TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / 2ccdab8ef3b2e462863c9c2a946dcd6ccceca6bd / library / ssl_srv.c
  1. f0f01e1 Merge remote-tracking branch 'origin/pr/630' into baremetal by Simon Butcher · 6 years ago
  2. 434ab19 Merge remote-tracking branch 'origin/pr/629' into baremetal by Simon Butcher · 6 years ago
  3. 0863b2a Merge remote-tracking branch 'origin/pr/612' into baremetal by Simon Butcher · 6 years ago
  4. b72fc6a Don't use const var in initialization of another const var by Hanno Becker · 6 years ago
  5. 8295ff0 tinyCrypt: Don't store public ECDH-share in handshake struct by Hanno Becker · 6 years ago
  6. b1626fb tinyCrypt: Remove check for Secp256r1 in SrvKeyExch writing by Hanno Becker · 6 years ago
  7. 9cf087d Use tinyCrypt only for ECDHE-RSA/ECDSA in SrvKeyExch writing by Hanno Becker · 6 years ago
  8. 7a19633 tinyCrypt: Avoid unused var warning by marking vars as unused by Hanno Becker · 6 years ago
  9. 29d1655 Add MBEDTLS_ECDH_C guards to ECDH code-paths using legacy ECDH by Hanno Becker · 6 years ago
  10. 975b9ee Fix guards around use of legacy ECDH context by Hanno Becker · 6 years ago
  11. a3c2c17 tinyCrypt: Share ECDH secret calculation code-path by Hanno Becker · 6 years ago
  12. 75f12d1 tinyCrypt: Add ServerKeyExchange parsing code by Hanno Becker · 6 years ago
  13. d849c7c tinyCrypt: Hardcode ECDH parameter header by Hanno Becker · 6 years ago
  14. ef982d5 tinyCrypt: Bind RNG wrapper to tinyCrypt in mbedtls_ssl_setup() by Hanno Becker · 6 years ago
  15. e12aafb tinyCrypt: Initial commit towards ECDHE support by Jarno Lamsa · 6 years ago
  16. 4e46709 Document precoditions on some HS parsing/writing functions by Hanno Becker · 6 years ago
  17. 7d552fa Avoid collision of ssl_xxx_key_exchange_yyy() func names in cli/srv by Hanno Becker · 6 years ago
  18. 7ba0a88 Fix 'set but not used' ARM compiler warning by Hanno Becker · 6 years ago
  19. 868cb58 Rename SSL_PROC_CHK -> MBEDTLS_SSL_CHK by Hanno Becker · 6 years ago
  20. 9a12243 Introduce getter function for RNG context by Hanno Becker · 6 years ago
  21. 9db697e Async operations: Simplify restart logic by Hanno Becker · 6 years ago
  22. 4ec73cb Restructure SrvKeyExchange: Move parsing code by Hanno Becker · 6 years ago
  23. 09d2364 Share code between In-CliKeyExch and Out-CliKeyExch by Hanno Becker · 6 years ago
  24. d116e82 Restructure incoming CliKeyExch: Shorten postprocessing by Hanno Becker · 7 years ago
  25. 2eb716d Restructure incoming CliKeyExch: Remove old code by Hanno Becker · 6 years ago
  26. e7c4eed Restructure incoming CliKeyExch: Parsing code by Hanno Becker · 7 years ago
  27. 1e23af8 Restructure incoming CliKeyExch: Move PMS assembly code by Hanno Becker · 7 years ago
  28. dc8bfb9 Restructure incoming CliKeyExch: Move key derivation code by Hanno Becker · 7 years ago
  29. 7ec345d Restructure incoming CliKeyExch: Add frame for restructuring by Hanno Becker · 7 years ago
  30. 8844055 Remove compression field from SSL session if compression disabled by Hanno Becker · 6 years ago
  31. 93de296 Fix rebase slip by Hanno Becker · 6 years ago
  32. de62da9 Use separate functions to pend fatal and non-fatal alerts by Hanno Becker · 6 years ago
  33. 1facd55 Replace xxx_send_alert by xxx_pend_alert to save code by Hanno Becker · 6 years ago
  34. 3b014fc Merge remote-tracking branch 'origin/pr/604' into baremetal by Simon Butcher · 6 years ago
