TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / 353a6f0d50565073c71b55a1ae813a6bcfdae4dd
  1. 353a6f0 Fix typo in documentation of ssl_parse_certificate_chain() by Hanno Becker · 6 years ago
  2. 62d58ed Add debug output in case of assertion failure by Hanno Becker · 6 years ago
  3. 6883874 Fix typo in SSL ticket documentation by Hanno Becker · 6 years ago
  4. fe4ef0c Add config sanity check for !MBEDTLS_SSL_KEEP_PEER_CERTIFICATE by Hanno Becker · 6 years ago
  5. a1051b4 ssl_client2: Zeroize peer CRT info buffer when reconnecting by Hanno Becker · 6 years ago
  6. fe9aec4 Reintroduce numerous ssl-opt.sh tests if !MBEDTLS_SSL_KEEP_PEER_CERT by Hanno Becker · 6 years ago
  7. a9766c2c ssl_client2: Extract peer CRT info from verification callback by Hanno Becker · 6 years ago
  8. 958efeb Improve documentation of mbedtls_ssl_get_peer_cert() by Hanno Becker · 6 years ago
  9. fd7f298 Improve documentation of MBEDTLS_SSL_KEEP_PEER_CERTIFICATE by Hanno Becker · 6 years ago
  10. 3fd3f5e Fix indentation of Doxygen comment in ssl_internal.h by Hanno Becker · 6 years ago
  11. accc599 Set peer CRT length only after successful allocation by Hanno Becker · 6 years ago
  12. 3acc9b9 Remove question in comment about verify flags on cli vs. server by Hanno Becker · 6 years ago
  13. 1aed777 Remove misleading and redundant guard around restartable ECC field by Hanno Becker · 6 years ago
  14. 545ced4 Add test for !MBEDTLS_SSL_KEEP_PEER_CERTIFICATE to all.sh by Hanno Becker · 6 years ago
  15. 6b8fbab Free peer CRT chain immediately after verifying it by Hanno Becker · 6 years ago
  16. 0056eab Parse peer's CRT chain in-place from the input buffer by Hanno Becker · 6 years ago
  17. ae553dd Free peer's public key as soon as it's no longer needed by Hanno Becker · 6 years ago
  18. b9d4479 Correct compile-time guards for ssl_clear_peer_cert() by Hanno Becker · 6 years ago
  19. e31505d Adapt ChangeLog by Hanno Becker · 6 years ago
  20. e682457 Guard mbedtls_ssl_get_peer_cert() by new compile-time option by Hanno Becker · 6 years ago
  21. d0aac14 Add dependency to ssl-opt.sh tests which need peer CRT debug info by Hanno Becker · 6 years ago
  22. b6c5eca Adapt mbedtls_ssl_parse_certificate() to removal of peer_cert field by Hanno Becker · 6 years ago
  23. 13c327d Adapt ssl_clear_peer_cert() to removal of `peer_cert` field by Hanno Becker · 6 years ago
  24. 6d1986e Adapt mbedtls_ssl_session_copy() to removal of `peer_cert` field by Hanno Becker · 6 years ago
  25. 94cc26d Adapt session ticket implementation to removal of `peer_cert` field by Hanno Becker · 6 years ago
  26. abe6f66 Remove peer CRT from mbedtls_ssl_session if new option is disabled by Hanno Becker · 6 years ago
  27. 2a831a4 Adapt client auth detection in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
  28. 57b33c9 Use mbedtls_ssl_get_peer_cert() to query peer cert in cert_app by Hanno Becker · 6 years ago
  29. a1ab9be Adapt server-side signature verification to use raw public key by Hanno Becker · 6 years ago
  30. a6899bb Adapt client-side signature verification to use raw public key by Hanno Becker · 6 years ago
  31. be7f508 Adapt ssl_get_ecdh_params_from_cert() to use raw public key by Hanno Becker · 6 years ago
  32. c7d7e29 Adapt ssl_write_encrypted_pms() to use raw public key by Hanno Becker · 6 years ago
  33. a274753 Make a copy of peer's raw public key after verifying its CRT chain by Hanno Becker · 6 years ago
