TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / 6b8fbab290bd8df8b51c747c86f2f8e68a00517c / library
  1. 6b8fbab Free peer CRT chain immediately after verifying it by Hanno Becker · 6 years ago
  2. 0056eab Parse peer's CRT chain in-place from the input buffer by Hanno Becker · 6 years ago
  3. ae553dd Free peer's public key as soon as it's no longer needed by Hanno Becker · 6 years ago
  4. b9d4479 Correct compile-time guards for ssl_clear_peer_cert() by Hanno Becker · 6 years ago
  5. e682457 Guard mbedtls_ssl_get_peer_cert() by new compile-time option by Hanno Becker · 6 years ago
  6. b6c5eca Adapt mbedtls_ssl_parse_certificate() to removal of peer_cert field by Hanno Becker · 6 years ago
  7. 13c327d Adapt ssl_clear_peer_cert() to removal of `peer_cert` field by Hanno Becker · 6 years ago
  8. 6d1986e Adapt mbedtls_ssl_session_copy() to removal of `peer_cert` field by Hanno Becker · 6 years ago
  9. 94cc26d Adapt session ticket implementation to removal of `peer_cert` field by Hanno Becker · 6 years ago
  10. 2a831a4 Adapt client auth detection in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
  11. a1ab9be Adapt server-side signature verification to use raw public key by Hanno Becker · 6 years ago
  12. a6899bb Adapt client-side signature verification to use raw public key by Hanno Becker · 6 years ago
  13. be7f508 Adapt ssl_get_ecdh_params_from_cert() to use raw public key by Hanno Becker · 6 years ago
  14. c7d7e29 Adapt ssl_write_encrypted_pms() to use raw public key by Hanno Becker · 6 years ago
  15. a274753 Make a copy of peer's raw public key after verifying its CRT chain by Hanno Becker · 6 years ago
  16. 7517312 Add field for peer's raw public key to TLS handshake param structure by Hanno Becker · 6 years ago
  17. 494dd7a Add raw public key buffer bounds to mbedtls_x509_crt struct by Hanno Becker · 6 years ago
  18. a887d1a Remove peer CRT from cache if !MBEDTLS_SSL_KEEP_PEER_CERTIFICATE by Hanno Becker · 6 years ago
  19. c966bd1 Remove peer CRT from tickets if !MBEDTLS_SSL_KEEP_PEER_CERTIFICATE by Hanno Becker · 6 years ago
  20. c5fcbb3 Add peer CRT digest to session tickets by Hanno Becker · 6 years ago
  21. 3dad311 Parse and verify peer CRT chain in local variable by Hanno Becker · 6 years ago
  22. 177475a Mitigate triple handshake attack by comparing digests only by Hanno Becker · 6 years ago
  23. 6bbd94c Compute digest of peer's end-CRT in mbedtls_ssl_parse_certificate() by Hanno Becker · 6 years ago
  24. 9198ad1 Extend mbedtls_ssl_session by buffer holding peer CRT digest by Hanno Becker · 6 years ago
  25. 8d84fd8 Update version_features.c by Hanno Becker · 6 years ago
  26. 8273df8 Re-classify errors on missing peer CRT by Hanno Becker · 6 years ago
  27. 0329f75 Increase robustness and documentation of ticket implementation by Hanno Becker · 6 years ago
  28. aee8717 Simplify session cache implementation via mbedtls_ssl_session_copy() by Hanno Becker · 6 years ago
  29. 52055ae Give ssl_session_copy() external linkage by Hanno Becker · 6 years ago
  30. c7bd780 Allow passing any X.509 CRT chain to ssl_parse_certificate_chain() by Hanno Becker · 6 years ago
  31. 6863619 Introduce helper function for peer CRT chain verification by Hanno Becker · 6 years ago
  32. fcd9e71 Don't progress TLS state machine on peer CRT chain parsing error by Hanno Becker · 6 years ago
  33. 77adddc Make use of macro and helper detecting whether CertRequest allowed by Hanno Becker · 6 years ago
