TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / c33e2a6a56469a30cada59bc2daf3f34dba7f23c / library / ssl_tls.c
  1. 6062b49 Fix bug in handling of DTLS client hard reconnect by Manuel Pégourié-Gonnard · 5 years ago
  2. 4bbbdc3 Improve debug logging of client hard reconnect by Manuel Pégourié-Gonnard · 5 years ago
  3. 8758053 Fix compilation issue when DTLS and SSL_HW_RECORD_ACCEL are on by Andres Amaya Garcia · 7 years ago
  4. 0b20357 Merge remote-tracking branch 'origin/pr/2713' into mbedtls-2.7 by Jaeden Amero · 6 years ago
  5. 0cf1776 Merge remote-tracking branch 'origin/pr/2451' into mbedtls-2.7 by Jaeden Amero · 6 years ago
  6. ba59f6b ssl_tls: Enable Suite B with subset of ECP curves by Jaeden Amero · 6 years ago
  7. 8fd9156 Fix #2370, minor typos and spelling mistakes by Antonin Décimo · 7 years ago
  8. a34cc6b Correct length check for DTLS records from old epochs. by Hanno Becker · 8 years ago
  9. 5a15fa3 Merge remote-tracking branch 'public/pr/2096' into mbedtls-2.7-proposed by Simon Butcher · 7 years ago
  10. ca31b47 Fail when encountering invalid CBC padding in EtM records by Hanno Becker · 7 years ago
  11. d82e0c0 Add missing zeroization of reassembled handshake messages by Hanno Becker · 7 years ago
  12. 9877efb Merge remote-tracking branch 'restricted/pr/437' into mbedtls-2.7-restricted by Simon Butcher · 7 years ago
  13. 6910201 Merge remote-tracking branch 'restricted/pr/493' into mbedtls-2.7-restricted by Simon Butcher · 7 years ago
  14. f7be6b0 Merge remote-tracking branch 'public/pr/1960' into mbedtls-2.7 by Simon Butcher · 7 years ago
  15. 12f7ede Compute record expansion in steps to ease readability by Hanno Becker · 7 years ago
  16. dbd3e88 Fix mbedtls_ssl_get_record_expansion() for CBC modes by Hanno Becker · 7 years ago
  17. cd6a64a Reset session_in/out pointers in ssl_session_reset_int() by Hanno Becker · 7 years ago
  18. 2c16114 Revert change of a return variable name by k-stachowiak · 7 years ago
  19. 7daacda Merge remote-tracking branch 'restricted/pr/494' into mbedtls-2.7 by Simon Butcher · 7 years ago
  20. d5a3ed3 Merge remote-tracking branch 'public/pr/1863' into mbedtls-2.7 by Simon Butcher · 7 years ago
  21. bc5ec41 Merge remote-tracking branch 'public/pr/1847' into mbedtls-2.7 by Simon Butcher · 7 years ago
  22. 8946b0d Check for invalid short Alert messages by Angus Gratton · 7 years ago
  23. b91cb6e TLSv1.2: Treat zero-length fragments as invalid, unless they are application data by Angus Gratton · 7 years ago
  24. 1ba8e91 CBC mode: Allow zero-length message fragments (100% padding) by Angus Gratton · 7 years ago
  25. 7c34432 Avoid debug message that might leak length by Manuel Pégourié-Gonnard · 7 years ago
  26. aeeaaf2 Add counter-measure to cache-based Lucky 13 by Manuel Pégourié-Gonnard · 7 years ago
  27. c2eddee Fix memory leak in ssl_setup by k-stachowiak · 7 years ago
  28. 33e5c32 Fixes different off by ones by Philippe Antoine · 7 years ago
  29. a35dbf1 about a issue Replace "new" variable #1782 by niisato · 7 years ago
  30. 0fc4e08 Document ssl_write_real() behaviour in detail by Andres Amaya Garcia · 8 years ago
  31. bb5e1c3 Fix multiple quality issues in the source by Simon Butcher · 7 years ago
  32. bb07ca0 Fix Lucky13 attack protection when using HMAC-SHA-384 by Gilles Peskine · 7 years ago
  33. 149f3a4 Change variable bytes_written to header_bytes in record decompression by Andrzej Kurek · 7 years ago
