TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 70824f2c9ea28a0c044f14d967ce21899f41441d / . / programs / ssl / ssl_client2.c
blob: 2cddfb42a446f4fbdf3d34d511fe4d5fc92d052b [file] [log] [blame]
Gilles Peskine70824f22020-02-26 19:05:33 +0100[diff] [blame^]1/*
2 * SSL client with certificate authentication
3 *
4 * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
5 * SPDX-License-Identifier: Apache-2.0
6 *
7 * Licensed under the Apache License, Version 2.0 (the "License"); you may
8 * not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
10 *
11 * http://www.apache.org/licenses/LICENSE-2.0
12 *
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
15 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
18 *
19 * This file is part of mbed TLS (https://tls.mbed.org)
20 */
21
22#if !defined(MBEDTLS_CONFIG_FILE)
23#include "mbedtls/config.h"
24#else
25#include MBEDTLS_CONFIG_FILE
26#endif
27
28#if defined(MBEDTLS_PLATFORM_C)
29#include "mbedtls/platform.h"
30#else
31#include <stdio.h>
32#include <stdlib.h>
33#define mbedtls_time time
34#define mbedtls_time_t time_t
35#define mbedtls_printf printf
36#define mbedtls_fprintf fprintf
37#define mbedtls_snprintf snprintf
38#define mbedtls_calloc calloc
39#define mbedtls_free free
40#define mbedtls_exit exit
41#define MBEDTLS_EXIT_SUCCESS EXIT_SUCCESS
42#define MBEDTLS_EXIT_FAILURE EXIT_FAILURE
43#endif
44
45#if !defined(MBEDTLS_ENTROPY_C) || \
46 !defined(MBEDTLS_SSL_TLS_C) || !defined(MBEDTLS_SSL_CLI_C) || \
47 !defined(MBEDTLS_NET_C) || !defined(MBEDTLS_CTR_DRBG_C)
48int main( void )
49{
50 mbedtls_printf("MBEDTLS_ENTROPY_C and/or "
51 "MBEDTLS_SSL_TLS_C and/or MBEDTLS_SSL_CLI_C and/or "
52 "MBEDTLS_NET_C and/or MBEDTLS_CTR_DRBG_C and/or not defined.\n");
53 return( 0 );
54}
55#else
56
57#include "mbedtls/net_sockets.h"
58#include "mbedtls/ssl.h"
59#include "mbedtls/entropy.h"
60#include "mbedtls/ctr_drbg.h"
61#include "mbedtls/certs.h"
62#include "mbedtls/x509.h"
63#include "mbedtls/error.h"
64#include "mbedtls/debug.h"
65#include "mbedtls/timing.h"
66
67#if defined(MBEDTLS_USE_PSA_CRYPTO)
68#include "psa/crypto.h"
69#include "mbedtls/psa_util.h"
70#endif
71
72#include <stdio.h>
73#include <stdlib.h>
74#include <string.h>
75
76#define MAX_REQUEST_SIZE 20000
77#define MAX_REQUEST_SIZE_STR "20000"
78
79#define DFL_SERVER_NAME "localhost"
80#define DFL_SERVER_ADDR NULL
81#define DFL_SERVER_PORT "4433"
82#define DFL_REQUEST_PAGE "/"
83#define DFL_REQUEST_SIZE -1
84#define DFL_DEBUG_LEVEL 0
85#define DFL_CONTEXT_CRT_CB 0
86#define DFL_NBIO 0
87#define DFL_EVENT 0
88#define DFL_READ_TIMEOUT 0
89#define DFL_MAX_RESEND 0
90#define DFL_CA_FILE ""
91#define DFL_CA_PATH ""
92#define DFL_CRT_FILE ""
93#define DFL_KEY_FILE ""
94#define DFL_KEY_OPAQUE 0
95#define DFL_PSK ""
96#define DFL_PSK_OPAQUE 0
97#define DFL_PSK_IDENTITY "Client_identity"
98#define DFL_ECJPAKE_PW NULL
99#define DFL_EC_MAX_OPS -1
100#define DFL_FORCE_CIPHER 0
101#define DFL_RENEGOTIATION MBEDTLS_SSL_RENEGOTIATION_DISABLED
102#define DFL_ALLOW_LEGACY -2
103#define DFL_RENEGOTIATE 0
104#define DFL_EXCHANGES 1
105#define DFL_MIN_VERSION -1
106#define DFL_MAX_VERSION -1
107#define DFL_ARC4 -1
108#define DFL_SHA1 -1
109#define DFL_AUTH_MODE -1
110#define DFL_MFL_CODE MBEDTLS_SSL_MAX_FRAG_LEN_NONE
111#define DFL_TRUNC_HMAC -1
112#define DFL_RECSPLIT -1
113#define DFL_DHMLEN -1
114#define DFL_RECONNECT 0
115#define DFL_RECO_DELAY 0
116#define DFL_RECONNECT_HARD 0
117#define DFL_TICKETS MBEDTLS_SSL_SESSION_TICKETS_ENABLED
118#define DFL_ALPN_STRING NULL
119#define DFL_CURVES NULL
120#define DFL_TRANSPORT MBEDTLS_SSL_TRANSPORT_STREAM
121#define DFL_HS_TO_MIN 0
122#define DFL_HS_TO_MAX 0
123#define DFL_DTLS_MTU -1
124#define DFL_DGRAM_PACKING 1
125#define DFL_FALLBACK -1
126#define DFL_EXTENDED_MS -1
127#define DFL_ETM -1
128#define DFL_CA_CALLBACK 0
129
130
131#define GET_REQUEST "GET %s HTTP/1.0\r\nExtra-header: "
132#define GET_REQUEST_END "\r\n\r\n"
133
134#if defined(MBEDTLS_X509_CRT_PARSE_C)
135#define USAGE_CONTEXT_CRT_CB \
136 " context_crt_cb=%%d This determines whether the CRT verification callback is bound\n" \
137 " to the SSL configuration of the SSL context.\n" \
138 " Possible values:\n"\
139 " - 0 (default): Use CRT callback bound to configuration\n" \
140 " - 1: Use CRT callback bound to SSL context\n"
141#else
142#define USAGE_CONTEXT_CRT_CB ""
143#endif /* MBEDTLS_X509_CRT_PARSE_C */
144#if defined(MBEDTLS_X509_CRT_PARSE_C)
145#if defined(MBEDTLS_FS_IO)
146#define USAGE_IO \
147 " ca_file=%%s The single file containing the top-level CA(s) you fully trust\n" \
148 " default: \"\" (pre-loaded)\n" \
149 " ca_path=%%s The path containing the top-level CA(s) you fully trust\n" \
150 " default: \"\" (pre-loaded) (overrides ca_file)\n" \
151 " crt_file=%%s Your own cert and chain (in bottom to top order, top may be omitted)\n" \
152 " default: \"\" (pre-loaded)\n" \
153 " key_file=%%s default: \"\" (pre-loaded)\n"
154#else
155#define USAGE_IO \
156 " No file operations available (MBEDTLS_FS_IO not defined)\n"
157#endif /* MBEDTLS_FS_IO */
158#else /* MBEDTLS_X509_CRT_PARSE_C */
159#define USAGE_IO ""
160#endif /* MBEDTLS_X509_CRT_PARSE_C */
161#if defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_X509_CRT_PARSE_C)
162#define USAGE_KEY_OPAQUE \
163 " key_opaque=%%d Handle your private key as if it were opaque\n" \
164 " default: 0 (disabled)\n"
165#else
166#define USAGE_KEY_OPAQUE ""
167#endif
168
169#if defined(MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED)
170#define USAGE_PSK_RAW \
171 " psk=%%s default: \"\" (in hex, without 0x)\n" \
172 " psk_identity=%%s default: \"Client_identity\"\n"
173#if defined(MBEDTLS_USE_PSA_CRYPTO)
174#define USAGE_PSK_SLOT \
175 " psk_opaque=%%d default: 0 (don't use opaque static PSK)\n" \
176 " Enable this to store the PSK configured through command line\n" \
177 " parameter `psk` in a PSA-based key slot.\n" \
178 " Note: Currently only supported in conjunction with\n" \
179 " the use of min_version to force TLS 1.2 and force_ciphersuite \n" \
180 " to force a particular PSK-only ciphersuite.\n" \
181 " Note: This is to test integration of PSA-based opaque PSKs with\n" \
182 " Mbed TLS only. Production systems are likely to configure Mbed TLS\n" \
183 " with prepopulated key slots instead of importing raw key material.\n"
184#else
185#define USAGE_PSK_SLOT ""
186#endif /* MBEDTLS_USE_PSA_CRYPTO */
187#define USAGE_PSK USAGE_PSK_RAW USAGE_PSK_SLOT
188#else
189#define USAGE_PSK ""
190#endif /* MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED */
191
192#if defined(MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK)
193#define USAGE_CA_CALLBACK \
194 " ca_callback=%%d default: 0 (disabled)\n" \
195 " Enable this to use the trusted certificate callback function\n"
196#else
197#define USAGE_CA_CALLBACK ""
198#endif /* MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK */
199
200#if defined(MBEDTLS_SSL_SESSION_TICKETS)
201#define USAGE_TICKETS \
202 " tickets=%%d default: 1 (enabled)\n"
203#else
204#define USAGE_TICKETS ""
205#endif /* MBEDTLS_SSL_SESSION_TICKETS */
206
207#if defined(MBEDTLS_SSL_TRUNCATED_HMAC)
208#define USAGE_TRUNC_HMAC \
209 " trunc_hmac=%%d default: library default\n"
210#else
211#define USAGE_TRUNC_HMAC ""
212#endif /* MBEDTLS_SSL_TRUNCATED_HMAC */
213
214#if defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH)
215#define USAGE_MAX_FRAG_LEN \
216 " max_frag_len=%%d default: 16384 (tls default)\n" \
217 " options: 512, 1024, 2048, 4096\n"
218#else
219#define USAGE_MAX_FRAG_LEN ""
220#endif /* MBEDTLS_SSL_MAX_FRAGMENT_LENGTH */
221
222#if defined(MBEDTLS_SSL_CBC_RECORD_SPLITTING)
223#define USAGE_RECSPLIT \
224 " recsplit=0/1 default: (library default: on)\n"
225#else
226#define USAGE_RECSPLIT
227#endif
228
229#if defined(MBEDTLS_DHM_C)
230#define USAGE_DHMLEN \
231 " dhmlen=%%d default: (library default: 1024 bits)\n"
232#else
233#define USAGE_DHMLEN
234#endif
235
236#if defined(MBEDTLS_SSL_ALPN)
237#define USAGE_ALPN \
238 " alpn=%%s default: \"\" (disabled)\n" \
239 " example: spdy/1,http/1.1\n"
240#else
241#define USAGE_ALPN ""
242#endif /* MBEDTLS_SSL_ALPN */
243
244#if defined(MBEDTLS_ECP_C)
245#define USAGE_CURVES \
246 " curves=a,b,c,d default: \"default\" (library default)\n" \
247 " example: \"secp521r1,brainpoolP512r1\"\n" \
248 " - use \"none\" for empty list\n" \
249 " - see mbedtls_ecp_curve_list()\n" \
250 " for acceptable curve names\n"
251#else
252#define USAGE_CURVES ""
253#endif
254
255#if defined(MBEDTLS_SSL_PROTO_DTLS)
256#define USAGE_DTLS \
257 " dtls=%%d default: 0 (TLS)\n" \
258 " hs_timeout=%%d-%%d default: (library default: 1000-60000)\n" \
259 " range of DTLS handshake timeouts in millisecs\n" \
260 " mtu=%%d default: (library default: unlimited)\n" \
261 " dgram_packing=%%d default: 1 (allowed)\n" \
262 " allow or forbid packing of multiple\n" \
263 " records within a single datgram.\n"
264#else
265#define USAGE_DTLS ""
266#endif
267
268#if defined(MBEDTLS_SSL_FALLBACK_SCSV)
269#define USAGE_FALLBACK \
270 " fallback=0/1 default: (library default: off)\n"
271#else
272#define USAGE_FALLBACK ""
273#endif
274
275#if defined(MBEDTLS_SSL_EXTENDED_MASTER_SECRET)
276#define USAGE_EMS \
277 " extended_ms=0/1 default: (library default: on)\n"
278#else
279#define USAGE_EMS ""
280#endif
281
282#if defined(MBEDTLS_SSL_ENCRYPT_THEN_MAC)
283#define USAGE_ETM \
284 " etm=0/1 default: (library default: on)\n"
285#else
286#define USAGE_ETM ""
287#endif
288
289#if defined(MBEDTLS_SSL_RENEGOTIATION)
290#define USAGE_RENEGO \
291 " renegotiation=%%d default: 0 (disabled)\n" \
292 " renegotiate=%%d default: 0 (disabled)\n"
293#else
294#define USAGE_RENEGO ""
295#endif
296
297#if defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED)
298#define USAGE_ECJPAKE \
299 " ecjpake_pw=%%s default: none (disabled)\n"
300#else
301#define USAGE_ECJPAKE ""
302#endif
303
304#if defined(MBEDTLS_ECP_RESTARTABLE)
305#define USAGE_ECRESTART \
306 " ec_max_ops=%%s default: library default (restart disabled)\n"
307#else
308#define USAGE_ECRESTART ""
309#endif
310
311#define USAGE \
312 "\n usage: ssl_client2 param=<>...\n" \
313 "\n acceptable parameters:\n" \
