TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / 00a9b6df773f482e4ea3d79fa8a3fc5d8342ce2a / library / ssl_srv.c
  1. a3c2c17 tinyCrypt: Share ECDH secret calculation code-path by Hanno Becker · 6 years ago
  2. 75f12d1 tinyCrypt: Add ServerKeyExchange parsing code by Hanno Becker · 6 years ago
  3. d849c7c tinyCrypt: Hardcode ECDH parameter header by Hanno Becker · 6 years ago
  4. ef982d5 tinyCrypt: Bind RNG wrapper to tinyCrypt in mbedtls_ssl_setup() by Hanno Becker · 6 years ago
  5. e12aafb tinyCrypt: Initial commit towards ECDHE support by Jarno Lamsa · 6 years ago
  6. 4e46709 Document precoditions on some HS parsing/writing functions by Hanno Becker · 6 years ago
  7. 7d552fa Avoid collision of ssl_xxx_key_exchange_yyy() func names in cli/srv by Hanno Becker · 6 years ago
  8. 7ba0a88 Fix 'set but not used' ARM compiler warning by Hanno Becker · 6 years ago
  9. 868cb58 Rename SSL_PROC_CHK -> MBEDTLS_SSL_CHK by Hanno Becker · 6 years ago
  10. 9a12243 Introduce getter function for RNG context by Hanno Becker · 6 years ago
  11. 9db697e Async operations: Simplify restart logic by Hanno Becker · 6 years ago
  12. 4ec73cb Restructure SrvKeyExchange: Move parsing code by Hanno Becker · 6 years ago
  13. 09d2364 Share code between In-CliKeyExch and Out-CliKeyExch by Hanno Becker · 6 years ago
  14. d116e82 Restructure incoming CliKeyExch: Shorten postprocessing by Hanno Becker · 7 years ago
  15. 2eb716d Restructure incoming CliKeyExch: Remove old code by Hanno Becker · 6 years ago
  16. e7c4eed Restructure incoming CliKeyExch: Parsing code by Hanno Becker · 7 years ago
  17. 1e23af8 Restructure incoming CliKeyExch: Move PMS assembly code by Hanno Becker · 7 years ago
  18. dc8bfb9 Restructure incoming CliKeyExch: Move key derivation code by Hanno Becker · 7 years ago
  19. 7ec345d Restructure incoming CliKeyExch: Add frame for restructuring by Hanno Becker · 7 years ago
  20. 93de296 Fix rebase slip by Hanno Becker · 6 years ago
  21. de62da9 Use separate functions to pend fatal and non-fatal alerts by Hanno Becker · 6 years ago
  22. 1facd55 Replace xxx_send_alert by xxx_pend_alert to save code by Hanno Becker · 6 years ago
  23. 3b014fc Merge remote-tracking branch 'origin/pr/604' into baremetal by Simon Butcher · 6 years ago
  24. 981f81d Add missing uses of mbedtls_ssl_get_minor() by Hanno Becker · 6 years ago
  25. f1bc9e1 Introduce helper functions to traverse signature hashes by Hanno Becker · 6 years ago
  26. 0af717b Don't use mbedtls_ssL_set_calc_verify_md writing CertificateRequest by Hanno Becker · 6 years ago
  27. feb1cee Merge remote-tracking branch 'origin/pr/602' into baremetal by Simon Butcher · 6 years ago
  28. a4a9c69 Introduce helper macro for traversal of supported EC TLS IDs by Hanno Becker · 6 years ago
  29. 84fb902 Work on client-provided supported EC TLS ID list in-place by Hanno Becker · 6 years ago
  30. 004619f Store TLS curve ID instead of information structure by Hanno Becker · 6 years ago
  31. 18729ae Guard RSA-only max_major/minor_ver fields from SSL handshake params by Hanno Becker · 6 years ago
  32. 381eaa5 Remove min/maj version from SSL context if only one version enabled by Hanno Becker · 6 years ago
  33. 2881d80 Introduce getter function for max/min SSL version by Hanno Becker · 6 years ago
  34. 3fa1ee5 Set SSL minor version only after validation by Hanno Becker · 6 years ago
