const mbedtls_ssl_ciphersuite_t *ciphersuite_info;
    1370. 

  1370.         ciphersuite_info =
    1371. 

  1371.             mbedtls_ssl_ciphersuite_from_id( opt.force_ciphersuite[0] );
    1372. 

  1372. 

  1373.         if( opt.max_version != -1 &&
    1374. 

  1374.             ciphersuite_info->min_minor_ver > opt.max_version )
    1375. 

  1375.         {
    1376. 

  1376.             mbedtls_printf( "forced ciphersuite not allowed with this protocol version\n" );
    1377. 

  1377.             ret = 2;
    1378. 

  1378.             goto usage;
    1379. 

  1379.         }
    1380. 

  1380.         if( opt.min_version != -1 &&
    1381. 

  1381.             ciphersuite_info->max_minor_ver < opt.min_version )
    1382. 

  1382.         {
    1383. 

  1383.             mbedtls_printf( "forced ciphersuite not allowed with this protocol version\n" );
    1384. 

  1384.             ret = 2;
    1385. 

  1385.             goto usage;
    1386. 

  1386.         }
    1387. 

  1387. 

  1388.         /* If the server selects a version that's not supported by
    1389. 

  1389.          * this suite, then there will be no common ciphersuite... */
    1390. 

  1390.         if( opt.max_version == -1 ||
    1391. 

  1391.             opt.max_version > ciphersuite_info->max_minor_ver )
    1392. 

  1392.         {
    1393. 

  1393.             opt.max_version = ciphersuite_info->max_minor_ver;
    1394. 

  1394.         }
    1395. 

  1395.         if( opt.min_version < ciphersuite_info->min_minor_ver )
    1396. 

  1396.         {
    1397. 

  1397.             opt.min_version = ciphersuite_info->min_minor_ver;
    1398. 

  1398.             /* DTLS starts with TLS 1.1 */
    1399. 

  1399.             if( opt.transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM &&
    1400. 

  1400.                 opt.min_version < MBEDTLS_SSL_MINOR_VERSION_2 )
    1401. 

  1401.                 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_2;
    1402. 

  1402.         }
    1403. 

  1403. 

  1404.         /* Enable RC4 if needed and not explicitly disabled */
    1405. 

  1405.         if( ciphersuite_info->cipher == MBEDTLS_CIPHER_ARC4_128 )
    1406. 

  1406.         {
    1407. 

  1407.             if( opt.arc4 == MBEDTLS_SSL_ARC4_DISABLED )
    1408. 

  1408.             {
    1409. 

  1409.                 mbedtls_printf( "forced RC4 ciphersuite with RC4 disabled\n" );
    1410. 

  1410.                 ret = 2;
    1411. 

  1411.                 goto usage;
    1412. 

  1412.             }
    1413. 

  1413. 

  1414.             opt.arc4 = MBEDTLS_SSL_ARC4_ENABLED;
    1415. 

  1415.         }
    1416. 

  1416. 

  1417. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    1418. 

  1418.         if( opt.psk_opaque != 0 )
    1419. 

  1419.         {
    1420. 

  1420.             /* Ensure that the chosen ciphersuite is PSK-only; we must know
    1421. 

  1421.              * the ciphersuite in advance to set the correct policy for the
    1422. 

  1422.              * PSK key slot. This limitation might go away in the future. */
    1423. 

  1423.             if( ciphersuite_info->key_exchange != MBEDTLS_KEY_EXCHANGE_PSK ||
    1424. 

  1424.                 opt.min_version != MBEDTLS_SSL_MINOR_VERSION_3 )
    1425. 

  1425.             {
    1426. 

  1426.                 mbedtls_printf( "opaque PSKs are only supported in conjunction with forcing TLS 1.2 and a PSK-only ciphersuite through the 'force_ciphersuite' option.\n" );
    1427. 

  1427.                 ret = 2;
    1428. 

  1428.                 goto usage;
    1429. 

  1429.             }
    1430. 

  1430. 

  1431.             /* Determine KDF algorithm the opaque PSK will be used in. */
    1432. 

  1432. #if defined(MBEDTLS_SHA512_C)
    1433. 

  1433.             if( ciphersuite_info->mac == MBEDTLS_MD_SHA384 )
    1434. 

  1434.                 alg = PSA_ALG_TLS12_PSK_TO_MS(PSA_ALG_SHA_384);
    1435. 

  1435.             else
    1436. 

  1436. #endif /* MBEDTLS_SHA512_C */
    1437. 

  1437.                 alg = PSA_ALG_TLS12_PSK_TO_MS(PSA_ALG_SHA_256);
    1438. 

  1438.         }
    1439. 

  1439. #endif /* MBEDTLS_USE_PSA_CRYPTO */
    1440. 

  1440.     }
    1441. 

  1441. 

  1442. #if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
    1443. 

  1443.     if( mbedtls_test_unhexify( cid, sizeof( cid ),
    1444. 

  1444.                                opt.cid_val, &cid_len ) != 0 )
    1445. 

  1445.     {
    1446. 

  1446.         mbedtls_printf( "CID not valid\n" );
    1447. 

  1447.         goto exit;
    1448. 

  1448.     }
    1449. 

  1449. 

  1450.     /* Keep CID settings for renegotiation unless
    1451. 

  1451.      * specified otherwise. */
    1452. 

  1452.     if( opt.cid_enabled_renego == DFL_CID_ENABLED_RENEGO )
    1453. 

  1453.         opt.cid_enabled_renego = opt.cid_enabled;
    1454. 

  1454.     if( opt.cid_val_renego == DFL_CID_VALUE_RENEGO )
    1455. 

  1455.         opt.cid_val_renego = opt.cid_val;
    1456. 

  1456. 

  1457.     if( mbedtls_test_unhexify( cid_renego, sizeof( cid_renego ),
    1458. 

  1458.                                opt.cid_val_renego, &cid_renego_len ) != 0 )
    1459. 

  1459.     {
    1460. 

  1460.         mbedtls_printf( "CID not valid\n" );
    1461. 

  1461.         goto exit;
    1462. 

  1462.     }
    1463. 

  1463. #endif /* MBEDTLS_SSL_DTLS_CONNECTION_ID */
    1464. 

  1464. 

  1465. #if defined(MBEDTLS_ECP_C)
    1466. 

  1466.     if( opt.curves != NULL )
    1467. 

  1467.     {
    1468. 

  1468.         p = (char *) opt.curves;
    1469. 

  1469.         i = 0;
    1470. 

  1470. 

  1471.         if( strcmp( p, "none" ) == 0 )
    1472. 

  1472.         {
    1473. 

  1473.             curve_list[0] = MBEDTLS_ECP_DP_NONE;
    1474. 

  1474.         }
    1475. 

  1475.         else if( strcmp( p, "default" ) != 0 )
    1476. 

  1476.         {
    1477. 

  1477.             /* Leave room for a final NULL in curve list */
    1478. 

  1478.             while( i < CURVE_LIST_SIZE - 1 && *p != '\0' )
    1479. 

  1479.             {
    1480. 

  1480.                 q = p;
    1481. 

  1481. 

  1482.                 /* Terminate the current string */
    1483. 

  1483.                 while( *p != ',' && *p != '\0' )
    1484. 

  1484.                     p++;
    1485. 

  1485.                 if( *p == ',' )
    1486. 

  1486.                     *p++ = '\0';
    1487. 

  1487. 

  1488.                 if( ( curve_cur = mbedtls_ecp_curve_info_from_name( q ) ) != NULL )
    1489. 

  1489.                 {
    1490. 

  1490.                     curve_list[i++] = curve_cur->grp_id;
    1491. 

  1491.                 }
    1492. 

  1492.                 else
    1493. 

  1493.                 {
    1494. 

  1494.                     mbedtls_printf( "unknown curve %s\n", q );
    1495. 

  1495.                     mbedtls_printf( "supported curves: " );
    1496. 

  1496.                     for( curve_cur = mbedtls_ecp_curve_list();
    1497. 

  1497.                          curve_cur->grp_id != MBEDTLS_ECP_DP_NONE;
    1498. 

  1498.                          curve_cur++ )
    1499. 

  1499.                     {
    1500. 

  1500.                         mbedtls_printf( "%s ", curve_cur->name );
    1501. 

  1501.                     }
    1502. 

  1502.                     mbedtls_printf( "\n" );
    1503. 

  1503.                     goto exit;
    1504. 

  1504.                 }
    1505. 

  1505.             }
    1506. 

  1506. 

  1507.             mbedtls_printf("Number of curves: %d\n", i );
    1508. 

  1508. 

  1509.             if( i == CURVE_LIST_SIZE - 1 && *p != '\0' )
    1510. 

  1510.             {
    1511. 

  1511.                 mbedtls_printf( "curves list too long, maximum %d",
    1512. 

  1512.                                 CURVE_LIST_SIZE - 1 );
    1513. 

  1513.                 goto exit;
    1514. 

  1514.             }
    1515. 

  1515. 

  1516.             curve_list[i] = MBEDTLS_ECP_DP_NONE;
    1517. 

  1517.         }
    1518. 

  1518.     }
    1519. 

  1519. #endif /* MBEDTLS_ECP_C */
    1520. 

  1520. 

  1521. #if defined(MBEDTLS_SSL_ALPN)
    1522. 

  1522.     if( opt.alpn_string != NULL )
    1523. 

  1523.     {
    1524. 

  1524.         p = (char *) opt.alpn_string;
    1525. 

  1525.         i = 0;
    1526. 

  1526. 

  1527.         /* Leave room for a final NULL in alpn_list */
    1528. 

  1528.         while( i < ALPN_LIST_SIZE - 1 && *p != '\0' )
    1529. 

  1529.         {
    1530. 

  1530.             alpn_list[i++] = p;
    1531. 

  1531. 

  1532.             /* Terminate the current string and move on to next one */
    1533. 

  1533.             while( *p != ',' && *p != '\0' )
    1534. 

  1534.                 p++;
    1535. 

  1535.             if( *p == ',' )
    1536. 

  1536.                 *p++ = '\0';
    1537. 

  1537.         }
    1538. 

  1538.     }
    1539. 

  1539. #endif /* MBEDTLS_SSL_ALPN */
    1540. 

  1540. 

  1541.     /*
    1542. 

  1542.      * 0. Initialize the RNG and the session data
    1543. 

  1543.      */
    1544. 

  1544.     mbedtls_printf( "\n  . Seeding the random number generator..." );
    1545. 

  1545.     fflush( stdout );
    1546. 

  1546. 

  1547.     ret = rng_seed( &rng, opt.reproducible, pers );
    1548. 

  1548.     if( ret != 0 )
    1549. 

  1549.         goto exit;
    1550. 

  1550.     mbedtls_printf( " ok\n" );
    1551. 

  1551. 

  1552. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    1553. 

  1553.     /*
    1554. 

  1554.      * 1.1. Load the trusted CA
    1555. 

  1555.      */
    1556. 

  1556.     mbedtls_printf( "  . Loading the CA root certificate ..." );
    1557. 

  1557.     fflush( stdout );
    1558. 

  1558. 

  1559.     if( strcmp( opt.ca_path, "none" ) == 0 ||
    1560. 

  1560.         strcmp( opt.ca_file, "none" ) == 0 )
    1561. 

  1561.     {
    1562. 

  1562.         ret = 0;
    1563. 

  1563.     }
    1564. 

  1564.     else
    1565. 

  1565. #if defined(MBEDTLS_FS_IO)
    1566. 

  1566.     if( strlen( opt.ca_path ) )
    1567. 

  1567.         ret = mbedtls_x509_crt_parse_path( &cacert, opt.ca_path );
    1568. 

  1568.     else if( strlen( opt.ca_file ) )
    1569. 

  1569.         ret = mbedtls_x509_crt_parse_file( &cacert, opt.ca_file );
    1570. 

  1570.     else
    1571. 

  1571. #endif
    1572. 

  1572. #if defined(MBEDTLS_CERTS_C)
    1573. 

  1573.     {
    1574. 

  1574. #if defined(MBEDTLS_PEM_PARSE_C)
    1575. 

  1575.         for( i = 0; mbedtls_test_cas[i] != NULL; i++ )
    1576. 

  1576.         {
    1577. 

  1577.             ret = mbedtls_x509_crt_parse( &cacert,
    1578. 

  1578.                                   (const unsigned char *) mbedtls_test_cas[i],
    1579. 

  1579.                                   mbedtls_test_cas_len[i] );
    1580. 

  1580.             if( ret != 0 )
    1581. 

  1581.                 break;
    1582. 

  1582.         }
    1583. 

  1583.         if( ret == 0 )
    1584. 

