TianoCore EDK2 master
Loading...
Searching...
No Matches
TlsProtocol.c
Go to the documentation of this file.
1
10#include "TlsImpl.h"
11
12EFI_TLS_PROTOCOL mTlsProtocol = {
13 TlsSetSessionData,
14 TlsGetSessionData,
15 TlsBuildResponsePacket,
16 TlsProcessPacket
17};
18
45EFI_STATUS
46EFIAPI
47TlsSetSessionData (
48 IN EFI_TLS_PROTOCOL *This,
49 IN EFI_TLS_SESSION_DATA_TYPE DataType,
50 IN VOID *Data,
51 IN UINTN DataSize
52 )
53{
54 EFI_STATUS Status;
55 TLS_INSTANCE *Instance;
56 UINT16 *CipherId;
57 CONST EFI_TLS_CIPHER *TlsCipherList;
58 UINTN CipherCount;
59 CONST EFI_TLS_VERIFY_HOST *TlsVerifyHost;
60 EFI_TLS_VERIFY VerifyMethod;
61 UINTN VerifyMethodSize;
62 UINTN Index;
63
64 EFI_TPL OldTpl;
65
66 Status = EFI_SUCCESS;
67 CipherId = NULL;
68 VerifyMethodSize = sizeof (EFI_TLS_VERIFY);
69
70 if ((This == NULL) || (Data == NULL) || (DataSize == 0)) {
71 return EFI_INVALID_PARAMETER;
72 }
73
74 OldTpl = gBS->RaiseTPL (TPL_CALLBACK);
75
76 Instance = TLS_INSTANCE_FROM_PROTOCOL (This);
77
78 if ((DataType != EfiTlsSessionState) && (Instance->TlsSessionState != EfiTlsSessionNotStarted)) {
79 Status = EFI_NOT_READY;
80 goto ON_EXIT;
81 }
82
83 switch (DataType) {
84 //
85 // Session Configuration
86 //
87 case EfiTlsVersion:
88 if (DataSize != sizeof (EFI_TLS_VERSION)) {
89 Status = EFI_INVALID_PARAMETER;
90 goto ON_EXIT;
91 }
92
93 Status = TlsSetVersion (Instance->TlsConn, ((EFI_TLS_VERSION *)Data)->Major, ((EFI_TLS_VERSION *)Data)->Minor);
94 break;
95 case EfiTlsConnectionEnd:
96 if (DataSize != sizeof (EFI_TLS_CONNECTION_END)) {
97 Status = EFI_INVALID_PARAMETER;
98 goto ON_EXIT;
99 }
100
101 Status = TlsSetConnectionEnd (Instance->TlsConn, *((EFI_TLS_CONNECTION_END *)Data));
102 break;
103 case EfiTlsCipherList:
104 if (DataSize % sizeof (EFI_TLS_CIPHER) != 0) {
105 Status = EFI_INVALID_PARAMETER;
106 goto ON_EXIT;
107 }
108
109 CipherId = AllocatePool (DataSize);
110 if (CipherId == NULL) {
111 Status = EFI_OUT_OF_RESOURCES;
112 goto ON_EXIT;
113 }
114
115 TlsCipherList = (CONST EFI_TLS_CIPHER *)Data;
116 CipherCount = DataSize / sizeof (EFI_TLS_CIPHER);
117 for (Index = 0; Index < CipherCount; Index++) {
118 CipherId[Index] = ((TlsCipherList[Index].Data1 << 8) |
119 TlsCipherList[Index].Data2);
120 }
121
122 Status = TlsSetCipherList (Instance->TlsConn, CipherId, CipherCount);
123
124 FreePool (CipherId);
125 break;
126 case EfiTlsCompressionMethod:
127 //
128 // TLS seems only define one CompressionMethod.null, which specifies that data exchanged via the
129 // record protocol will not be compressed.
130 // More information from OpenSSL: http://www.openssl.org/docs/manmaster/ssl/SSL_COMP_add_compression_method.html
131 // The TLS RFC does however not specify compression methods or their corresponding identifiers,
132 // so there is currently no compatible way to integrate compression with unknown peers.
133 // It is therefore currently not recommended to integrate compression into applications.
