TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / a9a991633de1ec7dc72c5ec731f4f8a764b3b105 / include / polarssl / ssl.h
  1. 5b8f7ea Merge new security defaults for programs (RC4 disabled, SSL3 disabled) by Paul Bakker · 11 years ago
  2. c82b7e2 Merge option to disable truncated hmac on the server-side by Paul Bakker · 11 years ago
  3. e522d0f Merge smarter certificate selection for pre-TLS-1.2 clients by Paul Bakker · 11 years ago
  4. 78803c0 Fix char signedness issue by Manuel Pégourié-Gonnard · 11 years ago
  5. f356115 Merge support for 1/n-1 record splitting by Paul Bakker · 11 years ago
  6. f6080b8 Merge support for enabling / disabling renegotiation support at compile-time by Paul Bakker · 11 years ago
  7. d7e2483 Merge miscellaneous fixes into development by Paul Bakker · 11 years ago
  8. bd47a58 Add ssl_set_arc4_support() by Manuel Pégourié-Gonnard · 11 years ago
  9. 448ea50 Set min version to TLS 1.0 in programs by Manuel Pégourié-Gonnard · 11 years ago
  10. e117a8f Make truncated hmac a runtime option server-side by Manuel Pégourié-Gonnard · 11 years ago
  11. f01768c Specific error for suites in common but none good by Manuel Pégourié-Gonnard · 11 years ago
  12. cfa477e Allow disabling record splitting at runtime by Manuel Pégourié-Gonnard · 11 years ago
  13. d76314c Add 1/n-1 record splitting by Manuel Pégourié-Gonnard · 11 years ago
  14. edd371a Enhance doc on ssl_write() by Manuel Pégourié-Gonnard · 11 years ago
  15. 837f0fe Make renego period configurable by Manuel Pégourié-Gonnard · 11 years ago
  16. 0371704 Switch from an enable to a disable flag by Manuel Pégourié-Gonnard · 11 years ago
  17. 6186019 Save 48 bytes if SSLv3 is not defined by Manuel Pégourié-Gonnard · 11 years ago
  18. 615e677 Make renegotiation a compile-time option by Manuel Pégourié-Gonnard · 11 years ago
  19. cb7da35 Fix typo in #ifdef by Manuel Pégourié-Gonnard · 11 years ago
  20. 3e94493 Fix comment on resumption by Manuel Pégourié-Gonnard · 11 years ago
  21. d16d1cb Use more #ifdef's on CLI_C and SRV_C in ssl_tls.c by Manuel Pégourié-Gonnard · 11 years ago
  22. 699cafa Implement initial negotiation of EtM by Manuel Pégourié-Gonnard · 11 years ago
  23. 367381f Add negotiation of Extended Master Secret by Manuel Pégourié-Gonnard · 11 years ago
  24. 01b2699 Implement FALLBACK_SCSV server-side by Manuel Pégourié-Gonnard · 11 years ago
  25. 1cbd39d Implement FALLBACK_SCSV client-side by Manuel Pégourié-Gonnard · 11 years ago
  26. 9e4ff95 Clarified len parameter of ssl_read() by Paul Bakker · 11 years ago
  27. 44ade65 Implement (partial) renego delay on client by Manuel Pégourié-Gonnard · 11 years ago
  28. 6591962 Allow delay on renego on client by Manuel Pégourié-Gonnard · 11 years ago
  29. 55e4ff2 Tune comments by Manuel Pégourié-Gonnard · 11 years ago
  30. 8d4ad07 SHA-2 ciphersuites now require TLS 1.x by Manuel Pégourié-Gonnard · 11 years ago
  31. accaffe Restructure ssl_handshake_init() and small fixes by Paul Bakker · 11 years ago
  32. 08e81e0 Change selection of hash algorithm for TLS 1.2 by Manuel Pégourié-Gonnard · 11 years ago
  33. 8fb99ab Merge changes for leaner memory footprint by Paul Bakker · 11 years ago