  1584. #endif /* MBEDTLS_PEM_PARSE_C */
    1585. 

  1585.         for( i = 0; mbedtls_test_cas_der[i] != NULL; i++ )
    1586. 

  1586.         {
    1587. 

  1587.             ret = mbedtls_x509_crt_parse_der( &cacert,
    1588. 

  1588.                          (const unsigned char *) mbedtls_test_cas_der[i],
    1589. 

  1589.                          mbedtls_test_cas_der_len[i] );
    1590. 

  1590.             if( ret != 0 )
    1591. 

  1591.                 break;
    1592. 

  1592.         }
    1593. 

  1593.     }
    1594. 

  1594. #else
    1595. 

  1595.     {
    1596. 

  1596.         ret = 1;
    1597. 

  1597.         mbedtls_printf( "MBEDTLS_CERTS_C not defined." );
    1598. 

  1598.     }
    1599. 

  1599. #endif /* MBEDTLS_CERTS_C */
    1600. 

  1600.     if( ret < 0 )
    1601. 

  1601.     {
    1602. 

  1602.         mbedtls_printf( " failed\n  !  mbedtls_x509_crt_parse returned -0x%x\n\n",
    1603. 

  1603.                         (unsigned int) -ret );
    1604. 

  1604.         goto exit;
    1605. 

  1605.     }
    1606. 

  1606. 

  1607.     mbedtls_printf( " ok (%d skipped)\n", ret );
    1608. 

  1608. 

  1609.     /*
    1610. 

  1610.      * 1.2. Load own certificate and private key
    1611. 

  1611.      *
    1612. 

  1612.      * (can be skipped if client authentication is not required)
    1613. 

  1613.      */
    1614. 

  1614.     mbedtls_printf( "  . Loading the client cert. and key..." );
    1615. 

  1615.     fflush( stdout );
    1616. 

  1616. 

  1617.     if( strcmp( opt.crt_file, "none" ) == 0 )
    1618. 

  1618.         ret = 0;
    1619. 

  1619.     else
    1620. 

  1620. #if defined(MBEDTLS_FS_IO)
    1621. 

  1621.     if( strlen( opt.crt_file ) )
    1622. 

  1622.         ret = mbedtls_x509_crt_parse_file( &clicert, opt.crt_file );
    1623. 

  1623.     else
    1624. 

  1624. #endif
    1625. 

  1625. #if defined(MBEDTLS_CERTS_C)
    1626. 

  1626.         ret = mbedtls_x509_crt_parse( &clicert,
    1627. 

  1627.                 (const unsigned char *) mbedtls_test_cli_crt,
    1628. 

  1628.                 mbedtls_test_cli_crt_len );
    1629. 

  1629. #else
    1630. 

  1630.     {
    1631. 

  1631.         ret = 1;
    1632. 

  1632.         mbedtls_printf( "MBEDTLS_CERTS_C not defined." );
    1633. 

  1633.     }
    1634. 

  1634. #endif
    1635. 

  1635.     if( ret != 0 )
    1636. 

  1636.     {
    1637. 

  1637.         mbedtls_printf( " failed\n  !  mbedtls_x509_crt_parse returned -0x%x\n\n",
    1638. 

  1638.                         (unsigned int) -ret );
    1639. 

  1639.         goto exit;
    1640. 

  1640.     }
    1641. 

  1641. 

  1642.     if( strcmp( opt.key_file, "none" ) == 0 )
    1643. 

  1643.         ret = 0;
    1644. 

  1644.     else
    1645. 

  1645. #if defined(MBEDTLS_FS_IO)
    1646. 

  1646.     if( strlen( opt.key_file ) )
    1647. 

  1647.         ret = mbedtls_pk_parse_keyfile( &pkey, opt.key_file, opt.key_pwd );
    1648. 

  1648.     else
    1649. 

  1649. #endif
    1650. 

  1650. #if defined(MBEDTLS_CERTS_C)
    1651. 

  1651.         ret = mbedtls_pk_parse_key( &pkey,
    1652. 

  1652.                 (const unsigned char *) mbedtls_test_cli_key,
    1653. 

  1653.                 mbedtls_test_cli_key_len, NULL, 0 );
    1654. 

  1654. #else
    1655. 

  1655.     {
    1656. 

  1656.         ret = 1;
    1657. 

  1657.         mbedtls_printf( "MBEDTLS_CERTS_C not defined." );
    1658. 

  1658.     }
    1659. 

  1659. #endif
    1660. 

  1660.     if( ret != 0 )
    1661. 

  1661.     {
    1662. 

  1662.         mbedtls_printf( " failed\n  !  mbedtls_pk_parse_key returned -0x%x\n\n",
    1663. 

  1663.                         (unsigned int) -ret );
    1664. 

  1664.         goto exit;
    1665. 

  1665.     }
    1666. 

  1666. 

  1667. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    1668. 

  1668.     if( opt.key_opaque != 0 )
    1669. 

  1669.     {
    1670. 

  1670.         if( ( ret = mbedtls_pk_wrap_as_opaque( &pkey, &key_slot,
    1671. 

  1671.                                                PSA_ALG_SHA_256 ) ) != 0 )
    1672. 

  1672.         {
    1673. 

  1673.             mbedtls_printf( " failed\n  !  "
    1674. 

  1674.                             "mbedtls_pk_wrap_as_opaque returned -0x%x\n\n", (unsigned int)  -ret );
    1675. 

  1675.             goto exit;
    1676. 

  1676.         }
    1677. 

  1677.     }
    1678. 

  1678. #endif /* MBEDTLS_USE_PSA_CRYPTO */
    1679. 

  1679. 

  1680.     mbedtls_printf( " ok (key type: %s)\n", mbedtls_pk_get_name( &pkey ) );
    1681. 

  1681. #endif /* MBEDTLS_X509_CRT_PARSE_C */
    1682. 

  1682. 

  1683.     /*
    1684. 

  1684.      * 2. Start the connection
    1685. 

  1685.      */
    1686. 

  1686.     if( opt.server_addr == NULL)
    1687. 

  1687.         opt.server_addr = opt.server_name;
    1688. 

  1688. 

  1689.     mbedtls_printf( "  . Connecting to %s/%s/%s...",
    1690. 

  1690.             opt.transport == MBEDTLS_SSL_TRANSPORT_STREAM ? "tcp" : "udp",
    1691. 

  1691.             opt.server_addr, opt.server_port );
    1692. 

  1692.     fflush( stdout );
    1693. 

  1693. 

  1694.     if( ( ret = mbedtls_net_connect( &server_fd,
    1695. 

  1695.                        opt.server_addr, opt.server_port,
    1696. 

  1696.                        opt.transport == MBEDTLS_SSL_TRANSPORT_STREAM ?
    1697. 

  1697.                        MBEDTLS_NET_PROTO_TCP : MBEDTLS_NET_PROTO_UDP ) ) != 0 )
    1698. 

  1698.     {
    1699. 

  1699.         mbedtls_printf( " failed\n  ! mbedtls_net_connect returned -0x%x\n\n",
    1700. 

  1700.                         (unsigned int) -ret );
    1701. 

  1701.         goto exit;
    1702. 

  1702.     }
    1703. 

  1703. 

  1704.     if( opt.nbio > 0 )
    1705. 

  1705.         ret = mbedtls_net_set_nonblock( &server_fd );
    1706. 

  1706.     else
    1707. 

  1707.         ret = mbedtls_net_set_block( &server_fd );
    1708. 

  1708.     if( ret != 0 )
    1709. 

  1709.     {
    1710. 

  1710.         mbedtls_printf( " failed\n  ! net_set_(non)block() returned -0x%x\n\n",
    1711. 

  1711.                         (unsigned int) -ret );
    1712. 

  1712.         goto exit;
    1713. 

  1713.     }
    1714. 

  1714. 

  1715.     mbedtls_printf( " ok\n" );
    1716. 

  1716. 

  1717.     /*
    1718. 

  1718.      * 3. Setup stuff
    1719. 

  1719.      */
    1720. 

  1720.     mbedtls_printf( "  . Setting up the SSL/TLS structure..." );
    1721. 

  1721.     fflush( stdout );
    1722. 

  1722. 

  1723.     if( ( ret = mbedtls_ssl_config_defaults( &conf,
    1724. 

  1724.                     MBEDTLS_SSL_IS_CLIENT,
    1725. 

  1725.                     opt.transport,
    1726. 

  1726.                     MBEDTLS_SSL_PRESET_DEFAULT ) ) != 0 )
    1727. 

  1727.     {
    1728. 

  1728.         mbedtls_printf( " failed\n  ! mbedtls_ssl_config_defaults returned -0x%x\n\n",
    1729. 

  1729.                         (unsigned int) -ret );
    1730. 

  1730.         goto exit;
    1731. 

  1731.     }
    1732. 

  1732. 

  1733. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    1734. 

  1734.     /* The default algorithms profile disables SHA-1, but our tests still
    1735. 

  1735.        rely on it heavily. */
    1736. 

  1736.     if( opt.allow_sha1 > 0 )
    1737. 

  1737.     {
    1738. 

  1738.         crt_profile_for_test.allowed_mds |= MBEDTLS_X509_ID_FLAG( MBEDTLS_MD_SHA1 );
    1739. 

  1739.         mbedtls_ssl_conf_cert_profile( &conf, &crt_profile_for_test );
    1740. 

  1740.         mbedtls_ssl_conf_sig_hashes( &conf, ssl_sig_hashes_for_test );
    1741. 

  1741.     }
    1742. 

  1742. 

  1743.     if( opt.context_crt_cb == 0 )
    1744. 

  1744.         mbedtls_ssl_conf_verify( &conf, my_verify, NULL );
    1745. 

  1745. 

  1746.     memset( peer_crt_info, 0, sizeof( peer_crt_info ) );
    1747. 

  1747. #endif /* MBEDTLS_X509_CRT_PARSE_C */
    1748. 

  1748. 

  1749. #if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
    1750. 

  1750.     if( opt.cid_enabled == 1 || opt.cid_enabled_renego == 1 )
    1751. 

  1751.     {
    1752. 

  1752.         if( opt.cid_enabled == 1        &&
    1753. 

  1753.             opt.cid_enabled_renego == 1 &&
    1754. 

  1754.             cid_len != cid_renego_len )
    1755. 

  1755.         {
    1756. 

  1756.             mbedtls_printf( "CID length must not change during renegotiation\n" );
    1757. 

  1757.             goto usage;
    1758. 

  1758.         }
    1759. 

  1759. 

  1760.         if( opt.cid_enabled == 1 )
    1761. 

  1761.             ret = mbedtls_ssl_conf_cid( &conf, cid_len,
    1762. 

  1762.                                         MBEDTLS_SSL_UNEXPECTED_CID_IGNORE );
    1763. 

  1763.         else
    1764. 

  1764.             ret = mbedtls_ssl_conf_cid( &conf, cid_renego_len,
    1765. 

  1765.                                         MBEDTLS_SSL_UNEXPECTED_CID_IGNORE );
    1766. 

  1766. 

  1767.         if( ret != 0 )
    1768. 

  1768.         {
    1769. 

  1769.             mbedtls_printf( " failed\n  ! mbedtls_ssl_conf_cid_len returned -%#04x\n\n",
    1770. 

  1770.                             (unsigned int) -ret );
    1771. 

  1771.             goto exit;
    1772. 

  1772.         }
    1773. 

  1773.     }
    1774. 

  1774. #endif /* MBEDTLS_SSL_DTLS_CONNECTION_ID */
    1775. 

  1775. 

  1776.     if( opt.auth_mode != DFL_AUTH_MODE )
    1777. 

  1777.         mbedtls_ssl_conf_authmode( &conf, opt.auth_mode );
    1778. 

  1778. 

  1779. #if defined(MBEDTLS_SSL_PROTO_DTLS)
    1780. 

  1780.     if( opt.hs_to_min != DFL_HS_TO_MIN || opt.hs_to_max != DFL_HS_TO_MAX )
    1781. 

  1781.         mbedtls_ssl_conf_handshake_timeout( &conf, opt.hs_to_min,
    1782. 

  1782.                                             opt.hs_to_max );
    1783. 

  1783. 

  1784.     if( opt.dgram_packing != DFL_DGRAM_PACKING )
    1785. 

  1785.         mbedtls_ssl_set_datagram_packing( &ssl, opt.dgram_packing );
    1786. 

  1786. #endif /* MBEDTLS_SSL_PROTO_DTLS */
    1787. 

  1787. 

  1788. #if defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH)
    1789. 

  1789.     if( ( ret = mbedtls_ssl_conf_max_frag_len( &conf, opt.mfl_code ) ) != 0 )
    1790. 

