TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / b89c4f35a1362d1cc56c375a87a584cde6816701 / library / ssl_srv.c
  1. b89c4f3 Fixes for the renego-option merge by Manuel Pégourié-Gonnard · 11 years ago
  2. 0af1ba3 Merge commit 'f6080b8' into dtls by Manuel Pégourié-Gonnard · 11 years ago
  3. edb7ed3 Merge commit 'd7e2483' into dtls by Manuel Pégourié-Gonnard · 11 years ago
  4. f6080b8 Merge support for enabling / disabling renegotiation support at compile-time by Paul Bakker · 11 years ago
  5. d7e2483 Merge miscellaneous fixes into development by Paul Bakker · 11 years ago
  6. d942323 Skip signature_algorithms ext if PSK only by Manuel Pégourié-Gonnard · 11 years ago
  7. eaecbd3 Fix warning in reduced configs by Manuel Pégourié-Gonnard · 11 years ago
  8. 615e677 Make renegotiation a compile-time option by Manuel Pégourié-Gonnard · 11 years ago
  9. f9d778d Merge branch 'etm' into dtls by Manuel Pégourié-Gonnard · 11 years ago
  10. 56d985d Merge branch 'session-hash' into dtls by Manuel Pégourié-Gonnard · 11 years ago
  11. fedba98 Merge branch 'fb-scsv' into dtls by Manuel Pégourié-Gonnard · 11 years ago
  12. b575b54 Forbid extended master secret with SSLv3 by Manuel Pégourié-Gonnard · 11 years ago
  13. 78e745f Don't send back EtM extension if not using CBC by Manuel Pégourié-Gonnard · 11 years ago
  14. 699cafa Implement initial negotiation of EtM by Manuel Pégourié-Gonnard · 11 years ago
  15. 01b2699 Implement FALLBACK_SCSV server-side by Manuel Pégourié-Gonnard · 11 years ago
  16. 367381f Add negotiation of Extended Master Secret by Manuel Pégourié-Gonnard · 11 years ago
  17. 8a7cf25 Add a few #ifdefs by Manuel Pégourié-Gonnard · 11 years ago
  18. 579950c Fix bug with non-blocking I/O and cookies by Manuel Pégourié-Gonnard · 11 years ago
  19. 7de3c9e Count timeout per flight, not per message by Manuel Pégourié-Gonnard · 11 years ago
  20. f03c7aa Add replay detection in parse_client_hello() by Manuel Pégourié-Gonnard · 11 years ago
  21. 5d8ba53 Expand and fix resend infrastructure by Manuel Pégourié-Gonnard · 11 years ago
  22. 5ee9654 Add length checks in parse_certificate_verify() by Manuel Pégourié-Gonnard · 11 years ago
  23. 7222621 Merge checks in ssl_parse_certificate_verify() by Manuel Pégourié-Gonnard · 11 years ago
  24. 4528f3f No memmove: parse_certificate_verify() by Manuel Pégourié-Gonnard · 11 years ago
  25. 2114d72 No memmove: ssl_parse_client_key_exchange() by Manuel Pégourié-Gonnard · 11 years ago
  26. f899583 Prepare moving away from memmove() on incoming HS by Manuel Pégourié-Gonnard · 11 years ago
  27. 19d438f Get rid of memmove for DTLS in parse_client_hello() by Manuel Pégourié-Gonnard · 11 years ago
  28. 1aa586e Check handshake message_seq field by Manuel Pégourié-Gonnard · 11 years ago
  29. d9ba0d9 Prepare for checking incoming handshake seqnum by Manuel Pégourié-Gonnard · 11 years ago
  30. 30d16eb Fix client-initiated renegotiation with DTLS by Manuel Pégourié-Gonnard · 11 years ago
  31. b35fe56 Fix HelloVerifyRequest version handling by Manuel Pégourié-Gonnard · 11 years ago
  32. 7d38d21 Allow disabling HelloVerifyRequest by Manuel Pégourié-Gonnard · 11 years ago
  33. 232edd4 Move cookie callbacks implementation to own module by Manuel Pégourié-Gonnard · 11 years ago
