TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / 26bea336749b49a41782a32a0ed077c3419bccf8 / library / ssl_srv.c
  1. 585e9e0 Add MBEDTLS_SSL_CONF_TRANSPORT by Kevin Bracey · 4 years, 9 months ago
  2. f74a86c Improve FI resistance of certificate verification in ssl_srv.c by Andrzej Kurek · 4 years, 10 months ago
  3. ef34494 ssl_srv.c: change the initial return variable value by Andrzej Kurek · 5 years ago
  4. 6c30be8 ssl: call signature verification twice for non-restartable operations by Andrzej Kurek · 5 years ago
  5. e3c4ee5 Rename mbedtls_platform_memcmp() to mbedtls_platform_memequal() by Piotr Nowicki · 5 years ago
  6. afec885 Revert a part of the sensitive information duplication changes by Andrzej Kurek · 5 years ago
  7. 84bde41 Add FI countermeasures to the ssl module by Andrzej Kurek · 5 years ago
  8. 74f7d0f Duplicate sensitive buffer and buffer length information by Andrzej Kurek · 5 years ago
  9. e048b91 Add returning a FAULT_DETECTED error on suspected FI attacks by Piotr Nowicki · 5 years ago
  10. fd56f40 Change the default value of status variables to an error by Andrzej Kurek · 5 years ago
  11. ac6d226 Update signature of mbedtls_platform_random_delay by Arto Kinnunen · 6 years ago
  12. 7195571 Replace mbedtls_platform_enforce_volatile_reads 2 by Arto Kinnunen · 6 years ago
  13. af60cd7 Protect the peer_authenticated flag more by Jarno Lamsa · 6 years ago
  14. 8d09e57 Increase hamming distance for session resume flag by Jarno Lamsa · 6 years ago
  15. 0616405 Check that we have all the proper keys by Jarno Lamsa · 6 years ago
  16. e1621d4 Check that the peer_authenticated flag by Jarno Lamsa · 6 years ago
  17. 67f0a1e Protect setting of premaster_generated flag by Jarno Lamsa · 6 years ago
  18. 98801af Protect setting of hello_random flag by Jarno Lamsa · 6 years ago
  19. 46afd5d Fix CI issues by Jarno Lamsa · 6 years ago
  20. 83a56a6 Double check mbedtls_pk_verify by Jarno Lamsa · 6 years ago
  21. 70abd7a Add enumeration for invalid state by Jarno Lamsa · 6 years ago
  22. 2b20516 Make TLS state changes explicit by Jarno Lamsa · 6 years ago
  23. 9d6a535 Return and propagate UECC_FAULT_DETECTED by Manuel Pégourié-Gonnard · 6 years ago
  24. 1a53371 Remove curve parameter from public functions by Manuel Pégourié-Gonnard · 6 years ago
  25. 677b7f6 Fix direct use of struct instead of abstract type by Manuel Pégourié-Gonnard · 6 years ago
  26. 6f4e030 Changed mbedtls_platform_memcpy to memcpy in places which don't handle critical data by Teppo Järvelin · 6 years ago
  27. 91d7938 Changed every memcpy to SCA equivalent mbedtls_platform_memcpy by Teppo Järvelin · 6 years ago
  28. 713e5c3 Merge remote-tracking branch 'public/pr/2880' into baremetal by Simon Butcher · 6 years ago
  29. 707ceb8 Replaced mbedtls_ssl_safer_memcmp with mbedtls_platform_memcmp by Teppo Järvelin · 6 years ago
  30. 61f412e Changed every memcmp to SCA equivalent mbedtls_platform_memcmp by Teppo Järvelin · 6 years ago
  31. d198672 Harmonize static function compiler flags by Arto Kinnunen · 6 years ago
  32. 2829bbf Remove dependency from SSL on PK internals by Manuel Pégourié-Gonnard · 6 years ago
  33. 020d9ba Introduce abstraction mbedtls_pk_handle_t by Manuel Pégourié-Gonnard · 6 years ago