  1790.     {
    1791. 

  1791.         mbedtls_printf( " failed\n  ! mbedtls_ssl_conf_max_frag_len returned %d\n\n",
    1792. 

  1792.                         ret );
    1793. 

  1793.         goto exit;
    1794. 

  1794.     }
    1795. 

  1795. #endif
    1796. 

  1796. 

  1797. #if defined(MBEDTLS_SSL_DTLS_SRTP)
    1798. 

  1798.     const mbedtls_ssl_srtp_profile forced_profile[] =
    1799. 

  1799.                                 { opt.force_srtp_profile, MBEDTLS_TLS_SRTP_UNSET };
    1800. 

  1800.     if( opt.use_srtp == 1 )
    1801. 

  1801.     {
    1802. 

  1802.         if( opt.force_srtp_profile != 0 )
    1803. 

  1803.         {
    1804. 

  1804.             ret = mbedtls_ssl_conf_dtls_srtp_protection_profiles ( &conf, forced_profile );
    1805. 

  1805.         }
    1806. 

  1806.         else
    1807. 

  1807.         {
    1808. 

  1808.             ret = mbedtls_ssl_conf_dtls_srtp_protection_profiles ( &conf, default_profiles );
    1809. 

  1809.         }
    1810. 

  1810. 

  1811.         if( ret != 0 )
    1812. 

  1812.         {
    1813. 

  1813.             mbedtls_printf( " failed\n  ! "
    1814. 

  1814.                             "mbedtls_ssl_conf_dtls_srtp_protection_profiles returned %d\n\n",
    1815. 

  1815.                             ret );
    1816. 

  1816.             goto exit;
    1817. 

  1817.         }
    1818. 

  1818. 

  1819.     }
    1820. 

  1820.     else if( opt.force_srtp_profile != 0 )
    1821. 

  1821.     {
    1822. 

  1822.         mbedtls_printf( " failed\n  ! must enable use_srtp to force srtp profile\n\n" );
    1823. 

  1823.         goto exit;
    1824. 

  1824.     }
    1825. 

  1825. #endif /* MBEDTLS_SSL_DTLS_SRTP */
    1826. 

  1826. 

  1827. #if defined(MBEDTLS_SSL_TRUNCATED_HMAC)
    1828. 

  1828.     if( opt.trunc_hmac != DFL_TRUNC_HMAC )
    1829. 

  1829.         mbedtls_ssl_conf_truncated_hmac( &conf, opt.trunc_hmac );
    1830. 

  1830. #endif
    1831. 

  1831. 

  1832. #if defined(MBEDTLS_SSL_EXTENDED_MASTER_SECRET)
    1833. 

  1833.     if( opt.extended_ms != DFL_EXTENDED_MS )
    1834. 

  1834.         mbedtls_ssl_conf_extended_master_secret( &conf, opt.extended_ms );
    1835. 

  1835. #endif
    1836. 

  1836. 

  1837. #if defined(MBEDTLS_SSL_ENCRYPT_THEN_MAC)
    1838. 

  1838.     if( opt.etm != DFL_ETM )
    1839. 

  1839.         mbedtls_ssl_conf_encrypt_then_mac( &conf, opt.etm );
    1840. 

  1840. #endif
    1841. 

  1841. 

  1842. #if defined(MBEDTLS_SSL_EXPORT_KEYS)
    1843. 

  1843.     if( opt.eap_tls != 0 )
    1844. 

  1844.     {
    1845. 

  1845.         mbedtls_ssl_conf_export_keys_ext_cb( &conf, eap_tls_key_derivation,
    1846. 

  1846.                                              &eap_tls_keying );
    1847. 

  1847.     }
    1848. 

  1848.     else if( opt.nss_keylog != 0 )
    1849. 

  1849.     {
    1850. 

  1850.         mbedtls_ssl_conf_export_keys_ext_cb( &conf,
    1851. 

  1851.                                              nss_keylog_export,
    1852. 

  1852.                                              NULL );
    1853. 

  1853.     }
    1854. 

  1854. #if defined( MBEDTLS_SSL_DTLS_SRTP )
    1855. 

  1855.     else if( opt.use_srtp != 0 )
    1856. 

  1856.     {
    1857. 

  1857.         mbedtls_ssl_conf_export_keys_ext_cb( &conf, dtls_srtp_key_derivation,
    1858. 

  1858.                                              &dtls_srtp_keying );
    1859. 

  1859.     }
    1860. 

  1860. #endif /* MBEDTLS_SSL_DTLS_SRTP */
    1861. 

  1861. #endif /* MBEDTLS_SSL_EXPORT_KEYS */
    1862. 

  1862. 

  1863. #if defined(MBEDTLS_SSL_CBC_RECORD_SPLITTING)
    1864. 

  1864.     if( opt.recsplit != DFL_RECSPLIT )
    1865. 

  1865.         mbedtls_ssl_conf_cbc_record_splitting( &conf, opt.recsplit
    1866. 

  1866.                                   ? MBEDTLS_SSL_CBC_RECORD_SPLITTING_ENABLED
    1867. 

  1867.                                   : MBEDTLS_SSL_CBC_RECORD_SPLITTING_DISABLED );
    1868. 

  1868. #endif
    1869. 

  1869. 

  1870. #if defined(MBEDTLS_DHM_C)
    1871. 

  1871.     if( opt.dhmlen != DFL_DHMLEN )
    1872. 

  1872.         mbedtls_ssl_conf_dhm_min_bitlen( &conf, opt.dhmlen );
    1873. 

  1873. #endif
    1874. 

  1874. 

  1875. #if defined(MBEDTLS_SSL_ALPN)
    1876. 

  1876.     if( opt.alpn_string != NULL )
    1877. 

  1877.         if( ( ret = mbedtls_ssl_conf_alpn_protocols( &conf, alpn_list ) ) != 0 )
    1878. 

  1878.         {
    1879. 

  1879.             mbedtls_printf( " failed\n  ! mbedtls_ssl_conf_alpn_protocols returned %d\n\n",
    1880. 

  1880.                             ret );
    1881. 

  1881.             goto exit;
    1882. 

  1882.         }
    1883. 

  1883. #endif
    1884. 

  1884. 

  1885.     if (opt.reproducible)
    1886. 

  1886.     {
    1887. 

  1887. #if defined(MBEDTLS_HAVE_TIME)
    1888. 

  1888. #if defined(MBEDTLS_PLATFORM_TIME_ALT)
    1889. 

  1889.         mbedtls_platform_set_time( dummy_constant_time );
    1890. 

  1890. #else
    1891. 

  1891.         fprintf( stderr, "Warning: reproducible option used without constant time\n" );
    1892. 

  1892. #endif
    1893. 

  1893. #endif  /* MBEDTLS_HAVE_TIME */
    1894. 

  1894.     }
    1895. 

  1895.     mbedtls_ssl_conf_rng( &conf, rng_get, &rng );
    1896. 

  1896.     mbedtls_ssl_conf_dbg( &conf, my_debug, stdout );
    1897. 

  1897. 

  1898.     mbedtls_ssl_conf_read_timeout( &conf, opt.read_timeout );
    1899. 

  1899. 

  1900. #if defined(MBEDTLS_SSL_SESSION_TICKETS)
    1901. 

  1901.     mbedtls_ssl_conf_session_tickets( &conf, opt.tickets );
    1902. 

  1902. #endif
    1903. 

  1903. 

  1904.     if( opt.force_ciphersuite[0] != DFL_FORCE_CIPHER )
    1905. 

  1905.         mbedtls_ssl_conf_ciphersuites( &conf, opt.force_ciphersuite );
    1906. 

  1906. 

  1907. #if defined(MBEDTLS_ARC4_C)
    1908. 

  1908.     if( opt.arc4 != DFL_ARC4 )
    1909. 

  1909.         mbedtls_ssl_conf_arc4_support( &conf, opt.arc4 );
    1910. 

  1910. #endif
    1911. 

  1911. 

  1912.     if( opt.allow_legacy != DFL_ALLOW_LEGACY )
    1913. 

  1913.         mbedtls_ssl_conf_legacy_renegotiation( &conf, opt.allow_legacy );
    1914. 

  1914. #if defined(MBEDTLS_SSL_RENEGOTIATION)
    1915. 

  1915.     mbedtls_ssl_conf_renegotiation( &conf, opt.renegotiation );
    1916. 

  1916. #endif
    1917. 

  1917. 

  1918. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    1919. 

  1919.     if( strcmp( opt.ca_path, "none" ) != 0 &&
    1920. 

  1920.         strcmp( opt.ca_file, "none" ) != 0 )
    1921. 

  1921.     {
    1922. 

  1922. #if defined(MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK)
    1923. 

  1923.         if( opt.ca_callback != 0 )
    1924. 

  1924.             mbedtls_ssl_conf_ca_cb( &conf, ca_callback, &cacert );
    1925. 

  1925.         else
    1926. 

  1926. #endif
    1927. 

  1927.             mbedtls_ssl_conf_ca_chain( &conf, &cacert, NULL );
    1928. 

  1928.     }
    1929. 

  1929.     if( strcmp( opt.crt_file, "none" ) != 0 &&
    1930. 

  1930.         strcmp( opt.key_file, "none" ) != 0 )
    1931. 

  1931.     {
    1932. 

  1932.         if( ( ret = mbedtls_ssl_conf_own_cert( &conf, &clicert, &pkey ) ) != 0 )
    1933. 

  1933.         {
    1934. 

  1934.             mbedtls_printf( " failed\n  ! mbedtls_ssl_conf_own_cert returned %d\n\n",
    1935. 

  1935.                             ret );
    1936. 

  1936.             goto exit;
    1937. 

  1937.         }
    1938. 

  1938.     }
    1939. 

  1939. #endif  /* MBEDTLS_X509_CRT_PARSE_C */
    1940. 

  1940. 

  1941. #if defined(MBEDTLS_ECP_C)
    1942. 

  1942.     if( opt.curves != NULL &&
    1943. 

  1943.         strcmp( opt.curves, "default" ) != 0 )
    1944. 

  1944.     {
    1945. 

  1945.         mbedtls_ssl_conf_curves( &conf, curve_list );
    1946. 

  1946.     }
    1947. 

  1947. #endif
    1948. 

  1948. 

  1949. #if defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED)
    1950. 

  1950. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    1951. 

  1951.     if( opt.psk_opaque != 0 )
    1952. 

  1952.     {
    1953. 

  1953.         key_attributes = psa_key_attributes_init();
    1954. 

  1954.         psa_set_key_usage_flags( &key_attributes, PSA_KEY_USAGE_DERIVE );
    1955. 

  1955.         psa_set_key_algorithm( &key_attributes, alg );
    1956. 

  1956.         psa_set_key_type( &key_attributes, PSA_KEY_TYPE_DERIVE );
    1957. 

  1957. 

  1958.         status = psa_import_key( &key_attributes, psk, psk_len, &slot );
    1959. 

  1959.         if( status != PSA_SUCCESS )
    1960. 

  1960.         {
    1961. 

  1961.             ret = MBEDTLS_ERR_SSL_HW_ACCEL_FAILED;
    1962. 

  1962.             goto exit;
    1963. 

  1963.         }
    1964. 

  1964. 

  1965.         if( ( ret = mbedtls_ssl_conf_psk_opaque( &conf, slot,
    1966. 

  1966.                                   (const unsigned char *) opt.psk_identity,
    1967. 

  1967.                                   strlen( opt.psk_identity ) ) ) != 0 )
    1968. 

  1968.         {
    1969. 

  1969.             mbedtls_printf( " failed\n  ! mbedtls_ssl_conf_psk_opaque returned %d\n\n",
    1970. 

  1970.                             ret );
    1971. 

  1971.             goto exit;
    1972. 

  1972.         }
    1973. 

  1973.     }
    1974. 

  1974.     else
    1975. 

  1975. #endif /* MBEDTLS_USE_PSA_CRYPTO */
    1976. 

  1976.     if( psk_len > 0 )
    1977. 

  1977.     {
    1978. 

  1978.         ret = mbedtls_ssl_conf_psk( &conf, psk, psk_len,
    1979. 

  1979.                              (const unsigned char *) opt.psk_identity,
    1980. 

  1980.                              strlen( opt.psk_identity ) );
    1981. 

  1981.         if( ret != 0 )
    1982. 

  1982.         {
    1983. 

  1983.             mbedtls_printf( " failed\n  ! mbedtls_ssl_conf_psk returned %d\n\n", ret );
    1984. 

  1984.             goto exit;
    1985. 

  1985.         }
    1986. 

  1986.     }
    1987. 