314 " server_name=%%s default: localhost\n" \
315 " server_addr=%%s default: given by name\n" \
316 " server_port=%%d default: 4433\n" \
317 " request_page=%%s default: \".\"\n" \
318 " request_size=%%d default: about 34 (basic request)\n" \
319 " (minimum: 0, max: " MAX_REQUEST_SIZE_STR ")\n" \
320 " If 0, in the first exchange only an empty\n" \
321 " application data message is sent followed by\n" \
322 " a second non-empty message before attempting\n" \
323 " to read a response from the server\n" \
324 " debug_level=%%d default: 0 (disabled)\n" \
325 " nbio=%%d default: 0 (blocking I/O)\n" \
326 " options: 1 (non-blocking), 2 (added delays)\n" \
327 " event=%%d default: 0 (loop)\n" \
328 " options: 1 (level-triggered, implies nbio=1),\n" \
329 " read_timeout=%%d default: 0 ms (no timeout)\n" \
330 " max_resend=%%d default: 0 (no resend on timeout)\n" \
331 "\n" \
332 USAGE_DTLS \
333 "\n" \
334 " auth_mode=%%s default: (library default: none)\n" \
335 " options: none, optional, required\n" \
336 USAGE_IO \
337 USAGE_KEY_OPAQUE \
338 USAGE_CA_CALLBACK \
339 "\n" \
340 USAGE_PSK \
341 USAGE_ECJPAKE \
342 USAGE_ECRESTART \
343 "\n" \
344 " allow_legacy=%%d default: (library default: no)\n" \
345 USAGE_RENEGO \
346 " exchanges=%%d default: 1\n" \
347 " reconnect=%%d default: 0 (disabled)\n" \
348 " reco_delay=%%d default: 0 seconds\n" \
349 " reconnect_hard=%%d default: 0 (disabled)\n" \
350 USAGE_TICKETS \
351 USAGE_MAX_FRAG_LEN \
352 USAGE_TRUNC_HMAC \
353 USAGE_CONTEXT_CRT_CB \
354 USAGE_ALPN \
355 USAGE_FALLBACK \
356 USAGE_EMS \
357 USAGE_ETM \
358 USAGE_CURVES \
359 USAGE_RECSPLIT \
360 USAGE_DHMLEN \
361 "\n" \
362 " arc4=%%d default: (library default: 0)\n" \
363 " allow_sha1=%%d default: 0\n" \
364 " min_version=%%s default: (library default: tls1)\n" \
365 " max_version=%%s default: (library default: tls1_2)\n" \
366 " force_version=%%s default: \"\" (none)\n" \
367 " options: ssl3, tls1, tls1_1, tls1_2, dtls1, dtls1_2\n" \
368 "\n" \
369 " force_ciphersuite=<name> default: all enabled\n"\
370 " query_config=<name> return 0 if the specified\n" \
371 " configuration macro is defined and 1\n" \
372 " otherwise. The expansion of the macro\n" \
373 " is printed if it is defined\n" \
374 " acceptable ciphersuite names:\n"
375
376#define ALPN_LIST_SIZE 10
377#define CURVE_LIST_SIZE 20
378
379#if defined(MBEDTLS_CHECK_PARAMS)
380#include "mbedtls/platform_util.h"
381void mbedtls_param_failed( const char *failure_condition,
382 const char *file,
383 int line )
384{
385 mbedtls_printf( "%s:%i: Input param failed - %s\n",
386 file, line, failure_condition );
387 mbedtls_exit( MBEDTLS_EXIT_FAILURE );
388}
389#endif
390
391/*
392 * global options
393 */
394struct options
395{
396 const char *server_name; /* hostname of the server (client only) */
397 const char *server_addr; /* address of the server (client only) */
398 const char *server_port; /* port on which the ssl service runs */
399 int debug_level; /* level of debugging */
400 int nbio; /* should I/O be blocking? */
401 int event; /* loop or event-driven IO? level or edge triggered? */
402 uint32_t read_timeout; /* timeout on mbedtls_ssl_read() in milliseconds */
403 int max_resend; /* DTLS times to resend on read timeout */
404 const char *request_page; /* page on server to request */
405 int request_size; /* pad request with header to requested size */
406 const char *ca_file; /* the file with the CA certificate(s) */
407 const char *ca_path; /* the path with the CA certificate(s) reside */
408 const char *crt_file; /* the file with the client certificate */
409 const char *key_file; /* the file with the client key */
410 int key_opaque; /* handle private key as if it were opaque */
411#if defined(MBEDTLS_USE_PSA_CRYPTO)
412 int psk_opaque;
413#endif
414#if defined(MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK)
415 int ca_callback; /* Use callback for trusted certificate list */
416#endif
417 const char *psk; /* the pre-shared key */
418 const char *psk_identity; /* the pre-shared key identity */
419 const char *ecjpake_pw; /* the EC J-PAKE password */
420 int ec_max_ops; /* EC consecutive operations limit */
421 int force_ciphersuite[2]; /* protocol/ciphersuite to use, or all */
422 int renegotiation; /* enable / disable renegotiation */
423 int allow_legacy; /* allow legacy renegotiation */
424 int renegotiate; /* attempt renegotiation? */
425 int renego_delay; /* delay before enforcing renegotiation */
426 int exchanges; /* number of data exchanges */
427 int min_version; /* minimum protocol version accepted */
428 int max_version; /* maximum protocol version accepted */
429 int arc4; /* flag for arc4 suites support */
430 int allow_sha1; /* flag for SHA-1 support */
431 int auth_mode; /* verify mode for connection */
432 unsigned char mfl_code; /* code for maximum fragment length */
433 int trunc_hmac; /* negotiate truncated hmac or not */
434 int recsplit; /* enable record splitting? */
435 int dhmlen; /* minimum DHM params len in bits */
436 int reconnect; /* attempt to resume session */
437 int reco_delay; /* delay in seconds before resuming session */
438 int reconnect_hard; /* unexpectedly reconnect from the same port */
439 int tickets; /* enable / disable session tickets */
440 const char *curves; /* list of supported elliptic curves */
441 const char *alpn_string; /* ALPN supported protocols */
442 int transport; /* TLS or DTLS? */
443 uint32_t hs_to_min; /* Initial value of DTLS handshake timer */
444 uint32_t hs_to_max; /* Max value of DTLS handshake timer */
445 int dtls_mtu; /* UDP Maximum tranport unit for DTLS */
446 int fallback; /* is this a fallback connection? */
447 int dgram_packing; /* allow/forbid datagram packing */
448 int extended_ms; /* negotiate extended master secret? */
449 int etm; /* negotiate encrypt then mac? */
450 int context_crt_cb; /* use context-specific CRT verify callback */
451} opt;
452
453int query_config( const char *config );
454
455static void my_debug( void *ctx, int level,
456 const char *file, int line,
457 const char *str )
458{
459 const char *p, *basename;
460
461 /* Extract basename from file */
462 for( p = basename = file; *p != '\0'; p++ )
463 if( *p == '/' || *p == '\\' )
464 basename = p + 1;
465
466 mbedtls_fprintf( (FILE *) ctx, "%s:%04d: |%d| %s",
467 basename, line, level, str );
468 fflush( (FILE *) ctx );
469}
470
471#if defined(MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK)
472int ca_callback( void *data, mbedtls_x509_crt const *child,
473 mbedtls_x509_crt **candidates )
474{
475 int ret = 0;
476 mbedtls_x509_crt *ca = (mbedtls_x509_crt *) data;
477 mbedtls_x509_crt *first;
478
479 /* This is a test-only implementation of the CA callback
480 * which always returns the entire list of trusted certificates.
481 * Production implementations managing a large number of CAs
482 * should use an efficient presentation and lookup for the
483 * set of trusted certificates (such as a hashtable) and only
484 * return those trusted certificates which satisfy basic
485 * parental checks, such as the matching of child `Issuer`
486 * and parent `Subject` field or matching key identifiers. */
487 ((void) child);
488
489 first = mbedtls_calloc( 1, sizeof( mbedtls_x509_crt ) );
490 if( first == NULL )
491 {
492 ret = -1;
493 goto exit;
494 }
495 mbedtls_x509_crt_init( first );
496
497 if( mbedtls_x509_crt_parse_der( first, ca->raw.p, ca->raw.len ) != 0 )
498 {
499 ret = -1;
500 goto exit;
501 }
502
503 while( ca->next != NULL )
504 {
505 ca = ca->next;
506 if( mbedtls_x509_crt_parse_der( first, ca->raw.p, ca->raw.len ) != 0 )
507 {
508 ret = -1;
509 goto exit;
510 }
511 }
512
513exit:
514
515 if( ret != 0 )
516 {
517 mbedtls_x509_crt_free( first );
518 mbedtls_free( first );
519 first = NULL;
520 }
521
522 *candidates = first;
523 return( ret );
524}
525#endif /* MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK */
526
527/*
528 * Test recv/send functions that make sure each try returns
529 * WANT_READ/WANT_WRITE at least once before sucesseding
530 */
531static int my_recv( void *ctx, unsigned char *buf, size_t len )
532{
533 static int first_try = 1;
534 int ret;
535
536 if( first_try )
537 {
538 first_try = 0;
539 return( MBEDTLS_ERR_SSL_WANT_READ );
540 }
541
542 ret = mbedtls_net_recv( ctx, buf, len );
543 if( ret != MBEDTLS_ERR_SSL_WANT_READ )
544 first_try = 1; /* Next call will be a new operation */
545 return( ret );
546}
547
548static int my_send( void *ctx, const unsigned char *buf, size_t len )
549{
550 static int first_try = 1;
551 int ret;
552
553 if( first_try )
554 {
555 first_try = 0;
556 return( MBEDTLS_ERR_SSL_WANT_WRITE );
557 }
558
559 ret = mbedtls_net_send( ctx, buf, len );
560 if( ret != MBEDTLS_ERR_SSL_WANT_WRITE )
561 first_try = 1; /* Next call will be a new operation */
562 return( ret );
563}
564
565#if defined(MBEDTLS_X509_CRT_PARSE_C)
566static unsigned char peer_crt_info[1024];
567
568/*
569 * Enabled if debug_level > 1 in code below
570 */
571static int my_verify( void *data, mbedtls_x509_crt *crt,
572 int depth, uint32_t *flags )
573{
574 char buf[1024];
575 ((void) data);
576
577 mbedtls_x509_crt_info( buf, sizeof( buf ) - 1, "", crt );
578 if( depth == 0 )
579 memcpy( peer_crt_info, buf, sizeof( buf ) );
580
581 if( opt.debug_level == 0 )
582 return( 0 );
583
584 mbedtls_printf( "\nVerify requested for (Depth %d):\n", depth );
585 mbedtls_printf( "%s", buf );
586
587 if ( ( *flags ) == 0 )
588 mbedtls_printf( " This certificate has no flags\n" );
589 else
590 {
591 mbedtls_x509_crt_verify_info( buf, sizeof( buf ), " ! ", *flags );
592 mbedtls_printf( "%s\n", buf );
593 }
594
595 return( 0 );
596}
597
598static int ssl_sig_hashes_for_test[] = {
599#if defined(MBEDTLS_SHA512_C)
600 MBEDTLS_MD_SHA512,
601 MBEDTLS_MD_SHA384,
602#endif
603#if defined(MBEDTLS_SHA256_C)
604 MBEDTLS_MD_SHA256,
605 MBEDTLS_MD_SHA224,
606#endif
607#if defined(MBEDTLS_SHA1_C)
608 /* Allow SHA-1 as we use it extensively in tests. */
609 MBEDTLS_MD_SHA1,
610#endif
611 MBEDTLS_MD_NONE
612};
613#endif /* MBEDTLS_X509_CRT_PARSE_C */
614
615/*
616 * Wait for an event from the underlying transport or the timer
617 * (Used in event-driven IO mode).