  34. 28f2fcd Add helper function to check whether a CRT msg is expected by Hanno Becker · 6 years ago
  35. 7177a88 Introduce helper function to determine whether suite uses server CRT by Hanno Becker · 6 years ago
  36. 2148993 Use helper macro to detect whether some ciphersuite uses CRTs by Hanno Becker · 6 years ago
  37. 6bdfab2 Unify state machine update in mbedtls_ssl_parse_certificate() by Hanno Becker · 6 years ago
  38. 7a955a0 Clear peer's CRT chain outside before parsing new one by Hanno Becker · 6 years ago
  39. 4a55f63 Introduce helper to check for no-CRT notification from client by Hanno Becker · 6 years ago
  40. a028c5b Introduce CRT counter to CRT chain parsing function by Hanno Becker · 6 years ago
  41. 1294a0b Introduce helper function to clear peer CRT from session structure by Hanno Becker · 6 years ago
  42. f852b1c Break overly long line in definition of mbedtls_ssl_get_session() by Hanno Becker · 6 years ago
  43. 60848e6 Don't reuse CRT from initial handshake during renegotiation by Hanno Becker · 6 years ago
  44. 86016a0 Merge remote-tracking branch 'origin/pr/2338' into development by Jaeden Amero · 6 years ago
  45. 461bd3d Merge remote-tracking branch 'origin/pr/2454' into development by Jaeden Amero · 6 years ago
  46. 9f47f82 Merge remote-tracking branch 'origin/pr/2391' into development by Jaeden Amero · 6 years ago
  47. 8963b03 Merge remote-tracking branch 'origin/pr/2411' into development by Jaeden Amero · 6 years ago
  48. 3497323 Initialize PSA Crypto operation contexts by Jaeden Amero · 6 years ago
  49. 0a94a64 Add debugging output to confirm that PSA was used for ECDHE by Hanno Becker · 7 years ago
  50. c14a3bb Make variable in ssl_write_client_key_exchange() more descriptive by Hanno Becker · 7 years ago
  51. 4a63ed4 Implement ClientKeyExchange writing in PSA-based ECDHE suites by Hanno Becker · 7 years ago
  52. bb89e27 Implement ServerKeyExchange parsing for PSA-based ECDHE suites by Hanno Becker · 7 years ago
  53. 6f7703d rsa: Enable use of zero-length null output by Jaeden Amero · 6 years ago
  54. 004f87b RSA encryption: accept input=NULL if ilen=0 by Gilles Peskine · 7 years ago
  55. 46f34d0 Fix style issue and wording by Hanno Becker · 6 years ago
  56. c1e18bd Fix memory leak by Hanno Becker · 7 years ago
  57. e2734e2 Improve formatting of ssl_parse_certificate_chain() by Hanno Becker · 7 years ago
  58. 84879e3 Add compile-time guards around helper routine by Hanno Becker · 7 years ago
  59. def9bdc Don't store the peer CRT chain twice during renegotiation by Hanno Becker · 7 years ago
  60. b2964cb SSL/TLS client: Remove old session ticket on renegotiation by Hanno Becker · 7 years ago
  61. 1a65dcd Add a new X.509 API call for copy-less parsing of CRTs by Hanno Becker · 7 years ago
  62. fb23673 Revert "Forbid passing NULL input buffers to RSA encryption routines" by Jaeden Amero · 6 years ago
  63. 3c2b15d Update version_features file by Andrzej Kurek · 6 years ago
  64. 8a2e97c Merge development-psa commit 80b5662 into development-psa-merged branch by Andrzej Kurek · 6 years ago
  65. d142856 cipher: remove unnecessary precondition by Andrzej Kurek · 6 years ago
  66. efed323 pk: restructure precondition check by Andrzej Kurek · 6 years ago
  67. 80b5662 Merge remote-tracking branch 'origin/pr/2386' into development-psa by Jaeden Amero · 7 years ago archive/development-psa development-psa
