2022-03-21 01:41:13 -04:00
|
|
|
/*
|
|
|
|
|
* SPDX-FileCopyrightText: 2017-2022 Espressif Systems (Shanghai) CO LTD
|
|
|
|
|
*
|
|
|
|
|
* SPDX-License-Identifier: Apache-2.0
|
|
|
|
|
*/
|
2019-09-29 06:04:34 -04:00
|
|
|
|
|
|
|
|
|
|
|
|
|
#ifndef _ESP_CRT_BUNDLE_H_
|
|
|
|
|
#define _ESP_CRT_BUNDLE_H_
|
|
|
|
|
|
2022-03-21 01:41:13 -04:00
|
|
|
#include "esp_err.h"
|
2019-09-29 06:04:34 -04:00
|
|
|
#include "mbedtls/ssl.h"
|
|
|
|
|
|
|
|
|
|
#ifdef __cplusplus
|
|
|
|
|
extern "C" {
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief Attach and enable use of a bundle for certificate verification
|
|
|
|
|
*
|
|
|
|
|
* Attach and enable use of a bundle for certificate verification through a verification callback.
|
|
|
|
|
* If no specific bundle has been set through esp_crt_bundle_set() it will default to the
|
|
|
|
|
* bundle defined in menuconfig and embedded in the binary.
|
|
|
|
|
*
|
|
|
|
|
* @param[in] conf The config struct for the SSL connection.
|
|
|
|
|
*
|
|
|
|
|
* @return
|
|
|
|
|
* - ESP_OK if adding certificates was successful.
|
|
|
|
|
* - Other if an error occured or an action must be taken by the calling process.
|
|
|
|
|
*/
|
2020-03-11 06:18:34 -04:00
|
|
|
esp_err_t esp_crt_bundle_attach(void *conf);
|
2019-09-29 06:04:34 -04:00
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief Disable and dealloc the certification bundle
|
|
|
|
|
*
|
|
|
|
|
* Removes the certificate verification callback and deallocates used resources
|
|
|
|
|
*
|
|
|
|
|
* @param[in] conf The config struct for the SSL connection.
|
|
|
|
|
*/
|
|
|
|
|
void esp_crt_bundle_detach(mbedtls_ssl_config *conf);
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief Set the default certificate bundle used for verification
|
|
|
|
|
*
|
2022-03-29 23:57:46 -04:00
|
|
|
* Overrides the default certificate bundle only in case of successful initialization. In most use cases the bundle should be
|
2019-09-29 06:04:34 -04:00
|
|
|
* set through menuconfig. The bundle needs to be sorted by subject name since binary search is
|
|
|
|
|
* used to find certificates.
|
|
|
|
|
*
|
|
|
|
|
* @param[in] x509_bundle A pointer to the certificate bundle.
|
2022-03-29 23:57:46 -04:00
|
|
|
*
|
|
|
|
|
* @param[in] bundle_size Size of the certificate bundle in bytes.
|
|
|
|
|
*
|
|
|
|
|
* @return
|
|
|
|
|
* - ESP_OK if adding certificates was successful.
|
|
|
|
|
* - Other if an error occured or an action must be taken by the calling process.
|
2019-09-29 06:04:34 -04:00
|
|
|
*/
|
2022-03-29 23:57:46 -04:00
|
|
|
esp_err_t esp_crt_bundle_set(const uint8_t *x509_bundle, size_t bundle_size);
|
2019-09-29 06:04:34 -04:00
|
|
|
|
2020-11-26 02:22:41 -05:00
|
|
|
|
2019-09-29 06:04:34 -04:00
|
|
|
#ifdef __cplusplus
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
2020-03-11 06:18:34 -04:00
|
|
|
#endif //_ESP_CRT_BUNDLE_H_
|
