TrustedFirmware Git Browser
Code Review
Sign In
review.trustedfirmware.org
/
mirror
/
mbed-tls.git
/
47aab8da8a76914048f15bbf466c09a439b3f982
/
library
/
ssl_tls.c
acb5eb0
Add a double check to protect from glitch
by Jarno Lamsa
· 6 years ago
b018009
Use invalid state
by Jarno Lamsa
· 6 years ago
2b20516
Make TLS state changes explicit
by Jarno Lamsa
· 6 years ago
9d6a535
Return and propagate UECC_FAULT_DETECTED
by Manuel Pégourié-Gonnard
· 6 years ago
1a53371
Remove curve parameter from public functions
by Manuel Pégourié-Gonnard
· 6 years ago
677b7f6
Fix direct use of struct instead of abstract type
by Manuel Pégourié-Gonnard
· 6 years ago
6f4e030
Changed mbedtls_platform_memcpy to memcpy in places which don't handle critical data
by Teppo Järvelin
· 6 years ago
91d7938
Changed every memcpy to SCA equivalent mbedtls_platform_memcpy
by Teppo Järvelin
· 6 years ago
8a8488c
Fix mbedtls_ssl_check_record usage with ext buf
by Arto Kinnunen
· 6 years ago
e2bf54d
Merge remote-tracking branch 'public/pr/2877' into baremetal
by Simon Butcher
· 6 years ago
895454d
Use plain memset() for public data in ssl_tls.c
by Manuel Pégourié-Gonnard
· 6 years ago
54526c3
Use plain memset() for freshly allocated objects
by Manuel Pégourié-Gonnard
· 6 years ago
9941933
Use plain memset() in context init functions
by Manuel Pégourié-Gonnard
· 6 years ago
7a346b8
Replace memset() with mbedtls_platform_memset()
by Manuel Pégourié-Gonnard
· 6 years ago
0efac53
Review fixes: fixed comments to be more accurate and changed one memcmp to safer version
by Teppo Järvelin
· 6 years ago
707ceb8
Replaced mbedtls_ssl_safer_memcmp with mbedtls_platform_memcmp
by Teppo Järvelin
· 6 years ago
650343c
Changed mbedtls_platform_memcmp to memcmp for places that don't have critical data and are under baremetal
by Teppo Järvelin
· 6 years ago
61f412e
Changed every memcmp to SCA equivalent mbedtls_platform_memcmp
by Teppo Järvelin
· 6 years ago
2829bbf
Remove dependency from SSL on PK internals
by Manuel Pégourié-Gonnard
· 6 years ago
e8144aa
Merge remote-tracking branch 'origin/pr/657' into baremetal
by Simon Butcher
· 6 years ago
88b535a
Merge remote-tracking branch 'origin/pr/654' into baremetal
by Simon Butcher
· 6 years ago
303d399
Merge remote-tracking branch 'origin/pr/609' into baremetal
by Simon Butcher
· 6 years ago
3d7439e
Review corrections 6
by Arto Kinnunen
· 6 years ago
84eeb4f
Review corrections 5
by Arto Kinnunen
· 6 years ago
a3fa06e
Review corrections 3
by Arto Kinnunen
· 6 years ago
4f4849a
Review corrections 2
by Arto Kinnunen
· 6 years ago
6e3f09b
Review corrections
by Arto Kinnunen
· 6 years ago
0b62ce8
Use function for 16/24/32-bit BE conversion
by Arto Kinnunen
· 6 years ago
7fce190
Merge remote-tracking branch 'origin/pr/635' into HEAD
by Simon Butcher
· 6 years ago
9ec3fe0
Introduce configuration option to remove CRT verification callbacks
by Hanno Becker
· 6 years ago
a5cedbc
Introduce MD handle type
by Hanno Becker
· 6 years ago
7bcf2b5
Introduce version comparing functions
by Hanno Becker
· 6 years ago
982da7e
TinyCrypt ECDHE-PSK: Implement mbedtls_ssl_psk_derive_premaster()
by Hanno Becker
· 6 years ago