134 // Applications for non-public use may agree on certain compression methods.
135 // Using different compression methods with the same identifier will lead to connection failure.
136 //
137 for (Index = 0; Index < DataSize / sizeof (EFI_TLS_COMPRESSION); Index++) {
138 Status = TlsSetCompressionMethod (*((UINT8 *)Data + Index));
139 if (EFI_ERROR (Status)) {
140 break;
141 }
142 }
143
144 break;
145 case EfiTlsExtensionData:
146 Status = EFI_UNSUPPORTED;
147 goto ON_EXIT;
148 case EfiTlsVerifyMethod:
149 if (DataSize != sizeof (EFI_TLS_VERIFY)) {
150 Status = EFI_INVALID_PARAMETER;
151 goto ON_EXIT;
152 }
153
154 TlsSetVerify (Instance->TlsConn, *((UINT32 *)Data));
155 break;
156 case EfiTlsVerifyHost:
157 if (DataSize != sizeof (EFI_TLS_VERIFY_HOST)) {
158 Status = EFI_INVALID_PARAMETER;
159 goto ON_EXIT;
160 }
161
162 TlsVerifyHost = (CONST EFI_TLS_VERIFY_HOST *)Data;
163
164 if (((TlsVerifyHost->Flags & EFI_TLS_VERIFY_FLAG_ALWAYS_CHECK_SUBJECT) != 0) &&
165 ((TlsVerifyHost->Flags & EFI_TLS_VERIFY_FLAG_NEVER_CHECK_SUBJECT) != 0))
166 {
167 Status = EFI_INVALID_PARAMETER;
168 goto ON_EXIT;
169 }
170
171 if (((TlsVerifyHost->Flags & EFI_TLS_VERIFY_FLAG_NO_WILDCARDS) != 0) &&
172 (((TlsVerifyHost->Flags & EFI_TLS_VERIFY_FLAG_NO_PARTIAL_WILDCARDS) != 0) ||
173 ((TlsVerifyHost->Flags & EFI_TLS_VERIFY_FLAG_MULTI_LABEL_WILDCARDS) != 0)))
174 {
175 Status = EFI_INVALID_PARAMETER;
176 goto ON_EXIT;
177 }
178
179 Status = This->GetSessionData (This, EfiTlsVerifyMethod, &VerifyMethod, &VerifyMethodSize);
180 if (EFI_ERROR (Status)) {
181 goto ON_EXIT;
182 }
183
184 if ((VerifyMethod & EFI_TLS_VERIFY_PEER) == 0) {
185 Status = EFI_INVALID_PARAMETER;
186 goto ON_EXIT;
187 }
188
189 Status = TlsSetVerifyHost (Instance->TlsConn, TlsVerifyHost->Flags, TlsVerifyHost->HostName);
190
191 break;
192 case EfiTlsSessionID:
193 if (DataSize != sizeof (EFI_TLS_SESSION_ID)) {
194 Status = EFI_INVALID_PARAMETER;
195 goto ON_EXIT;
196 }
197
198 Status = TlsSetSessionId (
199 Instance->TlsConn,
200 ((EFI_TLS_SESSION_ID *)Data)->Data,
201 ((EFI_TLS_SESSION_ID *)Data)->Length
202 );
203 break;
204 case EfiTlsSessionState:
205 if (DataSize != sizeof (EFI_TLS_SESSION_STATE)) {
206 Status = EFI_INVALID_PARAMETER;
207 goto ON_EXIT;
208 }
209
210 Instance->TlsSessionState = *(EFI_TLS_SESSION_STATE *)Data;
211 break;
212 //
213 // Session information
214 //
215 case EfiTlsClientRandom:
216 Status = EFI_ACCESS_DENIED;
217 break;
218 case EfiTlsServerRandom:
219 Status = EFI_ACCESS_DENIED;
220 break;
221 case EfiTlsKeyMaterial:
222 Status = EFI_ACCESS_DENIED;
223 break;
224 //
225 // Unsupported type.