618 */
619#if !defined(MBEDTLS_TIMING_C)
620int idle( mbedtls_net_context *fd,
621 int idle_reason )
622#else
623int idle( mbedtls_net_context *fd,
624 mbedtls_timing_delay_context *timer,
625 int idle_reason )
626#endif
627{
628
629 int ret;
630 int poll_type = 0;
631
632 if( idle_reason == MBEDTLS_ERR_SSL_WANT_WRITE )
633 poll_type = MBEDTLS_NET_POLL_WRITE;
634 else if( idle_reason == MBEDTLS_ERR_SSL_WANT_READ )
635 poll_type = MBEDTLS_NET_POLL_READ;
636#if !defined(MBEDTLS_TIMING_C)
637 else
638 return( 0 );
639#endif
640
641 while( 1 )
642 {
643 /* Check if timer has expired */
644#if defined(MBEDTLS_TIMING_C)
645 if( timer != NULL &&
646 mbedtls_timing_get_delay( timer ) == 2 )
647 {
648 break;
649 }
650#endif /* MBEDTLS_TIMING_C */
651
652 /* Check if underlying transport became available */
653 if( poll_type != 0 )
654 {
655 ret = mbedtls_net_poll( fd, poll_type, 0 );
656 if( ret < 0 )
657 return( ret );
658 if( ret == poll_type )
659 break;
660 }
661 }
662
663 return( 0 );
664}
665
666int main( int argc, char *argv[] )
667{
668 int ret = 0, len, tail_len, i, written, frags, retry_left;
669 mbedtls_net_context server_fd;
670
671 unsigned char buf[MAX_REQUEST_SIZE + 1];
672
673#if defined(MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED)
674 unsigned char psk[MBEDTLS_PSK_MAX_LEN];
675 size_t psk_len = 0;
676#endif
677#if defined(MBEDTLS_SSL_ALPN)
678 const char *alpn_list[ALPN_LIST_SIZE];
679#endif
680#if defined(MBEDTLS_ECP_C)
681 mbedtls_ecp_group_id curve_list[CURVE_LIST_SIZE];
682 const mbedtls_ecp_curve_info *curve_cur;
683#endif
684
685 const char *pers = "ssl_client2";
686
687#if defined(MBEDTLS_USE_PSA_CRYPTO)
688 psa_key_handle_t slot = 0;
689 psa_algorithm_t alg = 0;
690 psa_key_policy_t policy;
691 psa_status_t status;
692#endif
693
694#if defined(MBEDTLS_X509_CRT_PARSE_C)
695 mbedtls_x509_crt_profile crt_profile_for_test = mbedtls_x509_crt_profile_default;
696#endif
697 mbedtls_entropy_context entropy;
698 mbedtls_ctr_drbg_context ctr_drbg;
699 mbedtls_ssl_context ssl;
700 mbedtls_ssl_config conf;
701 mbedtls_ssl_session saved_session;
702#if defined(MBEDTLS_TIMING_C)
703 mbedtls_timing_delay_context timer;
704#endif
705#if defined(MBEDTLS_X509_CRT_PARSE_C)
706 uint32_t flags;
707 mbedtls_x509_crt cacert;
708 mbedtls_x509_crt clicert;
709 mbedtls_pk_context pkey;
710#if defined(MBEDTLS_USE_PSA_CRYPTO)
711 psa_key_handle_t key_slot = 0; /* invalid key slot */
712#endif
713#endif
714 char *p, *q;
715 const int *list;
716
717 /*
718 * Make sure memory references are valid.
719 */
720 mbedtls_net_init( &server_fd );
721 mbedtls_ssl_init( &ssl );
722 mbedtls_ssl_config_init( &conf );
723 memset( &saved_session, 0, sizeof( mbedtls_ssl_session ) );
724 mbedtls_ctr_drbg_init( &ctr_drbg );
725#if defined(MBEDTLS_X509_CRT_PARSE_C)
726 mbedtls_x509_crt_init( &cacert );
727 mbedtls_x509_crt_init( &clicert );
728 mbedtls_pk_init( &pkey );
729#endif
730#if defined(MBEDTLS_SSL_ALPN)
731 memset( (void * ) alpn_list, 0, sizeof( alpn_list ) );
732#endif
733
734#if defined(MBEDTLS_USE_PSA_CRYPTO)
735 status = psa_crypto_init();
736 if( status != PSA_SUCCESS )
737 {
738 mbedtls_fprintf( stderr, "Failed to initialize PSA Crypto implementation: %d\n",
739 (int) status );
740 ret = MBEDTLS_ERR_SSL_HW_ACCEL_FAILED;
741 goto exit;
742 }
743#endif
744
745 if( argc == 0 )
746 {
747 usage:
748 if( ret == 0 )
749 ret = 1;
750
751 mbedtls_printf( USAGE );
752
753 list = mbedtls_ssl_list_ciphersuites();
754 while( *list )
755 {
756 mbedtls_printf(" %-42s", mbedtls_ssl_get_ciphersuite_name( *list ) );
757 list++;
758 if( !*list )
759 break;
760 mbedtls_printf(" %s\n", mbedtls_ssl_get_ciphersuite_name( *list ) );
761 list++;
762 }
763 mbedtls_printf("\n");
764 goto exit;
765 }
766
767 opt.server_name = DFL_SERVER_NAME;
768 opt.server_addr = DFL_SERVER_ADDR;
769 opt.server_port = DFL_SERVER_PORT;
770 opt.debug_level = DFL_DEBUG_LEVEL;
771 opt.nbio = DFL_NBIO;
772 opt.event = DFL_EVENT;
773 opt.context_crt_cb = DFL_CONTEXT_CRT_CB;
774 opt.read_timeout = DFL_READ_TIMEOUT;
775 opt.max_resend = DFL_MAX_RESEND;
776 opt.request_page = DFL_REQUEST_PAGE;
777 opt.request_size = DFL_REQUEST_SIZE;
778 opt.ca_file = DFL_CA_FILE;
779 opt.ca_path = DFL_CA_PATH;
780 opt.crt_file = DFL_CRT_FILE;
781 opt.key_file = DFL_KEY_FILE;
782 opt.key_opaque = DFL_KEY_OPAQUE;
783 opt.psk = DFL_PSK;
784#if defined(MBEDTLS_USE_PSA_CRYPTO)
785 opt.psk_opaque = DFL_PSK_OPAQUE;
786#endif
787#if defined(MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK)
788 opt.ca_callback = DFL_CA_CALLBACK;
789#endif
790 opt.psk_identity = DFL_PSK_IDENTITY;
791 opt.ecjpake_pw = DFL_ECJPAKE_PW;
792 opt.ec_max_ops = DFL_EC_MAX_OPS;
793 opt.force_ciphersuite[0]= DFL_FORCE_CIPHER;
794 opt.renegotiation = DFL_RENEGOTIATION;
795 opt.allow_legacy = DFL_ALLOW_LEGACY;
796 opt.renegotiate = DFL_RENEGOTIATE;
797 opt.exchanges = DFL_EXCHANGES;
798 opt.min_version = DFL_MIN_VERSION;
799 opt.max_version = DFL_MAX_VERSION;
800 opt.arc4 = DFL_ARC4;
801 opt.allow_sha1 = DFL_SHA1;
802 opt.auth_mode = DFL_AUTH_MODE;
803 opt.mfl_code = DFL_MFL_CODE;
804 opt.trunc_hmac = DFL_TRUNC_HMAC;
805 opt.recsplit = DFL_RECSPLIT;
806 opt.dhmlen = DFL_DHMLEN;
807 opt.reconnect = DFL_RECONNECT;
808 opt.reco_delay = DFL_RECO_DELAY;
809 opt.reconnect_hard = DFL_RECONNECT_HARD;
810 opt.tickets = DFL_TICKETS;
811 opt.alpn_string = DFL_ALPN_STRING;
812 opt.curves = DFL_CURVES;
813 opt.transport = DFL_TRANSPORT;
814 opt.hs_to_min = DFL_HS_TO_MIN;
815 opt.hs_to_max = DFL_HS_TO_MAX;
816 opt.dtls_mtu = DFL_DTLS_MTU;
817 opt.fallback = DFL_FALLBACK;
818 opt.extended_ms = DFL_EXTENDED_MS;
819 opt.etm = DFL_ETM;
820 opt.dgram_packing = DFL_DGRAM_PACKING;
821
822 for( i = 1; i < argc; i++ )
823 {
824 p = argv[i];
825 if( ( q = strchr( p, '=' ) ) == NULL )
826 goto usage;
827 *q++ = '\0';
828
829 if( strcmp( p, "server_name" ) == 0 )
830 opt.server_name = q;
831 else if( strcmp( p, "server_addr" ) == 0 )
832 opt.server_addr = q;
833 else if( strcmp( p, "server_port" ) == 0 )
834 opt.server_port = q;
835 else if( strcmp( p, "dtls" ) == 0 )
836 {
837 int t = atoi( q );
838 if( t == 0 )
839 opt.transport = MBEDTLS_SSL_TRANSPORT_STREAM;
840 else if( t == 1 )
841 opt.transport = MBEDTLS_SSL_TRANSPORT_DATAGRAM;
842 else
843 goto usage;
844 }
845 else if( strcmp( p, "debug_level" ) == 0 )
846 {
847 opt.debug_level = atoi( q );
848 if( opt.debug_level < 0 || opt.debug_level > 65535 )
849 goto usage;
850 }
851 else if( strcmp( p, "context_crt_cb" ) == 0 )
852 {
853 opt.context_crt_cb = atoi( q );
854 if( opt.context_crt_cb != 0 && opt.context_crt_cb != 1 )
855 goto usage;
856 }
857 else if( strcmp( p, "nbio" ) == 0 )
858 {
859 opt.nbio = atoi( q );
860 if( opt.nbio < 0 || opt.nbio > 2 )
861 goto usage;
862 }
863 else if( strcmp( p, "event" ) == 0 )
864 {
865 opt.event = atoi( q );
866 if( opt.event < 0 || opt.event > 2 )
867 goto usage;
868 }
869 else if( strcmp( p, "read_timeout" ) == 0 )
870 opt.read_timeout = atoi( q );
871 else if( strcmp( p, "max_resend" ) == 0 )
872 {
873 opt.max_resend = atoi( q );
874 if( opt.max_resend < 0 )
875 goto usage;
876 }
877 else if( strcmp( p, "request_page" ) == 0 )
878 opt.request_page = q;
879 else if( strcmp( p, "request_size" ) == 0 )
880 {
881 opt.request_size = atoi( q );
882 if( opt.request_size < 0 ||
883 opt.request_size > MAX_REQUEST_SIZE )
884 goto usage;
885 }
886 else if( strcmp( p, "ca_file" ) == 0 )
887 opt.ca_file = q;
888 else if( strcmp( p, "ca_path" ) == 0 )
889 opt.ca_path = q;
890 else if( strcmp( p, "crt_file" ) == 0 )
891 opt.crt_file = q;
892 else if( strcmp( p, "key_file" ) == 0 )
893 opt.key_file = q;
894#if defined(MBEDTLS_USE_PSA_CRYPTO) && defined(MBEDTLS_X509_CRT_PARSE_C)
895 else if( strcmp( p, "key_opaque" ) == 0 )
896 opt.key_opaque = atoi( q );
897#endif
898 else if( strcmp( p, "psk" ) == 0 )
899 opt.psk = q;
900#if defined(MBEDTLS_USE_PSA_CRYPTO)
901 else if( strcmp( p, "psk_opaque" ) == 0 )
902 opt.psk_opaque = atoi( q );
903#endif
904#if defined(MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK)
905 else if( strcmp( p, "ca_callback" ) == 0)
906 opt.ca_callback = atoi( q );
907#endif
908 else if( strcmp( p, "psk_identity" ) == 0 )
909 opt.psk_identity = q;
910 else if( strcmp( p, "ecjpake_pw" ) == 0 )
911 opt.ecjpake_pw = q;
912 else if( strcmp( p, "ec_max_ops" ) == 0 )
913 opt.ec_max_ops = atoi( q );
914 else if( strcmp( p, "force_ciphersuite" ) == 0 )
915 {
916 opt.force_ciphersuite[0] = mbedtls_ssl_get_ciphersuite_id( q );
917
918 if( opt.force_ciphersuite[0] == 0 )
919 {
920 ret = 2;
921 goto usage;
922 }
923 opt.force_ciphersuite[1] = 0;
924 }
925 else if( strcmp( p, "renegotiation" ) == 0 )
926 {
927 opt.renegotiation = (atoi( q )) ?