ecf5d3f
TinyCrypt SSL: Extend scope of use of TC in PMS derivation
by Hanno Becker
· 6 years ago
ee902df
TinyCrypt SSL: Implement mbedtls_ssl_check_curve() for TinyCrypt
by Hanno Becker
· 6 years ago
7e9c2e0
TinyCrypt SSL: Adapt ssl_parse_certificate_verify() to TinyCrypt
by Hanno Becker
· 6 years ago
c64d5af
Fixup: Don't use legacy ECC error code from TinyCrypt
by Hanno Becker
· 6 years ago
7cb5c11
Missing uECC ECDSA flagging
by Jarno Lamsa
· 6 years ago
e1c5608
Merge remote-tracking branch 'origin/pr/650' into baremetal
by Simon Butcher
· 6 years ago
8398582
Fix SSL context deserialization
by Hanno Becker
· 6 years ago
f6cc742
Prescribe inlining of tls_prf_generic()
by Hanno Becker
· 6 years ago
2793f74
Forbid inlining of some functions to reduce code-size on ARMC6
by Hanno Becker
· 6 years ago
298a470
Force inlining of ssl_populate_transform() if used only once
by Hanno Becker
· 6 years ago
fc7429e
Remove forward declarations of calc_finished functions in ssl_tls.c
by Hanno Becker
· 6 years ago
cf87c5e
Avoid forward declarations of calc_verify functions in ssl_tls.c
by Hanno Becker
· 6 years ago
2f41b24
Remove calc_verify SSL function pointer
by Hanno Becker
· 6 years ago
8443491
Make SSL checksum update function inline
by Hanno Becker
· 6 years ago
8a4b590
Remove checksum update function pointer from SSL handshake params
by Hanno Becker
· 6 years ago
533f5b1
Remove ssl_optimize_checksum()
by Hanno Becker
· 6 years ago
c2fb759
Remove TLS calc_finished function pointer from SSL handshake params
by Hanno Becker
· 6 years ago
39c7f7e
Remove TLS PRF function pointer from SSL handshake parameters
by Hanno Becker
· 6 years ago
87f57f6
Merge pull request #642 from jarvte/mbedtls_ssl_set_hostname_to_optional
by Manuel Pégourié-Gonnard
· 6 years ago
4009d8f
Make function mbedtls_ssl_set_hostname(...) as optional
by Teppo Järvelin
· 6 years ago
6617a24
Merge remote-tracking branch 'origin/pr/633' into baremetal
by Simon Butcher
· 6 years ago
f0f01e1
Merge remote-tracking branch 'origin/pr/630' into baremetal
by Simon Butcher
· 6 years ago
434ab19
Merge remote-tracking branch 'origin/pr/629' into baremetal
by Simon Butcher
· 6 years ago
0863b2a
Merge remote-tracking branch 'origin/pr/612' into baremetal
by Simon Butcher
· 6 years ago
a9d5c45
Remove mbedtls_ssl_transform::minlen
by Hanno Becker
· 6 years ago
7a19633
tinyCrypt: Avoid unused var warning by marking vars as unused
by Hanno Becker
· 6 years ago
29d1655
Add MBEDTLS_ECDH_C guards to ECDH code-paths using legacy ECDH
by Hanno Becker
· 6 years ago
a3c2c17
tinyCrypt: Share ECDH secret calculation code-path
by Hanno Becker
· 6 years ago
75f12d1
tinyCrypt: Add ServerKeyExchange parsing code
by Hanno Becker
· 6 years ago
d089fad
tinyCrypt: Adapt RNG wrapper to return 0 on failure
by Hanno Becker
· 6 years ago
ef982d5
tinyCrypt: Bind RNG wrapper to tinyCrypt in mbedtls_ssl_setup()
by Hanno Becker
· 6 years ago
e12aafb
tinyCrypt: Initial commit towards ECDHE support
by Jarno Lamsa
· 6 years ago
fb02e96
Fix indentation to a multiple of 4 spaces
by Manuel Pégourié-Gonnard
· 6 years ago
8793fab
Fix two typos in comments
by Manuel Pégourié-Gonnard
