TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / 3b154c129e61a48c0eb56b71878b846a0ac09eba / library
  1. 5903de4 Split mbedtls_ssl_hdr_len() in separate functions for in/out records by Hanno Becker · 6 years ago
  2. f661c9c Add helper function to check validity of record content type by Hanno Becker · 6 years ago
  3. 37ae952 Move dropping of unexpected AD records to after record decryption by Hanno Becker · 6 years ago
  4. 79594fd Set pointer to start of plaintext at record decryption time by Hanno Becker · 6 years ago
  5. 82e2a39 Treat an invalid record after decryption as fatal by Hanno Becker · 6 years ago
  6. 6e7700d Expain rationale for handling of consecutive empty AD records by Hanno Becker · 6 years ago
  7. 76a79ab Don't allow calling CID API outside of DTLS by Hanno Becker · 6 years ago
  8. 95e4bbc Fix additional data calculation if CID is disabled by Hanno Becker · 6 years ago
  9. af05ac0 Remove unnecessary empty line in ssl_tls.c by Hanno Becker · 6 years ago
  10. 07dc97d Don't quote DTLSInnerPlaintext structure multiple times by Hanno Becker · 6 years ago
  11. d3f8c79 Improve wording in ssl_build_inner_plaintext() by Hanno Becker · 6 years ago
  12. edb24f8 Remove unnecessary whitespace in ssl_extract_add_data_from_record() by Hanno Becker · 6 years ago
  13. 92fb4fa Reduce stack usage for additional data buffers in record dec/enc by Hanno Becker · 6 years ago
  14. c4a190b Add length of CID to additional data used for record protection by Hanno Becker · 6 years ago
  15. d5aeab1 Improve documentation of ssl_extract_add_data_from_record() by Hanno Becker · 6 years ago
  16. 43c24b8 Fix missing compile-time guards around CID-only constants by Hanno Becker · 6 years ago
  17. f44e55d Remove TODO by Hanno Becker · 6 years ago
  18. 75f080f Use MBEDTLS_ namespace for internal CID length constant by Hanno Becker · 6 years ago
  19. 8a7f972 Skip copying CIDs to SSL transforms until CID feature is complete by Hanno Becker · 6 years ago
  20. 8b3eb5a Implement inner plaintext parsing/writing for CID-based connections by Hanno Becker · 6 years ago
  21. cab87e6 Incorporate CID into MAC computations during record protection by Hanno Becker · 6 years ago
  22. 1c1f046 Replace 'ingoing' -> 'incoming' in CID debug messages by Hanno Becker · 6 years ago
  23. c5f2422 Document behaviour of mbedtls_ssl_get_peer_cid() for empty CIDs by Hanno Becker · 6 years ago
  24. 5a29990 Improve structure of client-side CID extension parsing by Hanno Becker · 6 years ago
  25. 2262648 Improve debugging output of client-side CID extension parsing by Hanno Becker · 6 years ago
  26. 08556bf Improve structure of ssl_parse_cid_ext() by Hanno Becker · 6 years ago
  27. a34ff5b Correct compile-time guard around CID extension writing func on srv by Hanno Becker · 6 years ago
  28. b7ee0cf Make integer truncation explicit in mbedtls_ssl_set_cid() by Hanno Becker · 6 years ago
  29. b1f89cd Implement mbedtls_ssl_get_peer_cid() by Hanno Becker · 6 years ago
  30. 4bf7465 Copy CIDs into SSL transform if use of CID has been negotiated by Hanno Becker · 6 years ago
  31. a8373a1 Implement parsing of CID extension in ServerHello by Hanno Becker · 6 years ago
  32. 51de2d3 Implement writing of CID extension in ServerHello by Hanno Becker · 6 years ago
  33. 89dcc88 Implement parsing of CID extension in ClientHello by Hanno Becker · 6 years ago
  34. 49770ff Implement writing of CID extension in ClientHello by Hanno Becker · 6 years ago
  35. ca09224 Allow configuring own CID fields through mbedtls_ssl_get_peer_cid() by Hanno Becker · 6 years ago
  36. 35c36a6 Guard CID implementations by MBEDTLS_SSL_CID by Hanno Becker · 6 years ago
  37. f1f9a82 Add warnings about status of implementation of CID API by Hanno Becker · 6 years ago
  38. f8542cf Add dummy implementations for CID API by Hanno Becker · 6 years ago
  39. f8c1026 Update version_features.c by Hanno Becker · 6 years ago
  40. 2ab5cf6 Merge remote-tracking branch 'origin/pr/2403' into development by Jaeden Amero · 6 years ago
  41. ade9e28 ssl_cli.c : add explicit casting to unsigned char by Andrzej Kurek · 6 years ago
  42. 346747c Force the usage of crypto submodule by Andrzej Kurek · 6 years ago
  43. 45be3d8 Fix compile guard for static function in ssl by Manuel Pégourié-Gonnard · 6 years ago
  44. d8167e8 Build from submodule by default (make, cmake) by Manuel Pégourié-Gonnard · 7 years ago
  45. 5aebeeb Set next sequence of subject_alt_names to NULL by Ron Eldor · 6 years ago
  46. 31d1432 Merge remote-tracking branch 'origin/pr/2530' into development by Jaeden Amero · 6 years ago
  47. 9ebcf9b Merge remote-tracking branch 'origin/pr/2538' into development by Jaeden Amero · 6 years ago