928 MBEDTLS_SSL_RENEGOTIATION_ENABLED :
929 MBEDTLS_SSL_RENEGOTIATION_DISABLED;
930 }
931 else if( strcmp( p, "allow_legacy" ) == 0 )
932 {
933 switch( atoi( q ) )
934 {
935 case -1:
936 opt.allow_legacy = MBEDTLS_SSL_LEGACY_BREAK_HANDSHAKE;
937 break;
938 case 0:
939 opt.allow_legacy = MBEDTLS_SSL_LEGACY_NO_RENEGOTIATION;
940 break;
941 case 1:
942 opt.allow_legacy = MBEDTLS_SSL_LEGACY_ALLOW_RENEGOTIATION;
943 break;
944 default: goto usage;
945 }
946 }
947 else if( strcmp( p, "renegotiate" ) == 0 )
948 {
949 opt.renegotiate = atoi( q );
950 if( opt.renegotiate < 0 || opt.renegotiate > 1 )
951 goto usage;
952 }
953 else if( strcmp( p, "exchanges" ) == 0 )
954 {
955 opt.exchanges = atoi( q );
956 if( opt.exchanges < 1 )
957 goto usage;
958 }
959 else if( strcmp( p, "reconnect" ) == 0 )
960 {
961 opt.reconnect = atoi( q );
962 if( opt.reconnect < 0 || opt.reconnect > 2 )
963 goto usage;
964 }
965 else if( strcmp( p, "reco_delay" ) == 0 )
966 {
967 opt.reco_delay = atoi( q );
968 if( opt.reco_delay < 0 )
969 goto usage;
970 }
971 else if( strcmp( p, "reconnect_hard" ) == 0 )
972 {
973 opt.reconnect_hard = atoi( q );
974 if( opt.reconnect_hard < 0 || opt.reconnect_hard > 1 )
975 goto usage;
976 }
977 else if( strcmp( p, "tickets" ) == 0 )
978 {
979 opt.tickets = atoi( q );
980 if( opt.tickets < 0 || opt.tickets > 2 )
981 goto usage;
982 }
983 else if( strcmp( p, "alpn" ) == 0 )
984 {
985 opt.alpn_string = q;
986 }
987 else if( strcmp( p, "fallback" ) == 0 )
988 {
989 switch( atoi( q ) )
990 {
991 case 0: opt.fallback = MBEDTLS_SSL_IS_NOT_FALLBACK; break;
992 case 1: opt.fallback = MBEDTLS_SSL_IS_FALLBACK; break;
993 default: goto usage;
994 }
995 }
996 else if( strcmp( p, "extended_ms" ) == 0 )
997 {
998 switch( atoi( q ) )
999 {
1000 case 0:
1001 opt.extended_ms = MBEDTLS_SSL_EXTENDED_MS_DISABLED;
1002 break;
1003 case 1:
1004 opt.extended_ms = MBEDTLS_SSL_EXTENDED_MS_ENABLED;
1005 break;
1006 default: goto usage;
1007 }
1008 }
1009 else if( strcmp( p, "curves" ) == 0 )
1010 opt.curves = q;
1011 else if( strcmp( p, "etm" ) == 0 )
1012 {
1013 switch( atoi( q ) )
1014 {
1015 case 0: opt.etm = MBEDTLS_SSL_ETM_DISABLED; break;
1016 case 1: opt.etm = MBEDTLS_SSL_ETM_ENABLED; break;
1017 default: goto usage;
1018 }
1019 }
1020 else if( strcmp( p, "min_version" ) == 0 )
1021 {
1022 if( strcmp( q, "ssl3" ) == 0 )
1023 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_0;
1024 else if( strcmp( q, "tls1" ) == 0 )
1025 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_1;
1026 else if( strcmp( q, "tls1_1" ) == 0 ||
1027 strcmp( q, "dtls1" ) == 0 )
1028 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_2;
1029 else if( strcmp( q, "tls1_2" ) == 0 ||
1030 strcmp( q, "dtls1_2" ) == 0 )
1031 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_3;
1032 else
1033 goto usage;
1034 }
1035 else if( strcmp( p, "max_version" ) == 0 )
1036 {
1037 if( strcmp( q, "ssl3" ) == 0 )
1038 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_0;
1039 else if( strcmp( q, "tls1" ) == 0 )
1040 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_1;
1041 else if( strcmp( q, "tls1_1" ) == 0 ||
1042 strcmp( q, "dtls1" ) == 0 )
1043 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_2;
1044 else if( strcmp( q, "tls1_2" ) == 0 ||
1045 strcmp( q, "dtls1_2" ) == 0 )
1046 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_3;
1047 else
1048 goto usage;
1049 }
1050 else if( strcmp( p, "arc4" ) == 0 )
1051 {
1052 switch( atoi( q ) )
1053 {
1054 case 0: opt.arc4 = MBEDTLS_SSL_ARC4_DISABLED; break;
1055 case 1: opt.arc4 = MBEDTLS_SSL_ARC4_ENABLED; break;
1056 default: goto usage;
1057 }
1058 }
1059 else if( strcmp( p, "allow_sha1" ) == 0 )
1060 {
1061 switch( atoi( q ) )
1062 {
1063 case 0: opt.allow_sha1 = 0; break;
1064 case 1: opt.allow_sha1 = 1; break;
1065 default: goto usage;
1066 }
1067 }
1068 else if( strcmp( p, "force_version" ) == 0 )
1069 {
1070 if( strcmp( q, "ssl3" ) == 0 )
1071 {
1072 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_0;
1073 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_0;
1074 }
1075 else if( strcmp( q, "tls1" ) == 0 )
1076 {
1077 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_1;
1078 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_1;
1079 }
1080 else if( strcmp( q, "tls1_1" ) == 0 )
1081 {
1082 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_2;
1083 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_2;
1084 }
1085 else if( strcmp( q, "tls1_2" ) == 0 )
1086 {
1087 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_3;
1088 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_3;
1089 }
1090 else if( strcmp( q, "dtls1" ) == 0 )
1091 {
1092 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_2;
1093 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_2;
1094 opt.transport = MBEDTLS_SSL_TRANSPORT_DATAGRAM;
1095 }
1096 else if( strcmp( q, "dtls1_2" ) == 0 )
1097 {
1098 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_3;
1099 opt.max_version = MBEDTLS_SSL_MINOR_VERSION_3;
1100 opt.transport = MBEDTLS_SSL_TRANSPORT_DATAGRAM;
1101 }
1102 else
1103 goto usage;
1104 }
1105 else if( strcmp( p, "auth_mode" ) == 0 )
1106 {
1107 if( strcmp( q, "none" ) == 0 )
1108 opt.auth_mode = MBEDTLS_SSL_VERIFY_NONE;
1109 else if( strcmp( q, "optional" ) == 0 )
1110 opt.auth_mode = MBEDTLS_SSL_VERIFY_OPTIONAL;
1111 else if( strcmp( q, "required" ) == 0 )
1112 opt.auth_mode = MBEDTLS_SSL_VERIFY_REQUIRED;
1113 else
1114 goto usage;
1115 }
1116 else if( strcmp( p, "max_frag_len" ) == 0 )
1117 {
1118 if( strcmp( q, "512" ) == 0 )
1119 opt.mfl_code = MBEDTLS_SSL_MAX_FRAG_LEN_512;
1120 else if( strcmp( q, "1024" ) == 0 )
1121 opt.mfl_code = MBEDTLS_SSL_MAX_FRAG_LEN_1024;
1122 else if( strcmp( q, "2048" ) == 0 )
1123 opt.mfl_code = MBEDTLS_SSL_MAX_FRAG_LEN_2048;
1124 else if( strcmp( q, "4096" ) == 0 )
1125 opt.mfl_code = MBEDTLS_SSL_MAX_FRAG_LEN_4096;
1126 else
1127 goto usage;
1128 }
1129 else if( strcmp( p, "trunc_hmac" ) == 0 )
1130 {
1131 switch( atoi( q ) )
1132 {
1133 case 0: opt.trunc_hmac = MBEDTLS_SSL_TRUNC_HMAC_DISABLED; break;
1134 case 1: opt.trunc_hmac = MBEDTLS_SSL_TRUNC_HMAC_ENABLED; break;
1135 default: goto usage;
1136 }
1137 }
1138 else if( strcmp( p, "hs_timeout" ) == 0 )
1139 {
1140 if( ( p = strchr( q, '-' ) ) == NULL )
1141 goto usage;
1142 *p++ = '\0';
1143 opt.hs_to_min = atoi( q );
1144 opt.hs_to_max = atoi( p );
1145 if( opt.hs_to_min == 0 || opt.hs_to_max < opt.hs_to_min )
1146 goto usage;
1147 }
1148 else if( strcmp( p, "mtu" ) == 0 )
1149 {
1150 opt.dtls_mtu = atoi( q );
1151 if( opt.dtls_mtu < 0 )
1152 goto usage;
1153 }
1154 else if( strcmp( p, "dgram_packing" ) == 0 )
1155 {
1156 opt.dgram_packing = atoi( q );
1157 if( opt.dgram_packing != 0 &&
1158 opt.dgram_packing != 1 )
1159 {
1160 goto usage;
1161 }
1162 }
1163 else if( strcmp( p, "recsplit" ) == 0 )
1164 {
1165 opt.recsplit = atoi( q );
1166 if( opt.recsplit < 0 || opt.recsplit > 1 )
1167 goto usage;
1168 }
1169 else if( strcmp( p, "dhmlen" ) == 0 )
1170 {
1171 opt.dhmlen = atoi( q );
1172 if( opt.dhmlen < 0 )
1173 goto usage;
1174 }
1175 else if( strcmp( p, "query_config" ) == 0 )
1176 {
1177 return query_config( q );
1178 }
1179 else
1180 goto usage;
1181 }
1182
1183 /* Event-driven IO is incompatible with the above custom
1184 * receive and send functions, as the polling builds on
1185 * refers to the underlying net_context. */
1186 if( opt.event == 1 && opt.nbio != 1 )
1187 {
1188 mbedtls_printf( "Warning: event-driven IO mandates nbio=1 - overwrite\n" );
1189 opt.nbio = 1;
1190 }
1191
1192#if defined(MBEDTLS_DEBUG_C)
1193 mbedtls_debug_set_threshold( opt.debug_level );
1194#endif
1195
1196#if defined(MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED)
1197 /*
1198 * Unhexify the pre-shared key if any is given
1199 */
1200 if( strlen( opt.psk ) )
1201 {
1202 unsigned char c;
1203 size_t j;
1204
1205 if( strlen( opt.psk ) % 2 != 0 )
1206 {
1207 mbedtls_printf( "pre-shared key not valid hex\n" );
1208 goto exit;
1209 }
1210
1211 psk_len = strlen( opt.psk ) / 2;
1212
1213 for( j = 0; j < strlen( opt.psk ); j += 2 )
1214 {
1215 c = opt.psk[j];
1216 if( c >= '0' && c <= '9' )
1217 c -= '0';
1218 else if( c >= 'a' && c <= 'f' )
1219 c -= 'a' - 10;
1220 else if( c >= 'A' && c <= 'F' )
1221 c -= 'A' - 10;
1222 else
1223 {
1224 mbedtls_printf( "pre-shared key not valid hex\n" );
1225 goto exit;
1226 }
1227 psk[ j / 2 ] = c << 4;
1228
1229 c = opt.psk[j + 1];
1230 if( c >= '0' && c <= '9' )
1231 c -= '0';
1232 else if( c >= 'a' && c <= 'f' )
1233 c -= 'a' - 10;
1234 else if( c >= 'A' && c <= 'F' )
1235 c -= 'A' - 10;
1236 else
1237 {
1238 mbedtls_printf( "pre-shared key not valid hex\n" );
1239 goto exit;
1240 }
1241 psk[ j / 2 ] |= c;
1242 }
1243 }
1244#endif /* MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED */
1245
1246
1247#if defined(MBEDTLS_USE_PSA_CRYPTO)
1248 if( opt.psk_opaque != 0 )
1249 {
1250 if( opt.psk == NULL )
1251 {