  34. 7517312 Add field for peer's raw public key to TLS handshake param structure by Hanno Becker · 6 years ago
  35. 494dd7a Add raw public key buffer bounds to mbedtls_x509_crt struct by Hanno Becker · 6 years ago
  36. a887d1a Remove peer CRT from cache if !MBEDTLS_SSL_KEEP_PEER_CERTIFICATE by Hanno Becker · 6 years ago
  37. c966bd1 Remove peer CRT from tickets if !MBEDTLS_SSL_KEEP_PEER_CERTIFICATE by Hanno Becker · 6 years ago
  38. c5fcbb3 Add peer CRT digest to session tickets by Hanno Becker · 6 years ago
  39. 3dad311 Parse and verify peer CRT chain in local variable by Hanno Becker · 7 years ago
  40. 177475a Mitigate triple handshake attack by comparing digests only by Hanno Becker · 7 years ago
  41. 6bbd94c Compute digest of peer's end-CRT in mbedtls_ssl_parse_certificate() by Hanno Becker · 7 years ago
  42. 9198ad1 Extend mbedtls_ssl_session by buffer holding peer CRT digest by Hanno Becker · 7 years ago
  43. 8d84fd8 Update version_features.c by Hanno Becker · 6 years ago
  44. bb278f5 Add configuration option to remove peer CRT after handshake by Hanno Becker · 7 years ago
  45. 4a82c1c Improve documentation of mbedtls_ssl_get_peer_cert() by Hanno Becker · 7 years ago
  46. 8273df8 Re-classify errors on missing peer CRT by Hanno Becker · 6 years ago
  47. 0329f75 Increase robustness and documentation of ticket implementation by Hanno Becker · 6 years ago
  48. aee8717 Simplify session cache implementation via mbedtls_ssl_session_copy() by Hanno Becker · 6 years ago
  49. 52055ae Give ssl_session_copy() external linkage by Hanno Becker · 6 years ago
  50. c7bd780 Allow passing any X.509 CRT chain to ssl_parse_certificate_chain() by Hanno Becker · 7 years ago
  51. 6863619 Introduce helper function for peer CRT chain verification by Hanno Becker · 7 years ago
  52. fcd9e71 Don't progress TLS state machine on peer CRT chain parsing error by Hanno Becker · 7 years ago
  53. 77adddc Make use of macro and helper detecting whether CertRequest allowed by Hanno Becker · 6 years ago
  54. 28f2fcd Add helper function to check whether a CRT msg is expected by Hanno Becker · 6 years ago
  55. 7177a88 Introduce helper function to determine whether suite uses server CRT by Hanno Becker · 7 years ago
  56. 2148993 Use helper macro to detect whether some ciphersuite uses CRTs by Hanno Becker · 7 years ago
  57. 6bdfab2 Unify state machine update in mbedtls_ssl_parse_certificate() by Hanno Becker · 7 years ago
  58. 7a955a0 Clear peer's CRT chain outside before parsing new one by Hanno Becker · 7 years ago
  59. 4a55f63 Introduce helper to check for no-CRT notification from client by Hanno Becker · 7 years ago
  60. a028c5b Introduce CRT counter to CRT chain parsing function by Hanno Becker · 7 years ago
  61. 1294a0b Introduce helper function to clear peer CRT from session structure by Hanno Becker · 7 years ago
  62. f852b1c Break overly long line in definition of mbedtls_ssl_get_session() by Hanno Becker · 7 years ago
  63. 60848e6 Don't reuse CRT from initial handshake during renegotiation by Hanno Becker · 7 years ago
  64. 86016a0 Merge remote-tracking branch 'origin/pr/2338' into development by Jaeden Amero · 6 years ago
  65. e895342 Merge remote-tracking branch 'origin/pr/2427' into development by Jaeden Amero · 6 years ago
  66. d247762 Merge remote-tracking branch 'origin/pr/2460' into development by Jaeden Amero · 6 years ago
  67. 85fd913 Fix typo in check_config.h by Hanno Becker · 6 years ago