  48. 6aeae9e Style fix by Ron Eldor · 6 years ago
  49. a291391 Fix minor issues by Ron Eldor · 6 years ago
  50. dbbd966 Check that SAN is not malformed when parsing by Ron Eldor · 6 years ago
  51. c8b5f3f Documentation fixes by Ron Eldor · 6 years ago
  52. d2f25f7 Fix missing tls version test failures by Ron Eldor · 6 years ago
  53. 0810f0b Fix typo by Ron Eldor · 6 years ago
  54. cf28009 Add function to retrieve the tls_prf type by Ron Eldor · 6 years ago
  55. 51d3ab5 Add public API for tls_prf by Ron Eldor · 6 years ago
  56. b7fd64c Add eap-tls key derivation in the examples. by Ron Eldor · 6 years ago
  57. f5cc10d Add an extra key export function by Ron Eldor · 6 years ago
  58. 3b35085 Have the temporary buffer allocated dynamically by Ron Eldor · 6 years ago
  59. a9f9a73 Zeroize secret data in the exit point by Ron Eldor · 6 years ago
  60. e699270 Add a single exit point in key derivation function by Ron Eldor · 6 years ago
  61. 8b0c3c9 Fail in case critical crt policy not supported by Ron Eldor · 6 years ago
  62. f05f594 change the type of hardware_module_name member by Ron Eldor · 6 years ago
  63. 890819a Change mbedtls_x509_subject_alternative_name by Ron Eldor · 6 years ago
  64. 0806379 Add length checking in certificate policy parsing by Ron Eldor · 6 years ago
  65. 293c3da Remove redundant memset() by Janos Follath · 6 years ago
  66. 6c379b4 Propogate error when parsing SubjectAltNames by Janos Follath · 6 years ago
  67. 2f0ec1e Tidy up style in x509_info_subject_alt_name by Janos Follath · 6 years ago
  68. 22f605f Print unparseable SubjectAlternativeNames by Janos Follath · 6 years ago
  69. ab23cd1 Remove unneeded checks from x509_get_other_name by Janos Follath · 6 years ago
  70. 74d9acc Add support for certificate policies extension by Ron Eldor · 6 years ago
  71. b2dc3fa Suppport otherName of type hardware module name by Ron Eldor · 6 years ago
  72. 5d9c963 Add support for RSA PKCSv1.5 signatures using RIPEMD-160 by Jack Lloyd · 6 years ago
  73. 75d9a33 Merge remote-tracking branch 'origin/pr/1633' into development by Jaeden Amero · 6 years ago
  74. 4e952f6 Regenerate errors.c by Jaeden Amero · 6 years ago
  75. 1f10d76 Fix uninitialized variable access in debug output of record enc/dec by Hanno Becker · 6 years ago
  76. 22bf145 Adapt PSA code to ssl_transform changes by Hanno Becker · 6 years ago
  77. 78f839d Adapt record length value after encryption by Hanno Becker · 6 years ago
  78. b2ca87d Rename ssl_decrypt_buf() to mbedtls_ssl_decrypt_buf() in comment by Hanno Becker · 7 years ago
  79. 29800d2 Double check that record expansion is as expected during decryption by Hanno Becker · 7 years ago
  80. 1c0c37f Move debugging output after record decryption by Hanno Becker · 7 years ago
  81. a18d132 Add tests for record encryption/decryption by Hanno Becker · 8 years ago
  82. d56ed24 Reduce size of `ssl_transform` if no MAC ciphersuite is enabled by Hanno Becker · 8 years ago
  83. 8031d06 Remove code from `ssl_derive_keys` if relevant modes are not enabled by Hanno Becker · 8 years ago
  84. 2e24c3b Provide standalone version of `ssl_decrypt_buf` by Hanno Becker · 8 years ago
  85. 9eddaeb Provide standalone version of `ssl_encrypt_buf` by Hanno Becker · 8 years ago
  86. 52344c2 Correct space needed for MAC in case of NULL cipher by Hanno Becker · 8 years ago
  87. e694c3e Remove ciphersuite_info from ssl_transform by Hanno Becker · 8 years ago
  88. 88aaf65 Remove key length field from ssl_transform by Hanno Becker · 8 years ago
  89. 3956a84 Merge remote-tracking branch 'origin/pr/2092' into development by Jaeden Amero · 6 years ago
  90. f790a6c Merge remote-tracking branch 'origin/pr/2536' into development by Jaeden Amero · 6 years ago
  91. 7a1c4eb Merge remote-tracking branch 'origin/pr/2567' into development by Jaeden Amero · 6 years ago
  92. fe71067 Merge remote-tracking branch 'origin/pr/2539' into development by Jaeden Amero · 6 years ago
  93. ff34d43 Merge remote-tracking branch 'origin/pr/2532' into development by Jaeden Amero · 6 years ago
  94. e823416 Add certificate policy oid x509 extension by Ron Eldor · 6 years ago
  95. e6d5a50 Merge remote-tracking branch 'origin/pr/2558' into development by Jaeden Amero · 6 years ago
  96. 4c8c7aa Don't use debug level 1 for informational messages by Hanno Becker · 6 years ago
  97. df48efa Skip uncritical unsupported extensions by Ron Eldor · 6 years ago
  98. aa34020 Merge remote-tracking branch 'origin/pr/2535' into development by Jaeden Amero · 6 years ago
  99. d192ba4 Merge remote-tracking branch 'origin/pr/2463' into development by Jaeden Amero · 6 years ago
  100. 62ab1f9 Merge remote-tracking branch 'origin/pr/2405' into development by Jaeden Amero · 6 years ago