  34. e8144aa Merge remote-tracking branch 'origin/pr/657' into baremetal by Simon Butcher · 6 years ago
  35. 3d7439e Review corrections 6 by Arto Kinnunen · 6 years ago
  36. a3fa06e Review corrections 3 by Arto Kinnunen · 6 years ago
  37. 4f4849a Review corrections 2 by Arto Kinnunen · 6 years ago
  38. 6e3f09b Review corrections by Arto Kinnunen · 6 years ago
  39. 0b62ce8 Use function for 16/24/32-bit BE conversion by Arto Kinnunen · 6 years ago
  40. 7fce190 Merge remote-tracking branch 'origin/pr/635' into HEAD by Simon Butcher · 6 years ago
  41. 7bcf2b5 Introduce version comparing functions by Hanno Becker · 6 years ago
  42. 358b300 TinyCrypt ECDHE-PSK: Implement CliKeyExchange parsing by Hanno Becker · 6 years ago
  43. 40ee0d4 Fixup: Correct #else and #endif comments in SrvKeyExch writing by Hanno Becker · 6 years ago
  44. b42e238 TinyCrypt SSL: Extend scope of CliKeyExchange parsing by Hanno Becker · 6 years ago
  45. 8ea7da2 TinyCrypt SSL: Extend scope of TC-based SrvKeyExch writing by Hanno Becker · 6 years ago
  46. b3a2448 TinyCrypt SSL: Impl. ECDH-param extraction from CRT for TinyCrypt by Hanno Becker · 6 years ago
  47. 2e80173 Fixup: Correct wrong comment ssl_prepare_server_key_exchange() by Hanno Becker · 6 years ago
  48. 27b7e50 TinyCrypt SSL: Declare EC-related TLS RFC constants in SSL namespace by Hanno Becker · 6 years ago
  49. 461fa72 TinyCrypt SSL: Adapt ssl_check_key_curve() to TinyCrypt by Hanno Becker · 6 years ago
  50. 7cb5c11 Missing uECC ECDSA flagging by Jarno Lamsa · 6 years ago
  51. 8671e7b Remove redundant SHA-1 code-path in TLS-1.2 handling of CrtVrfy by Hanno Becker · 6 years ago
  52. 2f41b24 Remove calc_verify SSL function pointer by Hanno Becker · 6 years ago
  53. 8a4b590 Remove checksum update function pointer from SSL handshake params by Hanno Becker · 6 years ago
  54. f0f01e1 Merge remote-tracking branch 'origin/pr/630' into baremetal by Simon Butcher · 6 years ago
  55. 434ab19 Merge remote-tracking branch 'origin/pr/629' into baremetal by Simon Butcher · 6 years ago
  56. 0863b2a Merge remote-tracking branch 'origin/pr/612' into baremetal by Simon Butcher · 6 years ago
  57. b72fc6a Don't use const var in initialization of another const var by Hanno Becker · 6 years ago
  58. 8295ff0 tinyCrypt: Don't store public ECDH-share in handshake struct by Hanno Becker · 6 years ago
  59. b1626fb tinyCrypt: Remove check for Secp256r1 in SrvKeyExch writing by Hanno Becker · 6 years ago
  60. 9cf087d Use tinyCrypt only for ECDHE-RSA/ECDSA in SrvKeyExch writing by Hanno Becker · 6 years ago
  61. 7a19633 tinyCrypt: Avoid unused var warning by marking vars as unused by Hanno Becker · 6 years ago
  62. 29d1655 Add MBEDTLS_ECDH_C guards to ECDH code-paths using legacy ECDH by Hanno Becker · 6 years ago
  63. 975b9ee Fix guards around use of legacy ECDH context by Hanno Becker · 6 years ago
  64. a3c2c17 tinyCrypt: Share ECDH secret calculation code-path by Hanno Becker · 6 years ago
  65. 75f12d1 tinyCrypt: Add ServerKeyExchange parsing code by Hanno Becker · 6 years ago
  66. d849c7c tinyCrypt: Hardcode ECDH parameter header by Hanno Becker · 6 years ago
  67. ef982d5 tinyCrypt: Bind RNG wrapper to tinyCrypt in mbedtls_ssl_setup() by Hanno Becker · 6 years ago