1252 mbedtls_printf( "psk_opaque set but no psk to be imported specified.\n" );
1253 ret = 2;
1254 goto usage;
1255 }
1256
1257 if( opt.force_ciphersuite[0] <= 0 )
1258 {
1259 mbedtls_printf( "opaque PSKs are only supported in conjunction with forcing TLS 1.2 and a PSK-only ciphersuite through the 'force_ciphersuite' option.\n" );
1260 ret = 2;
1261 goto usage;
1262 }
1263 }
1264#endif /* MBEDTLS_USE_PSA_CRYPTO */
1265
1266 if( opt.force_ciphersuite[0] > 0 )
1267 {
1268 const mbedtls_ssl_ciphersuite_t *ciphersuite_info;
1269 ciphersuite_info =
1270 mbedtls_ssl_ciphersuite_from_id( opt.force_ciphersuite[0] );
1271
1272 if( opt.max_version != -1 &&
1273 ciphersuite_info->min_minor_ver > opt.max_version )
1274 {
1275 mbedtls_printf( "forced ciphersuite not allowed with this protocol version\n" );
1276 ret = 2;
1277 goto usage;
1278 }
1279 if( opt.min_version != -1 &&
1280 ciphersuite_info->max_minor_ver < opt.min_version )
1281 {
1282 mbedtls_printf( "forced ciphersuite not allowed with this protocol version\n" );
1283 ret = 2;
1284 goto usage;
1285 }
1286
1287 /* If the server selects a version that's not supported by
1288 * this suite, then there will be no common ciphersuite... */
1289 if( opt.max_version == -1 ||
1290 opt.max_version > ciphersuite_info->max_minor_ver )
1291 {
1292 opt.max_version = ciphersuite_info->max_minor_ver;
1293 }
1294 if( opt.min_version < ciphersuite_info->min_minor_ver )
1295 {
1296 opt.min_version = ciphersuite_info->min_minor_ver;
1297 /* DTLS starts with TLS 1.1 */
1298 if( opt.transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM &&
1299 opt.min_version < MBEDTLS_SSL_MINOR_VERSION_2 )
1300 opt.min_version = MBEDTLS_SSL_MINOR_VERSION_2;
1301 }
1302
1303 /* Enable RC4 if needed and not explicitly disabled */
1304 if( ciphersuite_info->cipher == MBEDTLS_CIPHER_ARC4_128 )
1305 {
1306 if( opt.arc4 == MBEDTLS_SSL_ARC4_DISABLED )
1307 {
1308 mbedtls_printf( "forced RC4 ciphersuite with RC4 disabled\n" );
1309 ret = 2;
1310 goto usage;
1311 }
1312
1313 opt.arc4 = MBEDTLS_SSL_ARC4_ENABLED;
1314 }
1315
1316#if defined(MBEDTLS_USE_PSA_CRYPTO)
1317 if( opt.psk_opaque != 0 )
1318 {
1319 /* Ensure that the chosen ciphersuite is PSK-only; we must know
1320 * the ciphersuite in advance to set the correct policy for the
1321 * PSK key slot. This limitation might go away in the future. */
1322 if( ciphersuite_info->key_exchange != MBEDTLS_KEY_EXCHANGE_PSK ||
1323 opt.min_version != MBEDTLS_SSL_MINOR_VERSION_3 )
1324 {
1325 mbedtls_printf( "opaque PSKs are only supported in conjunction with forcing TLS 1.2 and a PSK-only ciphersuite through the 'force_ciphersuite' option.\n" );
1326 ret = 2;
1327 goto usage;
1328 }
1329
1330 /* Determine KDF algorithm the opaque PSK will be used in. */
1331#if defined(MBEDTLS_SHA512_C)
1332 if( ciphersuite_info->mac == MBEDTLS_MD_SHA384 )
1333 alg = PSA_ALG_TLS12_PSK_TO_MS(PSA_ALG_SHA_384);
1334 else
1335#endif /* MBEDTLS_SHA512_C */
1336 alg = PSA_ALG_TLS12_PSK_TO_MS(PSA_ALG_SHA_256);
1337 }
1338#endif /* MBEDTLS_USE_PSA_CRYPTO */
1339 }
1340
1341#if defined(MBEDTLS_ECP_C)
1342 if( opt.curves != NULL )
1343 {
1344 p = (char *) opt.curves;
1345 i = 0;
1346
1347 if( strcmp( p, "none" ) == 0 )
1348 {
1349 curve_list[0] = MBEDTLS_ECP_DP_NONE;
1350 }
1351 else if( strcmp( p, "default" ) != 0 )
1352 {
1353 /* Leave room for a final NULL in curve list */
1354 while( i < CURVE_LIST_SIZE - 1 && *p != '\0' )
1355 {
1356 q = p;
1357
1358 /* Terminate the current string */
1359 while( *p != ',' && *p != '\0' )
1360 p++;
1361 if( *p == ',' )
1362 *p++ = '\0';
1363
1364 if( ( curve_cur = mbedtls_ecp_curve_info_from_name( q ) ) != NULL )
1365 {
1366 curve_list[i++] = curve_cur->grp_id;
1367 }
1368 else
1369 {
1370 mbedtls_printf( "unknown curve %s\n", q );
1371 mbedtls_printf( "supported curves: " );
1372 for( curve_cur = mbedtls_ecp_curve_list();
1373 curve_cur->grp_id != MBEDTLS_ECP_DP_NONE;
1374 curve_cur++ )
1375 {
1376 mbedtls_printf( "%s ", curve_cur->name );
1377 }
1378 mbedtls_printf( "\n" );
1379 goto exit;
1380 }
1381 }
1382
1383 mbedtls_printf("Number of curves: %d\n", i );
1384
1385 if( i == CURVE_LIST_SIZE - 1 && *p != '\0' )
1386 {
1387 mbedtls_printf( "curves list too long, maximum %d",
1388 CURVE_LIST_SIZE - 1 );
1389 goto exit;
1390 }
1391
1392 curve_list[i] = MBEDTLS_ECP_DP_NONE;
1393 }
1394 }
1395#endif /* MBEDTLS_ECP_C */
1396
1397#if defined(MBEDTLS_SSL_ALPN)
1398 if( opt.alpn_string != NULL )
1399 {
1400 p = (char *) opt.alpn_string;
1401 i = 0;
1402
1403 /* Leave room for a final NULL in alpn_list */
1404 while( i < ALPN_LIST_SIZE - 1 && *p != '\0' )
1405 {
1406 alpn_list[i++] = p;
1407
1408 /* Terminate the current string and move on to next one */
1409 while( *p != ',' && *p != '\0' )
1410 p++;
1411 if( *p == ',' )
1412 *p++ = '\0';
1413 }
1414 }
1415#endif /* MBEDTLS_SSL_ALPN */
1416
1417 /*
1418 * 0. Initialize the RNG and the session data
1419 */
1420 mbedtls_printf( "\n . Seeding the random number generator..." );
1421 fflush( stdout );
1422
1423 mbedtls_entropy_init( &entropy );
1424 if( ( ret = mbedtls_ctr_drbg_seed( &ctr_drbg, mbedtls_entropy_func,
1425 &entropy, (const unsigned char *) pers,
1426 strlen( pers ) ) ) != 0 )
1427 {
1428 mbedtls_printf( " failed\n ! mbedtls_ctr_drbg_seed returned -0x%x\n",
1429 -ret );
1430 goto exit;
1431 }
1432
1433 mbedtls_printf( " ok\n" );
1434
1435#if defined(MBEDTLS_X509_CRT_PARSE_C)
1436 /*
1437 * 1.1. Load the trusted CA
1438 */
1439 mbedtls_printf( " . Loading the CA root certificate ..." );
1440 fflush( stdout );
1441
1442#if defined(MBEDTLS_FS_IO)
1443 if( strlen( opt.ca_path ) )
1444 if( strcmp( opt.ca_path, "none" ) == 0 )
1445 ret = 0;
1446 else
1447 ret = mbedtls_x509_crt_parse_path( &cacert, opt.ca_path );
1448 else if( strlen( opt.ca_file ) )
1449 if( strcmp( opt.ca_file, "none" ) == 0 )
1450 ret = 0;
1451 else
1452 ret = mbedtls_x509_crt_parse_file( &cacert, opt.ca_file );
1453 else
1454#endif
1455#if defined(MBEDTLS_CERTS_C)
1456 for( i = 0; mbedtls_test_cas[i] != NULL; i++ )
1457 {
1458 ret = mbedtls_x509_crt_parse( &cacert,
1459 (const unsigned char *) mbedtls_test_cas[i],
1460 mbedtls_test_cas_len[i] );
1461 if( ret != 0 )
1462 break;
1463 }
1464#else
1465 {
1466 ret = 1;
1467 mbedtls_printf( "MBEDTLS_CERTS_C not defined." );
1468 }
1469#endif
1470 if( ret < 0 )
1471 {
1472 mbedtls_printf( " failed\n ! mbedtls_x509_crt_parse returned -0x%x\n\n",
1473 -ret );
1474 goto exit;
1475 }
1476
1477 mbedtls_printf( " ok (%d skipped)\n", ret );
1478
1479 /*
1480 * 1.2. Load own certificate and private key
1481 *
1482 * (can be skipped if client authentication is not required)
1483 */
1484 mbedtls_printf( " . Loading the client cert. and key..." );
1485 fflush( stdout );
1486
1487#if defined(MBEDTLS_FS_IO)
1488 if( strlen( opt.crt_file ) )
1489 if( strcmp( opt.crt_file, "none" ) == 0 )
1490 ret = 0;
1491 else
1492 ret = mbedtls_x509_crt_parse_file( &clicert, opt.crt_file );
1493 else
1494#endif
1495#if defined(MBEDTLS_CERTS_C)
1496 ret = mbedtls_x509_crt_parse( &clicert,
1497 (const unsigned char *) mbedtls_test_cli_crt,
1498 mbedtls_test_cli_crt_len );
1499#else
1500 {
1501 ret = 1;
1502 mbedtls_printf("MBEDTLS_CERTS_C not defined.");
1503 }
1504#endif
1505 if( ret != 0 )
1506 {
1507 mbedtls_printf( " failed\n ! mbedtls_x509_crt_parse returned -0x%x\n\n",
1508 -ret );
1509 goto exit;
1510 }
1511
1512#if defined(MBEDTLS_FS_IO)
1513 if( strlen( opt.key_file ) )
1514 if( strcmp( opt.key_file, "none" ) == 0 )
1515 ret = 0;
1516 else
1517 ret = mbedtls_pk_parse_keyfile( &pkey, opt.key_file, "" );
1518 else
1519#endif
1520#if defined(MBEDTLS_CERTS_C)
1521 ret = mbedtls_pk_parse_key( &pkey,
1522 (const unsigned char *) mbedtls_test_cli_key,
1523 mbedtls_test_cli_key_len, NULL, 0 );
1524#else
1525 {
1526 ret = 1;
1527 mbedtls_printf("MBEDTLS_CERTS_C not defined.");
1528 }
1529#endif
1530 if( ret != 0 )
1531 {
1532 mbedtls_printf( " failed\n ! mbedtls_pk_parse_key returned -0x%x\n\n",
1533 -ret );
1534 goto exit;
1535 }
1536
1537#if defined(MBEDTLS_USE_PSA_CRYPTO)
1538 if( opt.key_opaque != 0 )
1539 {
1540 if( ( ret = mbedtls_pk_wrap_as_opaque( &pkey, &key_slot,
1541 PSA_ALG_SHA_256 ) ) != 0 )
1542 {
1543 mbedtls_printf( " failed\n ! "
1544 "mbedtls_pk_wrap_as_opaque returned -0x%x\n\n", -ret );
1545 goto exit;
1546 }
1547 }
1548#endif /* MBEDTLS_USE_PSA_CRYPTO */
1549
1550 mbedtls_printf( " ok (key type: %s)\n", mbedtls_pk_get_name( &pkey ) );
1551#endif /* MBEDTLS_X509_CRT_PARSE_C */
1552
1553 /*
1554 * 2. Start the connection
1555 */
1556 if( opt.server_addr == NULL)
1557 opt.server_addr = opt.server_name;
1558
1559 mbedtls_printf( " . Connecting to %s/%s/%s...",
1560 opt.transport == MBEDTLS_SSL_TRANSPORT_STREAM ? "tcp" : "udp",
1561 opt.server_addr, opt.server_port );
1562 fflush( stdout );
1563
1564 if( ( ret = mbedtls_net_connect( &server_fd,
1565 opt.server_addr, opt.server_port,
1566 opt.transport == MBEDTLS_SSL_TRANSPORT_STREAM ?