· 6 years ago
572d448
Enforce NULL context for hardcoded RNG
by Hanno Becker
· 6 years ago
9a12243
Introduce getter function for RNG context
by Hanno Becker
· 6 years ago
09d2364
Share code between In-CliKeyExch and Out-CliKeyExch
by Hanno Becker
· 6 years ago
f3a15b3
Fix possibly-lossy conversion warning from MSVC
by Manuel Pégourié-Gonnard
· 6 years ago
8844055
Remove compression field from SSL session if compression disabled
by Hanno Becker
· 6 years ago
ec01408
Reintroduce length 0 check for records
by Hanno Becker
· 6 years ago
8061c6e
Don't use memcpy() for 2-byte copy operation
by Hanno Becker
· 6 years ago
7b5ba84
Remove integer parsing macro
by Hanno Becker
· 6 years ago
6181761
Fix alignment in record header parsing routine
by Hanno Becker
· 6 years ago
c1c173c
Make sure 'record from another epoch' is displayed for next epoch
by Hanno Becker
· 6 years ago
03e2db6
Implement record checking API
by Hanno Becker
· 6 years ago
21fc61c
Mark ssl_parse_record_header() as `const` in SSL context
by Hanno Becker
· 6 years ago
c360dcc
[API break] Remove mbedtls_ssl_context::in_iv field
by Hanno Becker
· 6 years ago
05413d9
Remove duplicate setting of ssl->in_msgtype and ssl->in_msglen
by Hanno Becker
· 6 years ago
bd70c8e
Move update of in_xxx fields in ssl_get_next_record()
by Hanno Becker
· 6 years ago
bf256cd
Move update of in_xxx fields outside of ssl_prepare_record_content()
by Hanno Becker
· 6 years ago
106f3da
Reduce dependency of ssl_prepare_record_content() on in_xxx fields
by Hanno Becker
· 6 years ago
6837972
Move ssl_update_in_pointers() to after record hdr parsing
by Hanno Becker
· 6 years ago
fc55172
Mark DTLS replay check as `const` on the SSL context
by Hanno Becker
· 6 years ago
6941245
Move updating the internal rec ptrs to outside of rec hdr parsing
by Hanno Becker
· 6 years ago
40478be
Mark ssl_decrypt_buf() as `const in the input SSL context
by Hanno Becker
· 6 years ago
a89610a
Adapt ssl_prepare_record_content() to use SSL record structure
by Hanno Becker
· 6 years ago
9babbf7
Use record length from record structure when fetching content in TLS
by Hanno Becker
· 6 years ago
2720f4c
Use record structure when remembering offset of next record in dgram
by Hanno Becker
· 6 years ago
2528ee0
Use SSL record structure when skipping over unexpected record
by Hanno Becker
· 6 years ago
af5bcfc
Adapt ssl_buffer_future_record() to work with SSL record structure
by Hanno Becker
· 6 years ago
c6e7c57
Setup SSL record structure in ssl_parse_record_header()
by Hanno Becker
· 6 years ago
6c0e53c
Minor documentation improvements in ssl_parse_record_header()
by Hanno Becker
· 6 years ago
e045277
Check for sufficient datagram size in ssl_parse_record_header()
by Hanno Becker
· 6 years ago
a61925f
Don't send an alert when receiving a record of unknown ContentType
by Hanno Becker
· 6 years ago
dc4d627
Don't call ssl_fetch_input for record content fetch in DTLS
by Hanno Becker
· 6 years ago
2982346
Don't call ssl_fetch_input for record hdr size check in DTLS
by Hanno Becker
· 6 years ago
de7d6d3
Move size-check for DTLS record header with CID to DTLS-only branch
by Hanno Becker
· 6 years ago
Next »