MBEDTLS_SSL_DEBUG_MSG( 1, ( "bad client hello message" ) ); 00114 return( MBEDTLS_ERR_SSL_BAD_HS_CLIENT_HELLO ); 00115 } 00116 00117 if( p[0] == MBEDTLS_TLS_EXT_SERVERNAME_HOSTNAME ) 00118 { 00119 ret = ssl->
00127 ssl->handshake->retransmit_timeout ) ); 00128 00129 return( 0 ); 00130 } 00131 00132 static void ssl_reset_retransmit_timeout( mbedtls_ssl_context *ssl ) 00133 { 00134 ssl->handshake->retransmit_timeout = ssl->conf->hs_timeout_min; 00135 MBEDTLS_SSL_DEBUG_MSG( 3, ( "update ...
SSL_accept:SSLv3/TLS write session ticket SSL_accept:SSLv3/TLS write change cipher spec SSL_accept:SSLv3/TLS write finished FILE:index.html
MBEDTLS_SSL_DEBUG_MSG( 1, ( "ciphersuite info for %04x not found", i ) ); mbedtls_ssl_send_alert_message( ssl, MBEDTLS_SSL_ALERT_LEVEL_FATAL, MBEDTLS_SSL_ALERT_MSG_INTERNAL_ERROR ); return( MBEDTLS_ERR_SSL_BAD_INPUT_DATA );
MBEDTLS_SSL_DEBUG_MSG(1, ("Only version 1.2 supported")); @@ -4530,6 +4532,14 @@ int mbedtls_ssl_context_save(mbedtls_ssl_context *ssl, @@ -5210,6 +5212,14 @@ int mbedtls_ssl_context_save(mbedtls_ssl_context *ssl, } #endif /* MBEDTLS_SSL_ALPN */ @@ -34,7 +34,7 @@ ...
I have attached my debug logs. Here is a snippet of where it always fails. But please see logs for full log. W (87937) mbedtls: ssl_tls.c:7330 x509_verify_cert() returned -9984 (-0x2700)I (87937) mbedtls: ssl_msg.c:5103 => send alert message...
#include "mbedtls/ssl.h" #include "mbedtls/cipher.h" #if defined(MBEDTLS_USE_PSA_CRYPTO) #include "psa/crypto.h" #endif #if defined(MBEDTLS_MD5_C) #include "mbedtls/md5.h" #endif #if defined(MBEDTLS_SHA1_C) #include "mbedtls/sha1.h" ...
MBEDTLS_SSL_VERIFY_NONE:不检查对等证书(也就是无认证)。(服务器默认值,如果客户端配置为此选项那么连接是不安全的;如果服务器配置为此值那么是单向认证。 MBEDTLS_SSL_VERIFY_OPTIONAL :检查对等证书(也就是单向认证),但即使验证失败,握手仍将继续;可以在握手完成后调用mbedtls_ssl_get_verify_result()查看验证结果...
static int ssl_write_client_hello( ssl_context *ssl ) { int ret, i, n; unsigned char *buf; unsigned char *p; time_t t; SSL_DEBUG_MSG( 2, ( "=> write client hello" ) ); ssl->major_ver = SSL_MAJOR_VERSION_3; ssl->minor_ver = SSL_MINOR_VERSION_0; ssl->max...
I (31961) mbedtls: ssl_cli.c:999 => write client hello I (31970) mbedtls: ssl_msg.c:2542 => write handshake message I (31974) mbedtls: ssl_msg.c:2701 => write record I (31981) mbedtls: ssl_msg.c:2102 => flush output