  34. 481fcfd Make PSK_LEN configurable and adjust PMS size by Manuel Pégourié-Gonnard · 11 years ago
  35. a9964db Add ssl_set_renegotiation_enforced() by Manuel Pégourié-Gonnard · 11 years ago
  36. c27807d Make SSL_BUFFER_LEN overhead depend more on config by Manuel Pégourié-Gonnard · 11 years ago
  37. 08485cc Fix SSL_BUFFER_LEN by Manuel Pégourié-Gonnard · 11 years ago
  38. b9e4e2c Fix formatting: fix some 'easy' > 80 length lines by Paul Bakker · 11 years ago
  39. 9af723c Fix formatting: remove trailing spaces, #endif with comments (> 10 lines) by Paul Bakker · 11 years ago
  40. cef4ad2 Adapt sources to configurable config.h name by Manuel Pégourié-Gonnard · 11 years ago
  41. 088c5c5 POLARSSL_CONFIG_OPTIONS has been removed. Values are set individually by Paul Bakker · 11 years ago
  42. 043a2e2 Merge verification of the keyUsage extension in X.509 certificates by Paul Bakker · 11 years ago
  43. 7f2a07d Check keyUsage in SSL client and server by Manuel Pégourié-Gonnard · 11 years ago
  44. 75342a6 Fixed typos in code by Paul Bakker · 11 years ago
  45. 89e3579 Implement ALPN server-side by Manuel Pégourié-Gonnard · 11 years ago
  46. 0b874dc Implement ALPN client-side by Manuel Pégourié-Gonnard · 11 years ago
  47. 7e250d4 Add ALPN interface by Manuel Pégourié-Gonnard · 11 years ago
  48. 7a2aba8 Deprecate some non-PK compatibility functions by Manuel Pégourié-Gonnard · 11 years ago
  49. a612b44 Fix typo in doc by Manuel Pégourié-Gonnard · 11 years ago
  50. e2ce211 Update doc of ssl_set_authmode() by Manuel Pégourié-Gonnard · 11 years ago
  51. 83cdffc Forbid sequence number wrapping by Manuel Pégourié-Gonnard · 11 years ago
  52. ab24010 Enforce our choice of allowed curves. by Manuel Pégourié-Gonnard · 12 years ago
  53. 7f38ed0 ssl_set_curves is no longer ECDHE only by Manuel Pégourié-Gonnard · 12 years ago
  54. cd49f76 Make ssl_set_curves() work client-side too. by Manuel Pégourié-Gonnard · 12 years ago
  55. de05390 Rename ecdh_curve_list to curve_list by Manuel Pégourié-Gonnard · 12 years ago
  56. 5de2580 Make ssl_set_ecdh_curves() a compile-time option by Manuel Pégourié-Gonnard · 12 years ago
  57. 987bfb5 Added the possibility to define the allowed curves for ECDHE handshake. It also defines the preference of the curves. by Gergely Budai · 12 years ago
  58. cf1d73b Clarified ssl_set_ciphersuites() doc for influencing preference as well by Paul Bakker · 12 years ago
  59. 956c9e0 Reduced the input / output overhead with 200+ bytes and covered corner case by Paul Bakker · 12 years ago
  60. c72ac7c Fix SSLv3 handling of SHA-384 suites by Manuel Pégourié-Gonnard · 12 years ago
  61. a9a028e SSL now gracefully handles missing RNG by Paul Bakker · 12 years ago
  62. 28d81a0 Fix pkcs11.c to conform to PolarSSL 1.3 API. by Steffan Karger · 12 years ago
  63. 993e386 Merged renegotiation refactoring by Paul Bakker · 12 years ago
  64. 31ff1d2 Safer buffer comparisons in the SSL modules by Manuel Pégourié-Gonnard · 12 years ago
  65. 6d8404d Server: enforce renegotiation by Manuel Pégourié-Gonnard · 12 years ago
  66. 9c1e189 Move some code around, improve documentation by Manuel Pégourié-Gonnard · 12 years ago
