mbedtls_ssl_context::session_negotiate field

*p++ = (unsigned char) ssl->session_negotiate->id_len;

ssl_client.c:507

memcpy(p, ssl->session_negotiate->id, ssl->session_negotiate->id_len);

ssl_client.c:508

p += ssl->session_negotiate->id_len;

ssl_client.c:509

ssl_prepare_client_hello()

mbedtls_ssl_session *session_negotiate = ssl->session_negotiate;

ssl_client.c:740

ssl->session_in = ssl->session_negotiate;

ssl_msg.c:5236

mbedtls_ssl_parse_change_cipher_spec()

if (ssl->session_negotiate) {

ssl_tls.c:1059

mbedtls_ssl_session_free(ssl->session_negotiate);

ssl_tls.c:1060

if (ssl->session_negotiate == NULL) {

ssl_tls.c:1076

ssl->session_negotiate = mbedtls_calloc(1, sizeof(mbedtls_ssl_session));

ssl_tls.c:1077

ssl->session_negotiate == NULL) {

ssl_tls.c:1095

mbedtls_free(ssl->session_negotiate);

ssl_tls.c:1106

ssl->session_negotiate = NULL;

ssl_tls.c:1107

mbedtls_ssl_session_init(ssl->session_negotiate);

ssl_tls.c:1123

mbedtls_ssl_set_session()

ssl->session_negotiate == NULL ||

ssl_tls.c:1729

if ((ret = mbedtls_ssl_session_copy(ssl->session_negotiate,

ssl_tls.c:1762

mbedtls_ssl_set_session()

if (ssl->session_negotiate != NULL) {

ssl_tls.c:3086

mbedtls_ssl_get_verify_result()

return ssl->session_negotiate->verify_result;

ssl_tls.c:3087

mbedtls_ssl_get_verify_result()

if (ssl->session_negotiate != NULL) {

ssl_tls.c:3182

mbedtls_ssl_get_input_max_frag_len()

read_mfl = ssl_mfl_code_to_length(ssl->session_negotiate->mfl_code);

ssl_tls.c:3183

mbedtls_ssl_get_input_max_frag_len()

if (ssl->session_negotiate != NULL &&

ssl_tls.c:3208

ssl_mfl_code_to_length(ssl->session_negotiate->mfl_code) < max_len) {

ssl_tls.c:3209

max_len = ssl_mfl_code_to_length(ssl->session_negotiate->mfl_code);

ssl_tls.c:3210

mbedtls_ssl_session_free(ssl->session_negotiate);

ssl_tls.c:5559

mbedtls_ssl_free()

mbedtls_free(ssl->session_negotiate);

ssl_tls.c:5560

mbedtls_ssl_free()

ssl->session_negotiate->master,

ssl_tls.c:7183

ssl->session_negotiate->ciphersuite,

ssl_tls.c:7203

ssl->session_negotiate->master,

ssl_tls.c:7204

ssl->session_negotiate->encrypt_then_mac,

ssl_tls.c:7206

ssl_parse_certificate_coordinate()

ssl->session_negotiate->verify_result =

ssl_tls.c:7883

ssl->session_negotiate->verify_result = MBEDTLS_X509_BADCERT_MISSING;

ssl_tls.c:7988

ssl_clear_peer_cert(ssl->session_negotiate);

ssl_tls.c:8000

ssl->session_negotiate->peer_cert = chain;

ssl_tls.c:8072

ssl_calc_finished_tls_generic()

mbedtls_ssl_session *session = ssl->session_negotiate;

ssl_tls.c:8118

ssl->session_negotiate->encrypt_then_mac =

ssl_tls.c:8260

ssl->session = ssl->session_negotiate;

ssl_tls.c:8267

ssl->session_negotiate = NULL;

ssl_tls.c:8268

mbedtls_ssl_write_finished()

ssl->session_out = ssl->session_negotiate;

ssl_tls.c:8388

&ssl->session_negotiate->verify_result,

ssl_tls.c:9853

ssl->session_negotiate->verify_result |= MBEDTLS_X509_BADCERT_BAD_KEY;

ssl_tls.c:9884

&ssl->session_negotiate->verify_result) != 0) {

ssl_tls.c:9897

if (ssl->session_negotiate->verify_result & MBEDTLS_X509_BADCERT_OTHER) {

ssl_tls.c:9931

} else if (ssl->session_negotiate->verify_result & MBEDTLS_X509_BADCERT_CN_MISMATCH) {

ssl_tls.c:9933

} else if (ssl->session_negotiate->verify_result & MBEDTLS_X509_BADCERT_KEY_USAGE) {

ssl_tls.c:9935

} else if (ssl->session_negotiate->verify_result & MBEDTLS_X509_BADCERT_EXT_KEY_USAGE) {