226 //
227 default:
228 Status = EFI_UNSUPPORTED;
229 }
230
231ON_EXIT:
232 gBS->RestoreTPL (OldTpl);
233 return Status;
234}
235
259EFI_STATUS
260EFIAPI
261TlsGetSessionData (
262 IN EFI_TLS_PROTOCOL *This,
263 IN EFI_TLS_SESSION_DATA_TYPE DataType,
264 IN OUT VOID *Data OPTIONAL,
265 IN OUT UINTN *DataSize
266 )
267{
268 EFI_STATUS Status;
269 TLS_INSTANCE *Instance;
270
271 EFI_TPL OldTpl;
272
273 Status = EFI_SUCCESS;
274
275 if ((This == NULL) || (DataSize == NULL) || ((Data == NULL) && (*DataSize != 0))) {
276 return EFI_INVALID_PARAMETER;
277 }
278
279 OldTpl = gBS->RaiseTPL (TPL_CALLBACK);
280
281 Instance = TLS_INSTANCE_FROM_PROTOCOL (This);
282
283 if ((Instance->TlsSessionState == EfiTlsSessionNotStarted) &&
284 ((DataType == EfiTlsSessionID) || (DataType == EfiTlsClientRandom) ||
285 (DataType == EfiTlsServerRandom) || (DataType == EfiTlsKeyMaterial)))
286 {
287 Status = EFI_NOT_READY;
288 goto ON_EXIT;
289 }
290
291 switch (DataType) {
292 case EfiTlsVersion:
293 if (*DataSize < sizeof (EFI_TLS_VERSION)) {
294 *DataSize = sizeof (EFI_TLS_VERSION);
295 Status = EFI_BUFFER_TOO_SMALL;
296 goto ON_EXIT;
297 }
298
299 *DataSize = sizeof (EFI_TLS_VERSION);
300 *((UINT16 *)Data) = HTONS (TlsGetVersion (Instance->TlsConn));
301 break;
302 case EfiTlsConnectionEnd:
303 if (*DataSize < sizeof (EFI_TLS_CONNECTION_END)) {
304 *DataSize = sizeof (EFI_TLS_CONNECTION_END);
305 Status = EFI_BUFFER_TOO_SMALL;
306 goto ON_EXIT;
307 }
308
309 *DataSize = sizeof (EFI_TLS_CONNECTION_END);
310 *((UINT8 *)Data) = TlsGetConnectionEnd (Instance->TlsConn);
311 break;
312 case EfiTlsCipherList:
313 //
314 // Get the current session cipher suite.
315 //
316 if (*DataSize < sizeof (EFI_TLS_CIPHER)) {
317 *DataSize = sizeof (EFI_TLS_CIPHER);
318 Status = EFI_BUFFER_TOO_SMALL;
319 goto ON_EXIT;
320 }
321
322 *DataSize = sizeof (EFI_TLS_CIPHER);
323 Status = TlsGetCurrentCipher (Instance->TlsConn, (UINT16 *)Data);
324 *((UINT16 *)Data) = HTONS (*((UINT16 *)Data));
325 break;
326 case EfiTlsCompressionMethod:
327 //
328 // Get the current session compression method.
