1
0
mirror of https://github.com/RIOT-OS/RIOT.git synced 2025-01-18 12:52:44 +01:00

Merge pull request #20478 from mariemC/Mariem/dtls_default_user_params_fix

pkg/tinydtls: enforce the default dtls user params to be configurable
This commit is contained in:
benpicco 2024-03-26 17:48:08 +00:00 committed by GitHub
commit 222a2e1d99
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 26 additions and 1 deletions

View File

@ -60,7 +60,8 @@ static int _read(struct dtls_context_t *ctx, session_t *session, uint8_t *buf,
size_t len); size_t len);
static int _event(struct dtls_context_t *ctx, session_t *session, static int _event(struct dtls_context_t *ctx, session_t *session,
dtls_alert_level_t level, unsigned short code); dtls_alert_level_t level, unsigned short code);
static void _get_user_parameters(struct dtls_context_t *ctx,
session_t *session, dtls_user_parameters_t *user_parameters);
static void _session_to_ep(const session_t *session, sock_udp_ep_t *ep); static void _session_to_ep(const session_t *session, sock_udp_ep_t *ep);
static void _ep_to_session(const sock_udp_ep_t *ep, session_t *session); static void _ep_to_session(const sock_udp_ep_t *ep, session_t *session);
static uint32_t _update_timeout(uint32_t start, uint32_t timeout); static uint32_t _update_timeout(uint32_t start, uint32_t timeout);
@ -69,6 +70,7 @@ static dtls_handler_t _dtls_handler = {
.event = _event, .event = _event,
.write = _write, .write = _write,
.read = _read, .read = _read,
.get_user_parameters = _get_user_parameters,
#ifdef CONFIG_DTLS_PSK #ifdef CONFIG_DTLS_PSK
.get_psk_info = _get_psk_info, .get_psk_info = _get_psk_info,
#endif /* CONFIG_DTLS_PSK */ #endif /* CONFIG_DTLS_PSK */
@ -176,6 +178,15 @@ static int _event(struct dtls_context_t *ctx, session_t *session,
return 0; return 0;
} }
static void _get_user_parameters(struct dtls_context_t *ctx,
session_t *session, dtls_user_parameters_t *user_parameters) {
(void) ctx;
(void) session;
user_parameters->force_extended_master_secret = CONFIG_DTLS_FORCE_EXTENDED_MASTER_SECRET;
user_parameters->force_renegotiation_info = CONFIG_DTLS_FORCE_RENEGOTIATION_INFO;
}
#ifdef CONFIG_DTLS_PSK #ifdef CONFIG_DTLS_PSK
static int _get_psk_info(struct dtls_context_t *ctx, const session_t *session, static int _get_psk_info(struct dtls_context_t *ctx, const session_t *session,
dtls_credentials_type_t type, dtls_credentials_type_t type,

View File

@ -581,6 +581,20 @@ extern "C" {
*/ */
#define SOCK_DTLS_HANDSHAKE (EXDEV) #define SOCK_DTLS_HANDSHAKE (EXDEV)
/**
* @brief Force extended master secret extension
*/
#ifndef CONFIG_DTLS_FORCE_EXTENDED_MASTER_SECRET
#define CONFIG_DTLS_FORCE_EXTENDED_MASTER_SECRET 1
#endif
/**
* @brief Force renegotiation info extension
*/
#ifndef CONFIG_DTLS_FORCE_RENEGOTIATION_INFO
#define CONFIG_DTLS_FORCE_RENEGOTIATION_INFO 1
#endif
/** /**
* @brief DTLS version number * @brief DTLS version number
* @anchor sock_dtls_prot_version * @anchor sock_dtls_prot_version