  35. 981f81d Add missing uses of mbedtls_ssl_get_minor() by Hanno Becker · 6 years ago
  36. f1bc9e1 Introduce helper functions to traverse signature hashes by Hanno Becker · 6 years ago
  37. 0af717b Don't use mbedtls_ssL_set_calc_verify_md writing CertificateRequest by Hanno Becker · 6 years ago
  38. feb1cee Merge remote-tracking branch 'origin/pr/602' into baremetal by Simon Butcher · 6 years ago
  39. a4a9c69 Introduce helper macro for traversal of supported EC TLS IDs by Hanno Becker · 6 years ago
  40. 84fb902 Work on client-provided supported EC TLS ID list in-place by Hanno Becker · 6 years ago
  41. 004619f Store TLS curve ID instead of information structure by Hanno Becker · 6 years ago
  42. 18729ae Guard RSA-only max_major/minor_ver fields from SSL handshake params by Hanno Becker · 6 years ago
  43. 381eaa5 Remove min/maj version from SSL context if only one version enabled by Hanno Becker · 6 years ago
  44. 2881d80 Introduce getter function for max/min SSL version by Hanno Becker · 6 years ago
  45. 3fa1ee5 Set SSL minor version only after validation by Hanno Becker · 6 years ago
  46. e965bd3 Allow hardcoding of min/max minor/major SSL version at compile-time by Hanno Becker · 6 years ago
  47. f4d6b49 Allow use of continue in single-ciphersuite 'loops' by Hanno Becker · 6 years ago
  48. 73f4cb1 Rename XXX_SINGLE_CIPHERSUITE -> XXX_CONF_SINGLE_CIPHERSUITE by Hanno Becker · 6 years ago
  49. e02758c Remove ciphersuite from SSL session if single suite hardcoded by Hanno Becker · 6 years ago
  50. df64596 Remove ciphersuite from handshake params if single suite hardcoded by Hanno Becker · 6 years ago
  51. 2d46b4f Adapt ClientHello parsing to case of single hardcoded ciphersuite by Hanno Becker · 6 years ago
  52. 473f98f Introduce ciphersuite handle type by Hanno Becker · 6 years ago
  53. 5455afd Merge pull request #599 from ARMmbed/baremetal-ec-preparation by Manuel Pégourié-Gonnard · 6 years ago
  54. d3b2fcb Don't store client-supported ECs in heap-allocated buffer by Hanno Becker · 6 years ago
  55. ece325c Allow compile-time configuration of PRNG in SSL module by Hanno Becker · 6 years ago
  56. de8869c Merge remote-tracking branch 'restricted/pr/608' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  57. 44ba6b0 Merge remote-tracking branch 'restricted/pr/594' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  58. 37261e6 Merge remote-tracking branch 'restricted/pr/601' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  59. 417d2ce Merge remote-tracking branch 'restricted/pr/584' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  60. c2cfdaa Allow config'n of incl of CertificateReq CA list Y/N at compile-time by Hanno Becker · 6 years ago
  61. 2d9623f Allow configuration of endpoint (cli/srv) at compile-time by Hanno Becker · 6 years ago
  62. b0b2b67 Allow compile-time configuration of legacy renegotiation by Hanno Becker · 6 years ago
  63. acd4fc0 Allow compile-time configuration of authentication mode by Hanno Becker · 6 years ago
  64. bc6b598 [Fixup] Add missing PK release call in Cert Verify parsing by Hanno Becker · 6 years ago
  65. 754b9f3 Introduce getter function for renego_status by Manuel Pégourié-Gonnard · 6 years ago
  66. 3652e99 Add getter function for handshake->resume by Manuel Pégourié-Gonnard · 6 years ago
  67. 29f2dd0 Address review comments by Jarno Lamsa · 6 years ago