1567 MBEDTLS_NET_PROTO_TCP : MBEDTLS_NET_PROTO_UDP ) ) != 0 )
1568 {
1569 mbedtls_printf( " failed\n ! mbedtls_net_connect returned -0x%x\n\n",
1570 -ret );
1571 goto exit;
1572 }
1573
1574 if( opt.nbio > 0 )
1575 ret = mbedtls_net_set_nonblock( &server_fd );
1576 else
1577 ret = mbedtls_net_set_block( &server_fd );
1578 if( ret != 0 )
1579 {
1580 mbedtls_printf( " failed\n ! net_set_(non)block() returned -0x%x\n\n",
1581 -ret );
1582 goto exit;
1583 }
1584
1585 mbedtls_printf( " ok\n" );
1586
1587 /*
1588 * 3. Setup stuff
1589 */
1590 mbedtls_printf( " . Setting up the SSL/TLS structure..." );
1591 fflush( stdout );
1592
1593 if( ( ret = mbedtls_ssl_config_defaults( &conf,
1594 MBEDTLS_SSL_IS_CLIENT,
1595 opt.transport,
1596 MBEDTLS_SSL_PRESET_DEFAULT ) ) != 0 )
1597 {
1598 mbedtls_printf( " failed\n ! mbedtls_ssl_config_defaults returned -0x%x\n\n",
1599 -ret );
1600 goto exit;
1601 }
1602
1603#if defined(MBEDTLS_X509_CRT_PARSE_C)
1604 /* The default algorithms profile disables SHA-1, but our tests still
1605 rely on it heavily. */
1606 if( opt.allow_sha1 > 0 )
1607 {
1608 crt_profile_for_test.allowed_mds |= MBEDTLS_X509_ID_FLAG( MBEDTLS_MD_SHA1 );
1609 mbedtls_ssl_conf_cert_profile( &conf, &crt_profile_for_test );
1610 mbedtls_ssl_conf_sig_hashes( &conf, ssl_sig_hashes_for_test );
1611 }
1612
1613 if( opt.context_crt_cb == 0 )
1614 mbedtls_ssl_conf_verify( &conf, my_verify, NULL );
1615
1616 memset( peer_crt_info, 0, sizeof( peer_crt_info ) );
1617#endif /* MBEDTLS_X509_CRT_PARSE_C */
1618
1619 if( opt.auth_mode != DFL_AUTH_MODE )
1620 mbedtls_ssl_conf_authmode( &conf, opt.auth_mode );
1621
1622#if defined(MBEDTLS_SSL_PROTO_DTLS)
1623 if( opt.hs_to_min != DFL_HS_TO_MIN || opt.hs_to_max != DFL_HS_TO_MAX )
1624 mbedtls_ssl_conf_handshake_timeout( &conf, opt.hs_to_min,
1625 opt.hs_to_max );
1626
1627 if( opt.dgram_packing != DFL_DGRAM_PACKING )
1628 mbedtls_ssl_set_datagram_packing( &ssl, opt.dgram_packing );
1629#endif /* MBEDTLS_SSL_PROTO_DTLS */
1630
1631#if defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH)
1632 if( ( ret = mbedtls_ssl_conf_max_frag_len( &conf, opt.mfl_code ) ) != 0 )
1633 {
1634 mbedtls_printf( " failed\n ! mbedtls_ssl_conf_max_frag_len returned %d\n\n",
1635 ret );
1636 goto exit;
1637 }
1638#endif
1639
1640#if defined(MBEDTLS_SSL_TRUNCATED_HMAC)
1641 if( opt.trunc_hmac != DFL_TRUNC_HMAC )
1642 mbedtls_ssl_conf_truncated_hmac( &conf, opt.trunc_hmac );
1643#endif
1644
1645#if defined(MBEDTLS_SSL_EXTENDED_MASTER_SECRET)
1646 if( opt.extended_ms != DFL_EXTENDED_MS )
1647 mbedtls_ssl_conf_extended_master_secret( &conf, opt.extended_ms );
1648#endif
1649
1650#if defined(MBEDTLS_SSL_ENCRYPT_THEN_MAC)
1651 if( opt.etm != DFL_ETM )
1652 mbedtls_ssl_conf_encrypt_then_mac( &conf, opt.etm );
1653#endif
1654
1655#if defined(MBEDTLS_SSL_CBC_RECORD_SPLITTING)
1656 if( opt.recsplit != DFL_RECSPLIT )
1657 mbedtls_ssl_conf_cbc_record_splitting( &conf, opt.recsplit
1658 ? MBEDTLS_SSL_CBC_RECORD_SPLITTING_ENABLED
1659 : MBEDTLS_SSL_CBC_RECORD_SPLITTING_DISABLED );
1660#endif
1661
1662#if defined(MBEDTLS_DHM_C)
1663 if( opt.dhmlen != DFL_DHMLEN )
1664 mbedtls_ssl_conf_dhm_min_bitlen( &conf, opt.dhmlen );
1665#endif
1666
1667#if defined(MBEDTLS_SSL_ALPN)
1668 if( opt.alpn_string != NULL )
1669 if( ( ret = mbedtls_ssl_conf_alpn_protocols( &conf, alpn_list ) ) != 0 )
1670 {
1671 mbedtls_printf( " failed\n ! mbedtls_ssl_conf_alpn_protocols returned %d\n\n",
1672 ret );
1673 goto exit;
1674 }
1675#endif
1676
1677 mbedtls_ssl_conf_rng( &conf, mbedtls_ctr_drbg_random, &ctr_drbg );
1678 mbedtls_ssl_conf_dbg( &conf, my_debug, stdout );
1679
1680 mbedtls_ssl_conf_read_timeout( &conf, opt.read_timeout );
1681
1682#if defined(MBEDTLS_SSL_SESSION_TICKETS)
1683 mbedtls_ssl_conf_session_tickets( &conf, opt.tickets );
1684#endif
1685
1686 if( opt.force_ciphersuite[0] != DFL_FORCE_CIPHER )
1687 mbedtls_ssl_conf_ciphersuites( &conf, opt.force_ciphersuite );
1688
1689#if defined(MBEDTLS_ARC4_C)
1690 if( opt.arc4 != DFL_ARC4 )
1691 mbedtls_ssl_conf_arc4_support( &conf, opt.arc4 );
1692#endif
1693
1694 if( opt.allow_legacy != DFL_ALLOW_LEGACY )
1695 mbedtls_ssl_conf_legacy_renegotiation( &conf, opt.allow_legacy );
1696#if defined(MBEDTLS_SSL_RENEGOTIATION)
1697 mbedtls_ssl_conf_renegotiation( &conf, opt.renegotiation );
1698#endif
1699
1700#if defined(MBEDTLS_X509_CRT_PARSE_C)
1701 if( strcmp( opt.ca_path, "none" ) != 0 &&
1702 strcmp( opt.ca_file, "none" ) != 0 )
1703 {
1704#if defined(MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK)
1705 if( opt.ca_callback != 0 )
1706 mbedtls_ssl_conf_ca_cb( &conf, ca_callback, &cacert );
1707 else
1708#endif
1709 mbedtls_ssl_conf_ca_chain( &conf, &cacert, NULL );
1710 }
1711 if( strcmp( opt.crt_file, "none" ) != 0 &&
1712 strcmp( opt.key_file, "none" ) != 0 )
1713 {
1714 if( ( ret = mbedtls_ssl_conf_own_cert( &conf, &clicert, &pkey ) ) != 0 )
1715 {
1716 mbedtls_printf( " failed\n ! mbedtls_ssl_conf_own_cert returned %d\n\n",
1717 ret );
1718 goto exit;
1719 }
1720 }
1721#endif
1722
1723#if defined(MBEDTLS_ECP_C)
1724 if( opt.curves != NULL &&
1725 strcmp( opt.curves, "default" ) != 0 )
1726 {
1727 mbedtls_ssl_conf_curves( &conf, curve_list );
1728 }
1729#endif
1730
1731#if defined(MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED)
1732#if defined(MBEDTLS_USE_PSA_CRYPTO)
1733 if( opt.psk_opaque != 0 )
1734 {
1735 /* The algorithm has already been determined earlier. */
1736 status = psa_allocate_key( &slot );
1737 if( status != PSA_SUCCESS )
1738 {
1739 ret = MBEDTLS_ERR_SSL_HW_ACCEL_FAILED;
1740 goto exit;
1741 }
1742
1743 policy = psa_key_policy_init();
1744 psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_DERIVE, alg );
1745
1746 status = psa_set_key_policy( slot, &policy );
1747 if( status != PSA_SUCCESS )
1748 {
1749 ret = MBEDTLS_ERR_SSL_HW_ACCEL_FAILED;
1750 goto exit;
1751 }
1752
1753 status = psa_import_key( slot, PSA_KEY_TYPE_DERIVE, psk, psk_len );
1754 if( status != PSA_SUCCESS )
1755 {
1756 ret = MBEDTLS_ERR_SSL_HW_ACCEL_FAILED;
1757 goto exit;
1758 }
1759
1760 if( ( ret = mbedtls_ssl_conf_psk_opaque( &conf, slot,
1761 (const unsigned char *) opt.psk_identity,
1762 strlen( opt.psk_identity ) ) ) != 0 )
1763 {
1764 mbedtls_printf( " failed\n ! mbedtls_ssl_conf_psk_opaque returned %d\n\n",
1765 ret );
1766 goto exit;
1767 }
1768 }
1769 else
1770#endif /* MBEDTLS_USE_PSA_CRYPTO */
1771 if( ( ret = mbedtls_ssl_conf_psk( &conf, psk, psk_len,
1772 (const unsigned char *) opt.psk_identity,
1773 strlen( opt.psk_identity ) ) ) != 0 )
1774 {
1775 mbedtls_printf( " failed\n ! mbedtls_ssl_conf_psk returned %d\n\n",
1776 ret );
1777 goto exit;
1778 }
1779#endif /* MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED */
1780
1781 if( opt.min_version != DFL_MIN_VERSION )
1782 mbedtls_ssl_conf_min_version( &conf, MBEDTLS_SSL_MAJOR_VERSION_3,
1783 opt.min_version );
1784
1785 if( opt.max_version != DFL_MAX_VERSION )
1786 mbedtls_ssl_conf_max_version( &conf, MBEDTLS_SSL_MAJOR_VERSION_3,
1787 opt.max_version );
1788
1789#if defined(MBEDTLS_SSL_FALLBACK_SCSV)
1790 if( opt.fallback != DFL_FALLBACK )
1791 mbedtls_ssl_conf_fallback( &conf, opt.fallback );
1792#endif
1793
1794 if( ( ret = mbedtls_ssl_setup( &ssl, &conf ) ) != 0 )
1795 {
1796 mbedtls_printf( " failed\n ! mbedtls_ssl_setup returned -0x%x\n\n",
1797 -ret );
1798 goto exit;
1799 }
1800
1801#if defined(MBEDTLS_X509_CRT_PARSE_C)
1802 if( ( ret = mbedtls_ssl_set_hostname( &ssl, opt.server_name ) ) != 0 )
1803 {
1804 mbedtls_printf( " failed\n ! mbedtls_ssl_set_hostname returned %d\n\n",
1805 ret );
1806 goto exit;
1807 }
1808#endif
1809
1810#if defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED)
1811 if( opt.ecjpake_pw != DFL_ECJPAKE_PW )
1812 {
1813 if( ( ret = mbedtls_ssl_set_hs_ecjpake_password( &ssl,
1814 (const unsigned char *) opt.ecjpake_pw,
1815 strlen( opt.ecjpake_pw ) ) ) != 0 )
1816 {
1817 mbedtls_printf( " failed\n ! mbedtls_ssl_set_hs_ecjpake_password returned %d\n\n",
1818 ret );
1819 goto exit;
1820 }
1821 }
1822#endif
1823
1824#if defined(MBEDTLS_X509_CRT_PARSE_C)
1825 if( opt.context_crt_cb == 1 )
1826 mbedtls_ssl_set_verify( &ssl, my_verify, NULL );
1827#endif /* MBEDTLS_X509_CRT_PARSE_C */
1828
1829 if( opt.nbio == 2 )
1830 mbedtls_ssl_set_bio( &ssl, &server_fd, my_send, my_recv, NULL );
1831 else
1832 mbedtls_ssl_set_bio( &ssl, &server_fd,
1833 mbedtls_net_send, mbedtls_net_recv,
