TrustedFirmware Git Browser
Code Review
Sign In
review.trustedfirmware.org
/
mirror
/
mbed-tls.git
/
473f98f2e013f116c0c48d02feff23b12e3e9733
/
library
/
ssl_cli.c
473f98f
Introduce ciphersuite handle type
by Hanno Becker
· 6 years ago
ece325c
Allow compile-time configuration of PRNG in SSL module
by Hanno Becker
· 6 years ago
44ba6b0
Merge remote-tracking branch 'restricted/pr/594' into baremetal-proposed
by Manuel Pégourié-Gonnard
· 6 years ago
37261e6
Merge remote-tracking branch 'restricted/pr/601' into baremetal-proposed
by Manuel Pégourié-Gonnard
· 6 years ago
417d2ce
Merge remote-tracking branch 'restricted/pr/584' into baremetal-proposed
by Manuel Pégourié-Gonnard
· 6 years ago
b0b2b67
Allow compile-time configuration of legacy renegotiation
by Hanno Becker
· 6 years ago
93c8262
Clarify conditions related to resumption in client
by Manuel Pégourié-Gonnard
· 6 years ago
754b9f3
Introduce getter function for renego_status
by Manuel Pégourié-Gonnard
· 6 years ago
3652e99
Add getter function for handshake->resume
by Manuel Pégourié-Gonnard
· 6 years ago
44b1076
Remove now-redundant code
by Manuel Pégourié-Gonnard
· 6 years ago
594a1bb
Fix a few style issues
by Manuel Pégourié-Gonnard
· 6 years ago
29f2dd0
Address review comments
by Jarno Lamsa
· 6 years ago
dbf6073
Fix ssl_cli resumption guards
by Jarno Lamsa
· 6 years ago
5165169
Fix test issues
by Jarno Lamsa
· 6 years ago
59bd12b
Add new config MBEDTLS_SSL_SESSION_RESUMPTION
by Jarno Lamsa
· 6 years ago
2224ccf
Don't use assertion for failures of mbedtls_x509_crt_x_acquire()
by Hanno Becker
· 6 years ago
c6d1c3e
Remove frame/pk parameter from mbedtls_x509_crt_xxx_release()
by Hanno Becker
· 6 years ago
2fefa48
Make use of acquire/release in ssl_parse_server_key_exchange()
by Hanno Becker
· 6 years ago
39ae65c
Make use of acquire/release in ssl_get_ecdh_params_from_cert()
by Hanno Becker
· 6 years ago
0c16816
Make use of acquire/release in client-side ssl_write_encrypted_pms()
by Hanno Becker
· 6 years ago
1ab322b
Remove extended_ms field from HS param if ExtendedMS enforced
by Hanno Becker
· 6 years ago
03b64fa
Rearrange ExtendedMasterSecret parsing logic
by Hanno Becker
· 6 years ago
aabbb58
Exemplify harcoding SSL config at compile-time in example of ExtMS
by Hanno Becker
· 6 years ago
5882dd0
Remove CRT digest from SSL session if !RENEGO + !KEEP_PEER_CERT
by Hanno Becker
· 6 years ago
c39e23e
Add further debug statements on assertion failures
by Hanno Becker
· 6 years ago
e9839c0
Add debug output in case of assertion failure
by Hanno Becker
· 6 years ago
6c83db7
Free peer's public key as soon as it's no longer needed
by Hanno Becker
· 6 years ago
69fad13
Adapt client-side signature verification to use raw public key
by Hanno Becker
· 6 years ago
53b6b7e
Adapt ssl_get_ecdh_params_from_cert() to use raw public key
by Hanno Becker
· 6 years ago
374800a
Adapt ssl_write_encrypted_pms() to use raw public key
by Hanno Becker
· 6 years ago
f02d550
Re-classify errors on missing peer CRT
by Hanno Becker
· 6 years ago
ae39b9e
Make use of macro and helper detecting whether CertRequest allowed
by Hanno Becker
· 6 years ago
c725e4b
Merge remote-tracking branch 'origin/pr/590' into baremetal
by Simon Butcher
