TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / a43f85c9b299caedab7d09a5a82e80c854e16b77 / library / ssl_srv.c
  1. 8671e7b Remove redundant SHA-1 code-path in TLS-1.2 handling of CrtVrfy by Hanno Becker · 6 years ago
  2. 2f41b24 Remove calc_verify SSL function pointer by Hanno Becker · 6 years ago
  3. 8a4b590 Remove checksum update function pointer from SSL handshake params by Hanno Becker · 6 years ago
  4. f0f01e1 Merge remote-tracking branch 'origin/pr/630' into baremetal by Simon Butcher · 6 years ago
  5. 434ab19 Merge remote-tracking branch 'origin/pr/629' into baremetal by Simon Butcher · 6 years ago
  6. 0863b2a Merge remote-tracking branch 'origin/pr/612' into baremetal by Simon Butcher · 6 years ago
  7. b72fc6a Don't use const var in initialization of another const var by Hanno Becker · 6 years ago
  8. 8295ff0 tinyCrypt: Don't store public ECDH-share in handshake struct by Hanno Becker · 6 years ago
  9. b1626fb tinyCrypt: Remove check for Secp256r1 in SrvKeyExch writing by Hanno Becker · 6 years ago
  10. 9cf087d Use tinyCrypt only for ECDHE-RSA/ECDSA in SrvKeyExch writing by Hanno Becker · 6 years ago
  11. 7a19633 tinyCrypt: Avoid unused var warning by marking vars as unused by Hanno Becker · 6 years ago
  12. 29d1655 Add MBEDTLS_ECDH_C guards to ECDH code-paths using legacy ECDH by Hanno Becker · 6 years ago
  13. 975b9ee Fix guards around use of legacy ECDH context by Hanno Becker · 6 years ago
  14. a3c2c17 tinyCrypt: Share ECDH secret calculation code-path by Hanno Becker · 6 years ago
  15. 75f12d1 tinyCrypt: Add ServerKeyExchange parsing code by Hanno Becker · 6 years ago
  16. d849c7c tinyCrypt: Hardcode ECDH parameter header by Hanno Becker · 6 years ago
  17. ef982d5 tinyCrypt: Bind RNG wrapper to tinyCrypt in mbedtls_ssl_setup() by Hanno Becker · 6 years ago
  18. e12aafb tinyCrypt: Initial commit towards ECDHE support by Jarno Lamsa · 6 years ago
  19. 4e46709 Document precoditions on some HS parsing/writing functions by Hanno Becker · 6 years ago
  20. 7d552fa Avoid collision of ssl_xxx_key_exchange_yyy() func names in cli/srv by Hanno Becker · 6 years ago
  21. 7ba0a88 Fix 'set but not used' ARM compiler warning by Hanno Becker · 6 years ago
  22. 868cb58 Rename SSL_PROC_CHK -> MBEDTLS_SSL_CHK by Hanno Becker · 6 years ago
  23. 9a12243 Introduce getter function for RNG context by Hanno Becker · 6 years ago
  24. 9db697e Async operations: Simplify restart logic by Hanno Becker · 6 years ago
  25. 4ec73cb Restructure SrvKeyExchange: Move parsing code by Hanno Becker · 6 years ago
  26. 09d2364 Share code between In-CliKeyExch and Out-CliKeyExch by Hanno Becker · 6 years ago
  27. d116e82 Restructure incoming CliKeyExch: Shorten postprocessing by Hanno Becker · 7 years ago
  28. 2eb716d Restructure incoming CliKeyExch: Remove old code by Hanno Becker · 6 years ago
  29. e7c4eed Restructure incoming CliKeyExch: Parsing code by Hanno Becker · 7 years ago
  30. 1e23af8 Restructure incoming CliKeyExch: Move PMS assembly code by Hanno Becker · 7 years ago
  31. dc8bfb9 Restructure incoming CliKeyExch: Move key derivation code by Hanno Becker · 7 years ago
  32. 7ec345d Restructure incoming CliKeyExch: Add frame for restructuring by Hanno Becker · 7 years ago
  33. 8844055 Remove compression field from SSL session if compression disabled by Hanno Becker · 6 years ago
  34. 93de296 Fix rebase slip by Hanno Becker · 6 years ago