  35. e965bd3 Allow hardcoding of min/max minor/major SSL version at compile-time by Hanno Becker · 6 years ago
  36. f4d6b49 Allow use of continue in single-ciphersuite 'loops' by Hanno Becker · 6 years ago
  37. 73f4cb1 Rename XXX_SINGLE_CIPHERSUITE -> XXX_CONF_SINGLE_CIPHERSUITE by Hanno Becker · 6 years ago
  38. e02758c Remove ciphersuite from SSL session if single suite hardcoded by Hanno Becker · 6 years ago
  39. df64596 Remove ciphersuite from handshake params if single suite hardcoded by Hanno Becker · 6 years ago
  40. 2d46b4f Adapt ClientHello parsing to case of single hardcoded ciphersuite by Hanno Becker · 6 years ago
  41. 473f98f Introduce ciphersuite handle type by Hanno Becker · 6 years ago
  42. 5455afd Merge pull request #599 from ARMmbed/baremetal-ec-preparation by Manuel Pégourié-Gonnard · 6 years ago
  43. d3b2fcb Don't store client-supported ECs in heap-allocated buffer by Hanno Becker · 6 years ago
  44. ece325c Allow compile-time configuration of PRNG in SSL module by Hanno Becker · 6 years ago
  45. de8869c Merge remote-tracking branch 'restricted/pr/608' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  46. 44ba6b0 Merge remote-tracking branch 'restricted/pr/594' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  47. 37261e6 Merge remote-tracking branch 'restricted/pr/601' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  48. 417d2ce Merge remote-tracking branch 'restricted/pr/584' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  49. c2cfdaa Allow config'n of incl of CertificateReq CA list Y/N at compile-time by Hanno Becker · 6 years ago
  50. 2d9623f Allow configuration of endpoint (cli/srv) at compile-time by Hanno Becker · 6 years ago
  51. b0b2b67 Allow compile-time configuration of legacy renegotiation by Hanno Becker · 6 years ago
  52. acd4fc0 Allow compile-time configuration of authentication mode by Hanno Becker · 6 years ago
  53. bc6b598 [Fixup] Add missing PK release call in Cert Verify parsing by Hanno Becker · 6 years ago
  54. 754b9f3 Introduce getter function for renego_status by Manuel Pégourié-Gonnard · 6 years ago
  55. 3652e99 Add getter function for handshake->resume by Manuel Pégourié-Gonnard · 6 years ago
  56. 29f2dd0 Address review comments by Jarno Lamsa · 6 years ago
  57. 59bd12b Add new config MBEDTLS_SSL_SESSION_RESUMPTION by Jarno Lamsa · 6 years ago
  58. 7be1406 Add config MBEDTLS_SSL_SESSION_CACHE by Jarno Lamsa · 6 years ago
  59. abd929c Merge branch 'mbedtls-2.16' into baremetal-2.16-01_07_19 by Hanno Becker · 6 years ago
  60. 2224ccf Don't use assertion for failures of mbedtls_x509_crt_x_acquire() by Hanno Becker · 6 years ago
  61. 5f268b3 Don't allow change of CRT frame returned by x509_crt_frame_acquire() by Hanno Becker · 6 years ago
  62. c6d1c3e Remove frame/pk parameter from mbedtls_x509_crt_xxx_release() by Hanno Becker · 6 years ago
  63. 1e11f21 Solely use raw X.509 name data references including SEQUENCE header by Hanno Becker · 6 years ago
  64. 828a8c0 Add compile-guard for < TLS1.2 path in server-side ssl_pick_cert() by Hanno Becker · 6 years ago
  65. 73cd8d8 Make use of acquire/release in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
  66. 232f8fa Make use of CRT acquire/release in ssl_write_certificate_request() by Hanno Becker · 6 years ago