ssl_tls.c:9937

} else if (ssl->session_negotiate->verify_result & MBEDTLS_X509_BADCERT_BAD_PK) {

ssl_tls.c:9939

} else if (ssl->session_negotiate->verify_result & MBEDTLS_X509_BADCERT_BAD_KEY) {

ssl_tls.c:9941

} else if (ssl->session_negotiate->verify_result & MBEDTLS_X509_BADCERT_EXPIRED) {

ssl_tls.c:9943

} else if (ssl->session_negotiate->verify_result & MBEDTLS_X509_BADCERT_REVOKED) {

ssl_tls.c:9945

} else if (ssl->session_negotiate->verify_result & MBEDTLS_X509_BADCERT_NOT_TRUSTED) {

ssl_tls.c:9947

size_t tlen = ssl->session_negotiate->ticket_len;

ssl_tls12_client.c:363

if (ssl->session_negotiate->ticket == NULL || tlen == 0) {

ssl_tls12_client.c:386

memcpy(p, ssl->session_negotiate->ticket, tlen);

ssl_tls12_client.c:393

ssl->session_negotiate->encrypt_then_mac = MBEDTLS_SSL_ETM_ENABLED;

ssl_tls12_client.c:754

ssl->session_negotiate->tls_version = ssl->tls_version;

ssl_tls12_client.c:1272

ssl->session_negotiate->endpoint = ssl->conf->endpoint;

ssl_tls12_client.c:1273

ssl->session_negotiate->ciphersuite != i ||

ssl_tls12_client.c:1372

ssl->session_negotiate->id_len != n ||

ssl_tls12_client.c:1373

memcmp(ssl->session_negotiate->id, buf + 35, n) != 0) {

ssl_tls12_client.c:1374

ssl->session_negotiate->start = mbedtls_time(NULL);

ssl_tls12_client.c:1378

ssl->session_negotiate->ciphersuite = i;

ssl_tls12_client.c:1380

ssl->session_negotiate->id_len = n;

ssl_tls12_client.c:1381

memcpy(ssl->session_negotiate->id, buf + 35, n);

ssl_tls12_client.c:1382

ssl->session_negotiate->ciphersuite) {

ssl_tls12_client.c:1409

ssl->session_negotiate->ciphersuite);

ssl_tls12_client.c:1415

ssl_write_encrypted_pms()

if (ssl->session_negotiate->peer_cert == NULL) {

ssl_tls12_client.c:1946

peer_pk = &ssl->session_negotiate->peer_cert->pk;

ssl_tls12_client.c:1951

ssl_write_encrypted_pms()

if (ssl->session_negotiate->peer_cert == NULL) {

ssl_tls12_client.c:1996

ssl_get_ecdh_params_from_cert()

peer_pk = &ssl->session_negotiate->peer_cert->pk;

ssl_tls12_client.c:2001

ssl_get_ecdh_params_from_cert()

if (ssl->session_negotiate->peer_cert == NULL) {

ssl_tls12_client.c:2310

ssl_parse_server_key_exchange()

peer_pk = &ssl->session_negotiate->peer_cert->pk;

ssl_tls12_client.c:2315

ssl_parse_server_key_exchange()

mbedtls_zeroize_and_free(ssl->session_negotiate->ticket,

ssl_tls12_client.c:3453

ssl->session_negotiate->ticket_len);

ssl_tls12_client.c:3454

ssl->session_negotiate->ticket = NULL;

ssl_tls12_client.c:3455

ssl->session_negotiate->ticket_len = 0;

ssl_tls12_client.c:3456

ssl->session_negotiate->ticket = ticket;

ssl_tls12_client.c:3467

ssl->session_negotiate->ticket_len = ticket_len;

ssl_tls12_client.c:3468

ssl->session_negotiate->ticket_lifetime = lifetime;

ssl_tls12_client.c:3469

ssl->session_negotiate->id_len = 0;

ssl_tls12_client.c:3477

ssl_parse_max_fragment_length_ext()

ssl->session_negotiate->mfl_code = buf[0];

ssl_tls12_server.c:351

ssl->session_negotiate->encrypt_then_mac = MBEDTLS_SSL_ETM_ENABLED;

ssl_tls12_server.c:438

session.id_len = ssl->session_negotiate->id_len;

ssl_tls12_server.c:522

memcpy(&session.id, ssl->session_negotiate->id, session.id_len);

ssl_tls12_server.c:523

mbedtls_ssl_session_free(ssl->session_negotiate);

ssl_tls12_server.c:525

memcpy(ssl->session_negotiate, &session, sizeof(mbedtls_ssl_session));

ssl_tls12_server.c:526

ssl->session_negotiate->tls_version = ssl->tls_version;