  67. 214eed3 Make ssl_renegotiate the only interface by Manuel Pégourié-Gonnard · 12 years ago
  68. caed054 Allow ssl_renegotiate() to be called in a loop by Manuel Pégourié-Gonnard · 12 years ago
  69. f3dc2f6 Add code for testing server-initiated renegotiation by Manuel Pégourié-Gonnard · 12 years ago
  70. 60b1d10 Fixed spelling / typos (from PowerDNS:codespell) by Paul Bakker · 12 years ago
  71. 1642122 Merged support for Camellia-GCM + ciphersuite and fixes to cipher layer by Paul Bakker · 12 years ago
  72. 677377f Server does not send out extensions not advertised by client by Paul Bakker · 12 years ago
  73. a8a25ae Fix bad error codes by Manuel Pégourié-Gonnard · 12 years ago
  74. f34673e Merged RSA-PSK key-exchange and ciphersuites by Paul Bakker · 12 years ago
  75. 376e815 Merged ECDHE-PSK ciphersuites by Paul Bakker · 12 years ago
  76. 8a3c64d Fix and simplify *-PSK ifdef's by Manuel Pégourié-Gonnard · 12 years ago
  77. 1b62c7f Fix dependencies and related issues by Manuel Pégourié-Gonnard · 12 years ago
  78. bd1ae24 Factor PSK pms computation to ssl_tls.c by Manuel Pégourié-Gonnard · 12 years ago
  79. 1677033 TLS compression only allocates working buffer once by Paul Bakker · 12 years ago
  80. 6838bd1 Clarified threading issues by Paul Bakker · 12 years ago
  81. 8372454 Rework SNI to fix memory issues by Manuel Pégourié-Gonnard · 12 years ago
  82. 705fcca Adapt support for SNI to recent changes by Manuel Pégourié-Gonnard · 12 years ago
  83. d09453c Check our ECDSA cert(s) against supported curves by Manuel Pégourié-Gonnard · 12 years ago
  84. 3ebb2cd Add support for multiple server certificates by Manuel Pégourié-Gonnard · 12 years ago
  85. 834ea85 Change internal structs for multi-cert support by Manuel Pégourié-Gonnard · 12 years ago
  86. cbf3ef3 RSA and ECDSA key exchanges don't depend on CRL by Manuel Pégourié-Gonnard · 12 years ago
  87. 1a48383 SSL_TLS doesn't depend on PK any more by Manuel Pégourié-Gonnard · 12 years ago
  88. 1032c1d Fix some dependencies and warnings in small config by Manuel Pégourié-Gonnard · 12 years ago
  89. 6db455e PSK callback added to SSL server by Paul Bakker · 12 years ago
  90. c559c7a Renamed x509_cert structure to x509_crt for consistency by Paul Bakker · 12 years ago
  91. 7c6b2c3 Split up X509 files into smaller modules by Paul Bakker · 12 years ago
  92. dcbfdcc Updated doxygen documentation in header files and HTML pages by Paul Bakker · 12 years ago
  93. 7da0a38 Rm some includes that are now useless by Manuel Pégourié-Gonnard · 12 years ago
  94. 226d5da GCM ciphersuites partially using cipher layer by Manuel Pégourié-Gonnard · 12 years ago
  95. da02a7f AES_CBC ciphersuites now run purely via cipher layer by Paul Bakker · 12 years ago
  96. c852a68 More robust selection of ctx_enc size by Manuel Pégourié-Gonnard · 12 years ago
  97. 577e006 Merged ECDSA-based key-exchange and ciphersuites into development by Paul Bakker · 12 years ago
  98. acc7505 Temporary fix for size of cipher contexts by Manuel Pégourié-Gonnard · 12 years ago
  99. 2fb15f6 Un-rename ssl_set_own_cert_alt() by Manuel Pégourié-Gonnard · 12 years ago
  100. a20c58c Use convert functions for SSL_SIG_* and SSL_HASH_* by Manuel Pégourié-Gonnard · 12 years ago