329 //
330 if (*DataSize < sizeof (EFI_TLS_COMPRESSION)) {
331 *DataSize = sizeof (EFI_TLS_COMPRESSION);
332 Status = EFI_BUFFER_TOO_SMALL;
333 goto ON_EXIT;
334 }
335
336 *DataSize = sizeof (EFI_TLS_COMPRESSION);
337 Status = TlsGetCurrentCompressionId (Instance->TlsConn, (UINT8 *)Data);
338 break;
339 case EfiTlsExtensionData:
340 Status = EFI_UNSUPPORTED;
341 goto ON_EXIT;
342 case EfiTlsVerifyMethod:
343 if (*DataSize < sizeof (EFI_TLS_VERIFY)) {
344 *DataSize = sizeof (EFI_TLS_VERIFY);
345 Status = EFI_BUFFER_TOO_SMALL;
346 goto ON_EXIT;
347 }
348
349 *DataSize = sizeof (EFI_TLS_VERIFY);
350 *((UINT32 *)Data) = TlsGetVerify (Instance->TlsConn);
351 break;
352 case EfiTlsSessionID:
353 if (*DataSize < sizeof (EFI_TLS_SESSION_ID)) {
354 *DataSize = sizeof (EFI_TLS_SESSION_ID);
355 Status = EFI_BUFFER_TOO_SMALL;
356 goto ON_EXIT;
357 }
358
359 *DataSize = sizeof (EFI_TLS_SESSION_ID);
360 Status = TlsGetSessionId (
361 Instance->TlsConn,
362 ((EFI_TLS_SESSION_ID *)Data)->Data,
363 &(((EFI_TLS_SESSION_ID *)Data)->Length)
364 );
365 break;
366 case EfiTlsSessionState:
367 if (*DataSize < sizeof (EFI_TLS_SESSION_STATE)) {
368 *DataSize = sizeof (EFI_TLS_SESSION_STATE);
369 Status = EFI_BUFFER_TOO_SMALL;
370 goto ON_EXIT;
371 }
372
373 *DataSize = sizeof (EFI_TLS_SESSION_STATE);
374 CopyMem (Data, &Instance->TlsSessionState, *DataSize);
375 break;
376 case EfiTlsClientRandom:
377 if (*DataSize < sizeof (EFI_TLS_RANDOM)) {
378 *DataSize = sizeof (EFI_TLS_RANDOM);
379 Status = EFI_BUFFER_TOO_SMALL;
380 goto ON_EXIT;
381 }
382
383 *DataSize = sizeof (EFI_TLS_RANDOM);
384 TlsGetClientRandom (Instance->TlsConn, (UINT8 *)Data);
385 break;
386 case EfiTlsServerRandom:
387 if (*DataSize < sizeof (EFI_TLS_RANDOM)) {
388 *DataSize = sizeof (EFI_TLS_RANDOM);
389 Status = EFI_BUFFER_TOO_SMALL;
390 goto ON_EXIT;
391 }
392
393 *DataSize = sizeof (EFI_TLS_RANDOM);
394 TlsGetServerRandom (Instance->TlsConn, (UINT8 *)Data);
395 break;
396 case EfiTlsKeyMaterial:
397 if (*DataSize < sizeof (EFI_TLS_MASTER_SECRET)) {
398 *DataSize = sizeof (EFI_TLS_MASTER_SECRET);
399 Status = EFI_BUFFER_TOO_SMALL;
400 goto ON_EXIT;
401 }
402
403 *DataSize = sizeof (EFI_TLS_MASTER_SECRET);
404 Status = TlsGetKeyMaterial (Instance->TlsConn, (UINT8 *)Data);
405 break;
406 //
407 // Unsupported type.
408 //
409 default:
410 Status = EFI_UNSUPPORTED;
411 }
412
413ON_EXIT:
414 gBS->RestoreTPL (OldTpl);
415 return Status;
416}
417
456EFI_STATUS
457EFIAPI
458TlsBuildResponsePacket (
459 IN EFI_TLS_PROTOCOL *This,
460 IN UINT8 *RequestBuffer OPTIONAL,
461 IN UINTN RequestSize OPTIONAL,
462 OUT UINT8 *Buffer OPTIONAL,
463 IN OUT UINTN *BufferSize
464 )
465{
466 EFI_STATUS Status;
467 TLS_INSTANCE *Instance;
468 EFI_TPL OldTpl;
469
470 Status = EFI_SUCCESS;
471
472 if ((This == NULL) || (BufferSize == NULL) ||
473 ((RequestBuffer == NULL) && (RequestSize != 0)) ||
474 ((RequestBuffer != NULL) && (RequestSize == 0)) ||
475 ((Buffer == NULL) && (*BufferSize != 0)))
476 {
477 return EFI_INVALID_PARAMETER;
478 }
479
480 OldTpl = gBS->RaiseTPL (TPL_CALLBACK);
481
482 Instance = TLS_INSTANCE_FROM_PROTOCOL (This);
483
484 if ((RequestBuffer == NULL) && (RequestSize == 0)) {
485 switch (Instance->TlsSessionState) {
486 case EfiTlsSessionNotStarted:
487 //
488 // ClientHello.
