TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / 505be8be4d3b18e7acd723b90c36fdb9957a1909 / library / ssl_tls.c
  1. 982da7e TinyCrypt ECDHE-PSK: Implement mbedtls_ssl_psk_derive_premaster() by Hanno Becker · 6 years ago
  2. ecf5d3f TinyCrypt SSL: Extend scope of use of TC in PMS derivation by Hanno Becker · 6 years ago
  3. ee902df TinyCrypt SSL: Implement mbedtls_ssl_check_curve() for TinyCrypt by Hanno Becker · 6 years ago
  4. 7e9c2e0 TinyCrypt SSL: Adapt ssl_parse_certificate_verify() to TinyCrypt by Hanno Becker · 6 years ago
  5. c64d5af Fixup: Don't use legacy ECC error code from TinyCrypt by Hanno Becker · 6 years ago
  6. 7cb5c11 Missing uECC ECDSA flagging by Jarno Lamsa · 6 years ago
  7. e1c5608 Merge remote-tracking branch 'origin/pr/650' into baremetal by Simon Butcher · 6 years ago
  8. 8398582 Fix SSL context deserialization by Hanno Becker · 6 years ago
  9. f6cc742 Prescribe inlining of tls_prf_generic() by Hanno Becker · 6 years ago
  10. 2793f74 Forbid inlining of some functions to reduce code-size on ARMC6 by Hanno Becker · 6 years ago
  11. 298a470 Force inlining of ssl_populate_transform() if used only once by Hanno Becker · 6 years ago
  12. fc7429e Remove forward declarations of calc_finished functions in ssl_tls.c by Hanno Becker · 6 years ago
  13. cf87c5e Avoid forward declarations of calc_verify functions in ssl_tls.c by Hanno Becker · 6 years ago
  14. 2f41b24 Remove calc_verify SSL function pointer by Hanno Becker · 6 years ago
  15. 8443491 Make SSL checksum update function inline by Hanno Becker · 6 years ago
  16. 8a4b590 Remove checksum update function pointer from SSL handshake params by Hanno Becker · 6 years ago
  17. 533f5b1 Remove ssl_optimize_checksum() by Hanno Becker · 6 years ago
  18. c2fb759 Remove TLS calc_finished function pointer from SSL handshake params by Hanno Becker · 6 years ago
  19. 39c7f7e Remove TLS PRF function pointer from SSL handshake parameters by Hanno Becker · 6 years ago
  20. 87f57f6 Merge pull request #642 from jarvte/mbedtls_ssl_set_hostname_to_optional by Manuel Pégourié-Gonnard · 6 years ago
  21. 4009d8f Make function mbedtls_ssl_set_hostname(...) as optional by Teppo Järvelin · 6 years ago
  22. 6617a24 Merge remote-tracking branch 'origin/pr/633' into baremetal by Simon Butcher · 6 years ago
  23. f0f01e1 Merge remote-tracking branch 'origin/pr/630' into baremetal by Simon Butcher · 6 years ago
  24. 434ab19 Merge remote-tracking branch 'origin/pr/629' into baremetal by Simon Butcher · 6 years ago
  25. 0863b2a Merge remote-tracking branch 'origin/pr/612' into baremetal by Simon Butcher · 6 years ago
  26. a9d5c45 Remove mbedtls_ssl_transform::minlen by Hanno Becker · 6 years ago
  27. 7a19633 tinyCrypt: Avoid unused var warning by marking vars as unused by Hanno Becker · 6 years ago
  28. 29d1655 Add MBEDTLS_ECDH_C guards to ECDH code-paths using legacy ECDH by Hanno Becker · 6 years ago
  29. a3c2c17 tinyCrypt: Share ECDH secret calculation code-path by Hanno Becker · 6 years ago
  30. 75f12d1 tinyCrypt: Add ServerKeyExchange parsing code by Hanno Becker · 6 years ago
  31. d089fad tinyCrypt: Adapt RNG wrapper to return 0 on failure by Hanno Becker · 6 years ago
  32. ef982d5 tinyCrypt: Bind RNG wrapper to tinyCrypt in mbedtls_ssl_setup() by Hanno Becker · 6 years ago
  33. e12aafb tinyCrypt: Initial commit towards ECDHE support by Jarno Lamsa · 6 years ago