  35. de62da9 Use separate functions to pend fatal and non-fatal alerts by Hanno Becker · 6 years ago
  36. 1facd55 Replace xxx_send_alert by xxx_pend_alert to save code by Hanno Becker · 6 years ago
  37. 3b014fc Merge remote-tracking branch 'origin/pr/604' into baremetal by Simon Butcher · 6 years ago
  38. 981f81d Add missing uses of mbedtls_ssl_get_minor() by Hanno Becker · 6 years ago
  39. f1bc9e1 Introduce helper functions to traverse signature hashes by Hanno Becker · 6 years ago
  40. 0af717b Don't use mbedtls_ssL_set_calc_verify_md writing CertificateRequest by Hanno Becker · 6 years ago
  41. feb1cee Merge remote-tracking branch 'origin/pr/602' into baremetal by Simon Butcher · 6 years ago
  42. a4a9c69 Introduce helper macro for traversal of supported EC TLS IDs by Hanno Becker · 6 years ago
  43. 84fb902 Work on client-provided supported EC TLS ID list in-place by Hanno Becker · 6 years ago
  44. 004619f Store TLS curve ID instead of information structure by Hanno Becker · 6 years ago
  45. 18729ae Guard RSA-only max_major/minor_ver fields from SSL handshake params by Hanno Becker · 6 years ago
  46. 381eaa5 Remove min/maj version from SSL context if only one version enabled by Hanno Becker · 6 years ago
  47. 2881d80 Introduce getter function for max/min SSL version by Hanno Becker · 6 years ago
  48. 3fa1ee5 Set SSL minor version only after validation by Hanno Becker · 6 years ago
  49. e965bd3 Allow hardcoding of min/max minor/major SSL version at compile-time by Hanno Becker · 6 years ago
  50. f4d6b49 Allow use of continue in single-ciphersuite 'loops' by Hanno Becker · 6 years ago
  51. 73f4cb1 Rename XXX_SINGLE_CIPHERSUITE -> XXX_CONF_SINGLE_CIPHERSUITE by Hanno Becker · 6 years ago
  52. e02758c Remove ciphersuite from SSL session if single suite hardcoded by Hanno Becker · 6 years ago
  53. df64596 Remove ciphersuite from handshake params if single suite hardcoded by Hanno Becker · 6 years ago
  54. 2d46b4f Adapt ClientHello parsing to case of single hardcoded ciphersuite by Hanno Becker · 6 years ago
  55. 473f98f Introduce ciphersuite handle type by Hanno Becker · 6 years ago
  56. 5455afd Merge pull request #599 from ARMmbed/baremetal-ec-preparation by Manuel Pégourié-Gonnard · 6 years ago
  57. d3b2fcb Don't store client-supported ECs in heap-allocated buffer by Hanno Becker · 6 years ago
  58. ece325c Allow compile-time configuration of PRNG in SSL module by Hanno Becker · 6 years ago
  59. de8869c Merge remote-tracking branch 'restricted/pr/608' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  60. 44ba6b0 Merge remote-tracking branch 'restricted/pr/594' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  61. 37261e6 Merge remote-tracking branch 'restricted/pr/601' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  62. 417d2ce Merge remote-tracking branch 'restricted/pr/584' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  63. c2cfdaa Allow config'n of incl of CertificateReq CA list Y/N at compile-time by Hanno Becker · 6 years ago
  64. 2d9623f Allow configuration of endpoint (cli/srv) at compile-time by Hanno Becker · 6 years ago
  65. b0b2b67 Allow compile-time configuration of legacy renegotiation by Hanno Becker · 6 years ago
  66. acd4fc0 Allow compile-time configuration of authentication mode by Hanno Becker · 6 years ago