489 //
490 Status = TlsDoHandshake (
491 Instance->TlsConn,
492 NULL,
493 0,
494 Buffer,
495 BufferSize
496 );
497 if (EFI_ERROR (Status)) {
498 goto ON_EXIT;
499 }
500
501 //
502 // *BufferSize should not be zero when ClientHello.
503 //
504 if (*BufferSize == 0) {
505 Status = EFI_ABORTED;
506 goto ON_EXIT;
507 }
508
509 Instance->TlsSessionState = EfiTlsSessionHandShaking;
510
511 break;
512 case EfiTlsSessionClosing:
513 //
514 // TLS session will be closed and response packet needs to be CloseNotify.
515 //
516 Status = TlsCloseNotify (
517 Instance->TlsConn,
518 Buffer,
519 BufferSize
520 );
521 if (EFI_ERROR (Status)) {
522 goto ON_EXIT;
523 }
524
525 //
526 // *BufferSize should not be zero when build CloseNotify message.
527 //
528 if (*BufferSize == 0) {
529 Status = EFI_ABORTED;
530 goto ON_EXIT;
531 }
532
533 break;
534 case EfiTlsSessionError:
535 //
536 // TLS session has errors and the response packet needs to be Alert
537 // message based on error type.
538 //
539 Status = TlsHandleAlert (
540 Instance->TlsConn,
541 NULL,
542 0,
543 Buffer,
544 BufferSize
545 );
546 if (EFI_ERROR (Status)) {
547 goto ON_EXIT;
548 }
549
550 break;
551 default:
552 //
553 // Current TLS session state is NOT ready to build ResponsePacket.
554 //
555 Status = EFI_NOT_READY;
556 }
557 } else {
558 //
559 // 1. Received packet may have multiple TLS record messages.
560 // 2. One TLS record message may have multiple handshake protocol.
561 // 3. Some errors may be happened in handshake.
562 // TlsDoHandshake() can handle all of those cases.
563 //
564 if (TlsInHandshake (Instance->TlsConn)) {
565 Status = TlsDoHandshake (
566 Instance->TlsConn,
567 RequestBuffer,
568 RequestSize,
569 Buffer,
570 BufferSize
571 );
572 if (EFI_ERROR (Status)) {
573 goto ON_EXIT;
574 }
575
576 if (!TlsInHandshake (Instance->TlsConn)) {
577 Instance->TlsSessionState = EfiTlsSessionDataTransferring;
578 }
579 } else {
580 //
581 // Must be alert message, Decrypt it and build the ResponsePacket.
582 //
583 ASSERT (((TLS_RECORD_HEADER *)RequestBuffer)->ContentType == TlsContentTypeAlert);
584
585 Status = TlsHandleAlert (
586 Instance->TlsConn,
587 RequestBuffer,
588 RequestSize,
589 Buffer,
590 BufferSize
591 );
592 if (EFI_ERROR (Status)) {
593 if (Status != EFI_BUFFER_TOO_SMALL) {
594 Instance->TlsSessionState = EfiTlsSessionError;
595 }
596
597 goto ON_EXIT;
598 }
599 }
600 }
601
602ON_EXIT:
603 gBS->RestoreTPL (OldTpl);
604 return Status;
605}
606
641EFI_STATUS
642EFIAPI
643TlsProcessPacket (
644 IN EFI_TLS_PROTOCOL *This,
645 IN OUT EFI_TLS_FRAGMENT_DATA **FragmentTable,
646 IN UINT32 *FragmentCount,
647 IN EFI_TLS_CRYPT_MODE CryptMode
648 )
649{
650 EFI_STATUS Status;
651 TLS_INSTANCE *Instance;
652
653 EFI_TPL OldTpl;
654
655 Status = EFI_SUCCESS;
656
657 if ((This == NULL) || (FragmentTable == NULL) || (FragmentCount == NULL)) {
658 return EFI_INVALID_PARAMETER;
659 }
660
661 OldTpl = gBS->RaiseTPL (TPL_CALLBACK);
662
663 Instance = TLS_INSTANCE_FROM_PROTOCOL (This);
664
665 if (Instance->TlsSessionState != EfiTlsSessionDataTransferring) {
666 Status = EFI_NOT_READY;
667 goto ON_EXIT;
668 }
669
670 //
671 // Packet sent or received may have multiple TLS record messages (Application data type).