  1987. #endif /* MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED */
    1988. 

  1988. 

  1989.     if( opt.min_version != DFL_MIN_VERSION )
    1990. 

  1990.         mbedtls_ssl_conf_min_version( &conf, MBEDTLS_SSL_MAJOR_VERSION_3,
    1991. 

  1991.                                       opt.min_version );
    1992. 

  1992. 

  1993.     if( opt.max_version != DFL_MAX_VERSION )
    1994. 

  1994.         mbedtls_ssl_conf_max_version( &conf, MBEDTLS_SSL_MAJOR_VERSION_3,
    1995. 

  1995.                                       opt.max_version );
    1996. 

  1996. 

  1997. #if defined(MBEDTLS_SSL_FALLBACK_SCSV)
    1998. 

  1998.     if( opt.fallback != DFL_FALLBACK )
    1999. 

  1999.         mbedtls_ssl_conf_fallback( &conf, opt.fallback );
    2000. 

  2000. #endif
    2001. 

  2001. 

  2002.     if( ( ret = mbedtls_ssl_setup( &ssl, &conf ) ) != 0 )
    2003. 

  2003.     {
    2004. 

  2004.         mbedtls_printf( " failed\n  ! mbedtls_ssl_setup returned -0x%x\n\n",
    2005. 

  2005.                         (unsigned int) -ret );
    2006. 

  2006.         goto exit;
    2007. 

  2007.     }
    2008. 

  2008. 

  2009. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    2010. 

  2010.     if( ( ret = mbedtls_ssl_set_hostname( &ssl, opt.server_name ) ) != 0 )
    2011. 

  2011.     {
    2012. 

  2012.         mbedtls_printf( " failed\n  ! mbedtls_ssl_set_hostname returned %d\n\n",
    2013. 

  2013.                         ret );
    2014. 

  2014.         goto exit;
    2015. 

  2015.     }
    2016. 

  2016. #endif
    2017. 

  2017. 

  2018. #if defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED)
    2019. 

  2019.     if( opt.ecjpake_pw != DFL_ECJPAKE_PW )
    2020. 

  2020.     {
    2021. 

  2021.         if( ( ret = mbedtls_ssl_set_hs_ecjpake_password( &ssl,
    2022. 

  2022.                         (const unsigned char *) opt.ecjpake_pw,
    2023. 

  2023.                                         strlen( opt.ecjpake_pw ) ) ) != 0 )
    2024. 

  2024.         {
    2025. 

  2025.             mbedtls_printf( " failed\n  ! mbedtls_ssl_set_hs_ecjpake_password returned %d\n\n",
    2026. 

  2026.                             ret );
    2027. 

  2027.             goto exit;
    2028. 

  2028.         }
    2029. 

  2029.     }
    2030. 

  2030. #endif
    2031. 

  2031. 

  2032. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    2033. 

  2033.     if( opt.context_crt_cb == 1 )
    2034. 

  2034.         mbedtls_ssl_set_verify( &ssl, my_verify, NULL );
    2035. 

  2035. #endif /* MBEDTLS_X509_CRT_PARSE_C */
    2036. 

  2036. 

  2037.     io_ctx.ssl = &ssl;
    2038. 

  2038.     io_ctx.net = &server_fd;
    2039. 

  2039.     mbedtls_ssl_set_bio( &ssl, &io_ctx, send_cb, recv_cb,
    2040. 

  2040.                          opt.nbio == 0 ? recv_timeout_cb : NULL );
    2041. 

  2041. 

  2042. #if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
    2043. 

  2043.     if( opt.transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM )
    2044. 

  2044.     {
    2045. 

  2045.         if( ( ret = mbedtls_ssl_set_cid( &ssl, opt.cid_enabled,
    2046. 

  2046.                                          cid, cid_len ) ) != 0 )
    2047. 

  2047.         {
    2048. 

  2048.             mbedtls_printf( " failed\n  ! mbedtls_ssl_set_cid returned %d\n\n",
    2049. 

  2049.                             ret );
    2050. 

  2050.             goto exit;
    2051. 

  2051.         }
    2052. 

  2052.     }
    2053. 

  2053. #endif /* MBEDTLS_SSL_DTLS_CONNECTION_ID */
    2054. 

  2054. 

  2055. #if defined(MBEDTLS_SSL_PROTO_DTLS)
    2056. 

  2056.     if( opt.dtls_mtu != DFL_DTLS_MTU )
    2057. 

  2057.         mbedtls_ssl_set_mtu( &ssl, opt.dtls_mtu );
    2058. 

  2058. #endif
    2059. 

  2059. 

  2060. #if defined(MBEDTLS_TIMING_C)
    2061. 

  2061.     mbedtls_ssl_set_timer_cb( &ssl, &timer, mbedtls_timing_set_delay,
    2062. 

  2062.                                             mbedtls_timing_get_delay );
    2063. 

  2063. #endif
    2064. 

  2064. 

  2065. #if defined(MBEDTLS_ECP_RESTARTABLE)
    2066. 

  2066.     if( opt.ec_max_ops != DFL_EC_MAX_OPS )
    2067. 

  2067.         mbedtls_ecp_set_max_ops( opt.ec_max_ops );
    2068. 

  2068. #endif
    2069. 

  2069. 

  2070. #if defined(MBEDTLS_SSL_DTLS_SRTP)
    2071. 

  2071.     if( opt.use_srtp != 0 && strlen( opt.mki ) != 0 )
    2072. 

  2072.     {
    2073. 

  2073.         if( mbedtls_test_unhexify( mki, sizeof( mki ),
    2074. 

  2074.                                    opt.mki,&mki_len ) != 0 )
    2075. 

  2075.         {
    2076. 

  2076.             mbedtls_printf( "mki value not valid hex\n" );
    2077. 

  2077.             goto exit;
    2078. 

  2078.         }
    2079. 

  2079. 

  2080.         mbedtls_ssl_conf_srtp_mki_value_supported( &conf, MBEDTLS_SSL_DTLS_SRTP_MKI_SUPPORTED );
    2081. 

  2081.         if( ( ret = mbedtls_ssl_dtls_srtp_set_mki_value( &ssl, mki,
    2082. 

  2082.                                                          (uint16_t) strlen( opt.mki ) / 2 ) ) != 0 )
    2083. 

  2083.         {
    2084. 

  2084.             mbedtls_printf( " failed\n  ! mbedtls_ssl_dtls_srtp_set_mki_value returned %d\n\n", ret );
    2085. 

  2085.             goto exit;
    2086. 

  2086.         }
    2087. 

  2087.     }
    2088. 

  2088. #endif
    2089. 

  2089. 

  2090.     mbedtls_printf( " ok\n" );
    2091. 

  2091. 

  2092.     /*
    2093. 

  2093.      * 4. Handshake
    2094. 

  2094.      */
    2095. 

  2095.     mbedtls_printf( "  . Performing the SSL/TLS handshake..." );
    2096. 

  2096.     fflush( stdout );
    2097. 

  2097. 

  2098.     while( ( ret = mbedtls_ssl_handshake( &ssl ) ) != 0 )
    2099. 

  2099.     {
    2100. 

  2100.         if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
    2101. 

  2101.             ret != MBEDTLS_ERR_SSL_WANT_WRITE &&
    2102. 

  2102.             ret != MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
    2103. 

  2103.         {
    2104. 

  2104.             mbedtls_printf( " failed\n  ! mbedtls_ssl_handshake returned -0x%x\n",
    2105. 

  2105.                             (unsigned int) -ret );
    2106. 

  2106.             if( ret == MBEDTLS_ERR_X509_CERT_VERIFY_FAILED )
    2107. 

  2107.                 mbedtls_printf(
    2108. 

  2108.                     "    Unable to verify the server's certificate. "
    2109. 

  2109.                         "Either it is invalid,\n"
    2110. 

  2110.                     "    or you didn't set ca_file or ca_path "
    2111. 

  2111.                         "to an appropriate value.\n"
    2112. 

  2112.                     "    Alternatively, you may want to use "
    2113. 

  2113.                         "auth_mode=optional for testing purposes.\n" );
    2114. 

  2114.             mbedtls_printf( "\n" );
    2115. 

  2115.             goto exit;
    2116. 

  2116.         }
    2117. 

  2117. 

  2118. #if defined(MBEDTLS_ECP_RESTARTABLE)
    2119. 

  2119.         if( ret == MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
    2120. 

  2120.             continue;
    2121. 

  2121. #endif
    2122. 

  2122. 

  2123.         /* For event-driven IO, wait for socket to become available */
    2124. 

  2124.         if( opt.event == 1 /* level triggered IO */ )
    2125. 

  2125.         {
    2126. 

  2126. #if defined(MBEDTLS_TIMING_C)
    2127. 

  2127.             ret = idle( &server_fd, &timer, ret );
    2128. 

  2128. #else
    2129. 

  2129.             ret = idle( &server_fd, ret );
    2130. 

  2130. #endif
    2131. 

  2131.             if( ret != 0 )
    2132. 

  2132.                 goto exit;
    2133. 

  2133.         }
    2134. 

  2134.     }
    2135. 

  2135. 

  2136.     mbedtls_printf( " ok\n    [ Protocol is %s ]\n    [ Ciphersuite is %s ]\n",
    2137. 

  2137.                     mbedtls_ssl_get_version( &ssl ),
    2138. 

  2138.                     mbedtls_ssl_get_ciphersuite( &ssl ) );
    2139. 

  2139. 

  2140.     if( ( ret = mbedtls_ssl_get_record_expansion( &ssl ) ) >= 0 )
    2141. 

  2141.         mbedtls_printf( "    [ Record expansion is %d ]\n", ret );
    2142. 

  2142.     else
    2143. 

  2143.         mbedtls_printf( "    [ Record expansion is unknown (compression) ]\n" );
    2144. 

  2144. 

  2145. #if defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH)
    2146. 

  2146.     mbedtls_printf( "    [ Maximum input fragment length is %u ]\n",
    2147. 

  2147.                     (unsigned int) mbedtls_ssl_get_input_max_frag_len( &ssl ) );
    2148. 

  2148.     mbedtls_printf( "    [ Maximum output fragment length is %u ]\n",
    2149. 

  2149.                     (unsigned int) mbedtls_ssl_get_output_max_frag_len( &ssl ) );
    2150. 

  2150. #endif
    2151. 

  2151. 

  2152. #if defined(MBEDTLS_SSL_ALPN)
    2153. 

  2153.     if( opt.alpn_string != NULL )
    2154. 

  2154.     {
    2155. 

  2155.         const char *alp = mbedtls_ssl_get_alpn_protocol( &ssl );
    2156. 

  2156.         mbedtls_printf( "    [ Application Layer Protocol is %s ]\n",
    2157. 

  2157.                 alp ? alp : "(none)" );
    2158. 

  2158.     }
    2159. 

  2159. #endif
    2160. 

  2160. 

  2161. #if defined(MBEDTLS_SSL_EXPORT_KEYS)
    2162. 

  2162.     if( opt.eap_tls != 0  )
    2163. 

  2163.     {
    2164. 

  2164.         size_t j = 0;
    2165. 

  2165. 

  2166.         if( ( ret = mbedtls_ssl_tls_prf( eap_tls_keying.tls_prf_type,
    2167. 

  2167.                                          eap_tls_keying.master_secret,
    2168. 

  2168.                                          sizeof( eap_tls_keying.master_secret ),
    2169. 

  2169.                                          eap_tls_label,
    2170. 

  2170.                                          eap_tls_keying.randbytes,
    2171. 

  2171.                                          sizeof( eap_tls_keying.randbytes ),
    2172. 

  2172.                                          eap_tls_keymaterial,
    2173. 

  2173.                                          sizeof( eap_tls_keymaterial ) ) )
    2174. 

  2174.                                          != 0 )
    2175. 

  2175.         {
    2176. 

  2176.             mbedtls_printf( " failed\n  ! mbedtls_ssl_tls_prf returned -0x%x\n\n",
    2177. 

  2177.                             (unsigned int) -ret );
    2178. 

  2178.             goto exit;
    2179. 

  2179.         }
    2180. 

  2180. 

  2181.         mbedtls_printf( "    EAP-TLS key material is:" );
    2182. 

  2182.         for( j = 0; j < sizeof( eap_tls_keymaterial ); j++ )
    2183. 

  2183.         {
    2184. 

  2184.             if( j % 8 == 0 )
    2185. 

  2185.                 mbedtls_printf("\n    ");
    2186. 

  2186.             mbedtls_printf("%02x ", eap_tls_keymaterial[j] );
    2187. 

  2187.         }
    2188. 

  2188.         mbedtls_printf("\n");
    2189. 

  2189. 

