static void tls_tx_resume_all ( struct tls_session *session );
static struct io_buffer * tls_alloc_iob ( struct tls_connection *tls,
size_t len );
+static int tls_send_alert ( struct tls_connection *tls, unsigned int level,
+ unsigned int description );
static int tls_send_record ( struct tls_connection *tls, unsigned int type,
struct io_buffer *iobuf );
static int tls_send_plaintext ( struct tls_connection *tls, unsigned int type,
*/
static void tls_close ( struct tls_connection *tls, int rc ) {
+ /* Send closure alert */
+ tls_send_alert ( tls, TLS_ALERT_WARNING, TLS_ALERT_CLOSE_NOTIFY );
+
/* Remove pending operations, if applicable */
pending_put ( &tls->client.negotiation );
pending_put ( &tls->server.negotiation );
return 0;
}
+/**
+ * Transmit Alert record
+ *
+ * @v tls TLS connection
+ * @v level Alert level
+ * @v description Alert description
+ * @ret rc Return status code
+ */
+static int tls_send_alert ( struct tls_connection *tls, unsigned int level,
+ unsigned int description ) {
+ const struct {
+ uint8_t level;
+ uint8_t description;
+ } __attribute__ (( packed )) alert = {
+ .level = level,
+ .description = description,
+ };
+
+ /* Send record */
+ return tls_send_plaintext ( tls, TLS_TYPE_ALERT, &alert,
+ sizeof ( alert ) );
+}
+
/**
* Receive new Change Cipher record
*
projects / thirdparty / ipxe.git / commitdiff