  67. bc6b598 [Fixup] Add missing PK release call in Cert Verify parsing by Hanno Becker · 6 years ago
  68. 754b9f3 Introduce getter function for renego_status by Manuel Pégourié-Gonnard · 6 years ago
  69. 3652e99 Add getter function for handshake->resume by Manuel Pégourié-Gonnard · 6 years ago
  70. 29f2dd0 Address review comments by Jarno Lamsa · 6 years ago
  71. 59bd12b Add new config MBEDTLS_SSL_SESSION_RESUMPTION by Jarno Lamsa · 6 years ago
  72. 7be1406 Add config MBEDTLS_SSL_SESSION_CACHE by Jarno Lamsa · 6 years ago
  73. abd929c Merge branch 'mbedtls-2.16' into baremetal-2.16-01_07_19 by Hanno Becker · 6 years ago
  74. 2224ccf Don't use assertion for failures of mbedtls_x509_crt_x_acquire() by Hanno Becker · 6 years ago
  75. 5f268b3 Don't allow change of CRT frame returned by x509_crt_frame_acquire() by Hanno Becker · 6 years ago
  76. c6d1c3e Remove frame/pk parameter from mbedtls_x509_crt_xxx_release() by Hanno Becker · 6 years ago
  77. 1e11f21 Solely use raw X.509 name data references including SEQUENCE header by Hanno Becker · 6 years ago
  78. 828a8c0 Add compile-guard for < TLS1.2 path in server-side ssl_pick_cert() by Hanno Becker · 6 years ago
  79. 73cd8d8 Make use of acquire/release in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
  80. 232f8fa Make use of CRT acquire/release in ssl_write_certificate_request() by Hanno Becker · 6 years ago
  81. 30649f7 Make use of CRT acquire/release in server-side ssl_pick_cert() by Hanno Becker · 6 years ago
  82. 371e0e4 Determine whether CRT is initialized or not through raw data pointer by Hanno Becker · 6 years ago
  83. 74b89f6 Use private key to check suitability of PK type when picking srv CRT by Hanno Becker · 6 years ago
  84. 81bb4d0 Simplify server-side ssl_decrypt_encrypted_pms() by Hanno Becker · 6 years ago
  85. 1ab322b Remove extended_ms field from HS param if ExtendedMS enforced by Hanno Becker · 6 years ago
  86. a49ec56 Introduce getter function for `extended_ms` field in HS struct by Hanno Becker · 6 years ago
  87. 03b64fa Rearrange ExtendedMasterSecret parsing logic by Hanno Becker · 6 years ago
  88. aabbb58 Exemplify harcoding SSL config at compile-time in example of ExtMS by Hanno Becker · 6 years ago
  89. 5882dd0 Remove CRT digest from SSL session if !RENEGO + !KEEP_PEER_CERT by Hanno Becker · 6 years ago
  90. cd90126 Adapt client auth detection in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
  91. 0833c10 Adapt server-side signature verification to use raw public key by Hanno Becker · 6 years ago
  92. ae39b9e Make use of macro and helper detecting whether CertRequest allowed by Hanno Becker · 6 years ago
  93. c725e4b Merge remote-tracking branch 'origin/pr/590' into baremetal by Simon Butcher · 6 years ago
  94. ec1c222 Fix a few style issues by Manuel Pégourié-Gonnard · 6 years ago
  95. 20095af Changes according to review comments by Jarno Lamsa · 6 years ago
  96. 842be16 Check for the enforcing and fail handshake if the peer doesn't support by Jarno Lamsa · 6 years ago
  97. 64c1681 Use new macros for all TLS/DTLS tests by Manuel Pégourié-Gonnard · 6 years ago
  98. ff4bd9f Use new tools for all cases with TLS-specific code by Manuel Pégourié-Gonnard · 6 years ago
  99. 0d1d76f Merge remote-tracking branch 'origin/pr/561' into baremetal by Simon Butcher · 6 years ago
  100. 5a790f9 Merge remote-tracking branch 'origin/pr/563' into baremetal by Simon Butcher · 6 years ago