  34. d485d19 Move to a callback interface for DTLS cookies by Manuel Pégourié-Gonnard · 11 years ago
  35. d7f9bc5 Refactor cookie to prepare for external callbacks by Manuel Pégourié-Gonnard · 11 years ago
  36. 82202f0 Make DTLS_HELLO_VERIFY a compile option by Manuel Pégourié-Gonnard · 11 years ago
  37. 98545f1 Generate random key for HelloVerifyRequest by Manuel Pégourié-Gonnard · 11 years ago
  38. dd3cdb0 Start using client IP in HelloVerifyRequest by Manuel Pégourié-Gonnard · 11 years ago
  39. 43c0218 Add ssl_set_client_transport_id() by Manuel Pégourié-Gonnard · 11 years ago
  40. 2c9ee81 Start adding srv support for hello verify request by Manuel Pégourié-Gonnard · 11 years ago
  41. a0e1632 Do not use compression with DTLS by Manuel Pégourié-Gonnard · 11 years ago
  42. 5d53cbe Fix length check in ssl_write_ticket() by Manuel Pégourié-Gonnard · 11 years ago
  43. b2f3be8 Support multiple records in one datagram by Manuel Pégourié-Gonnard · 11 years ago
  44. d6b721c More ssl_parse_client_hello() adjustments by Manuel Pégourié-Gonnard · 11 years ago
  45. 4128aa7 Add the 'cookie' field of DTLS ClientHello by Manuel Pégourié-Gonnard · 11 years ago
  46. 8933a65 Rework ssl_parse_client_hello() a bit by Manuel Pégourié-Gonnard · 11 years ago
  47. e89bcf0 Write new DTLS handshake fields correctly by Manuel Pégourié-Gonnard · 11 years ago
  48. ce441b3 Add space for new DTLS fields in handshake by Manuel Pégourié-Gonnard · 11 years ago
  49. 0619348 Add explicit counter in DTLS record header by Manuel Pégourié-Gonnard · 11 years ago
  50. 507e1e4 Prep: allow {in,out}_len != {in,out}_hdr + 3 by Manuel Pégourié-Gonnard · 11 years ago
  51. abc7e3b Handle DTLS version encoding and fix some checks by Manuel Pégourié-Gonnard · 11 years ago
  52. d666451 Add a ciphersuite NODTLS flag by Manuel Pégourié-Gonnard · 11 years ago
  53. 43c3b28 Fix memory leak with crafted ClientHello by Manuel Pégourié-Gonnard · 11 years ago
  54. 480905d Fix selection of hash from sig_alg ClientHello ext. by Manuel Pégourié-Gonnard · 11 years ago
  55. 84bbeb5 Adapt cipher and MD layer with _init() and _free() by Paul Bakker · 11 years ago
  56. accaffe Restructure ssl_handshake_init() and small fixes by Paul Bakker · 11 years ago
  57. 5b4af39 Add _init() and _free() for hash modules by Paul Bakker · 11 years ago
  58. d27680b Clarify code using PSK callback by Manuel Pégourié-Gonnard · 11 years ago
  59. 14beb08 Fix missing const by Manuel Pégourié-Gonnard · 11 years ago
  60. 08e81e0 Change selection of hash algorithm for TLS 1.2 by Manuel Pégourié-Gonnard · 11 years ago
  61. dd0c0f3 Better usage of dhm_calc_secret in SSL by Manuel Pégourié-Gonnard · 11 years ago
  62. 4d2a8eb SSL modules now using x509_crt_parse_der() by Manuel Pégourié-Gonnard · 11 years ago
  63. 66d5d07 Fix formatting in various code to match spacing from coding style by Paul Bakker · 11 years ago
  64. db20c10 Add #endif comments for #endif more than 10 lines from #if / #else by Paul Bakker · 11 years ago
  65. 3461772 Introduce polarssl_zeroize() instead of memset() for zeroization by Paul Bakker · 11 years ago
  66. 14877e6 Remove unused 'ret' variable by Paul Bakker · 11 years ago
  67. 14b16c6 Minor optimizations (original by Peter Vaskovic, modified by Paul Bakker) by Paul Bakker · 11 years ago
