TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / 96eceb80226ee96f8e249032b0ef3bd83fbd6925 / library / ssl_tls.c
  1. 96eceb8 Refine mbedtls_ssl_tls12_get_preferred_hash_for_sig_alg() when USE_PSA_CRYPTO is selected by Neil Armstrong · 3 years, 1 month ago
  2. 9f1176a Move preferred_hash_for_sig_alg() check after ssl_pick_cert() and check if hash alg is supported with mbedtls_pk_can_do_ext() by Neil Armstrong · 3 years, 1 month ago
  3. b94854f Merge pull request #5973 from ronald-cron-arm/tls13-misc-tests by Ronald Cron · 3 years, 1 month ago
  4. 1938588 tls13: Align some debug messages with TLS 1.2 ones by Ronald Cron · 3 years, 2 months ago
  5. 0b776e2 Change some comments for alpn by XiaokangQian · 3 years, 1 month ago
  6. 95d5f54 Fix coding styles by XiaokangQian · 3 years, 1 month ago
  7. c740345 Adress review comments by XiaokangQian · 3 years, 1 month ago
  8. acb3992 Add ALPN extension to the server side by XiaokangQian · 3 years, 2 months ago
  9. 75fe8c7 Change place of ssl_tls13_check_ephemeral_key_exchange by XiaokangQian · 3 years, 2 months ago
  10. 129aeb9 Update test cases and support sni ca override by XiaokangQian · 3 years, 2 months ago
  11. f2a9420 Fix SNI test failure by XiaokangQian · 3 years, 3 months ago
  12. 9b2b771 Change mbedtls_ssl_parse_server_name_ext base on comments by XiaokangQian · 3 years, 3 months ago
  13. 40a3523 Add support of server name extension to server side by XiaokangQian · 3 years, 3 months ago
  14. 8395d7a Change guard of mbedtls_ssl_cipher_to_psa() with USE_PSA_CRYPTO || SSL_PROTO_TLS1_3 by Neil Armstrong · 3 years, 3 months ago
  15. 9edf51d Merge pull request #5785 from gabor-mezei-arm/5460_unify_parsing_sig_alg_ext by Ronald Cron · 3 years, 3 months ago
  16. 696956d Typo by Gabor Mezei · 3 years, 3 months ago
  17. 5c65c57 Fix additional misspellings found by codespell by Andrzej Kurek · 3 years, 4 months ago
  18. 8b0ecbc Redo of PR#5345. Fixed spelling and typographical errors found by CodeSpell. by Shaun Case · 3 years, 8 months ago
  19. c1051b6 Remove `MBEDTLS_SSL_SIG_ALG_SET` macro by Gabor Mezei · 3 years, 3 months ago
  20. 3631cf6 Rename signiture algorithm macros to better suite with TLS 1.2 by Gabor Mezei · 3 years, 3 months ago
  21. a3d016c Rename and rewrite `mbedtls_ssl_sig_hash_set_find` function by Gabor Mezei · 3 years, 3 months ago
  22. 15b95a6 Use common macro for the invalid signiture algorithm botn in TLS 1.2 and 1.3 by Gabor Mezei · 3 years, 3 months ago
  23. 078e803 Unify parsing of the signature algorithms extension by Gabor Mezei · 3 years, 3 months ago
  24. 9bbb7ba Merge pull request #5791 from superna9999/5788-unify-non-opaque-and-opaque-psks by Manuel Pégourié-Gonnard · 3 years, 3 months ago
  25. aad9b0a Update code base on comments by XiaokangQian · 3 years, 3 months ago
  26. eaf3651 Rebase and solve conflicts by XiaokangQian · 3 years, 3 months ago
  27. 8ecd668 Keep raw PSK when set via mbedtls_ssl_conf_psk() and feed as input_bytes by Neil Armstrong · 3 years, 3 months ago
  28. 80f6f32 Make mbedtls_ssl_psk_derive_premaster() only for when MBEDTLS_USE_PSA_CRYPTO is not selected by Neil Armstrong · 3 years, 3 months ago
  29. 044a32c Remove mbedtls_ssl_get_psk() and it's usage when MBEDTLS_USE_PSA_CRYPTO is selected by Neil Armstrong · 3 years, 3 months ago
  30. e952a30 Remove RAW PSK when MBEDTLS_USE_PSA_CRYPTO is selected by Neil Armstrong · 3 years, 3 months ago
  31. 501c932 Import PSK as opaque PSA key for mbedtls_ssl_conf_psk() & mbedtls_ssl_set_hs_psk() by Neil Armstrong · 3 years, 3 months ago
  32. 67397fa Merge pull request #5704 from mprse/mixed_psk_2cx by Manuel Pégourié-Gonnard · 3 years, 3 months ago
  33. 169bf0b Fix comments (#endif flags) by Przemek Stekiel · 3 years, 3 months ago
  34. 8855e36 Merge pull request #5674 from superna9999/5668-abstract-tls-mode-cleanup by Gilles Peskine · 3 years, 3 months ago