1834 opt.nbio == 0 ? mbedtls_net_recv_timeout : NULL );
1835
1836#if defined(MBEDTLS_SSL_PROTO_DTLS)
1837 if( opt.dtls_mtu != DFL_DTLS_MTU )
1838 mbedtls_ssl_set_mtu( &ssl, opt.dtls_mtu );
1839#endif
1840
1841#if defined(MBEDTLS_TIMING_C)
1842 mbedtls_ssl_set_timer_cb( &ssl, &timer, mbedtls_timing_set_delay,
1843 mbedtls_timing_get_delay );
1844#endif
1845
1846#if defined(MBEDTLS_ECP_RESTARTABLE)
1847 if( opt.ec_max_ops != DFL_EC_MAX_OPS )
1848 mbedtls_ecp_set_max_ops( opt.ec_max_ops );
1849#endif
1850
1851 mbedtls_printf( " ok\n" );
1852
1853 /*
1854 * 4. Handshake
1855 */
1856 mbedtls_printf( " . Performing the SSL/TLS handshake..." );
1857 fflush( stdout );
1858
1859 while( ( ret = mbedtls_ssl_handshake( &ssl ) ) != 0 )
1860 {
1861 if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
1862 ret != MBEDTLS_ERR_SSL_WANT_WRITE &&
1863 ret != MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
1864 {
1865 mbedtls_printf( " failed\n ! mbedtls_ssl_handshake returned -0x%x\n",
1866 -ret );
1867 if( ret == MBEDTLS_ERR_X509_CERT_VERIFY_FAILED )
1868 mbedtls_printf(
1869 " Unable to verify the server's certificate. "
1870 "Either it is invalid,\n"
1871 " or you didn't set ca_file or ca_path "
1872 "to an appropriate value.\n"
1873 " Alternatively, you may want to use "
1874 "auth_mode=optional for testing purposes.\n" );
1875 mbedtls_printf( "\n" );
1876 goto exit;
1877 }
1878
1879#if defined(MBEDTLS_ECP_RESTARTABLE)
1880 if( ret == MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
1881 continue;
1882#endif
1883
1884 /* For event-driven IO, wait for socket to become available */
1885 if( opt.event == 1 /* level triggered IO */ )
1886 {
1887#if defined(MBEDTLS_TIMING_C)
1888 ret = idle( &server_fd, &timer, ret );
1889#else
1890 ret = idle( &server_fd, ret );
1891#endif
1892 if( ret != 0 )
1893 goto exit;
1894 }
1895 }
1896
1897 mbedtls_printf( " ok\n [ Protocol is %s ]\n [ Ciphersuite is %s ]\n",
1898 mbedtls_ssl_get_version( &ssl ),
1899 mbedtls_ssl_get_ciphersuite( &ssl ) );
1900
1901 if( ( ret = mbedtls_ssl_get_record_expansion( &ssl ) ) >= 0 )
1902 mbedtls_printf( " [ Record expansion is %d ]\n", ret );
1903 else
1904 mbedtls_printf( " [ Record expansion is unknown (compression) ]\n" );
1905
1906#if defined(MBEDTLS_SSL_MAX_FRAGMENT_LENGTH)
1907 mbedtls_printf( " [ Maximum fragment length is %u ]\n",
1908 (unsigned int) mbedtls_ssl_get_max_frag_len( &ssl ) );
1909#endif
1910
1911#if defined(MBEDTLS_SSL_ALPN)
1912 if( opt.alpn_string != NULL )
1913 {
1914 const char *alp = mbedtls_ssl_get_alpn_protocol( &ssl );
1915 mbedtls_printf( " [ Application Layer Protocol is %s ]\n",
1916 alp ? alp : "(none)" );
1917 }
1918#endif
1919
1920 if( opt.reconnect != 0 )
1921 {
1922 mbedtls_printf(" . Saving session for reuse..." );
1923 fflush( stdout );
1924
1925 if( ( ret = mbedtls_ssl_get_session( &ssl, &saved_session ) ) != 0 )
1926 {
1927 mbedtls_printf( " failed\n ! mbedtls_ssl_get_session returned -0x%x\n\n",
1928 -ret );
1929 goto exit;
1930 }
1931
1932 mbedtls_printf( " ok\n" );
1933 }
1934
1935#if defined(MBEDTLS_X509_CRT_PARSE_C)
1936 /*
1937 * 5. Verify the server certificate
1938 */
1939 mbedtls_printf( " . Verifying peer X.509 certificate..." );
1940
1941 if( ( flags = mbedtls_ssl_get_verify_result( &ssl ) ) != 0 )
1942 {
1943 char vrfy_buf[512];
1944
1945 mbedtls_printf( " failed\n" );
1946
1947 mbedtls_x509_crt_verify_info( vrfy_buf, sizeof( vrfy_buf ),
1948 " ! ", flags );
1949
1950 mbedtls_printf( "%s\n", vrfy_buf );
1951 }
1952 else
1953 mbedtls_printf( " ok\n" );
1954
1955 mbedtls_printf( " . Peer certificate information ...\n" );
1956 mbedtls_printf( "%s\n", peer_crt_info );
1957#endif /* MBEDTLS_X509_CRT_PARSE_C */
1958
1959#if defined(MBEDTLS_SSL_RENEGOTIATION)
1960 if( opt.renegotiate )
1961 {
1962 /*
1963 * Perform renegotiation (this must be done when the server is waiting
1964 * for input from our side).
1965 */
1966 mbedtls_printf( " . Performing renegotiation..." );
1967 fflush( stdout );
1968 while( ( ret = mbedtls_ssl_renegotiate( &ssl ) ) != 0 )
1969 {
1970 if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
1971 ret != MBEDTLS_ERR_SSL_WANT_WRITE &&
1972 ret != MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
1973 {
1974 mbedtls_printf( " failed\n ! mbedtls_ssl_renegotiate returned %d\n\n",
1975 ret );
1976 goto exit;
1977 }
1978
1979#if defined(MBEDTLS_ECP_RESTARTABLE)
1980 if( ret == MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
1981 continue;
1982#endif
1983
1984 /* For event-driven IO, wait for socket to become available */
1985 if( opt.event == 1 /* level triggered IO */ )
1986 {
1987#if defined(MBEDTLS_TIMING_C)
1988 idle( &server_fd, &timer, ret );
1989#else
1990 idle( &server_fd, ret );
1991#endif
1992 }
1993
1994 }
1995 mbedtls_printf( " ok\n" );
1996 }
1997#endif /* MBEDTLS_SSL_RENEGOTIATION */
1998
1999 /*
2000 * 6. Write the GET request
2001 */
2002 retry_left = opt.max_resend;
2003send_request:
2004 mbedtls_printf( " > Write to server:" );
2005 fflush( stdout );
2006
2007 len = mbedtls_snprintf( (char *) buf, sizeof( buf ) - 1, GET_REQUEST,
2008 opt.request_page );
2009 tail_len = (int) strlen( GET_REQUEST_END );
2010
2011 /* Add padding to GET request to reach opt.request_size in length */
2012 if( opt.request_size != DFL_REQUEST_SIZE &&
2013 len + tail_len < opt.request_size )
2014 {
2015 memset( buf + len, 'A', opt.request_size - len - tail_len );
2016 len += opt.request_size - len - tail_len;
2017 }
2018
2019 strncpy( (char *) buf + len, GET_REQUEST_END, sizeof( buf ) - len - 1 );
2020 len += tail_len;
2021
2022 /* Truncate if request size is smaller than the "natural" size */
2023 if( opt.request_size != DFL_REQUEST_SIZE &&
2024 len > opt.request_size )
2025 {
2026 len = opt.request_size;
2027
2028 /* Still end with \r\n unless that's really not possible */
2029 if( len >= 2 ) buf[len - 2] = '\r';
2030 if( len >= 1 ) buf[len - 1] = '\n';
2031 }
2032
2033 if( opt.transport == MBEDTLS_SSL_TRANSPORT_STREAM )
2034 {
2035 written = 0;
2036 frags = 0;
2037
2038 do
2039 {
2040 while( ( ret = mbedtls_ssl_write( &ssl, buf + written,
2041 len - written ) ) < 0 )
2042 {
2043 if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
2044 ret != MBEDTLS_ERR_SSL_WANT_WRITE &&
2045 ret != MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
2046 {
2047 mbedtls_printf( " failed\n ! mbedtls_ssl_write returned -0x%x\n\n",
2048 -ret );
2049 goto exit;
2050 }
2051
2052 /* For event-driven IO, wait for socket to become available */
2053 if( opt.event == 1 /* level triggered IO */ )
2054 {
2055#if defined(MBEDTLS_TIMING_C)
2056 idle( &server_fd, &timer, ret );
2057#else
2058 idle( &server_fd, ret );
2059#endif
2060 }
2061 }
2062
2063 frags++;
2064 written += ret;
2065 }
2066 while( written < len );
2067 }
2068 else /* Not stream, so datagram */
2069 {
2070 while( 1 )
2071 {
2072 ret = mbedtls_ssl_write( &ssl, buf, len );
2073
2074#if defined(MBEDTLS_ECP_RESTARTABLE)
2075 if( ret == MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
2076 continue;
2077#endif
2078
2079 if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
2080 ret != MBEDTLS_ERR_SSL_WANT_WRITE )
2081 break;
2082
2083 /* For event-driven IO, wait for socket to become available */
2084 if( opt.event == 1 /* level triggered IO */ )
2085 {
2086#if defined(MBEDTLS_TIMING_C)
2087 idle( &server_fd, &timer, ret );
2088#else
2089 idle( &server_fd, ret );
2090#endif
2091 }
2092 }
2093
2094 if( ret < 0 )
2095 {
2096 mbedtls_printf( " failed\n ! mbedtls_ssl_write returned %d\n\n",
2097 ret );
2098 goto exit;
2099 }
2100
2101 frags = 1;
2102 written = ret;
2103
2104 if( written < len )
2105 {
2106 mbedtls_printf( " warning\n ! request didn't fit into single datagram and "
2107 "was truncated to size %u", (unsigned) written );
2108 }
2109 }
2110
2111 buf[written] = '\0';
2112 mbedtls_printf( " %d bytes written in %d fragments\n\n%s\n",
2113 written, frags, (char *) buf );
2114
2115 /* Send a non-empty request if request_size == 0 */
2116 if ( len == 0 )
2117 {
2118 opt.request_size = DFL_REQUEST_SIZE;
2119 goto send_request;
2120 }
2121
2122 /*
2123 * 7. Read the HTTP response
2124 */
2125 mbedtls_printf( " < Read from server:" );
2126 fflush( stdout );
2127
2128 /*
2129 * TLS and DTLS need different reading styles (stream vs datagram)
2130 */
2131 if( opt.transport == MBEDTLS_SSL_TRANSPORT_STREAM )
2132 {
2133 do
2134 {
2135 len = sizeof( buf ) - 1;