  68. caca307 crypto: Update submodule to Mbed Crypto 1.0.0d6 by Jaeden Amero · 6 years ago
  69. 415620c Merge remote-tracking branch 'origin/pr/2105' into development by Jaeden Amero · 6 years ago
  70. 461bd3d Merge remote-tracking branch 'origin/pr/2454' into development by Jaeden Amero · 6 years ago
  71. 9f47f82 Merge remote-tracking branch 'origin/pr/2391' into development by Jaeden Amero · 6 years ago
  72. 8963b03 Merge remote-tracking branch 'origin/pr/2411' into development by Jaeden Amero · 6 years ago
  73. d9516b5 Merge remote-tracking branch 'origin/pr/2407' into development by Jaeden Amero · 6 years ago
  74. 0ae63f7 Merge remote-tracking branch 'origin/pr/2383' into development by Jaeden Amero · 6 years ago
  75. 241b524 Disable restartable ECC in full config PSA test in all.sh by Hanno Becker · 6 years ago
  76. 1ce51e4 Forbid setting MBEDTLS_ECP_RESTARTABLE and MBEDTLS_USE_PSA_CRYPTO_C by Hanno Becker · 6 years ago
  77. 3497323 Initialize PSA Crypto operation contexts by Jaeden Amero · 6 years ago
  78. 135baef Define maximum EC public key length depending on enabled curves by Hanno Becker · 6 years ago
  79. 28f7844 Grep for debug output witnessing use of PSA in ECDHE ssl-opt.sh by Hanno Becker · 6 years ago
  80. 4af484e Regenerate VS2010 project file by Hanno Becker · 7 years ago
  81. 3b7c4a0 Regenerate VisualStudio project file by Hanno Becker · 7 years ago
  82. 354e248 Add ssl-opt.sh tests for PSA-based ECDH with various ECC curves by Hanno Becker · 7 years ago
  83. 0a94a64 Add debugging output to confirm that PSA was used for ECDHE by Hanno Becker · 7 years ago
  84. c14a3bb Make variable in ssl_write_client_key_exchange() more descriptive by Hanno Becker · 7 years ago
  85. 4a63ed4 Implement ClientKeyExchange writing in PSA-based ECDHE suites by Hanno Becker · 7 years ago
  86. bb89e27 Implement ServerKeyExchange parsing for PSA-based ECDHE suites by Hanno Becker · 7 years ago
  87. df51dbe Add fields for PSA-based ECDHE to handshake structure by Hanno Becker · 6 years ago
  88. f75f912 Add functions to psa_util module to convert EC public keys by Hanno Becker · 7 years ago
  89. 9c99dc8 Merge pull request #2395 from ARMmbed/development-psa-merged-dev-8e76332 by Manuel Pégourié-Gonnard · 6 years ago
  90. 064128c Update submodule pointer to commit 0574e6a of mbed-crypto/development by Andrzej Kurek · 6 years ago archive/development-psa-merged-dev-8e76332 development-psa-merged-dev-8e76332
  91. 1b20be5 Write documentation for TEST_ASSERT by Andrzej Kurek · 6 years ago
  92. 2d79266 psa_utils: Make fallthrough clear for compilers by Jaeden Amero · 6 years ago
  93. eb50871 all.sh: add a seedfile generation step by Andrzej Kurek · 6 years ago
  94. c058773 Update submodule pointer to dea02cc8b by Andrzej Kurek · 6 years ago
  95. 3ea2687 psa: Initialize crypto in tests that need to by Jaeden Amero · 6 years ago
  96. 54efcb7 Update query config with VSNPRINTF macro by Andres Amaya Garcia · 6 years ago
  97. 08b807a Update crypto submodule version to commit f54597144874 by Andrzej Kurek · 6 years ago
  98. f389629 Move a restartable ecp context to a conditional compilation block by Andrzej Kurek · 6 years ago archive/restartable-ecc-unused-variable restartable-ecc-unused-variable
  99. 6f7703d rsa: Enable use of zero-length null output by Jaeden Amero · 6 years ago
  100. 004f87b RSA encryption: accept input=NULL if ilen=0 by Gilles Peskine · 7 years ago