  35. 8a4b7fd Optimize code by Przemek Stekiel · 3 years, 3 months ago
  36. 8abcee9 Fix typos by Przemek Stekiel · 3 years, 3 months ago
  37. 2230e6c Simplify PSA transform->ivlen set in ssl_tls12_populate_transform() by Neil Armstrong · 3 years, 3 months ago
  38. 301711e Simplify mbedtls_ssl_get_base_mode by Gilles Peskine · 3 years, 3 months ago
  39. e108d98 Simplify mbedtls_ssl_get_mode by Gilles Peskine · 3 years, 3 months ago
  40. 99114f3 Fix build flags for opaque/raw psk checks by Przemek Stekiel · 3 years, 3 months ago
  41. b293aaa Enable support for psa opaque DHE-PSK key exchange on the client side by Przemek Stekiel · 3 years, 4 months ago
  42. 19b80f8 Enable support for psa opaque ECDHE-PSK key exchange on the client side by Przemek Stekiel · 3 years, 4 months ago
  43. 51a1f36 setup_psa_key_derivation(): change salt parameter to other_secret by Przemek Stekiel · 3 years, 4 months ago
  44. c203340 Add support for psa rsa-psk key exchange by Przemek Stekiel · 3 years, 4 months ago
  45. ae4ed30 Fix naming: random bytes are the seed (not salt) in derivation process by Przemek Stekiel · 3 years, 4 months ago
  46. 1f02703 setup_psa_key_derivation(): add optional salt parameter by Przemek Stekiel · 3 years, 4 months ago
  47. 55132c6 Merge pull request #5703 from superna9999/5322-ecdh-remove-legacy-context by Manuel Pégourié-Gonnard · 3 years, 3 months ago
  48. f2c82f0 Introduce MBEDTLS_SSL_SOME_SUITES_USE_CBC_ETM macro to determine if Encrypt-then-MAC with CBC is used in a ciphersuite by Neil Armstrong · 3 years, 4 months ago
  49. ccc074e Use correct condition to use encrypt_then_mac in ssl_tls.c by Neil Armstrong · 3 years, 4 months ago
  50. d1be767 Use PSA_BLOCK_CIPHER_BLOCK_LENGTH instead of PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE in ssl_tls12_populate_transform() by Neil Armstrong · 3 years, 4 months ago
  51. 6b27c97 Rename mbedtls_get_mode() to mbedtls_ssl_get_mode() by Neil Armstrong · 3 years, 4 months ago
  52. ab555e0 Rename mbedtls_get_mode_from_XXX to mbedtls_ssl_get_mode_from_XXX by Neil Armstrong · 3 years, 4 months ago
  53. a0eeb7f Remove cipher_info in ssl_tls12_populate_transform() when USE_PSA_CRYPTO is defined by Neil Armstrong · 3 years, 4 months ago
  54. 7fea33e Use mbedtls_get_mode_from_ciphersuite() in ssl_tls12_populate_transform() by Neil Armstrong · 3 years, 4 months ago
  55. 4bf4c86 Introduce mbedtls_get_mode_from_ciphersuite() by reusing mbedtls_get_mode_from_transform() logic by Neil Armstrong · 3 years, 4 months ago
  56. 8a0f3e8 Introduce mbedtls_ssl_mode_t & mbedtls_get_mode_from_transform() by Neil Armstrong · 3 years, 4 months ago
  57. 4d3a604 Change default config version to development style by XiaokangQian · 3 years, 3 months ago
  58. 060d867 Update parse_key_share in server side and version config by XiaokangQian · 3 years, 3 months ago
  59. 75d40ef Refine code base on review by XiaokangQian · 3 years, 4 months ago
  60. 8f9dfe4 Fix comments about coding styles and test cases by XiaokangQian · 3 years, 4 months ago
  61. ed582dd Update based on comments by XiaokangQian · 3 years, 4 months ago
  62. c4b8c99 Rebase and solve conflicts and issues by XiaokangQian · 3 years, 4 months ago
  63. a2da9c7 Merge pull request #5631 from gstrauss/enum-tls-vers by Paul Elliott · 3 years, 4 months ago
  64. 041a376 Remove some tls_ver < MBEDTLS_SSL_VERSION_TLS1_2 checks by Glenn Strauss · 3 years, 5 months ago
  65. 60bfe60 mbedtls_ssl_ciphersuite_t min_tls_version,max_tls_version by Glenn Strauss · 3 years, 5 months ago
  66. 2dfcea2 mbedtls_ssl_config min_tls_version, max_tls_version by Glenn Strauss · 3 years, 5 months ago
  67. da7851c Rename mbedtls_ssl_session minor_ver to tls_version by Glenn Strauss · 3 years, 5 months ago