2136 memset( buf, 0, sizeof( buf ) );
2137 ret = mbedtls_ssl_read( &ssl, buf, len );
2138
2139#if defined(MBEDTLS_ECP_RESTARTABLE)
2140 if( ret == MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
2141 continue;
2142#endif
2143
2144 if( ret == MBEDTLS_ERR_SSL_WANT_READ ||
2145 ret == MBEDTLS_ERR_SSL_WANT_WRITE )
2146 {
2147 /* For event-driven IO, wait for socket to become available */
2148 if( opt.event == 1 /* level triggered IO */ )
2149 {
2150#if defined(MBEDTLS_TIMING_C)
2151 idle( &server_fd, &timer, ret );
2152#else
2153 idle( &server_fd, ret );
2154#endif
2155 }
2156 continue;
2157 }
2158
2159 if( ret <= 0 )
2160 {
2161 switch( ret )
2162 {
2163 case MBEDTLS_ERR_SSL_PEER_CLOSE_NOTIFY:
2164 mbedtls_printf( " connection was closed gracefully\n" );
2165 ret = 0;
2166 goto close_notify;
2167
2168 case 0:
2169 case MBEDTLS_ERR_NET_CONN_RESET:
2170 mbedtls_printf( " connection was reset by peer\n" );
2171 ret = 0;
2172 goto reconnect;
2173
2174 default:
2175 mbedtls_printf( " mbedtls_ssl_read returned -0x%x\n",
2176 -ret );
2177 goto exit;
2178 }
2179 }
2180
2181 len = ret;
2182 buf[len] = '\0';
2183 mbedtls_printf( " %d bytes read\n\n%s", len, (char *) buf );
2184
2185 /* End of message should be detected according to the syntax of the
2186 * application protocol (eg HTTP), just use a dummy test here. */
2187 if( ret > 0 && buf[len-1] == '\n' )
2188 {
2189 ret = 0;
2190 break;
2191 }
2192 }
2193 while( 1 );
2194 }
2195 else /* Not stream, so datagram */
2196 {
2197 len = sizeof( buf ) - 1;
2198 memset( buf, 0, sizeof( buf ) );
2199
2200 while( 1 )
2201 {
2202 ret = mbedtls_ssl_read( &ssl, buf, len );
2203
2204#if defined(MBEDTLS_ECP_RESTARTABLE)
2205 if( ret == MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
2206 continue;
2207#endif
2208
2209 if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
2210 ret != MBEDTLS_ERR_SSL_WANT_WRITE )
2211 break;
2212
2213 /* For event-driven IO, wait for socket to become available */
2214 if( opt.event == 1 /* level triggered IO */ )
2215 {
2216#if defined(MBEDTLS_TIMING_C)
2217 idle( &server_fd, &timer, ret );
2218#else
2219 idle( &server_fd, ret );
2220#endif
2221 }
2222 }
2223
2224 if( ret <= 0 )
2225 {
2226 switch( ret )
2227 {
2228 case MBEDTLS_ERR_SSL_TIMEOUT:
2229 mbedtls_printf( " timeout\n" );
2230 if( retry_left-- > 0 )
2231 goto send_request;
2232 goto exit;
2233
2234 case MBEDTLS_ERR_SSL_PEER_CLOSE_NOTIFY:
2235 mbedtls_printf( " connection was closed gracefully\n" );
2236 ret = 0;
2237 goto close_notify;
2238
2239 default:
2240 mbedtls_printf( " mbedtls_ssl_read returned -0x%x\n", -ret );
2241 goto exit;
2242 }
2243 }
2244
2245 len = ret;
2246 buf[len] = '\0';
2247 mbedtls_printf( " %d bytes read\n\n%s", len, (char *) buf );
2248 ret = 0;
2249 }
2250
2251 /*
2252 * 7b. Simulate hard reset and reconnect from same port?
2253 */
2254 if( opt.reconnect_hard != 0 )
2255 {
2256 opt.reconnect_hard = 0;
2257
2258 mbedtls_printf( " . Restarting connection from same port..." );
2259 fflush( stdout );
2260
2261#if defined(MBEDTLS_X509_CRT_PARSE_C)
2262 memset( peer_crt_info, 0, sizeof( peer_crt_info ) );
2263#endif /* MBEDTLS_X509_CRT_PARSE_C */
2264
2265 if( ( ret = mbedtls_ssl_session_reset( &ssl ) ) != 0 )
2266 {
2267 mbedtls_printf( " failed\n ! mbedtls_ssl_session_reset returned -0x%x\n\n",
2268 -ret );
2269 goto exit;
2270 }
2271
2272 while( ( ret = mbedtls_ssl_handshake( &ssl ) ) != 0 )
2273 {
2274 if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
2275 ret != MBEDTLS_ERR_SSL_WANT_WRITE &&
2276 ret != MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
2277 {
2278 mbedtls_printf( " failed\n ! mbedtls_ssl_handshake returned -0x%x\n\n",
2279 -ret );
2280 goto exit;
2281 }
2282
2283 /* For event-driven IO, wait for socket to become available */
2284 if( opt.event == 1 /* level triggered IO */ )
2285 {
2286#if defined(MBEDTLS_TIMING_C)
2287 idle( &server_fd, &timer, ret );
2288#else
2289 idle( &server_fd, ret );
2290#endif
2291 }
2292 }
2293
2294 mbedtls_printf( " ok\n" );
2295
2296 goto send_request;
2297 }
2298
2299 /*
2300 * 7c. Continue doing data exchanges?
2301 */
2302 if( --opt.exchanges > 0 )
2303 goto send_request;
2304
2305 /*
2306 * 8. Done, cleanly close the connection
2307 */
2308close_notify:
2309 mbedtls_printf( " . Closing the connection..." );
2310 fflush( stdout );
2311
2312 /* No error checking, the connection might be closed already */
2313 do ret = mbedtls_ssl_close_notify( &ssl );
2314 while( ret == MBEDTLS_ERR_SSL_WANT_WRITE );
2315 ret = 0;
2316
2317 mbedtls_printf( " done\n" );
2318
2319 /*
2320 * 9. Reconnect?
2321 */
2322reconnect:
2323 if( opt.reconnect != 0 )
2324 {
2325 --opt.reconnect;
2326
2327 mbedtls_net_free( &server_fd );
2328
2329#if defined(MBEDTLS_TIMING_C)
2330 if( opt.reco_delay > 0 )
2331 mbedtls_net_usleep( 1000000 * opt.reco_delay );
2332#endif
2333
2334 mbedtls_printf( " . Reconnecting with saved session..." );
2335
2336#if defined(MBEDTLS_X509_CRT_PARSE_C)
2337 memset( peer_crt_info, 0, sizeof( peer_crt_info ) );
2338#endif /* MBEDTLS_X509_CRT_PARSE_C */
2339
2340 if( ( ret = mbedtls_ssl_session_reset( &ssl ) ) != 0 )
2341 {
2342 mbedtls_printf( " failed\n ! mbedtls_ssl_session_reset returned -0x%x\n\n",
2343 -ret );
2344 goto exit;
2345 }
2346
2347 if( ( ret = mbedtls_ssl_set_session( &ssl, &saved_session ) ) != 0 )
2348 {
2349 mbedtls_printf( " failed\n ! mbedtls_ssl_conf_session returned %d\n\n",
2350 ret );
2351 goto exit;
2352 }
2353
2354 if( ( ret = mbedtls_net_connect( &server_fd,
2355 opt.server_addr, opt.server_port,
2356 opt.transport == MBEDTLS_SSL_TRANSPORT_STREAM ?
2357 MBEDTLS_NET_PROTO_TCP : MBEDTLS_NET_PROTO_UDP ) ) != 0 )
2358 {
2359 mbedtls_printf( " failed\n ! mbedtls_net_connect returned -0x%x\n\n",
2360 -ret );
2361 goto exit;
2362 }
2363
2364 if( opt.nbio > 0 )
2365 ret = mbedtls_net_set_nonblock( &server_fd );
2366 else
2367 ret = mbedtls_net_set_block( &server_fd );
2368 if( ret != 0 )
2369 {
2370 mbedtls_printf( " failed\n ! net_set_(non)block() returned -0x%x\n\n",
2371 -ret );
2372 goto exit;
2373 }
2374
2375 while( ( ret = mbedtls_ssl_handshake( &ssl ) ) != 0 )
2376 {
2377 if( ret != MBEDTLS_ERR_SSL_WANT_READ &&
2378 ret != MBEDTLS_ERR_SSL_WANT_WRITE &&
2379 ret != MBEDTLS_ERR_SSL_CRYPTO_IN_PROGRESS )
2380 {
2381 mbedtls_printf( " failed\n ! mbedtls_ssl_handshake returned -0x%x\n\n",
2382 -ret );
2383 goto exit;
2384 }
2385 }
2386
2387 mbedtls_printf( " ok\n" );
2388
2389 goto send_request;
2390 }
2391
2392 /*
2393 * Cleanup and exit
2394 */
2395exit:
2396#ifdef MBEDTLS_ERROR_C
2397 if( ret != 0 )
2398 {
2399 char error_buf[100];
2400 mbedtls_strerror( ret, error_buf, 100 );
2401 mbedtls_printf("Last error was: -0x%X - %s\n\n", -ret, error_buf );
2402 }
2403#endif
2404
2405 mbedtls_net_free( &server_fd );
2406
2407#if defined(MBEDTLS_X509_CRT_PARSE_C)
2408 mbedtls_x509_crt_free( &clicert );
2409 mbedtls_x509_crt_free( &cacert );
2410 mbedtls_pk_free( &pkey );
2411#if defined(MBEDTLS_USE_PSA_CRYPTO)
2412 psa_destroy_key( key_slot );
2413#endif
2414#endif
2415 mbedtls_ssl_session_free( &saved_session );
2416 mbedtls_ssl_free( &ssl );
2417 mbedtls_ssl_config_free( &conf );
2418 mbedtls_ctr_drbg_free( &ctr_drbg );
2419 mbedtls_entropy_free( &entropy );
2420
2421#if defined(MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED) && \
2422 defined(MBEDTLS_USE_PSA_CRYPTO)
2423 if( opt.psk_opaque != 0 )
2424 {
2425 /* This is ok even if the slot hasn't been
2426 * initialized (we might have jumed here
2427 * immediately because of bad cmd line params,
2428 * for example). */
2429 status = psa_destroy_key( slot );
2430 if( status != PSA_SUCCESS )
2431 {
2432 mbedtls_printf( "Failed to destroy key slot %u - error was %d",
2433 (unsigned) slot, (int) status );
2434 if( ret == 0 )
2435 ret = MBEDTLS_ERR_SSL_HW_ACCEL_FAILED;
2436 }
2437 }
2438#endif /* MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED &&
2439 MBEDTLS_USE_PSA_CRYPTO */
2440
2441#if defined(_WIN32)
2442 mbedtls_printf( " + Press Enter to exit this program.\n" );
2443 fflush( stdout ); getchar();
2444#endif
2445
2446 // Shell can not handle large exit numbers -> 1 for errors
2447 if( ret < 0 )
2448 ret = 1;
2449
2450 return( ret );
2451}
2452#endif /* MBEDTLS_BIGNUM_C && MBEDTLS_ENTROPY_C && MBEDTLS_SSL_TLS_C &&
2453 MBEDTLS_SSL_CLI_C && MBEDTLS_NET_C && MBEDTLS_RSA_C &&
2454 MBEDTLS_CTR_DRBG_C MBEDTLS_TIMING_C */