ssl_tls12_server.c:1165

ssl->session_negotiate->endpoint = ssl->conf->endpoint;

ssl_tls12_server.c:1166

if (sess_len > sizeof(ssl->session_negotiate->id) ||

ssl_tls12_server.c:1187

ssl->session_negotiate->id_len = sess_len;

ssl_tls12_server.c:1197

memset(ssl->session_negotiate->id, 0,

ssl_tls12_server.c:1198

sizeof(ssl->session_negotiate->id));

ssl_tls12_server.c:1199

memcpy(ssl->session_negotiate->id, buf + 35,

ssl_tls12_server.c:1200

ssl->session_negotiate->id_len);

ssl_tls12_server.c:1201

ssl->session_negotiate->ciphersuite = ciphersuites[i];

ssl_tls12_server.c:1658

ssl->session_negotiate->ciphersuite);

ssl_tls12_server.c:1748

ssl->session_negotiate->encrypt_then_mac = MBEDTLS_SSL_ETM_DISABLED;

ssl_tls12_server.c:1750

ssl->session_negotiate->encrypt_then_mac,

ssl_tls12_server.c:1754

ssl->session_negotiate->encrypt_then_mac = MBEDTLS_SSL_ETM_DISABLED;

ssl_tls12_server.c:1758

if (ssl->session_negotiate->encrypt_then_mac == MBEDTLS_SSL_ETM_DISABLED) {

ssl_tls12_server.c:1762

ssl_write_max_fragment_length_ext()

if (ssl->session_negotiate->mfl_code == MBEDTLS_SSL_MAX_FRAG_LEN_NONE) {

ssl_tls12_server.c:1872

*p++ = ssl->session_negotiate->mfl_code;

ssl_tls12_server.c:1885

ssl_write_max_fragment_length_ext()

mbedtls_ssl_session * const session = ssl->session_negotiate;

ssl_tls12_server.c:2114

ssl_handle_id_based_session_resumption()

ssl->session_negotiate->start = mbedtls_time(NULL);

ssl_tls12_server.c:2260

ssl->session_negotiate->id_len = n = 0;

ssl_tls12_server.c:2265

memset(ssl->session_negotiate->id, 0, 32);

ssl_tls12_server.c:2266

ssl->session_negotiate->id_len = n = 32;

ssl_tls12_server.c:2270

if ((ret = ssl->conf->f_rng(ssl->conf->p_rng, ssl->session_negotiate->id,

ssl_tls12_server.c:2271

n = ssl->session_negotiate->id_len;

ssl_tls12_server.c:2280

*p++ = (unsigned char) ssl->session_negotiate->id_len;

ssl_tls12_server.c:2297

memcpy(p, ssl->session_negotiate->id, ssl->session_negotiate->id_len);

ssl_tls12_server.c:2298

p += ssl->session_negotiate->id_len;

ssl_tls12_server.c:2299

MBEDTLS_PUT_UINT16_BE(ssl->session_negotiate->ciphersuite, p, 0);

ssl_tls12_server.c:2306

mbedtls_ssl_ciphersuite_from_id(ssl->session_negotiate->ciphersuite);

ssl_tls12_server.c:2350

ssl_parse_encrypted_pms()

ssl->session_negotiate->tls_version);

ssl_tls12_server.c:3560

if (ssl->session_negotiate->peer_cert == NULL) {

ssl_tls12_server.c:4126

if (ssl->session_negotiate->peer_cert == NULL) {

ssl_tls12_server.c:4160

peer_pk = &ssl->session_negotiate->peer_cert->pk;

ssl_tls12_server.c:4164

ssl_write_new_session_ticket()

ssl->session_negotiate->ticket_creation_time = mbedtls_ms_time();

ssl_tls12_server.c:4287

ssl->session_negotiate,

ssl_tls12_server.c:4290

ssl_write_new_session_ticket()

Call Tree

All items filtered out

Data Use

mbedtls_ssl_context::session_negotiate is written by 2 functions and is read by 34 functions:

mbedtls_ssl_context::session_negotiate

ssl_prepare_client_hello()

mbedtls_ssl_parse_change_cipher_spec()

mbedtls_ssl_set_session()

mbedtls_ssl_get_verify_result()

mbedtls_ssl_get_input_max_frag_len()

mbedtls_ssl_free()

ssl_parse_certificate_coordinate()

ssl_calc_finished_tls_generic()

mbedtls_ssl_write_finished()

ssl_write_encrypted_pms()

ssl_get_ecdh_params_from_cert()

ssl_parse_server_key_exchange()

ssl_parse_max_fragment_length_ext()

ssl_write_max_fragment_length_ext()

ssl_handle_id_based_session_resumption()

ssl_parse_encrypted_pms()