  2190.         if( ( ret = mbedtls_ssl_tls_prf( eap_tls_keying.tls_prf_type, NULL, 0,
    2191. 

  2191.                                          eap_tls_label,
    2192. 

  2192.                                          eap_tls_keying.randbytes,
    2193. 

  2193.                                          sizeof( eap_tls_keying.randbytes ),
    2194. 

  2194.                                          eap_tls_iv,
    2195. 

  2195.                                          sizeof( eap_tls_iv ) ) ) != 0 )
    2196. 

  2196.          {
    2197. 

  2197.              mbedtls_printf( " failed\n  ! mbedtls_ssl_tls_prf returned -0x%x\n\n",
    2198. 

  2198.                              (unsigned int) -ret );
    2199. 

  2199.              goto exit;
    2200. 

  2200.          }
    2201. 

  2201. 

  2202.         mbedtls_printf( "    EAP-TLS IV is:" );
    2203. 

  2203.         for( j = 0; j < sizeof( eap_tls_iv ); j++ )
    2204. 

  2204.         {
    2205. 

  2205.             if( j % 8 == 0 )
    2206. 

  2206.                 mbedtls_printf("\n    ");
    2207. 

  2207.             mbedtls_printf("%02x ", eap_tls_iv[j] );
    2208. 

  2208.         }
    2209. 

  2209.         mbedtls_printf("\n");
    2210. 

  2210.     }
    2211. 

  2211. 

  2212. #if defined( MBEDTLS_SSL_DTLS_SRTP )
    2213. 

  2213.     else if( opt.use_srtp != 0  )
    2214. 

  2214.     {
    2215. 

  2215.         size_t j = 0;
    2216. 

  2216.         mbedtls_dtls_srtp_info dtls_srtp_negotiation_result;
    2217. 

  2217.         mbedtls_ssl_get_dtls_srtp_negotiation_result( &ssl, &dtls_srtp_negotiation_result );
    2218. 

  2218. 

  2219.         if( dtls_srtp_negotiation_result.chosen_dtls_srtp_profile
    2220. 

  2220.                                 == MBEDTLS_TLS_SRTP_UNSET )
    2221. 

  2221.         {
    2222. 

  2222.             mbedtls_printf( "    Unable to negotiate "
    2223. 

  2223.                             "the use of DTLS-SRTP\n" );
    2224. 

  2224.         }
    2225. 

  2225.         else
    2226. 

  2226.         {
    2227. 

  2227.             if( ( ret = mbedtls_ssl_tls_prf( dtls_srtp_keying.tls_prf_type,
    2228. 

  2228.                                              dtls_srtp_keying.master_secret,
    2229. 

  2229.                                              sizeof( dtls_srtp_keying.master_secret ),
    2230. 

  2230.                                              dtls_srtp_label,
    2231. 

  2231.                                              dtls_srtp_keying.randbytes,
    2232. 

  2232.                                              sizeof( dtls_srtp_keying.randbytes ),
    2233. 

  2233.                                              dtls_srtp_key_material,
    2234. 

  2234.                                              sizeof( dtls_srtp_key_material ) ) )
    2235. 

  2235.                                              != 0 )
    2236. 

  2236.             {
    2237. 

  2237.                 mbedtls_printf( " failed\n  ! mbedtls_ssl_tls_prf returned -0x%x\n\n",
    2238. 

  2238.                                 (unsigned int) -ret );
    2239. 

  2239.                 goto exit;
    2240. 

  2240.             }
    2241. 

  2241. 

  2242.             mbedtls_printf( "    DTLS-SRTP key material is:" );
    2243. 

  2243.             for( j = 0; j < sizeof( dtls_srtp_key_material ); j++ )
    2244. 

  2244.             {
    2245. 

  2245.                 if( j % 8 == 0 )
    2246. 

  2246.                     mbedtls_printf( "\n    " );
    2247. 

  2247.                 mbedtls_printf( "%02x ", dtls_srtp_key_material[j] );
    2248. 

  2248.             }
    2249. 

  2249.             mbedtls_printf( "\n" );
    2250. 

  2250. 

  2251.             /* produce a less readable output used to perform automatic checks
    2252. 

  2252.              * - compare client and server output
    2253. 

  2253.              * - interop test with openssl which client produces this kind of output
    2254. 

  2254.              */
    2255. 

  2255.             mbedtls_printf( "    Keying material: " );
    2256. 

  2256.             for( j = 0; j < sizeof( dtls_srtp_key_material ); j++ )
    2257. 

  2257.             {
    2258. 

  2258.                 mbedtls_printf( "%02X", dtls_srtp_key_material[j] );
    2259. 

  2259.             }
    2260. 

  2260.             mbedtls_printf( "\n" );
    2261. 

  2261. 

  2262.             if ( dtls_srtp_negotiation_result.mki_len > 0 )
    2263. 

  2263.             {
    2264. 

  2264.                 mbedtls_printf( "    DTLS-SRTP mki value: " );
    2265. 

  2265.                 for( j = 0; j < dtls_srtp_negotiation_result.mki_len; j++ )
    2266. 

  2266.                 {
    2267. 

  2267.                     mbedtls_printf( "%02X", dtls_srtp_negotiation_result.mki_value[j] );
    2268. 

  2268.                 }
    2269. 

  2269.             }
    2270. 

  2270.             else
    2271. 

  2271.             {
    2272. 

  2272.                 mbedtls_printf( "    DTLS-SRTP no mki value negotiated" );
    2273. 

  2273.             }
    2274. 

  2274.             mbedtls_printf( "\n" );
    2275. 

  2275.         }
    2276. 

  2276.     }
    2277. 

  2277. #endif /* MBEDTLS_SSL_DTLS_SRTP */
    2278. 

  2278. #endif /* MBEDTLS_SSL_EXPORT_KEYS */
    2279. 

  2279.     if( opt.reconnect != 0 )
    2280. 

  2280.     {
    2281. 

  2281.         mbedtls_printf("  . Saving session for reuse..." );
    2282. 

  2282.         fflush( stdout );
    2283. 

  2283. 

  2284.         if( opt.reco_mode == 1 )
    2285. 

  2285.         {
    2286. 

  2286.             /* free any previously saved data */
    2287. 

  2287.             if( session_data != NULL )
    2288. 

  2288.             {
    2289. 

  2289.                 mbedtls_platform_zeroize( session_data, session_data_len );
    2290. 

  2290.                 mbedtls_free( session_data );
    2291. 

  2291.                 session_data = NULL;
    2292. 

  2292.             }
    2293. 

  2293. 

  2294.             /* get size of the buffer needed */
    2295. 

  2295.             mbedtls_ssl_session_save( mbedtls_ssl_get_session_pointer( &ssl ),
    2296. 

  2296.                                       NULL, 0, &session_data_len );
    2297. 

  2297.             session_data = mbedtls_calloc( 1, session_data_len );
    2298. 

  2298.             if( session_data == NULL )
    2299. 

  2299.             {
    2300. 

  2300.                 mbedtls_printf( " failed\n  ! alloc %u bytes for session data\n",
    2301. 

  2301.                                 (unsigned) session_data_len );
    2302. 

  2302.                 ret = MBEDTLS_ERR_SSL_ALLOC_FAILED;
    2303. 

  2303.                 goto exit;
    2304. 

  2304.             }
    2305. 

  2305. 

  2306.             /* actually save session data */
    2307. 

  2307.             if( ( ret = mbedtls_ssl_session_save( mbedtls_ssl_get_session_pointer( &ssl ),
    2308. 

  2308.                                                   session_data, session_data_len,
    2309. 

  2309.                                                   &session_data_len ) ) != 0 )
    2310. 

  2310.             {
    2311. 

  2311.                 mbedtls_printf( " failed\n  ! mbedtls_ssl_session_saved returned -0x%04x\n\n",
    2312. 

  2312.                                 (unsigned int) -ret );
    2313. 

  2313.                 goto exit;
    2314. 

  2314.             }
    2315. 

  2315.         }
    2316. 

  2316.         else
    2317. 

  2317.         {
    2318. 

  2318.             if( ( ret = mbedtls_ssl_get_session( &ssl, &saved_session ) ) != 0 )
    2319. 

  2319.             {
    2320. 

  2320.                 mbedtls_printf( " failed\n  ! mbedtls_ssl_get_session returned -0x%x\n\n",
    2321. 

  2321.                                 (unsigned int) -ret );
    2322. 

  2322.                 goto exit;
    2323. 

  2323.             }
    2324. 

  2324.         }
    2325. 

  2325. 

  2326.         mbedtls_printf( " ok\n" );
    2327. 

  2327. 

  2328.         if( opt.reco_mode == 1 )
    2329. 

  2329.         {
    2330. 

  2330.             mbedtls_printf( "    [ Saved %u bytes of session data]\n",
    2331. 

  2331.                             (unsigned) session_data_len );
    2332. 

  2332.         }
    2333. 

  2333.     }
    2334. 

  2334. 

  2335. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    2336. 

  2336.     /*
    2337. 

  2337.      * 5. Verify the server certificate
    2338. 

  2338.      */
    2339. 

  2339.     mbedtls_printf( "  . Verifying peer X.509 certificate..." );
    2340. 

  2340. 

  2341.     if( ( flags = mbedtls_ssl_get_verify_result( &ssl ) ) != 0 )
    2342. 

  2342.     {
    2343. 

  2343.         char vrfy_buf[512];
    2344. 

  2344. 

  2345.         mbedtls_printf( " failed\n" );
    2346. 

  2346. 

  2347.         mbedtls_x509_crt_verify_info( vrfy_buf, sizeof( vrfy_buf ),
    2348. 

  2348.                                       "  ! ", flags );
    2349. 

  2349. 

  2350.         mbedtls_printf( "%s\n", vrfy_buf );
    2351. 

  2351.     }
    2352. 

  2352.     else
    2353. 

  2353.         mbedtls_printf( " ok\n" );
    2354. 

  2354. 

  2355.     mbedtls_printf( "  . Peer certificate information    ...\n" );
    2356. 

  2356.     mbedtls_printf( "%s\n", peer_crt_info );
    2357. 

  2357. #endif /* MBEDTLS_X509_CRT_PARSE_C */
    2358. 

  2358. 

  2359. #if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
    2360. 

  2360.     ret = report_cid_usage( &ssl, "initial handshake" );
    2361. 

  2361.     if( ret != 0 )
    2362. 

  2362.         goto exit;
    2363. 

  2363. 

  2364.     if( opt.transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM )
    2365. 

  2365.     {
    2366. 

  2366.         if( ( ret = mbedtls_ssl_set_cid( &ssl, opt.cid_enabled_renego,
    2367. 

  2367.                                          cid_renego,
    2368. 

  2368.                                          cid_renego_len ) ) != 0 )
    2369. 

  2369.         {
    2370. 

  2370.             mbedtls_printf( " failed\n  ! mbedtls_ssl_set_cid returned %d\n\n",
    2371. 

  2371.                             ret );
    2372. 

  2372.             goto exit;
    2373. 

  2373.         }
    2374. 

  2374.     }
    2375. 

  2375. #endif /* MBEDTLS_SSL_DTLS_CONNECTION_ID */
    2376. 

  2376. 

  2377. #if defined(MBEDTLS_SSL_RENEGOTIATION)
    2378. 

  2378.     if( opt.renegotiate )
    2379. 

  2379.     {
    2380. 

  2380.         /*
    2381. 

  2381.          * Perform renegotiation (this must be done when the server is waiting
    2382. 

  2382.          * for input from our side).
    2383. 

  2383.          */
    2384. 

  2384.         mbedtls_printf( "  . Performing renegotiation..." );
    2385. 

  2385.         fflush( stdout );
    2386. 

  2386.         while( ( ret = mbedtls_ssl_renegotiate( &ssl ) ) != 0 )
    2387. 

  2387.         {
    2388. 

  2388.             if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
    2389. 

  2389.                 ret != MBEDTLS_ERR_SSL_WANT_WRITE &&
    2390. 

  2390.                 ret != MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
    2391. 

  2391.             {
    2392. 

  2392.                 mbedtls_printf( " failed\n  ! mbedtls_ssl_renegotiate returned %d\n\n",
    2393. 

  2393.                                 ret );
    2394. 

  2394.                 goto exit;
    2395. 

  2395.             }
    2396. 

  2396. 

  2397. #if defined(MBEDTLS_ECP_RESTARTABLE)
    2398. 

  2398.             if( ret == MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
    2399. 

  2399.                 continue;
    2400. 

  2400. #endif
    2401. 

  2401. 

  2402.             /* For event-driven IO, wait for socket to become available */
    2403. 