  34. c3a3e2d ssl_tls: Fix invalid buffer sizes during compression / decompression by Andrzej Kurek · 7 years ago
  35. d8e0cec Merge remote-tracking branch 'upstream-public/pr/1464' into mbedtls-2.7-proposed by Jaeden Amero · 7 years ago
  36. b5f53b1 Merge remote-tracking branch 'upstream-public/pr/1401' into mbedtls-2.7-proposed by Jaeden Amero · 7 years ago
  37. 29ed80f Fix compatibility problem in the printed message by mohammad1603 · 7 years ago
  38. 44a6a68 Check whether INT_MAX larger than SIZE_MAX scenario by mohammad1603 · 7 years ago
  39. 2ea2d68 Verify that f_send and f_recv send and receive the expected length by mohammad1603 · 7 years ago
  40. 2170130 Robustness fix in mbedtls_ssl_derive_keys by Gilles Peskine · 7 years ago
  41. b11af86 Avoid wraparound on in_left by mohammad1603 · 7 years ago
  42. 158fc33 Merge remote-tracking branch 'upstream-public/pr/1296' into HEAD by Gilles Peskine · 7 years ago
  43. 6085c72 Backport 2.7:Add guard to out_left to avoid negative values by mohammad1603 · 7 years ago
  44. 3f9cff2 Merge branch 'prr_424' into mbedtls-2.7-proposed by Gilles Peskine · 7 years ago
  45. 784de59 Merge remote-tracking branch 'upstream-restricted/pr/410' into development-restricted by Jaeden Amero · 8 years ago
  46. 66954e1 Merge branch 'development' into development-restricted by Jaeden Amero · 8 years ago
  47. 5e9f14d Set correct minimal versions in default conf by Ron Eldor · 8 years ago
  48. 9e4f77c New MD API: rename functions from _ext to _ret by Gilles Peskine · 8 years ago
  49. d91f2a2 Merge branch 'development' into iotssl-1251-2.7 by Gilles Peskine · 8 years ago
  50. 3d8c907 Compute outgoing MAC in temporary buffer for MAC-then-Encrypt by Hanno Becker · 8 years ago
  51. 82d607e Merge remote-tracking branch 'upstream-restricted/pr/433' into development-restricted by Gilles Peskine · 8 years ago
  52. d04c623 Merge remote-tracking branch 'restricted/pr/403' into development-restricted by Manuel Pégourié-Gonnard · 8 years ago
  53. b053efb Fix magic constant in previous commit by Manuel Pégourié-Gonnard · 8 years ago
  54. 464147c Fix SSLv3 MAC computation by Manuel Pégourié-Gonnard · 8 years ago
  55. 02e28fe Merge remote-tracking branch 'upstream-restricted/pr/425' into development-restricted by Gilles Peskine · 8 years ago
  56. 0960f06 Merge branch 'development' into development-restricted by Gilles Peskine · 8 years ago
  57. 0884f48 Merge remote-tracking branch 'upstream-public/pr/1141' into development by Gilles Peskine · 8 years ago
  58. 1df4923 Remove compile-time deprecation warning for TRUNCATED_HMAC_COMPAT by Hanno Becker · 8 years ago
  59. c753f5d Merge remote-tracking branch 'upstream-restricted/pr/369' into development-restricted by Gilles Peskine · 8 years ago
  60. 68306ed Merge remote-tracking branch 'upstream-public/pr/1094' into development by Gilles Peskine · 8 years ago
  61. 4c2ac7e Deprecate MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT by Hanno Becker · 8 years ago
  62. 563423f Improve documentation of MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT option by Hanno Becker · 8 years ago
  63. e89353a Add fallback to non-compliant truncated HMAC for compatibiltiy by Hanno Becker · 8 years ago
  64. 81c7b18 Don't truncate MAC key when truncated HMAC is negotiated by Hanno Becker · 8 years ago
  65. 992b687 Fix heap corruption in ssl_decrypt_buf by Hanno Becker · 8 years ago
