@@ -394,27 +394,24 @@ DtlsTransport::DtlsTransport(shared_ptr<IceTransport> lower, certificate_ptr cer
394394 mbedtls_ctr_drbg_set_prediction_resistance (&mDrbg , MBEDTLS_CTR_DRBG_PR_ON);
395395
396396 try {
397- mbedtls::check (mbedtls_ctr_drbg_seed (&mDrbg , mbedtls_entropy_func, &mEntropy , NULL , 0 ),
398- " Failed creating Mbed TLS Context"
397+ mbedtls::check (mbedtls_ctr_drbg_seed (&mDrbg , mbedtls_entropy_func, &mEntropy , NULL , 0 ));
399398
400399 mbedtls::check (mbedtls_ssl_config_defaults (
401400 &mConf , mIsClient ? MBEDTLS_SSL_IS_CLIENT : MBEDTLS_SSL_IS_SERVER,
402- MBEDTLS_SSL_TRANSPORT_DATAGRAM, MBEDTLS_SSL_PRESET_DEFAULT),
403- " Failed creating Mbed TLS Context"
401+ MBEDTLS_SSL_TRANSPORT_DATAGRAM, MBEDTLS_SSL_PRESET_DEFAULT));
404402
403+ mbedtls_ssl_conf_max_version (&mConf , MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3); // TLS 1.2
405404 mbedtls_ssl_conf_authmode (&mConf , MBEDTLS_SSL_VERIFY_OPTIONAL);
406405 mbedtls_ssl_conf_verify (&mConf , DtlsTransport::CertificateCallback, this );
407-
408406 mbedtls_ssl_conf_rng (&mConf , mbedtls_ctr_drbg_random, &mDrbg );
409407
410408 auto [crt, pk] = mCertificate ->credentials ();
411- mbedtls::check (mbedtls_ssl_conf_own_cert (&mConf , crt.get (), pk.get ()),
412- " Failed creating Mbed TLS Context"
409+ mbedtls::check (mbedtls_ssl_conf_own_cert (&mConf , crt.get (), pk.get ()));
413410
414411 mbedtls_ssl_conf_dtls_cookies (&mConf , NULL , NULL , NULL );
415412 mbedtls_ssl_conf_dtls_srtp_protection_profiles (&mConf , srtpSupportedProtectionProfiles);
416413
417- mbedtls::check (mbedtls_ssl_setup (&mSsl , &mConf ), " Failed creating Mbed TLS Context "
414+ mbedtls::check (mbedtls_ssl_setup (&mSsl , &mConf ));
418415
419416 mbedtls_ssl_set_export_keys_cb (&mSsl , DtlsTransport::ExportKeysCallback, this );
420417 mbedtls_ssl_set_bio (&mSsl , this , WriteCallback, ReadCallback, NULL );
0 commit comments