  68. 59bd12b Add new config MBEDTLS_SSL_SESSION_RESUMPTION by Jarno Lamsa · 6 years ago
  69. 7be1406 Add config MBEDTLS_SSL_SESSION_CACHE by Jarno Lamsa · 6 years ago
  70. abd929c Merge branch 'mbedtls-2.16' into baremetal-2.16-01_07_19 by Hanno Becker · 6 years ago
  71. 2224ccf Don't use assertion for failures of mbedtls_x509_crt_x_acquire() by Hanno Becker · 6 years ago
  72. 5f268b3 Don't allow change of CRT frame returned by x509_crt_frame_acquire() by Hanno Becker · 6 years ago
  73. c6d1c3e Remove frame/pk parameter from mbedtls_x509_crt_xxx_release() by Hanno Becker · 6 years ago
  74. 1e11f21 Solely use raw X.509 name data references including SEQUENCE header by Hanno Becker · 6 years ago
  75. 828a8c0 Add compile-guard for < TLS1.2 path in server-side ssl_pick_cert() by Hanno Becker · 6 years ago
  76. 73cd8d8 Make use of acquire/release in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
  77. 232f8fa Make use of CRT acquire/release in ssl_write_certificate_request() by Hanno Becker · 6 years ago
  78. 30649f7 Make use of CRT acquire/release in server-side ssl_pick_cert() by Hanno Becker · 6 years ago
  79. 371e0e4 Determine whether CRT is initialized or not through raw data pointer by Hanno Becker · 6 years ago
  80. 74b89f6 Use private key to check suitability of PK type when picking srv CRT by Hanno Becker · 6 years ago
  81. 81bb4d0 Simplify server-side ssl_decrypt_encrypted_pms() by Hanno Becker · 6 years ago
  82. 1ab322b Remove extended_ms field from HS param if ExtendedMS enforced by Hanno Becker · 6 years ago
  83. a49ec56 Introduce getter function for `extended_ms` field in HS struct by Hanno Becker · 6 years ago
  84. 03b64fa Rearrange ExtendedMasterSecret parsing logic by Hanno Becker · 6 years ago
  85. aabbb58 Exemplify harcoding SSL config at compile-time in example of ExtMS by Hanno Becker · 6 years ago
  86. 5882dd0 Remove CRT digest from SSL session if !RENEGO + !KEEP_PEER_CERT by Hanno Becker · 6 years ago
  87. cd90126 Adapt client auth detection in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
  88. 0833c10 Adapt server-side signature verification to use raw public key by Hanno Becker · 6 years ago
  89. ae39b9e Make use of macro and helper detecting whether CertRequest allowed by Hanno Becker · 6 years ago
  90. c725e4b Merge remote-tracking branch 'origin/pr/590' into baremetal by Simon Butcher · 6 years ago
  91. ec1c222 Fix a few style issues by Manuel Pégourié-Gonnard · 6 years ago
  92. 20095af Changes according to review comments by Jarno Lamsa · 6 years ago
  93. 842be16 Check for the enforcing and fail handshake if the peer doesn't support by Jarno Lamsa · 6 years ago
  94. 64c1681 Use new macros for all TLS/DTLS tests by Manuel Pégourié-Gonnard · 6 years ago
  95. ff4bd9f Use new tools for all cases with TLS-specific code by Manuel Pégourié-Gonnard · 6 years ago
  96. 0d1d76f Merge remote-tracking branch 'origin/pr/561' into baremetal by Simon Butcher · 6 years ago
  97. 5a790f9 Merge remote-tracking branch 'origin/pr/563' into baremetal by Simon Butcher · 6 years ago
  98. a5a2b08 Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID by Hanno Becker · 6 years ago
  99. 3cdf8fe Consistently reference CID draft through name + URL by Hanno Becker · 6 years ago
  100. 75b334f Update references to CID draft to version 5 by Hanno Becker · 6 years ago