  68. 07c6416 Rename mbedtls_ssl_transform minor_ver to tls_version by Glenn Strauss · 3 years, 5 months ago
  69. dff8462 Unify internal/external TLS protocol version enums by Glenn Strauss · 3 years, 5 months ago
  70. f3f4641 Remove ecdh_ctx variable, init & free when USE_PSA_CRYPTO isn't selected by Neil Armstrong · 3 years, 4 months ago
  71. a33a255 Disable non-PSA ECDHE code in mbedtls_ssl_psk_derive_premaster() when USE_PSA_CRYPTO is selected by Neil Armstrong · 3 years, 4 months ago
  72. 236e17e Introduce mbedtls_ssl_hs_cb_t typedef by Glenn Strauss · 3 years, 5 months ago
  73. 1b05aff Merge pull request #5624 from superna9999/5312-tls-server-ecdh by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  74. f716a70 Rename mbedtls_ssl_handshake_params variable ecdh_psa_shared_key to ecdh_psa_privkey_is_external by Neil Armstrong · 3 years, 4 months ago
  75. 0e980e8 Merge pull request #5640 from ronald-cron-arm/version-negotiation-2 by Ronald Cron · 3 years, 4 months ago
  76. 33a9d61 Merge pull request #5638 from paul-elliott-arm/ssl_cid_accessors by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  77. 451114f Merge pull request #5647 from superna9999/5179-follow-up-tls-record-hmac-no-mdinfo by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  78. 0113cf1 Add accessor for own cid to ssl context by Paul Elliott · 3 years, 5 months ago
  79. 8113d25 Add ecdh_psa_shared_key flag to protect PSA privkey if imported by Neil Armstrong · 3 years, 4 months ago
  80. a980adf Merge pull request #5637 from ronald-cron-arm/version-negotiation-1 by Ronald Cron · 3 years, 4 months ago
  81. 1fa4f68 ssl_tls.c: Return in error if default config fails by Ronald Cron · 3 years, 4 months ago
  82. 37bdaab tls: Simplify the logic of the config version check and test it by Ronald Cron · 3 years, 4 months ago
  83. e451295 Remove md_info in ssl_tls12_populate_transform() when USE_PSA_CRYPTO is defined by Neil Armstrong · 3 years, 5 months ago
  84. 3304f25 Merge pull request #5653 from paul-elliott-arm/handshake_over by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  85. f660655 TLS: Allow hybrid TLS 1.2/1.3 in default configurations by Ronald Cron · 3 years, 5 months ago
  86. e71639d Simplify TLS major version default value setting by Ronald Cron · 3 years, 5 months ago
  87. 9f0fba3 Add logic to switch to TLS 1.2 by Ronald Cron · 3 years, 6 months ago
  88. e1d3f06 Allow hybrid TLS 1.3 + TLS 1.2 configuration by Ronald Cron · 3 years, 6 months ago
  89. fbd9f99 ssl_tls.c: Move some client specific functions to ssl_client.c by Ronald Cron · 3 years, 5 months ago
  90. 27c85e7 ssl_tls.c: Unify TLS 1.2 and TLS 1.3 SSL state logs by Ronald Cron · 3 years, 5 months ago
  91. 8f6d39a Make some handshake TLS 1.3 utility routines available for TLS 1.2 by Ronald Cron · 3 years, 5 months ago
  92. 086ee0b ssl_tls.c: Reject TLS 1.3 version configuration for server by Ronald Cron · 3 years, 5 months ago
  93. a25cf58 ssl_tls.c: Remove one unnecessary minor version check by Ronald Cron · 3 years, 5 months ago
  94. c2f13a0 ssl_tls.c: Modify mbedtls_ssl_set_calc_verify_md() by Ronald Cron · 3 years, 5 months ago
  95. 4dcbca9 ssl_tls.c: Move mbedtls_ssl_set_calc_verify_md() to TLS 1.2 section by Ronald Cron · 3 years, 5 months ago
  96. 81591aa ssl_tls.c: Remove ssl_set_handshake_prfs unnecessary minor_ver param by Ronald Cron · 3 years, 5 months ago
  97. f12b81d ssl_tls.c: Fix PSA ECDH private key destruction by Ronald Cron · 3 years, 5 months ago
  98. 8540cf6 ssl_tls.c: Propose PKCS1 v1.5 signatures with SHA_384/512 by Ronald Cron · 3 years, 5 months ago
  99. 39f2f73 Merge pull request #5630 from ronald-cron-arm/restore-full-compat-testing by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  100. fb39f15 ssl_tls.c: Use ETM status only in CBC mode case by Ronald Cron · 3 years, 4 months ago