  68. e12aafb tinyCrypt: Initial commit towards ECDHE support by Jarno Lamsa · 6 years ago
  69. 4e46709 Document precoditions on some HS parsing/writing functions by Hanno Becker · 6 years ago
  70. 7d552fa Avoid collision of ssl_xxx_key_exchange_yyy() func names in cli/srv by Hanno Becker · 6 years ago
  71. 7ba0a88 Fix 'set but not used' ARM compiler warning by Hanno Becker · 6 years ago
  72. 868cb58 Rename SSL_PROC_CHK -> MBEDTLS_SSL_CHK by Hanno Becker · 6 years ago
  73. 9a12243 Introduce getter function for RNG context by Hanno Becker · 6 years ago
  74. 9db697e Async operations: Simplify restart logic by Hanno Becker · 6 years ago
  75. 4ec73cb Restructure SrvKeyExchange: Move parsing code by Hanno Becker · 6 years ago
  76. 09d2364 Share code between In-CliKeyExch and Out-CliKeyExch by Hanno Becker · 6 years ago
  77. d116e82 Restructure incoming CliKeyExch: Shorten postprocessing by Hanno Becker · 7 years ago
  78. 2eb716d Restructure incoming CliKeyExch: Remove old code by Hanno Becker · 6 years ago
  79. e7c4eed Restructure incoming CliKeyExch: Parsing code by Hanno Becker · 7 years ago
  80. 1e23af8 Restructure incoming CliKeyExch: Move PMS assembly code by Hanno Becker · 7 years ago
  81. dc8bfb9 Restructure incoming CliKeyExch: Move key derivation code by Hanno Becker · 7 years ago
  82. 7ec345d Restructure incoming CliKeyExch: Add frame for restructuring by Hanno Becker · 7 years ago
  83. 8844055 Remove compression field from SSL session if compression disabled by Hanno Becker · 6 years ago
  84. 93de296 Fix rebase slip by Hanno Becker · 6 years ago
  85. de62da9 Use separate functions to pend fatal and non-fatal alerts by Hanno Becker · 6 years ago
  86. 1facd55 Replace xxx_send_alert by xxx_pend_alert to save code by Hanno Becker · 6 years ago
  87. 3b014fc Merge remote-tracking branch 'origin/pr/604' into baremetal by Simon Butcher · 6 years ago
  88. 981f81d Add missing uses of mbedtls_ssl_get_minor() by Hanno Becker · 6 years ago
  89. f1bc9e1 Introduce helper functions to traverse signature hashes by Hanno Becker · 6 years ago
  90. 0af717b Don't use mbedtls_ssL_set_calc_verify_md writing CertificateRequest by Hanno Becker · 6 years ago
  91. feb1cee Merge remote-tracking branch 'origin/pr/602' into baremetal by Simon Butcher · 6 years ago
  92. a4a9c69 Introduce helper macro for traversal of supported EC TLS IDs by Hanno Becker · 6 years ago
  93. 84fb902 Work on client-provided supported EC TLS ID list in-place by Hanno Becker · 6 years ago
  94. 004619f Store TLS curve ID instead of information structure by Hanno Becker · 6 years ago
  95. 18729ae Guard RSA-only max_major/minor_ver fields from SSL handshake params by Hanno Becker · 6 years ago
  96. 381eaa5 Remove min/maj version from SSL context if only one version enabled by Hanno Becker · 6 years ago
  97. 2881d80 Introduce getter function for max/min SSL version by Hanno Becker · 6 years ago
  98. 3fa1ee5 Set SSL minor version only after validation by Hanno Becker · 6 years ago
  99. e965bd3 Allow hardcoding of min/max minor/major SSL version at compile-time by Hanno Becker · 6 years ago
  100. f4d6b49 Allow use of continue in single-ciphersuite 'loops' by Hanno Becker · 6 years ago