672 // So,on input these fragments contain the TLS header and TLS APP payload;
673 // on output these fragments also contain the TLS header and TLS APP payload.
674 //
675 switch (CryptMode) {
676 case EfiTlsEncrypt:
677 Status = TlsEncryptPacket (Instance, FragmentTable, FragmentCount);
678 break;
679 case EfiTlsDecrypt:
680 Status = TlsDecryptPacket (Instance, FragmentTable, FragmentCount);
681 break;
682 default:
683 return EFI_INVALID_PARAMETER;
684 }
685
686ON_EXIT:
687 gBS->RestoreTPL (OldTpl);
688 return Status;
689}
UINTN
UINT64 UINTN
Definition: ProcessorBind.h:112
CopyMem
VOID *EFIAPI CopyMem(OUT VOID *DestinationBuffer, IN CONST VOID *SourceBuffer, IN UINTN Length)
Definition: CopyMemWrapper.c:41
FreePool
VOID EFIAPI FreePool(IN VOID *Buffer)
Definition: MemoryAllocationLib.c:266
NULL
#define NULL
Definition: Base.h:319
CONST
#define CONST
Definition: Base.h:259
IN
#define IN
Definition: Base.h:279
OUT
#define OUT
Definition: Base.h:284
AllocatePool
VOID *EFIAPI AllocatePool(IN UINTN AllocationSize)
Definition: MemoryAllocationLib.c:195
EFI_TLS_VERIFY_FLAG_MULTI_LABEL_WILDCARDS
#define EFI_TLS_VERIFY_FLAG_MULTI_LABEL_WILDCARDS
Definition: Tls.h:213
EFI_TLS_VERIFY_FLAG_NEVER_CHECK_SUBJECT
#define EFI_TLS_VERIFY_FLAG_NEVER_CHECK_SUBJECT
Definition: Tls.h:224
EFI_TLS_SESSION_STATE
EFI_TLS_SESSION_STATE
Definition: Tls.h:274
EfiTlsSessionError
@ EfiTlsSessionError
Definition: Tls.h:305
EfiTlsSessionHandShaking
@ EfiTlsSessionHandShaking
Definition: Tls.h:284
EfiTlsSessionDataTransferring
@ EfiTlsSessionDataTransferring
Definition: Tls.h:291
EfiTlsSessionNotStarted
@ EfiTlsSessionNotStarted
Definition: Tls.h:279
EfiTlsSessionClosing
@ EfiTlsSessionClosing
Definition: Tls.h:298
EFI_TLS_SESSION_DATA_TYPE
EFI_TLS_SESSION_DATA_TYPE
Definition: Tls.h:43
EfiTlsKeyMaterial
@ EfiTlsKeyMaterial
Definition: Tls.h:99
EfiTlsServerRandom
@ EfiTlsServerRandom
Definition: Tls.h:94
EfiTlsSessionState
@ EfiTlsSessionState
Definition: Tls.h:84
EfiTlsClientRandom
@ EfiTlsClientRandom
Definition: Tls.h:89
EfiTlsVersion
@ EfiTlsVersion
Definition: Tls.h:47
EfiTlsCipherList
@ EfiTlsCipherList
Definition: Tls.h:57
EfiTlsExtensionData
@ EfiTlsExtensionData
Definition: Tls.h:67
EfiTlsCompressionMethod
@ EfiTlsCompressionMethod
Definition: Tls.h:62
EfiTlsVerifyHost
@ EfiTlsVerifyHost
Definition: Tls.h:106
EfiTlsSessionID
@ EfiTlsSessionID
Definition: Tls.h:79
EfiTlsConnectionEnd
@ EfiTlsConnectionEnd
Definition: Tls.h:52
EfiTlsVerifyMethod
@ EfiTlsVerifyMethod
Definition: Tls.h:72
EFI_TLS_COMPRESSION
UINT8 EFI_TLS_COMPRESSION
