www.beck-ipc.com

@CHIP-RTOS C Library - TCP/IP API


SSL_SessionProp

Use this function to set cipher suite proposals for a SSL session.

int SSL_SessionProp(int sessionID, int far *proposals, int count,
                    int *error);

Parameters

sessionID

Session ID for SSL session

proposals

Array of integer with Session proposals

count

Number of entries in the proposal array

error

Output parameter:  Failure code, 0 on success.

Return Value

0: Success
-1: failed

Comments

When this API is not used, the default list of proposals are used.

For a client session, the list of proposals are used to construct the Client Hello message that is sent to the server.

For a server session, the list of proposals is not used unless the SSL_SessionOpt API had been used to enable option 2 "Server Proposals ". With this SSL option then enabled, the server will select the first cipher suite in its own proposal list that is also listed in the client's Hello message.  Otherwise ("Server Proposals " disabled) the server would have just selected the first supported cipher suite in the client's ordered list, thereby accepting the client's preferences.

The full set of supported SSL cipher suites can be found here.

Note that the weak export ciphers suites with numbers 3, 8, 98 and 100 cannot be used with the SSL API due to that these require an ephemeral RSA key and there are no provisions for loading such a key for the user's SSL sessions.

See Also

RTOS API

This library function invokes a RTOS software interrupt. Refer to this RTOS API function's documentation for more details.

Supported since or modified in @CHIP-RTOS version

    SC12SC13SC11SC1x3SC2x
    n/an/an/aV1.07V1.00

Supported by @CHIP-RTOS C Library since version

    CLIB
    V2.02

This API List
List of C Libraries
@CHIP-RTOS Main Index


End of document