  68. d18b264 Merge remote-tracking branch 'origin/pr/2382' into development-psa by Jaeden Amero · 7 years ago
  69. 65408c5 Merge remote-tracking branch 'origin/pr/2355' into development-psa by Jaeden Amero · 7 years ago
  70. de5a007 Merge development commit f352f7 into development-psa by Andrzej Kurek · 7 years ago
  71. 65935d9 Add missing include to library/pkwrite.c by Hanno Becker · 7 years ago
  72. 493c171 Adapt mbedtls_pk_write_pubkey_der() to the new PSA public key format by Hanno Becker · 7 years ago
  73. 4fb8db2 Update pointer in PSA-based mbedtls_pk_write_pubkey() by Hanno Becker · 7 years ago
  74. f093a3d Use ecdh_setup instead of ecp_group_load by Andrzej Kurek · 7 years ago
  75. c470b6b Merge development commit 8e76332 into development-psa by Andrzej Kurek · 7 years ago
  76. f352f75 Merge remote-tracking branch 'origin/pr/2332' into development by Jaeden Amero · 7 years ago
  77. 91af329 Merge remote-tracking branch 'origin/pr/2214' into development by Jaeden Amero · 7 years ago
  78. 14eca24 Merge remote-tracking branch 'origin/pr/2213' into development by Jaeden Amero · 7 years ago
  79. dac9f45 Merge remote-tracking branch 'origin/pr/1551' into development by Jaeden Amero · 7 years ago
  80. e6e2686 Merge remote-tracking branch 'origin/pr/2055' into development by Jaeden Amero · 7 years ago
  81. 730ecdf Merge remote-tracking branch 'origin/pr/2371' into development by Jaeden Amero · 7 years ago
  82. 2ad2297 ssl_tls: add psa_hash_abort when reseting checksum by Andrzej Kurek · 7 years ago
  83. 972fba5 ssl_tls: rename sha_512_psa to sha_384_psa by Andrzej Kurek · 7 years ago
  84. eb34224 ssl_tls: use PSA to compute running handshake hash for TLS 1.2 by Andrzej Kurek · 7 years ago
  85. ccf574e Fix outdated comment in ecdsa_verify_wrap() by Hanno Becker · 7 years ago
  86. 2d4faa6 ssl_tls: remove redundant status check by Andrzej Kurek · 7 years ago archive/iotssl-2690-tls-prf-generic iotssl-2690-tls-prf-generic
  87. 2f76075 ssl_tls: adjust to the new key policy initialization and key allocation by Andrzej Kurek · 7 years ago
  88. ac5dc34 Fix key allocation for tls_prf_generic by Andrzej Kurek · 7 years ago
  89. 3317126 ssl_tls: add missing return brackets by Andrzej Kurek · 7 years ago
  90. 70737ca ssl_tls: add key destruction upon generator failure by Andrzej Kurek · 7 years ago
  91. c929a82 Implement tls_prf_generic using the PSA API by Andrzej Kurek · 7 years ago
  92. 5615dab ssl_tls: remove line breaks from a debug message by Andrzej Kurek · 7 years ago archive/iotssl-2689-psa-tls1_2-get-key-exchange iotssl-2689-psa-tls1_2-get-key-exchange
  93. e85414e ssl-opt: add a check for PSA computation of digest of ServerKeyExchange by Andrzej Kurek · 7 years ago
  94. 814feff Whitespace, logging and documentation fixes by Andrzej Kurek · 7 years ago
  95. d6db9be Adapt mbedtls_ssl_get_key_exchange_md_tls1_2 to PSA hashing by Andrzej Kurek · 7 years ago
  96. a985111 Adapt ecdsa_verify_wrap() to new EC public key format by Hanno Becker · 7 years ago
  97. f99c2ec PSA: Adapt pk.c, pk_wrap.c, cipher.c to new key policy init API by Hanno Becker · 7 years ago
  98. e34f636 PSA: Adapt cipher.c, pk.c, pk_wrap.c to new key slot allocation API by Hanno Becker · 7 years ago
  99. 36e89b5 Fix #2370, minor typos and spelling mistakes by Antonin Décimo · 7 years ago
  100. 8e76332 Merge remote-tracking branch 'public/pr/2040' into development by Simon Butcher · 7 years ago