Definition: Tls.h:146
EFI_TLS_VERIFY
UINT32 EFI_TLS_VERIFY
Definition: Tls.h:166
EFI_TLS_VERIFY_PEER
#define EFI_TLS_VERIFY_PEER
Definition: Tls.h:176
EFI_TLS_CRYPT_MODE
EFI_TLS_CRYPT_MODE
Definition: Tls.h:327
EfiTlsEncrypt
@ EfiTlsEncrypt
Definition: Tls.h:331
EfiTlsDecrypt
@ EfiTlsDecrypt
Definition: Tls.h:335
EFI_TLS_VERIFY_FLAG_NO_WILDCARDS
#define EFI_TLS_VERIFY_FLAG_NO_WILDCARDS
Definition: Tls.h:205
EFI_TLS_VERIFY_FLAG_NO_PARTIAL_WILDCARDS
#define EFI_TLS_VERIFY_FLAG_NO_PARTIAL_WILDCARDS
Definition: Tls.h:209
EFI_TLS_VERIFY_FLAG_ALWAYS_CHECK_SUBJECT
#define EFI_TLS_VERIFY_FLAG_ALWAYS_CHECK_SUBJECT
Definition: Tls.h:201
EFI_TLS_CONNECTION_END
EFI_TLS_CONNECTION_END
Definition: Tls.h:124
TlsDecryptPacket
EFI_STATUS TlsDecryptPacket(IN TLS_INSTANCE *TlsInstance, IN OUT EFI_TLS_FRAGMENT_DATA **FragmentTable, IN UINT32 *FragmentCount)
Definition: TlsImpl.c:195
TlsEncryptPacket
EFI_STATUS TlsEncryptPacket(IN TLS_INSTANCE *TlsInstance, IN OUT EFI_TLS_FRAGMENT_DATA **FragmentTable, IN UINT32 *FragmentCount)
Definition: TlsImpl.c:29
TlsGetServerRandom
VOID EFIAPI TlsGetServerRandom(IN VOID *Tls, IN OUT UINT8 *ServerRandom)
Definition: CryptLib.c:4560
TlsDoHandshake
EFI_STATUS EFIAPI TlsDoHandshake(IN VOID *Tls, IN UINT8 *BufferIn OPTIONAL, IN UINTN BufferInSize OPTIONAL, OUT UINT8 *BufferOut OPTIONAL, IN OUT UINTN *BufferOutSize)
Definition: CryptLib.c:3826
TlsSetVerifyHost
EFI_STATUS EFIAPI TlsSetVerifyHost(IN VOID *Tls, IN UINT32 Flags, IN CHAR8 *HostName)
Definition: CryptLib.c:4159
TlsGetKeyMaterial
EFI_STATUS EFIAPI TlsGetKeyMaterial(IN VOID *Tls, IN OUT UINT8 *KeyMaterial)
Definition: CryptLib.c:4584
TlsGetVerify
UINT32 EFIAPI TlsGetVerify(IN VOID *Tls)
Definition: CryptLib.c:4493
TlsGetCurrentCipher
EFI_STATUS EFIAPI TlsGetCurrentCipher(IN VOID *Tls, IN OUT UINT16 *CipherId)
Definition: CryptLib.c:4444
TlsSetCompressionMethod
EFI_STATUS EFIAPI TlsSetCompressionMethod(IN UINT8 CompMethod)
Definition: CryptLib.c:4119
TlsSetCipherList
EFI_STATUS EFIAPI TlsSetCipherList(IN VOID *Tls, IN UINT16 *CipherId, IN UINTN CipherNum)
Definition: CryptLib.c:4096
TlsGetCurrentCompressionId
EFI_STATUS EFIAPI TlsGetCurrentCompressionId(IN VOID *Tls, IN OUT UINT8 *CompressionId)
Definition: CryptLib.c:4470
TlsSetConnectionEnd
EFI_STATUS EFIAPI TlsSetConnectionEnd(IN VOID *Tls, IN BOOLEAN IsServer)
Definition: CryptLib.c:4068
TlsSetSessionId
EFI_STATUS EFIAPI TlsSetSessionId(IN VOID *Tls, IN UINT8 *SessionId, IN UINT16 SessionIdLen)
Definition: CryptLib.c:4185
TlsGetConnectionEnd
UINT8 EFIAPI TlsGetConnectionEnd(IN VOID *Tls)
