TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 37ff14062e3125f82177d3244736e5878c4ea534 / . / include / mbedtls / ssl_cookie.h
blob: 037e1c31125712912a249830e31034e42451cdeb [file] [log] [blame]
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]1/**
2 * \file ssl_cookie.h
3 *
4 * \brief DTLS cookie callbacks implementation
5 *
Manuel Pégourié-Gonnard6fb81872015-07-27 11:11:48 +0200[diff] [blame]6 * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
Manuel Pégourié-Gonnard37ff1402015-09-04 14:21:07 +0200[diff] [blame^]7 * SPDX-License-Identifier: Apache-2.0
8 *
9 * Licensed under the Apache License, Version 2.0 (the "License"); you may
10 * not use this file except in compliance with the License.
11 * You may obtain a copy of the License at
12 *
13 * http://www.apache.org/licenses/LICENSE-2.0
14 *
15 * Unless required by applicable law or agreed to in writing, software
16 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
17 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
18 * See the License for the specific language governing permissions and
19 * limitations under the License.
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]20 *
Manuel Pégourié-Gonnarde4d48902015-03-06 13:40:52 +0000[diff] [blame]21 * This file is part of mbed TLS (https://tls.mbed.org)
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]22 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]23#ifndef MBEDTLS_SSL_COOKIE_H
24#define MBEDTLS_SSL_COOKIE_H
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]25
26#include "ssl.h"
27
Manuel Pégourié-Gonnard2a84dfd2015-05-28 15:48:09 +0200[diff] [blame]28#if defined(MBEDTLS_THREADING_C)
29#include "threading.h"
30#endif
31
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]32/**
33 * \name SECTION: Module settings
34 *
35 * The configuration options you can set for this module are in this section.
36 * Either change them in config.h or define them on the compiler command line.
37 * \{
38 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]39#ifndef MBEDTLS_SSL_COOKIE_TIMEOUT
40#define MBEDTLS_SSL_COOKIE_TIMEOUT 60 /**< Default expiration delay of DTLS cookies, in seconds if HAVE_TIME, or in number of cookies issued */
Manuel Pégourié-Gonnardbef8f092014-07-23 23:40:29 +0200[diff] [blame]41#endif
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]42
43/* \} name SECTION: Module settings */
44
45#ifdef __cplusplus
46extern "C" {
47#endif
48
49/**
50 * \brief Context for the default cookie functions.
51 */
52typedef struct
53{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]54 mbedtls_md_context_t hmac_ctx; /*!< context for the HMAC portion */
55#if !defined(MBEDTLS_HAVE_TIME)
Manuel Pégourié-Gonnardbef8f092014-07-23 23:40:29 +0200[diff] [blame]56 unsigned long serial; /*!< serial number for expiration */
Manuel Pégourié-Gonnarde9030812014-07-23 21:29:11 +0200[diff] [blame]57#endif
Manuel Pégourié-Gonnardbef8f092014-07-23 23:40:29 +0200[diff] [blame]58 unsigned long timeout; /*!< timeout delay, in seconds if HAVE_TIME,
59 or in number of tickets issued */
60
Manuel Pégourié-Gonnard2a84dfd2015-05-28 15:48:09 +0200[diff] [blame]61#if defined(MBEDTLS_THREADING_C)
62 mbedtls_threading_mutex_t mutex;
63#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]64} mbedtls_ssl_cookie_ctx;
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]65
66/**
67 * \brief Initialize cookie context
68 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]69void mbedtls_ssl_cookie_init( mbedtls_ssl_cookie_ctx *ctx );
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]70
71/**
72 * \brief Setup cookie context (generate keys)
73 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]74int mbedtls_ssl_cookie_setup( mbedtls_ssl_cookie_ctx *ctx,
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]75 int (*f_rng)(void *, unsigned char *, size_t),
76 void *p_rng );
77
78/**
Manuel Pégourié-Gonnardbef8f092014-07-23 23:40:29 +0200[diff] [blame]79 * \brief Set expiration delay for cookies
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]80 * (Default MBEDTLS_SSL_COOKIE_TIMEOUT)
Manuel Pégourié-Gonnardbef8f092014-07-23 23:40:29 +0200[diff] [blame]81 *
82 * \param ctx Cookie contex
83 * \param delay Delay, in seconds if HAVE_TIME, or in number of cookies
84 * issued in the meantime.
85 * 0 to disable expiration (NOT recommended)
86 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]87void mbedtls_ssl_cookie_set_timeout( mbedtls_ssl_cookie_ctx *ctx, unsigned long delay );
Manuel Pégourié-Gonnardbef8f092014-07-23 23:40:29 +0200[diff] [blame]88
89/**
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]90 * \brief Free cookie context
91 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]92void mbedtls_ssl_cookie_free( mbedtls_ssl_cookie_ctx *ctx );
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]93
94/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]95 * \brief Generate cookie, see \c mbedtls_ssl_cookie_write_t
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]96 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]97mbedtls_ssl_cookie_write_t mbedtls_ssl_cookie_write;
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]98
99/**
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]100 * \brief Verify cookie, see \c mbedtls_ssl_cookie_write_t
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]101 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]102mbedtls_ssl_cookie_check_t mbedtls_ssl_cookie_check;
Manuel Pégourié-Gonnard232edd42014-07-23 16:56:27 +0200[diff] [blame]103
104#ifdef __cplusplus
105}
106#endif
107
108#endif /* ssl_cookie.h */