· 6 years ago
01a8eb2
Merge remote-tracking branch 'origin/pr/585' into baremetal
by Simon Butcher
· 6 years ago
20095af
Changes according to review comments
by Jarno Lamsa
· 6 years ago
842be16
Check for the enforcing and fail handshake if the peer doesn't support
by Jarno Lamsa
· 6 years ago
64c1681
Use new macros for all TLS/DTLS tests
by Manuel Pégourié-Gonnard
· 6 years ago
ff4bd9f
Use new tools for all cases with TLS-specific code
by Manuel Pégourié-Gonnard
· 6 years ago
3d699e4
SSL/TLS client: Remove old session ticket on renegotiation
by Hanno Becker
· 7 years ago
0d1d76f
Merge remote-tracking branch 'origin/pr/561' into baremetal
by Simon Butcher
· 6 years ago
5a790f9
Merge remote-tracking branch 'origin/pr/563' into baremetal
by Simon Butcher
· 6 years ago
a5a2b08
Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID
by Hanno Becker
· 6 years ago
3cdf8fe
Consistently reference CID draft through name + URL
by Hanno Becker
· 6 years ago
75b334f
Update references to CID draft to version 5
by Hanno Becker
· 6 years ago
f5970a0
Set pointer to start of plaintext at record decryption time
by Hanno Becker
· 6 years ago
f885d3b
Improve structure of client-side CID extension parsing
by Hanno Becker
· 6 years ago
8f68f87
Improve debugging output of client-side CID extension parsing
by Hanno Becker
· 6 years ago
1ba81f6
Implement parsing of CID extension in ServerHello
by Hanno Becker
· 6 years ago
39ec525
Implement writing of CID extension in ClientHello
by Hanno Becker
· 6 years ago
a575975
Make calc_verify() return the length as well
by Manuel Pégourié-Gonnard
· 6 years ago
8759e16
Remove ciphersuite_info from ssl_transform
by Hanno Becker
· 8 years ago
3fbdada
SSL: Make use of the new ECDH interface
by Janos Follath
· 7 years ago
de13963
Merge remote-tracking branch 'restricted/pr/520' into development-restricted-proposed
by Simon Butcher
· 7 years ago
c37423f
Fix misleading sub-state name and comments
by Manuel Pégourié-Gonnard
· 7 years ago
8df1023
Add explicit unsigned-to-signed integer conversion
by Hanno Becker
· 7 years ago
0c161d1
Fix bounds check in ssl_parse_server_psk_hint()
by Hanno Becker
· 7 years ago
1c1c20e
Fix some whitespace issues
by Manuel Pégourié-Gonnard
· 7 years ago
125af94
Merge branch 'development-restricted' into iotssl-1260-non-blocking-ecc-restricted
by Manuel Pégourié-Gonnard
· 7 years ago
552754a
Merge remote-tracking branch 'public/pr/1988' into development
by Simon Butcher
· 7 years ago
68dbc94
Merge remote-tracking branch 'public/pr/1951' into development
by Simon Butcher
· 7 years ago
9d5a9e1
Merge remote-tracking branch 'public/pr/1625' into development
by Simon Butcher
· 7 years ago
bc2498a
Style: Add numerous comments indicating condition guarded by #endif
by Hanno Becker
· 7 years ago
327c93b
Add parameter to ssl_read_record() controlling checksum update
by Hanno Becker
· 7 years ago
3879fdf
Merge remote-tracking branch 'public/pr/1955' into iotssl-165-dtls-hs-fragmentation-new
by Manuel Pégourié-Gonnard
· 7 years ago
ad17fe9
Fix overly strict bounds check in ssl_parse_certificate_request()
by Hanno Becker
· 7 years ago
87a346f
Always save flight first, (re)send later
by Manuel Pégourié-Gonnard
· 8 years ago