  34. fb02e96 Fix indentation to a multiple of 4 spaces by Manuel Pégourié-Gonnard · 6 years ago
  35. 8793fab Fix two typos in comments by Manuel Pégourié-Gonnard · 6 years ago
  36. 572d448 Enforce NULL context for hardcoded RNG by Hanno Becker · 6 years ago
  37. 9a12243 Introduce getter function for RNG context by Hanno Becker · 6 years ago
  38. 09d2364 Share code between In-CliKeyExch and Out-CliKeyExch by Hanno Becker · 6 years ago
  39. f3a15b3 Fix possibly-lossy conversion warning from MSVC by Manuel Pégourié-Gonnard · 6 years ago
  40. 8844055 Remove compression field from SSL session if compression disabled by Hanno Becker · 6 years ago
  41. ec01408 Reintroduce length 0 check for records by Hanno Becker · 6 years ago
  42. 8061c6e Don't use memcpy() for 2-byte copy operation by Hanno Becker · 6 years ago
  43. 7b5ba84 Remove integer parsing macro by Hanno Becker · 6 years ago
  44. 6181761 Fix alignment in record header parsing routine by Hanno Becker · 6 years ago
  45. c1c173c Make sure 'record from another epoch' is displayed for next epoch by Hanno Becker · 6 years ago
  46. 03e2db6 Implement record checking API by Hanno Becker · 6 years ago
  47. 21fc61c Mark ssl_parse_record_header() as `const` in SSL context by Hanno Becker · 6 years ago
  48. c360dcc [API break] Remove mbedtls_ssl_context::in_iv field by Hanno Becker · 6 years ago
  49. 05413d9 Remove duplicate setting of ssl->in_msgtype and ssl->in_msglen by Hanno Becker · 6 years ago
  50. bd70c8e Move update of in_xxx fields in ssl_get_next_record() by Hanno Becker · 6 years ago
  51. bf256cd Move update of in_xxx fields outside of ssl_prepare_record_content() by Hanno Becker · 6 years ago
  52. 106f3da Reduce dependency of ssl_prepare_record_content() on in_xxx fields by Hanno Becker · 6 years ago
  53. 6837972 Move ssl_update_in_pointers() to after record hdr parsing by Hanno Becker · 6 years ago
  54. fc55172 Mark DTLS replay check as `const` on the SSL context by Hanno Becker · 6 years ago
  55. 6941245 Move updating the internal rec ptrs to outside of rec hdr parsing by Hanno Becker · 6 years ago
  56. 40478be Mark ssl_decrypt_buf() as `const in the input SSL context by Hanno Becker · 6 years ago
  57. a89610a Adapt ssl_prepare_record_content() to use SSL record structure by Hanno Becker · 6 years ago
  58. 9babbf7 Use record length from record structure when fetching content in TLS by Hanno Becker · 6 years ago
  59. 2720f4c Use record structure when remembering offset of next record in dgram by Hanno Becker · 6 years ago
  60. 2528ee0 Use SSL record structure when skipping over unexpected record by Hanno Becker · 6 years ago
  61. af5bcfc Adapt ssl_buffer_future_record() to work with SSL record structure by Hanno Becker · 6 years ago
  62. c6e7c57 Setup SSL record structure in ssl_parse_record_header() by Hanno Becker · 6 years ago
  63. 6c0e53c Minor documentation improvements in ssl_parse_record_header() by Hanno Becker · 6 years ago
  64. e045277 Check for sufficient datagram size in ssl_parse_record_header() by Hanno Becker · 6 years ago
  65. a61925f Don't send an alert when receiving a record of unknown ContentType by Hanno Becker · 6 years ago
  66. dc4d627 Don't call ssl_fetch_input for record content fetch in DTLS by Hanno Becker · 6 years ago