  2403.             if( opt.event == 1 /* level triggered IO */ )
    2404. 

  2404.             {
    2405. 

  2405. #if defined(MBEDTLS_TIMING_C)
    2406. 

  2406.                 idle( &server_fd, &timer, ret );
    2407. 

  2407. #else
    2408. 

  2408.                 idle( &server_fd, ret );
    2409. 

  2409. #endif
    2410. 

  2410.             }
    2411. 

  2411. 

  2412.         }
    2413. 

  2413.         mbedtls_printf( " ok\n" );
    2414. 

  2414.     }
    2415. 

  2415. #endif /* MBEDTLS_SSL_RENEGOTIATION */
    2416. 

  2416. 

  2417. #if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID)
    2418. 

  2418.     ret = report_cid_usage( &ssl, "after renegotiation" );
    2419. 

  2419.     if( ret != 0 )
    2420. 

  2420.         goto exit;
    2421. 

  2421. #endif /* MBEDTLS_SSL_DTLS_CONNECTION_ID */
    2422. 

  2422. 

  2423.     /*
    2424. 

  2424.      * 6. Write the GET request
    2425. 

  2425.      */
    2426. 

  2426.     retry_left = opt.max_resend;
    2427. 

  2427. send_request:
    2428. 

  2428.     mbedtls_printf( "  > Write to server:" );
    2429. 

  2429.     fflush( stdout );
    2430. 

  2430. 

  2431.     len = mbedtls_snprintf( (char *) buf, sizeof( buf ) - 1, GET_REQUEST,
    2432. 

  2432.                             opt.request_page );
    2433. 

  2433.     tail_len = (int) strlen( GET_REQUEST_END );
    2434. 

  2434. 

  2435.     /* Add padding to GET request to reach opt.request_size in length */
    2436. 

  2436.     if( opt.request_size != DFL_REQUEST_SIZE &&
    2437. 

  2437.         len + tail_len < opt.request_size )
    2438. 

  2438.     {
    2439. 

  2439.         memset( buf + len, 'A', opt.request_size - len - tail_len );
    2440. 

  2440.         len += opt.request_size - len - tail_len;
    2441. 

  2441.     }
    2442. 

  2442. 

  2443.     strncpy( (char *) buf + len, GET_REQUEST_END, sizeof( buf ) - len - 1 );
    2444. 

  2444.     len += tail_len;
    2445. 

  2445. 

  2446.     /* Truncate if request size is smaller than the "natural" size */
    2447. 

  2447.     if( opt.request_size != DFL_REQUEST_SIZE &&
    2448. 

  2448.         len > opt.request_size )
    2449. 

  2449.     {
    2450. 

  2450.         len = opt.request_size;
    2451. 

  2451. 

  2452.         /* Still end with \r\n unless that's really not possible */
    2453. 

  2453.         if( len >= 2 ) buf[len - 2] = '\r';
    2454. 

  2454.         if( len >= 1 ) buf[len - 1] = '\n';
    2455. 

  2455.     }
    2456. 

  2456. 

  2457.     if( opt.transport == MBEDTLS_SSL_TRANSPORT_STREAM )
    2458. 

  2458.     {
    2459. 

  2459.         written = 0;
    2460. 

  2460.         frags = 0;
    2461. 

  2461. 

  2462.         do
    2463. 

  2463.         {
    2464. 

  2464.             while( ( ret = mbedtls_ssl_write( &ssl, buf + written,
    2465. 

  2465.                                               len - written ) ) < 0 )
    2466. 

  2466.             {
    2467. 

  2467.                 if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
    2468. 

  2468.                     ret != MBEDTLS_ERR_SSL_WANT_WRITE &&
    2469. 

  2469.                     ret != MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
    2470. 

  2470.                 {
    2471. 

  2471.                     mbedtls_printf( " failed\n  ! mbedtls_ssl_write returned -0x%x\n\n",
    2472. 

  2472.                                     (unsigned int) -ret );
    2473. 

  2473.                     goto exit;
    2474. 

  2474.                 }
    2475. 

  2475. 

  2476.                 /* For event-driven IO, wait for socket to become available */
    2477. 

  2477.                 if( opt.event == 1 /* level triggered IO */ )
    2478. 

  2478.                 {
    2479. 

  2479. #if defined(MBEDTLS_TIMING_C)
    2480. 

  2480.                     idle( &server_fd, &timer, ret );
    2481. 

  2481. #else
    2482. 

  2482.                     idle( &server_fd, ret );
    2483. 

  2483. #endif
    2484. 

  2484.                 }
    2485. 

  2485.             }
    2486. 

  2486. 

  2487.             frags++;
    2488. 

  2488.             written += ret;
    2489. 

  2489.         }
    2490. 

  2490.         while( written < len );
    2491. 

  2491.     }
    2492. 

  2492.     else /* Not stream, so datagram */
    2493. 

  2493.     {
    2494. 

  2494.         while( 1 )
    2495. 

  2495.         {
    2496. 

  2496.             ret = mbedtls_ssl_write( &ssl, buf, len );
    2497. 

  2497. 

  2498. #if defined(MBEDTLS_ECP_RESTARTABLE)
    2499. 

  2499.             if( ret == MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
    2500. 

  2500.                 continue;
    2501. 

  2501. #endif
    2502. 

  2502. 

  2503.             if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
    2504. 

  2504.                 ret != MBEDTLS_ERR_SSL_WANT_WRITE )
    2505. 

  2505.                 break;
    2506. 

  2506. 

  2507.             /* For event-driven IO, wait for socket to become available */
    2508. 

  2508.             if( opt.event == 1 /* level triggered IO */ )
    2509. 

  2509.             {
    2510. 

  2510. #if defined(MBEDTLS_TIMING_C)
    2511. 

  2511.                 idle( &server_fd, &timer, ret );
    2512. 

  2512. #else
    2513. 

  2513.                 idle( &server_fd, ret );
    2514. 

  2514. #endif
    2515. 

  2515.             }
    2516. 

  2516.         }
    2517. 

  2517. 

  2518.         if( ret < 0 )
    2519. 

  2519.         {
    2520. 

  2520.             mbedtls_printf( " failed\n  ! mbedtls_ssl_write returned %d\n\n",
    2521. 

  2521.                             ret );
    2522. 

  2522.             goto exit;
    2523. 

  2523.         }
    2524. 

  2524. 

  2525.         frags = 1;
    2526. 

  2526.         written = ret;
    2527. 

  2527. 

  2528.         if( written < len )
    2529. 

  2529.         {
    2530. 

  2530.             mbedtls_printf( " warning\n  ! request didn't fit into single datagram and "
    2531. 

  2531.                             "was truncated to size %u", (unsigned) written );
    2532. 

  2532.         }
    2533. 

  2533.     }
    2534. 

  2534. 

  2535.     buf[written] = '\0';
    2536. 

  2536.     mbedtls_printf( " %d bytes written in %d fragments\n\n%s\n",
    2537. 

  2537.                     written, frags, (char *) buf );
    2538. 

  2538. 

  2539.     /* Send a non-empty request if request_size == 0 */
    2540. 

  2540.     if ( len == 0 )
    2541. 

  2541.     {
    2542. 

  2542.         opt.request_size = DFL_REQUEST_SIZE;
    2543. 

  2543.         goto send_request;
    2544. 

  2544.     }
    2545. 

  2545. 

  2546.     /*
    2547. 

  2547.      * 7. Read the HTTP response
    2548. 

  2548.      */
    2549. 

  2549.     mbedtls_printf( "  < Read from server:" );
    2550. 

  2550.     fflush( stdout );
    2551. 

  2551. 

  2552.     /*
    2553. 

  2553.      * TLS and DTLS need different reading styles (stream vs datagram)
    2554. 

  2554.      */
    2555. 

  2555.     if( opt.transport == MBEDTLS_SSL_TRANSPORT_STREAM )
    2556. 

  2556.     {
    2557. 

  2557.         do
    2558. 

  2558.         {
    2559. 

  2559.             len = sizeof( buf ) - 1;
    2560. 

  2560.             memset( buf, 0, sizeof( buf ) );
    2561. 

  2561.             ret = mbedtls_ssl_read( &ssl, buf, len );
    2562. 

  2562. 

  2563. #if defined(MBEDTLS_ECP_RESTARTABLE)
    2564. 

  2564.             if( ret == MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
    2565. 

  2565.                 continue;
    2566. 

  2566. #endif
    2567. 

  2567. 

  2568.             if( ret == MBEDTLS_ERR_SSL_WANT_READ ||
    2569. 

  2569.                 ret == MBEDTLS_ERR_SSL_WANT_WRITE )
    2570. 

  2570.             {
    2571. 

  2571.                 /* For event-driven IO, wait for socket to become available */
    2572. 

  2572.                 if( opt.event == 1 /* level triggered IO */ )
    2573. 

  2573.                 {
    2574. 

  2574. #if defined(MBEDTLS_TIMING_C)
    2575. 

  2575.                     idle( &server_fd, &timer, ret );
    2576. 

  2576. #else
    2577. 

  2577.                     idle( &server_fd, ret );
    2578. 

  2578. #endif
    2579. 

  2579.                 }
    2580. 

  2580.                 continue;
    2581. 

  2581.             }
    2582. 

  2582. 

  2583.             if( ret <= 0 )
    2584. 

  2584.             {
    2585. 

  2585.                 switch( ret )
    2586. 

  2586.                 {
    2587. 

  2587.                     case MBEDTLS_ERR_SSL_PEER_CLOSE_NOTIFY:
    2588. 

  2588.                         mbedtls_printf( " connection was closed gracefully\n" );
    2589. 

  2589.                         ret = 0;
    2590. 

  2590.                         goto close_notify;
    2591. 

  2591. 

  2592.                     case 0:
    2593. 

  2593.                     case MBEDTLS_ERR_NET_CONN_RESET:
    2594. 

  2594.                         mbedtls_printf( " connection was reset by peer\n" );
    2595. 

  2595.                         ret = 0;
    2596. 

  2596.                         goto reconnect;
    2597. 

  2597. 

  2598.                     default:
    2599. 

  2599.                         mbedtls_printf( " mbedtls_ssl_read returned -0x%x\n",
    2600. 

  2600.                                         (unsigned int) -ret );
    2601. 

  2601.                         goto exit;
    2602. 

  2602.                 }
    2603. 

  2603.             }
    2604. 

  2604. 

  2605.             len = ret;
    2606. 

  2606.             buf[len] = '\0';
    2607. 

  2607.             mbedtls_printf( " %d bytes read\n\n%s", len, (char *) buf );
    2608. 

  2608. 

  2609.             /* End of message should be detected according to the syntax of the
    2610. 

  2610.              * application protocol (eg HTTP), just use a dummy test here. */
    2611. 

  2611.             if( ret > 0 && buf[len-1] == '\n' )
    2612. 

  2612.             {
    2613. 

  2613.                 ret = 0;
    2614. 

  2614.                 break;
    2615. 

  2615.             }
    2616. 

  2616.         }
    2617. 

  2617.         while( 1 );
    2618. 

  2618.     }
    2619. 

  2619.     else /* Not stream, so datagram */
    2620. 

  2620.     {
    2621. 

  2621.         len = sizeof( buf ) - 1;
    2622. 

  2622.         memset( buf, 0, sizeof( buf ) );
    2623. 

  2623. 

  2624.         while( 1 )
    2625. 

  2625.         {
    2626. 

  2626.             ret = mbedtls_ssl_read( &ssl, buf, len );
    2627. 

  2627. 

  2628. #if defined(MBEDTLS_ECP_RESTARTABLE)
    2629. 

  2629.             if( ret == MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
    2630. 

  2630.                 continue;
    2631. 

  2631. #endif
    2632. 

  2632. 

  2633.             if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
    2634. 

  2634.                 ret != MBEDTLS_ERR_SSL_WANT_WRITE )
    2635. 

  2635.                 break;
    2636. 

  2636. 

  2637.             /* For event-driven IO, wait for socket to become available */
    2638. 

  2638.             if( opt.event == 1 /* level triggered IO */ )
    2639. 

  2639.             {
    2640. 

  2640. #if defined(MBEDTLS_TIMING_C)
    2641. 

  2641.                 idle( &server_fd, &timer, ret );
    2642. 

  2642. #else
    2643. 

  2643.                 idle( &server_fd, ret );
    2644. 

  2644. #endif
    2645. 

  2645.             }
    2646. 

  2646.         }
    2647. 

  2647. 

  2648.         if( ret <= 0 )
    2649. 

  2649.         {
    2650. 

  2650.             switch( ret )
    2651. 

  2651.             {
    2652. 