  67. 30649f7 Make use of CRT acquire/release in server-side ssl_pick_cert() by Hanno Becker · 6 years ago
  68. 371e0e4 Determine whether CRT is initialized or not through raw data pointer by Hanno Becker · 6 years ago
  69. 74b89f6 Use private key to check suitability of PK type when picking srv CRT by Hanno Becker · 6 years ago
  70. 81bb4d0 Simplify server-side ssl_decrypt_encrypted_pms() by Hanno Becker · 6 years ago
  71. 1ab322b Remove extended_ms field from HS param if ExtendedMS enforced by Hanno Becker · 6 years ago
  72. a49ec56 Introduce getter function for `extended_ms` field in HS struct by Hanno Becker · 6 years ago
  73. 03b64fa Rearrange ExtendedMasterSecret parsing logic by Hanno Becker · 6 years ago
  74. aabbb58 Exemplify harcoding SSL config at compile-time in example of ExtMS by Hanno Becker · 6 years ago
  75. 5882dd0 Remove CRT digest from SSL session if !RENEGO + !KEEP_PEER_CERT by Hanno Becker · 6 years ago
  76. cd90126 Adapt client auth detection in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
  77. 0833c10 Adapt server-side signature verification to use raw public key by Hanno Becker · 6 years ago
  78. ae39b9e Make use of macro and helper detecting whether CertRequest allowed by Hanno Becker · 6 years ago
  79. c725e4b Merge remote-tracking branch 'origin/pr/590' into baremetal by Simon Butcher · 6 years ago
  80. ec1c222 Fix a few style issues by Manuel Pégourié-Gonnard · 6 years ago
  81. 20095af Changes according to review comments by Jarno Lamsa · 6 years ago
  82. 842be16 Check for the enforcing and fail handshake if the peer doesn't support by Jarno Lamsa · 6 years ago
  83. 64c1681 Use new macros for all TLS/DTLS tests by Manuel Pégourié-Gonnard · 6 years ago
  84. ff4bd9f Use new tools for all cases with TLS-specific code by Manuel Pégourié-Gonnard · 6 years ago
  85. 0d1d76f Merge remote-tracking branch 'origin/pr/561' into baremetal by Simon Butcher · 6 years ago
  86. 5a790f9 Merge remote-tracking branch 'origin/pr/563' into baremetal by Simon Butcher · 6 years ago
  87. a5a2b08 Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID by Hanno Becker · 6 years ago
  88. 3cdf8fe Consistently reference CID draft through name + URL by Hanno Becker · 6 years ago
  89. 75b334f Update references to CID draft to version 5 by Hanno Becker · 6 years ago
  90. 4339576 Split mbedtls_ssl_hdr_len() in separate functions for in/out records by Hanno Becker · 6 years ago
  91. 19976b5 Improve structure of ssl_parse_cid_ext() by Hanno Becker · 6 years ago
  92. 31f1668 Correct compile-time guard around CID extension writing func on srv by Hanno Becker · 6 years ago
  93. 072d4ec Implement writing of CID extension in ServerHello by Hanno Becker · 6 years ago
  94. c403b26 Implement parsing of CID extension in ClientHello by Hanno Becker · 6 years ago
  95. a575975 Make calc_verify() return the length as well by Manuel Pégourié-Gonnard · 6 years ago
  96. 8759e16 Remove ciphersuite_info from ssl_transform by Hanno Becker · 8 years ago
  97. d5f4759 Fix #2370, minor typos and spelling mistakes by Antonin Décimo · 7 years ago
  98. 3fbdada SSL: Make use of the new ECDH interface by Janos Follath · 7 years ago
  99. bc2498a Style: Add numerous comments indicating condition guarded by #endif by Hanno Becker · 7 years ago
  100. 327c93b Add parameter to ssl_read_record() controlling checksum update by Hanno Becker · 7 years ago