  68. 0f651c7 Stricter check on SSL ClientHello internal sizes compared to actual packet size by Paul Bakker · 11 years ago
  69. 61edffe Normalize "should never happen" messages/errors by Manuel Pégourié-Gonnard · 11 years ago
  70. b9e4e2c Fix formatting: fix some 'easy' > 80 length lines by Paul Bakker · 11 years ago
  71. 9af723c Fix formatting: remove trailing spaces, #endif with comments (> 10 lines) by Paul Bakker · 11 years ago
  72. cef4ad2 Adapt sources to configurable config.h name by Manuel Pégourié-Gonnard · 11 years ago
  73. a703663 Improve interop by not writing ext_len in ClientHello / ServerHello when 0 by Paul Bakker · 11 years ago
  74. c70e425 Only iterate over actual certificates in ssl_write_certificate_request() by Paul Bakker · 11 years ago
  75. 4f42c11 Remove arbitrary maximum length for cipher_list and content length by Paul Bakker · 11 years ago
  76. d893aef Force default value to curve parameter by Paul Bakker · 11 years ago
  77. 7f2a07d Check keyUsage in SSL client and server by Manuel Pégourié-Gonnard · 11 years ago
  78. f6521de Add ALPN tests to ssl-opt.sh by Manuel Pégourié-Gonnard · 11 years ago
  79. 89e3579 Implement ALPN server-side by Manuel Pégourié-Gonnard · 11 years ago
  80. 969ccc6 Fix length checking of various ClientKeyExchange's by Manuel Pégourié-Gonnard · 11 years ago
  81. b2bf5a1 Fix possible buffer overflow with PSK by Manuel Pégourié-Gonnard · 11 years ago
  82. d701c9a Fix memory leak in server with expired tickets by Manuel Pégourié-Gonnard · 11 years ago
  83. 145dfcb Fix bug with NewSessionTicket and non-blocking I/O by Manuel Pégourié-Gonnard · 11 years ago
  84. 96ea2f2 Add tests for SNI by Manuel Pégourié-Gonnard · 11 years ago
  85. 8520dac Add tests for auth_mode by Manuel Pégourié-Gonnard · 11 years ago
  86. f7c5201 Add basic tests for session resumption by Manuel Pégourié-Gonnard · 11 years ago
  87. 6b1e207 Fix verion-major intolerance by Manuel Pégourié-Gonnard · 11 years ago
  88. 7dc4c44 Library files moved to use platform layer by Paul Bakker · 12 years ago
  89. f6dc5e1 Remove temporary debug code by Manuel Pégourié-Gonnard · 11 years ago
  90. c3f6b62c Print curve name instead of size in debugging by Manuel Pégourié-Gonnard · 11 years ago
  91. de05390 Rename ecdh_curve_list to curve_list by Manuel Pégourié-Gonnard · 11 years ago
  92. 5de2580 Make ssl_set_ecdh_curves() a compile-time option by Manuel Pégourié-Gonnard · 12 years ago
  93. 987bfb5 Added the possibility to define the allowed curves for ECDHE handshake. It also defines the preference of the curves. by Gergely Budai · 12 years ago
  94. 5538970 Add server support for ECDH key exchanges by Manuel Pégourié-Gonnard · 12 years ago
  95. 1a9f2c7 Add option to respect client ciphersuite order by Manuel Pégourié-Gonnard · 12 years ago
  96. 011a8db Complete refactoring of ciphersuite choosing by Manuel Pégourié-Gonnard · 12 years ago
  97. 3252560 Move some functions up by Manuel Pégourié-Gonnard · 12 years ago
  98. 59b81d7 Refactor ciphersuite selection for version > 2 by Manuel Pégourié-Gonnard · 12 years ago
  99. da1ff38 Don't accept CertificateRequest with PSK suites by Manuel Pégourié-Gonnard · 12 years ago
  100. dc953e8 Add missing defines/cases for RSA_PSK key exchange by Manuel Pégourié-Gonnard · 12 years ago