  67. 2982346 Don't call ssl_fetch_input for record hdr size check in DTLS by Hanno Becker · 6 years ago
  68. de7d6d3 Move size-check for DTLS record header with CID to DTLS-only branch by Hanno Becker · 6 years ago
  69. 87b5626 Check same-port-reconnect from client outside of record hdr parsing by Hanno Becker · 6 years ago
  70. 07d420d Remove unnecessary backup of explicit IV in AEAD record decryption by Hanno Becker · 6 years ago
  71. 8244cfa Remove redundant minimum length check by Hanno Becker · 6 years ago
  72. 6d3db0f Improve documentation of mbedtls_ssl_decrypt_buf() by Hanno Becker · 6 years ago
  73. 9520b31 Remove misleading comment in mbedtls_ssl_decrypt_buf() by Hanno Becker · 6 years ago
  74. b603bd3 Remove assertion in mbedtls_ssl_decrypt_buf() by Hanno Becker · 6 years ago
  75. f024285 Check architectural bound for max record payload len in one place by Hanno Becker · 6 years ago
  76. 408a274 Remove redundant length-0 checks for incoming unprotected records by Hanno Becker · 6 years ago
  77. 1c26845 Remove redundant length check during record header parsing by Hanno Becker · 6 years ago
  78. 02f2609 Introduce configuration option and API for SSL record checking by Hanno Becker · 6 years ago
  79. cdb83e7 Merge pull request #616 from mpg/context-s11n by Manuel Pégourié-Gonnard · 6 years ago
  80. 69a3e41 Improve reability and debugability of large if by Manuel Pégourié-Gonnard · 6 years ago
  81. 18332c5 Improve getter for renegotiation enabled by Manuel Pégourié-Gonnard · 6 years ago
  82. b3bb31b Introduce getter function for disable_renego by Manuel Pégourié-Gonnard · 6 years ago
  83. 14e2a8a Fix a typo in a comment by Manuel Pégourié-Gonnard · 6 years ago
  84. 42a6b04 Don't forget about pending alerts after ssl_get_next_record() by Hanno Becker · 6 years ago
  85. b82350b Introduce helper function to send pending fatal alerts by Hanno Becker · 6 years ago
  86. c8f5299 Rename pend_alert_msg -> pending_fatal_alert_msg by Hanno Becker · 6 years ago
  87. 2e8d133 Reintroduce return code checking when sending NoRenego alert by Hanno Becker · 6 years ago
  88. 3caf718 Remove field to store level of pending alert by Hanno Becker · 6 years ago
  89. de62da9 Use separate functions to pend fatal and non-fatal alerts by Hanno Becker · 6 years ago
  90. 1facd55 Replace xxx_send_alert by xxx_pend_alert to save code by Hanno Becker · 6 years ago
  91. f46e1ce Introduce SSL helper function to mark pending alerts by Hanno Becker · 6 years ago
  92. 7af7375 Fix MSVC warning by Manuel Pégourié-Gonnard · 6 years ago
  93. 2cc9223 Fix compile error in reduced configurations by Manuel Pégourié-Gonnard · 6 years ago
  94. 3b014fc Merge remote-tracking branch 'origin/pr/604' into baremetal by Simon Butcher · 6 years ago
  95. 7ce9446 Avoid duplication of session format header by Manuel Pégourié-Gonnard · 6 years ago
  96. a7cd483 Implement config-checking header to context s11n by Manuel Pégourié-Gonnard · 6 years ago
  97. 4c1d06e Provide serialisation API only if it's enabled by Manuel Pégourié-Gonnard · 6 years ago
  98. 73a4636 Adapt to hardcoded single version by Manuel Pégourié-Gonnard · 6 years ago
  99. 2f3fa62 Fix compiler warning: comparing signed to unsigned by Manuel Pégourié-Gonnard · 6 years ago
  100. bc847ca Actually reset the context on save as advertised by Manuel Pégourié-Gonnard · 6 years ago