  66. 888fede Merge branch 'development' into development-restricted by Manuel Pégourié-Gonnard · 8 years ago
  67. 21df7f9 Fix handling of HS msgs in mbedtls_ssl_read if renegotiation unused by Hanno Becker · 8 years ago
  68. b4ff0aa Swap branches accepting/refusing renegotiation in in ssl_read by Hanno Becker · 8 years ago
  69. 1a9a51c Enhance documentation of ssl_write_hostname_ext, adapt ChangeLog. by Hanno Becker · 8 years ago
  70. 947194e Make mbedtls_ssl_set_hostname safe to be called multiple times by Hanno Becker · 8 years ago
  71. a90658f Add ssl_conf_dh_param_bin superseding ssl_conf_dh_param by Hanno Becker · 8 years ago
  72. 470a8c4 Deprecate mbedtls_ssl_conf_dh_param by Hanno Becker · 8 years ago
  73. 184f675 Improve debugging output by Hanno Becker · 8 years ago
  74. 00d0a68 Adapt code setting default DHM parameters by Hanno Becker · 8 years ago
  75. 2f38a43 Enhance documentation of ssl_write_hostname_ext, adapt ChangeLog. by Hanno Becker · 8 years ago
  76. 39f5d35 Make mbedtls_ssl_set_hostname safe to be called multiple times by Hanno Becker · 8 years ago
  77. 8c8b0ab Change default Diffie-Hellman parameters from RFC 5114 to RFC 7919 by Hanno Becker · 8 years ago
  78. 0b7b83f Fixed SIGSEGV problem when writing with ssl_write_real a buffer that is over MBEDTLS_SSL_MAX_CONTENT_LEN bytes by Florin · 8 years ago
  79. 2b187c4 Correct typo by Hanno Becker · 8 years ago
  80. 9648f8b Add run-time check for handshake message size in ssl_write_record by Hanno Becker · 8 years ago
  81. d33f1ca Add run-time check for record content size in ssl_encrypt_buf by Hanno Becker · 8 years ago
  82. 0169253 Document code silently discarding invalid records by Andres Amaya Garcia · 8 years ago
  83. 2fad94b Dont send alert on invalid DTLS record type by Andres Amaya Garcia · 8 years ago
  84. 3395250 Fix use of uninitialised ret ssl_tls.c by Andres Amaya Garcia · 8 years ago
  85. 46f5a3e Check return codes from MD in ssl code by Andres Amaya Garcia · 8 years ago
  86. bbafd34 Set len var to 0 when buf is freed in ssl_tls.c by Andres Amaya Garcia · 8 years ago
  87. 1a607a1 Change ssl_tls to use new MD API and check ret code by Andres Amaya Garcia · 8 years ago
  88. a004988 Zeroize old psk buf when changing value in ssl_tls by Andres Amaya Garcia · 8 years ago
  89. bdf3905 Ensure application data records are not kept when fully processed by Hanno Becker · 8 years ago
  90. bb9dd0c Add hard assertion to mbedtls_ssl_read_record_layer by Hanno Becker · 8 years ago
  91. 4a810fb Fix mbedtls_ssl_read by Hanno Becker · 8 years ago
  92. af0665d Simplify retaining of messages for future processing by Hanno Becker · 8 years ago
  93. e6706e6 Add tests for missing CA chains and bad curves. by Hanno Becker · 8 years ago
  94. 39ae8cd Fix implementation of VERIFY_OPTIONAL verification mode by Hanno Becker · 8 years ago
  95. 383a118 Merge remote-tracking branch 'gilles/IOTSSL-1330/development' into development by Manuel Pégourié-Gonnard · 8 years ago
  96. 5d2511c SHA-1 deprecation: allow it in key exchange by Gilles Peskine · 8 years ago
  97. 5e79cb3 Remove SHA-1 in TLS by default by Gilles Peskine · 8 years ago
  98. 23b33f8 Merge remote-tracking branch 'hanno/sig_hash_compatibility' into development by Manuel Pégourié-Gonnard · 8 years ago
  99. 088ce43 Implement optional CA list suppression in Certificate Request by Janos Follath · 8 years ago
  100. 7e5437a Remember suitable hash function for any signature algorithm. by Hanno Becker · 8 years ago