  2652.                 case MBEDTLS_ERR_SSL_TIMEOUT:
    2653. 

  2653.                     mbedtls_printf( " timeout\n" );
    2654. 

  2654.                     if( retry_left-- > 0 )
    2655. 

  2655.                         goto send_request;
    2656. 

  2656.                     goto exit;
    2657. 

  2657. 

  2658.                 case MBEDTLS_ERR_SSL_PEER_CLOSE_NOTIFY:
    2659. 

  2659.                     mbedtls_printf( " connection was closed gracefully\n" );
    2660. 

  2660.                     ret = 0;
    2661. 

  2661.                     goto close_notify;
    2662. 

  2662. 

  2663.                 default:
    2664. 

  2664.                     mbedtls_printf( " mbedtls_ssl_read returned -0x%x\n", (unsigned int) -ret );
    2665. 

  2665.                     goto exit;
    2666. 

  2666.             }
    2667. 

  2667.         }
    2668. 

  2668. 

  2669.         len = ret;
    2670. 

  2670.         buf[len] = '\0';
    2671. 

  2671.         mbedtls_printf( " %d bytes read\n\n%s", len, (char *) buf );
    2672. 

  2672.         ret = 0;
    2673. 

  2673.     }
    2674. 

  2674. 

  2675.     /*
    2676. 

  2676.      * 7b. Simulate hard reset and reconnect from same port?
    2677. 

  2677.      */
    2678. 

  2678.     if( opt.reconnect_hard != 0 )
    2679. 

  2679.     {
    2680. 

  2680.         opt.reconnect_hard = 0;
    2681. 

  2681. 

  2682.         mbedtls_printf( "  . Restarting connection from same port..." );
    2683. 

  2683.         fflush( stdout );
    2684. 

  2684. 

  2685. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    2686. 

  2686.         memset( peer_crt_info, 0, sizeof( peer_crt_info ) );
    2687. 

  2687. #endif /* MBEDTLS_X509_CRT_PARSE_C */
    2688. 

  2688. 

  2689.         if( ( ret = mbedtls_ssl_session_reset( &ssl ) ) != 0 )
    2690. 

  2690.         {
    2691. 

  2691.             mbedtls_printf( " failed\n  ! mbedtls_ssl_session_reset returned -0x%x\n\n",
    2692. 

  2692.                             (unsigned int) -ret );
    2693. 

  2693.             goto exit;
    2694. 

  2694.         }
    2695. 

  2695. 

  2696.         while( ( ret = mbedtls_ssl_handshake( &ssl ) ) != 0 )
    2697. 

  2697.         {
    2698. 

  2698.             if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
    2699. 

  2699.                 ret != MBEDTLS_ERR_SSL_WANT_WRITE &&
    2700. 

  2700.                 ret != MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
    2701. 

  2701.             {
    2702. 

  2702.                 mbedtls_printf( " failed\n  ! mbedtls_ssl_handshake returned -0x%x\n\n",
    2703. 

  2703.                                 (unsigned int) -ret );
    2704. 

  2704.                 goto exit;
    2705. 

  2705.             }
    2706. 

  2706. 

  2707.             /* For event-driven IO, wait for socket to become available */
    2708. 

  2708.             if( opt.event == 1 /* level triggered IO */ )
    2709. 

  2709.             {
    2710. 

  2710. #if defined(MBEDTLS_TIMING_C)
    2711. 

  2711.                 idle( &server_fd, &timer, ret );
    2712. 

  2712. #else
    2713. 

  2713.                 idle( &server_fd, ret );
    2714. 

  2714. #endif
    2715. 

  2715.             }
    2716. 

  2716.         }
    2717. 

  2717. 

  2718.         mbedtls_printf( " ok\n" );
    2719. 

  2719. 

  2720.         goto send_request;
    2721. 

  2721.     }
    2722. 

  2722. 

  2723.     /*
    2724. 

  2724.      * 7c. Simulate serialize/deserialize and go back to data exchange
    2725. 

  2725.      */
    2726. 

  2726. #if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
    2727. 

  2727.     if( opt.serialize != 0 )
    2728. 

  2728.     {
    2729. 

  2729.         size_t buf_len;
    2730. 

  2730. 

  2731.         mbedtls_printf( "  . Serializing live connection..." );
    2732. 

  2732. 

  2733.         ret = mbedtls_ssl_context_save( &ssl, NULL, 0, &buf_len );
    2734. 

  2734.         if( ret != MBEDTLS_ERR_SSL_BUFFER_TOO_SMALL )
    2735. 

  2735.         {
    2736. 

  2736.             mbedtls_printf( " failed\n  ! mbedtls_ssl_context_save returned "
    2737. 

  2737.                             "-0x%x\n\n", (unsigned int) -ret );
    2738. 

  2738. 

  2739.             goto exit;
    2740. 

  2740.         }
    2741. 

  2741. 

  2742.         if( ( context_buf = mbedtls_calloc( 1, buf_len ) ) == NULL )
    2743. 

  2743.         {
    2744. 

  2744.             mbedtls_printf( " failed\n  ! Couldn't allocate buffer for "
    2745. 

  2745.                             "serialized context" );
    2746. 

  2746. 

  2747.             goto exit;
    2748. 

  2748.         }
    2749. 

  2749.         context_buf_len = buf_len;
    2750. 

  2750. 

  2751.         if( ( ret = mbedtls_ssl_context_save( &ssl, context_buf,
    2752. 

  2752.                                               buf_len, &buf_len ) ) != 0 )
    2753. 

  2753.         {
    2754. 

  2754.             mbedtls_printf( " failed\n  ! mbedtls_ssl_context_save returned "
    2755. 

  2755.                             "-0x%x\n\n", (unsigned int) -ret );
    2756. 

  2756. 

  2757.             goto exit;
    2758. 

  2758.         }
    2759. 

  2759. 

  2760.         mbedtls_printf( " ok\n" );
    2761. 

  2761. 

  2762.         /* Save serialized context to the 'opt.context_file' as a base64 code */
    2763. 

  2763.         if( 0 < strlen( opt.context_file ) )
    2764. 

  2764.         {
    2765. 

  2765.             FILE *b64_file;
    2766. 

  2766.             uint8_t *b64_buf;
    2767. 

  2767.             size_t b64_len;
    2768. 

  2768. 

  2769.             mbedtls_printf( "  . Save serialized context to a file... " );
    2770. 

  2770. 

  2771.             mbedtls_base64_encode( NULL, 0, &b64_len, context_buf, buf_len );
    2772. 

  2772. 

  2773.             if( ( b64_buf = mbedtls_calloc( 1, b64_len ) ) == NULL )
    2774. 

  2774.             {
    2775. 

  2775.                 mbedtls_printf( "failed\n  ! Couldn't allocate buffer for "
    2776. 

  2776.                                 "the base64 code\n" );
    2777. 

  2777.                 goto exit;
    2778. 

  2778.             }
    2779. 

  2779. 

  2780.             if( ( ret = mbedtls_base64_encode( b64_buf, b64_len, &b64_len,
    2781. 

  2781.                                                context_buf, buf_len ) ) != 0 )
    2782. 

  2782.             {
    2783. 

  2783.                 mbedtls_printf( "failed\n  ! mbedtls_base64_encode returned "
    2784. 

  2784.                             "-0x%x\n", (unsigned int) -ret );
    2785. 

  2785.                 mbedtls_free( b64_buf );
    2786. 

  2786.                 goto exit;
    2787. 

  2787.             }
    2788. 

  2788. 

  2789.             if( ( b64_file = fopen( opt.context_file, "w" ) ) == NULL )
    2790. 

  2790.             {
    2791. 

  2791.                 mbedtls_printf( "failed\n  ! Cannot open '%s' for writing.\n",
    2792. 

  2792.                                 opt.context_file );
    2793. 

  2793.                 mbedtls_free( b64_buf );
    2794. 

  2794.                 goto exit;
    2795. 

  2795.             }
    2796. 

  2796. 

  2797.             if( b64_len != fwrite( b64_buf, 1, b64_len, b64_file ) )
    2798. 

  2798.             {
    2799. 

  2799.                 mbedtls_printf( "failed\n  ! fwrite(%ld bytes) failed\n",
    2800. 

  2800.                                 (long) b64_len );
    2801. 

  2801.                 mbedtls_free( b64_buf );
    2802. 

  2802.                 fclose( b64_file );
    2803. 

  2803.                 goto exit;
    2804. 

  2804.             }
    2805. 

  2805. 

  2806.             mbedtls_free( b64_buf );
    2807. 

  2807.             fclose( b64_file );
    2808. 

  2808. 

  2809.             mbedtls_printf( "ok\n" );
    2810. 

  2810.         }
    2811. 

  2811. 

  2812.         if( opt.serialize == 1 )
    2813. 

  2813.         {
    2814. 

  2814.             /* nothing to do here, done by context_save() already */
    2815. 

  2815.             mbedtls_printf( "  . Context has been reset... ok\n" );
    2816. 

  2816.         }
    2817. 

  2817. 

  2818.         if( opt.serialize == 2 )
    2819. 

  2819.         {
    2820. 

  2820.             mbedtls_printf( "  . Freeing and reinitializing context..." );
    2821. 

  2821. 

  2822.             mbedtls_ssl_free( &ssl );
    2823. 

  2823. 

  2824.             mbedtls_ssl_init( &ssl );
    2825. 

  2825. 

  2826.             if( ( ret = mbedtls_ssl_setup( &ssl, &conf ) ) != 0 )
    2827. 

  2827.             {
    2828. 

  2828.                 mbedtls_printf( " failed\n  ! mbedtls_ssl_setup returned "
    2829. 

  2829.                                 "-0x%x\n\n", (unsigned int) -ret );
    2830. 

  2830.                 goto exit;
    2831. 

  2831.             }
    2832. 

  2832. 

  2833.             if( opt.nbio == 2 )
    2834. 

  2834.                 mbedtls_ssl_set_bio( &ssl, &server_fd, delayed_send,
    2835. 

  2835.                                      delayed_recv, NULL );
    2836. 

  2836.             else
    2837. 

  2837.                 mbedtls_ssl_set_bio( &ssl, &server_fd, mbedtls_net_send,
    2838. 

  2838.                             mbedtls_net_recv,
    2839. 

  2839.                             opt.nbio == 0 ? mbedtls_net_recv_timeout : NULL );
    2840. 

  2840. 

  2841. #if defined(MBEDTLS_TIMING_C)
    2842. 

  2842.                 mbedtls_ssl_set_timer_cb( &ssl, &timer,
    2843. 

  2843.                                           mbedtls_timing_set_delay,
    2844. 

  2844.                                           mbedtls_timing_get_delay );
    2845. 

  2845. #endif /* MBEDTLS_TIMING_C */
    2846. 

  2846. 

  2847.             mbedtls_printf( " ok\n" );
    2848. 

  2848.         }
    2849. 

  2849. 

  2850.         mbedtls_printf( "  . Deserializing connection..." );
    2851. 

  2851. 

  2852.         if( ( ret = mbedtls_ssl_context_load( &ssl, context_buf,
    2853. 

  2853.                                               buf_len ) ) != 0 )
    2854. 

  2854.         {
    2855. 

  2855.             mbedtls_printf( "failed\n  ! mbedtls_ssl_context_load returned "
    2856. 

  2856.                             "-0x%x\n\n", (unsigned int) -ret );
    2857. 

  2857. 

  2858.             goto exit;
    2859. 

  2859.         }
    2860. 

  2860. 

  2861.         mbedtls_free( context_buf );
    2862. 

  2862.         context_buf = NULL;
    2863. 

  2863.         context_buf_len = 0;
    2864. 

  2864. 

  2865.         mbedtls_printf( " ok\n" );
    2866. 

  2866.     }
    2867. 

  2867. #endif /* MBEDTLS_SSL_CONTEXT_SERIALIZATION */
    2868. 

  2868. 

  2869.     /*
    2870. 

  2870.      * 7d. Continue doing data exchanges?
    2871. 

  2871.      */
    2872. 

  2872.     if( --opt.exchanges > 0 )
    2873. 

  2873.         goto send_request;
    2874. 

  2874. 

  2875.     /*
    2876. 

  2876.      * 8. Done, cleanly close the connection
    2877. 

  2877.      */
    2878. 

  2878. close_notify:
    2879. 

  2879.     mbedtls_printf( "  . Closing the connection..." );
    2880. 

  2880.     fflush( stdout );
    2881. 

  2881. 

  2882.     /*
    2883. 

  2883.      * Most of the time sending a close_notify before closing is the right
    2884. 

  2884.      * thing to do. However, when the server already knows how many messages
    2885. 