Definition: CryptLib.c:4421
TlsSetVerify
VOID EFIAPI TlsSetVerify(IN VOID *Tls, IN UINT32 VerifyMode)
Definition: CryptLib.c:4137
TlsGetClientRandom
VOID EFIAPI TlsGetClientRandom(IN VOID *Tls, IN OUT UINT8 *ClientRandom)
Definition: CryptLib.c:4539
TlsInHandshake
BOOLEAN EFIAPI TlsInHandshake(IN VOID *Tls)
Definition: CryptLib.c:3791
TlsSetVersion
EFI_STATUS EFIAPI TlsSetVersion(IN VOID *Tls, IN UINT8 MajorVer, IN UINT8 MinorVer)
Definition: CryptLib.c:4044
TlsHandleAlert
EFI_STATUS EFIAPI TlsHandleAlert(IN VOID *Tls, IN UINT8 *BufferIn OPTIONAL, IN UINTN BufferInSize OPTIONAL, OUT UINT8 *BufferOut OPTIONAL, IN OUT UINTN *BufferOutSize)
Definition: CryptLib.c:3864
TlsCloseNotify
EFI_STATUS EFIAPI TlsCloseNotify(IN VOID *Tls, IN OUT UINT8 *Buffer, IN OUT UINTN *BufferSize)
Definition: CryptLib.c:3895
TlsGetSessionId
EFI_STATUS EFIAPI TlsGetSessionId(IN VOID *Tls, IN OUT UINT8 *SessionId, IN OUT UINT16 *SessionIdLen)
Definition: CryptLib.c:4517
TlsGetVersion
UINT16 EFIAPI TlsGetVersion(IN VOID *Tls)
Definition: CryptLib.c:4399
TlsBuildResponsePacket
EFI_STATUS EFIAPI TlsBuildResponsePacket(IN EFI_TLS_PROTOCOL *This, IN UINT8 *RequestBuffer OPTIONAL, IN UINTN RequestSize OPTIONAL, OUT UINT8 *Buffer OPTIONAL, IN OUT UINTN *BufferSize)
Definition: TlsProtocol.c:458
TlsSetSessionData
EFI_STATUS EFIAPI TlsSetSessionData(IN EFI_TLS_PROTOCOL *This, IN EFI_TLS_SESSION_DATA_TYPE DataType, IN VOID *Data, IN UINTN DataSize)
Definition: TlsProtocol.c:47
TlsProcessPacket
EFI_STATUS EFIAPI TlsProcessPacket(IN EFI_TLS_PROTOCOL *This, IN OUT EFI_TLS_FRAGMENT_DATA **FragmentTable, IN UINT32 *FragmentCount, IN EFI_TLS_CRYPT_MODE CryptMode)
Definition: TlsProtocol.c:643
TlsGetSessionData
EFI_STATUS EFIAPI TlsGetSessionData(IN EFI_TLS_PROTOCOL *This, IN EFI_TLS_SESSION_DATA_TYPE DataType, IN OUT VOID *Data OPTIONAL, IN OUT UINTN *DataSize)
Definition: TlsProtocol.c:261
EFI_STATUS
RETURN_STATUS EFI_STATUS
Definition: UefiBaseType.h:29
EFI_TPL
UINTN EFI_TPL
Definition: UefiBaseType.h:41
EFI_SUCCESS
#define EFI_SUCCESS
Definition: UefiBaseType.h:112
gBS
EFI_BOOT_SERVICES * gBS
Definition: UefiBootServicesTableLib.c:17
_EFI_TLS_PROTOCOL
Definition: Tls.h:499
_TLS_INSTANCE
Definition: TlsDriver.h:60
EFI_TLS_CIPHER
Definition: Tls.h:136
EFI_TLS_FRAGMENT_DATA
Definition: Tls.h:313
EFI_TLS_MASTER_SECRET
Definition: Tls.h:254
EFI_TLS_RANDOM
Definition: Tls.h:242
EFI_TLS_SESSION_ID
Definition: Tls.h:265
EFI_TLS_VERIFY_HOST
Definition: Tls.h:230
EFI_TLS_VERSION
Definition: Tls.h:116
TLS_RECORD_HEADER
Definition: Tls1.h:82