Merge branch 'feature/transport_support_der_certs' into 'master'

tcp transport ssl DER-support See merge request espressif/esp-idf!5627
2025-12-16 04:22:22 +00:00 · 2019-08-05 09:52:08 +08:00
parent b23718995a 25dd5e39af
commit 7ef5fa8a0a
6 changed files with 163 additions and 51 deletions
--- a/components/tcp_transport/include/esp_transport_ssl.h
+++ b/components/tcp_transport/include/esp_transport_ssl.h
@@ -40,6 +40,17 @@ esp_transport_handle_t esp_transport_ssl_init(void);
 */
 void esp_transport_ssl_set_cert_data(esp_transport_handle_t t, const char *data, int len);

+/**
+ * @brief      Set SSL certificate data (as DER format).
+ *             Note that, this function stores the pointer to data, rather than making a copy.
+ *             So this data must remain valid until after the connection is cleaned up
+ *
+ * @param      t     ssl transport
+ * @param[in]  data  The der data
+ * @param[in]  len   The length
+ */
+void esp_transport_ssl_set_cert_data_der(esp_transport_handle_t t, const char *data, int len);
+
 /**
 * @brief      Enable global CA store for SSL connection
 *
@@ -58,6 +69,17 @@ void esp_transport_ssl_enable_global_ca_store(esp_transport_handle_t t);
 */
 void esp_transport_ssl_set_client_cert_data(esp_transport_handle_t t, const char *data, int len);

+/**
+ * @brief      Set SSL client certificate data for mutual authentication (as DER format).
+ *             Note that, this function stores the pointer to data, rather than making a copy.
+ *             So this data must remain valid until after the connection is cleaned up
+ *
+ * @param      t     ssl transport
+ * @param[in]  data  The der data
+ * @param[in]  len   The length
+ */
+void esp_transport_ssl_set_client_cert_data_der(esp_transport_handle_t t, const char *data, int len);
+
 /**
 * @brief      Set SSL client key data for mutual authentication (as PEM format).
 *             Note that, this function stores the pointer to data, rather than making a copy.
@@ -69,6 +91,17 @@ void esp_transport_ssl_set_client_cert_data(esp_transport_handle_t t, const char
 */
 void esp_transport_ssl_set_client_key_data(esp_transport_handle_t t, const char *data, int len);

+/**
+ * @brief      Set SSL client key data for mutual authentication (as DER format).
+ *             Note that, this function stores the pointer to data, rather than making a copy.
+ *             So this data must remain valid until after the connection is cleaned up
+ *
+ * @param      t     ssl transport
+ * @param[in]  data  The der data
+ * @param[in]  len   The length
+ */
+void esp_transport_ssl_set_client_key_data_der(esp_transport_handle_t t, const char *data, int len);
+
 /**
 * @brief      Skip validation of certificate's common name field
 *