  2885.      * are expected and closes the connection by itself, this alert becomes
    2886. 

  2886.      * redundant. Sometimes with DTLS this redundancy becomes a problem by
    2887. 

  2887.      * leading to a race condition where the server might close the connection
    2888. 

  2888.      * before seeing the alert, and since UDP is connection-less when the
    2889. 

  2889.      * alert arrives it will be seen as a new connection, which will fail as
    2890. 

  2890.      * the alert is clearly not a valid ClientHello. This may cause spurious
    2891. 

  2891.      * failures in tests that use DTLS and resumption with ssl_server2 in
    2892. 

  2892.      * ssl-opt.sh, avoided by enabling skip_close_notify client-side.
    2893. 

  2893.      */
    2894. 

  2894.     if( opt.skip_close_notify == 0 )
    2895. 

  2895.     {
    2896. 

  2896.         /* No error checking, the connection might be closed already */
    2897. 

  2897.         do ret = mbedtls_ssl_close_notify( &ssl );
    2898. 

  2898.         while( ret == MBEDTLS_ERR_SSL_WANT_WRITE );
    2899. 

  2899.         ret = 0;
    2900. 

  2900.     }
    2901. 

  2901. 

  2902.     mbedtls_printf( " done\n" );
    2903. 

  2903. 

  2904.     /*
    2905. 

  2905.      * 9. Reconnect?
    2906. 

  2906.      */
    2907. 

  2907. reconnect:
    2908. 

  2908.     if( opt.reconnect != 0 )
    2909. 

  2909.     {
    2910. 

  2910.         --opt.reconnect;
    2911. 

  2911. 

  2912.         mbedtls_net_free( &server_fd );
    2913. 

  2913. 

  2914. #if defined(MBEDTLS_TIMING_C)
    2915. 

  2915.         if( opt.reco_delay > 0 )
    2916. 

  2916.             mbedtls_net_usleep( 1000000 * opt.reco_delay );
    2917. 

  2917. #endif
    2918. 

  2918. 

  2919.         mbedtls_printf( "  . Reconnecting with saved session..." );
    2920. 

  2920. 

  2921. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    2922. 

  2922.         memset( peer_crt_info, 0, sizeof( peer_crt_info ) );
    2923. 

  2923. #endif /* MBEDTLS_X509_CRT_PARSE_C */
    2924. 

  2924. 

  2925.         if( ( ret = mbedtls_ssl_session_reset( &ssl ) ) != 0 )
    2926. 

  2926.         {
    2927. 

  2927.             mbedtls_printf( " failed\n  ! mbedtls_ssl_session_reset returned -0x%x\n\n",
    2928. 

  2928.                             (unsigned int) -ret );
    2929. 

  2929.             goto exit;
    2930. 

  2930.         }
    2931. 

  2931. 

  2932.         if( opt.reco_mode == 1 )
    2933. 

  2933.         {
    2934. 

  2934.             if( ( ret = mbedtls_ssl_session_load( &saved_session,
    2935. 

  2935.                                                   session_data,
    2936. 

  2936.                                                   session_data_len ) ) != 0 )
    2937. 

  2937.             {
    2938. 

  2938.                 mbedtls_printf( " failed\n  ! mbedtls_ssl_session_load returned -0x%x\n\n",
    2939. 

  2939.                                 (unsigned int) -ret );
    2940. 

  2940.                 goto exit;
    2941. 

  2941.             }
    2942. 

  2942.         }
    2943. 

  2943. 

  2944.         if( ( ret = mbedtls_ssl_set_session( &ssl, &saved_session ) ) != 0 )
    2945. 

  2945.         {
    2946. 

  2946.             mbedtls_printf( " failed\n  ! mbedtls_ssl_set_session returned -0x%x\n\n",
    2947. 

  2947.                             (unsigned int) -ret );
    2948. 

  2948.             goto exit;
    2949. 

  2949.         }
    2950. 

  2950. 

  2951.         if( ( ret = mbedtls_net_connect( &server_fd,
    2952. 

  2952.                         opt.server_addr, opt.server_port,
    2953. 

  2953.                         opt.transport == MBEDTLS_SSL_TRANSPORT_STREAM ?
    2954. 

  2954.                         MBEDTLS_NET_PROTO_TCP : MBEDTLS_NET_PROTO_UDP ) ) != 0 )
    2955. 

  2955.         {
    2956. 

  2956.             mbedtls_printf( " failed\n  ! mbedtls_net_connect returned -0x%x\n\n",
    2957. 

  2957.                             (unsigned int) -ret );
    2958. 

  2958.             goto exit;
    2959. 

  2959.         }
    2960. 

  2960. 

  2961.         if( opt.nbio > 0 )
    2962. 

  2962.             ret = mbedtls_net_set_nonblock( &server_fd );
    2963. 

  2963.         else
    2964. 

  2964.             ret = mbedtls_net_set_block( &server_fd );
    2965. 

  2965.         if( ret != 0 )
    2966. 

  2966.         {
    2967. 

  2967.             mbedtls_printf( " failed\n  ! net_set_(non)block() returned -0x%x\n\n",
    2968. 

  2968.                             (unsigned int) -ret );
    2969. 

  2969.             goto exit;
    2970. 

  2970.         }
    2971. 

  2971. 

  2972.         while( ( ret = mbedtls_ssl_handshake( &ssl ) ) != 0 )
    2973. 

  2973.         {
    2974. 

  2974.             if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
    2975. 

  2975.                 ret != MBEDTLS_ERR_SSL_WANT_WRITE &&
    2976. 

  2976.                 ret != MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
    2977. 

  2977.             {
    2978. 

  2978.                 mbedtls_printf( " failed\n  ! mbedtls_ssl_handshake returned -0x%x\n\n",
    2979. 

  2979.                                 (unsigned int) -ret );
    2980. 

  2980.                 goto exit;
    2981. 

  2981.             }
    2982. 

  2982.         }
    2983. 

  2983. 

  2984.         mbedtls_printf( " ok\n" );
    2985. 

  2985. 

  2986.         goto send_request;
    2987. 

  2987.     }
    2988. 

  2988. 

  2989.     /*
    2990. 

  2990.      * Cleanup and exit
    2991. 

  2991.      */
    2992. 

  2992. exit:
    2993. 

  2993. #ifdef MBEDTLS_ERROR_C
    2994. 

  2994.     if( ret != 0 )
    2995. 

  2995.     {
    2996. 

  2996.         char error_buf[100];
    2997. 

  2997.         mbedtls_strerror( ret, error_buf, 100 );
    2998. 

  2998.         mbedtls_printf("Last error was: -0x%X - %s\n\n", (unsigned int) -ret, error_buf );
    2999. 

  2999.     }
    3000. 

  3000. #endif
    3001. 

  3001. 

  3002.     mbedtls_net_free( &server_fd );
    3003. 

  3003. 

  3004.     mbedtls_ssl_free( &ssl );
    3005. 

  3005.     mbedtls_ssl_config_free( &conf );
    3006. 

  3006.     mbedtls_ssl_session_free( &saved_session );
    3007. 

  3007. 

  3008.     if( session_data != NULL )
    3009. 

  3009.         mbedtls_platform_zeroize( session_data, session_data_len );
    3010. 

  3010.     mbedtls_free( session_data );
    3011. 

  3011. #if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
    3012. 

  3012.     if( context_buf != NULL )
    3013. 

  3013.         mbedtls_platform_zeroize( context_buf, context_buf_len );
    3014. 

  3014.     mbedtls_free( context_buf );
    3015. 

  3015. #endif
    3016. 

  3016. 

  3017. #if defined(MBEDTLS_X509_CRT_PARSE_C)
    3018. 

  3018.     mbedtls_x509_crt_free( &clicert );
    3019. 

  3019.     mbedtls_x509_crt_free( &cacert );
    3020. 

  3020.     mbedtls_pk_free( &pkey );
    3021. 

  3021. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    3022. 

  3022.     psa_destroy_key( key_slot );
    3023. 

  3023. #endif
    3024. 

  3024. #endif /* MBEDTLS_X509_CRT_PARSE_C */
    3025. 

  3025. 

  3026. #if defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED) && \
    3027. 

  3027.     defined(MBEDTLS_USE_PSA_CRYPTO)
    3028. 

  3028.     if( opt.psk_opaque != 0 )
    3029. 

  3029.     {
    3030. 

  3030.         /* This is ok even if the slot hasn't been
    3031. 

  3031.          * initialized (we might have jumed here
    3032. 

  3032.          * immediately because of bad cmd line params,
    3033. 

  3033.          * for example). */
    3034. 

  3034.         status = psa_destroy_key( slot );
    3035. 

  3035.         if( ( status != PSA_SUCCESS ) &&
    3036. 

  3036.             ( opt.query_config_mode == DFL_QUERY_CONFIG_MODE ) )
    3037. 

  3037.         {
    3038. 

  3038.             mbedtls_printf( "Failed to destroy key slot %u - error was %d",
    3039. 

  3039.                             (unsigned) slot, (int) status );
    3040. 

  3040.             if( ret == 0 )
    3041. 

  3041.                 ret = MBEDTLS_ERR_SSL_HW_ACCEL_FAILED;
    3042. 

  3042.         }
    3043. 

  3043.     }
    3044. 

  3044. #endif /* MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED &&
    3045. 

  3045.           MBEDTLS_USE_PSA_CRYPTO */
    3046. 

  3046. 

  3047. #if defined(MBEDTLS_USE_PSA_CRYPTO)
    3048. 

  3048.     const char* message = mbedtls_test_helper_is_psa_leaking();
    3049. 

  3049.     if( message )
    3050. 

  3050.     {
    3051. 

  3051.         if( ret == 0 )
    3052. 

  3052.             ret = 1;
    3053. 

  3053.         mbedtls_printf( "PSA memory leak detected: %s\n",  message);
    3054. 

  3054.     }
    3055. 

  3055. #endif /* MBEDTLS_USE_PSA_CRYPTO */
    3056. 

  3056. 

  3057.     /* For builds with MBEDTLS_TEST_USE_PSA_CRYPTO_RNG psa crypto
    3058. 

  3058.      * resources are freed by rng_free(). */
    3059. 

  3059. #if defined(MBEDTLS_USE_PSA_CRYPTO) && \
    3060. 

  3060.     !defined(MBEDTLS_TEST_USE_PSA_CRYPTO_RNG)
    3061. 

  3061.     mbedtls_psa_crypto_free( );
    3062. 

  3062. #endif
    3063. 

  3063. 

  3064.     rng_free( &rng );
    3065. 

  3065. 

  3066. #if defined(MBEDTLS_TEST_HOOKS)
    3067. 

  3067.     if( test_hooks_failure_detected( ) )
    3068. 

  3068.     {
    3069. 

  3069.         if( ret == 0 )
    3070. 

  3070.             ret = 1;
    3071. 

  3071.         mbedtls_printf( "Test hooks detected errors.\n" );
    3072. 

  3072.     }
    3073. 

  3073.     test_hooks_free( );
    3074. 

  3074. #endif /* MBEDTLS_TEST_HOOKS */
    3075. 

  3075. 

  3076. #if defined(MBEDTLS_MEMORY_BUFFER_ALLOC_C)
    3077. 

  3077. #if defined(MBEDTLS_MEMORY_DEBUG)
    3078. 

  3078.     mbedtls_memory_buffer_alloc_status();
    3079. 

  3079. #endif
    3080. 

  3080.     mbedtls_memory_buffer_alloc_free();
    3081. 

  3081. #endif  /* MBEDTLS_MEMORY_BUFFER_ALLOC_C */
    3082. 

  3082. 

  3083. #if defined(_WIN32)
    3084. 

  3084.     if( opt.query_config_mode == DFL_QUERY_CONFIG_MODE )
    3085. 

  3085.     {
    3086. 

  3086.         mbedtls_printf( "  + Press Enter to exit this program.\n" );
    3087. 

  3087.         fflush( stdout ); getchar();
    3088. 

  3088.     }
    3089. 

  3089. #endif
    3090. 

  3090. 

  3091.     // Shell can not handle large exit numbers -> 1 for errors
    3092. 

  3092.     if( ret < 0 )
    3093. 

  3093.         ret = 1;
    3094. 

  3094. 

  3095.     if( opt.query_config_mode == DFL_QUERY_CONFIG_MODE )
    3096. 

  3096.         mbedtls_exit( ret );
    3097. 

  3097.     else
    3098. 

  3098.         mbedtls_exit( query_config_ret );
    3099. 

  3099. }
    3100. 

  3100. #endif /* !MBEDTLS_SSL_TEST_IMPOSSIBLE && MBEDTLS_SSL_CLI_C */
    3101.