TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 95fe2a6df4efca8680200f8a0110fbeae4a795cb^! / .
commit95fe2a6df4efca8680200f8a0110fbeae4a795cb[log] [tgz]
authorGilles Peskine <Gilles.Peskine@arm.com>Thu Feb 20 18:12:29 2025 +0100
committerGilles Peskine <Gilles.Peskine@arm.com>Thu Feb 20 19:24:16 2025 +0100
tree56fc68d43caecb6f148cc25eeee6cbfd6a1fedae
parent58b399e81ed3bff008672a76b227ffbf2c3a288f [diff]
Add a flags field to mbedtls_ssl_context

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

diff --git a/include/mbedtls/ssl.h b/include/mbedtls/ssl.h
index 9029078..7c3a3d9 100644
--- a/include/mbedtls/ssl.h
+++ b/include/mbedtls/ssl.h

@@ -1669,6 +1669,12 @@
      * Miscellaneous
      */
     int MBEDTLS_PRIVATE(state);                  /*!< SSL handshake: current state     */
+
+    /** Mask of `MBEDTLS_SSL_CONTEXT_FLAG_XXX`.
+     * This field is not saved by mbedtls_ssl_session_save().
+     */
+    uint32_t MBEDTLS_PRIVATE(flags);
+
 #if defined(MBEDTLS_SSL_RENEGOTIATION)
     int MBEDTLS_PRIVATE(renego_status);          /*!< Initial, in progress, pending?   */
     int MBEDTLS_PRIVATE(renego_records_seen);    /*!< Records since renego request, or with DTLS,

diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index 60f2e1c..4744db3 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c

@@ -1411,6 +1411,7 @@
     int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
 
     ssl->state = MBEDTLS_SSL_HELLO_REQUEST;
+    ssl->flags = 0;
     ssl->tls_version = ssl->conf->max_tls_version;
 
     mbedtls_ssl_session_reset_msg_layer(ssl, partial);