lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-07-28 00:21:48 +03:00
Code Activity

Merge pull request #6945 from lpy4105/issue/6935/ticket_flags-kex-mode-determination

Browse Source 
TLS 1.3: SRV: Check ticket_flags on kex mode determination when resumption
This commit is contained in:
Tom Cosgrove
2023-11-07 09:26:21 +00:00
committed by GitHub
parent b578514b03 4ebf86e780
commit 4122c16abd
4 changed files with 77 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
library/ssl_misc.h
View File

@ -2800,6 +2800,26 @@ static inline unsigned int mbedtls_ssl_session_get_ticket_flags(
(flags & MBEDTLS_SSL_TLS1_3_TICKET_FLAGS_MASK);
}
static inline unsigned int mbedtls_ssl_session_check_ticket_flags(
mbedtls_ssl_session *session, unsigned int flags)
{
return mbedtls_ssl_session_get_ticket_flags(session, flags) == 0;
}
static inline unsigned int mbedtls_ssl_session_ticket_allow_psk(
mbedtls_ssl_session *session)
{
return !mbedtls_ssl_session_check_ticket_flags(session,
MBEDTLS_SSL_TLS1_3_TICKET_ALLOW_PSK_RESUMPTION);
}
static inline unsigned int mbedtls_ssl_session_ticket_allow_psk_ephemeral(
mbedtls_ssl_session *session)
{
return !mbedtls_ssl_session_check_ticket_flags(session,
MBEDTLS_SSL_TLS1_3_TICKET_ALLOW_PSK_EPHEMERAL_RESUMPTION);
}
static inline void mbedtls_ssl_session_set_ticket_flags(
mbedtls_ssl_session *session, unsigned int flags)
{