Inicio Explorar Ayuda
Iniciar sesión
RT-Thread-packages
/
esp-idf
espejo de https://github-proxy.rt-thread.io/RT-Thread-packages/esp-idf.git
2
0
Fork 0
Archivos Incidencias 0 Wiki
Explorar el Código

esp-tls: enable TLS renegotiation using explicit API call

mbedTLS stack does not keep TLS renegotiation enabled even if
relevant config option is turned on, it needs explicit API call
`mbedtls_ssl_conf_renegotiation` to do so.

This issue was observed in case of Azure IoT, where keys needs to
be refreshed periodically to keep TLS connection intact.
Mahavir Jain hace 5 años
padre
f73cd1d4f1
commit
6f034e9194
Se han modificado 1 ficheros con 4 adiciones y 0 borrados
Dividir vista Mostrar estadísticas de diff
  1. 4 0
      components/esp-tls/esp_tls.c

+ 4 - 0
components/esp-tls/esp_tls.c
Ver fichero 

@@ -338,6 +338,10 @@ static esp_err_t set_server_config(esp_tls_cfg_server_t *cfg, esp_tls_t *tls)
 
         return ESP_ERR_MBEDTLS_SSL_CONFIG_DEFAULTS_FAILED;
 
     }
 
 
+#ifdef CONFIG_MBEDTLS_SSL_RENEGOTIATION
 
+    mbedtls_ssl_conf_renegotiation(&tls->conf, MBEDTLS_SSL_RENEGOTIATION_ENABLED);
 
+#endif
 
+
 
 #ifdef CONFIG_MBEDTLS_SSL_ALPN
 
     if (cfg->alpn_protos) {
 
         mbedtls_ssl_conf_alpn_protocols(&tls->conf, cfg->alpn_protos);