31c1586
Start separating handshake from record writing
by Manuel Pégourié-Gonnard
· 8 years ago
cac0c1a
Merge remote-tracking branch 'upstream-public/pr/1378' into development
by Jaeden Amero
· 7 years ago
df15356
Merge remote-tracking branch 'public/pr/1663' into development
by Simon Butcher
· 7 years ago
755bb6a
Add ecc extensions only if ecc ciphersuite is used
by Ron Eldor
· 7 years ago
79d9b50
Merge branch 'development' into iotssl-1260-non-blocking-ecc-restricted
by Manuel Pégourié-Gonnard
· 7 years ago
d8213d0
Let MBEDTLS_SSL_MAX_CONTENT_LEN to be split into outward & inward sizes
by Angus Gratton
· 9 years ago
5f57f1e
Merge remote-tracking branch 'public/pr/1270' into development
by Simon Butcher
· 7 years ago
558da9c
Make SSL error code more generic
by Manuel Pégourié-Gonnard
· 7 years ago
da19f4c
Merge branch 'development' into iotssl-1260-non-blocking-ecc-restricted
by Manuel Pégourié-Gonnard
· 7 years ago
b5b2543
Fix undefined shifts
by Philippe Antoine
· 7 years ago
747fd53
Fixes different off by ones
by Philippe Antoine
· 7 years ago
11999bb
Fix minor code style issues
by Darryl Green
· 7 years ago
a331e0f
Merge remote-tracking branch 'upstream-restricted/pr/421' into development-proposed
by Jaeden Amero
· 7 years ago
03bac44
Change accepted ciphersuite versions when parsing server hello
by Andrzej Kurek
· 7 years ago
ca1d742
mbedtls_ssl_get_key_exchange_md_tls1_2: return hashlen
by Gilles Peskine
· 7 years ago
1d3b508
Same ciphersuite validation in server and client hello
by Mohammad Azim Khan
· 7 years ago
f2b76cd
Merge remote-tracking branch 'upstream-restricted/pr/461' into development-restricted-proposed
by Gilles Peskine
· 7 years ago
1f6301b
Rename mbedtls_zeroize to mbedtls_platform_zeroize
by Andres Amaya Garcia
· 7 years ago
e32df08
Remove individual copies of mbedtls_zeroize()
by Andres Amaya Garcia
· 8 years ago
94d4997
Improve comments style
by Krzysztof Stachowiak
· 7 years ago
cd09fc8
Remove a redundant test
by Krzysztof Stachowiak
· 7 years ago
73b183c
Add buffer size check before cert_type_len read
by Krzysztof Stachowiak
· 7 years ago
f15a8be
Merge remote-tracking branch 'upstream-public/pr/1256' into development-proposed
by Gilles Peskine
· 7 years ago
bc231cc
Add a missing buffer size check
by Krzysztof Stachowiak
· 7 years ago
bc145f7
Correct buffer size check
by Krzysztof Stachowiak
· 7 years ago
d1fedc5
Merge remote-tracking branch 'upstream-public/pr/1440' into development-proposed
by Jaeden Amero
· 7 years ago
95ad522
Merge remote-tracking branch 'upstream-public/pr/1439' into development-proposed
by Jaeden Amero
· 7 years ago
5224a75
Prevent arithmetic overflow on bounds check
by Krzysztof Stachowiak
· 7 years ago
740b218
Add bounds check before length read
by Krzysztof Stachowiak
· 7 years ago
027f84c
Prevent arithmetic overflow on bounds check
by Krzysztof Stachowiak
· 7 years ago
a1098f8
Add bounds check before signature length read
by Krzysztof Stachowiak
· 7 years ago
d5f7d24
Merge branch 'pr_1064' into development-proposed
by Gilles Peskine
· 7 years ago
d91f2a2
Merge branch 'development' into iotssl-1251-2.7
by Gilles Peskine
· 8 years ago
4e5d23f
corrected a typo in a comment
by Johannes H
· 8 years ago
Next »