TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / c5db66af2f15ecbd80de16aaa142b8665f9b477d / library / ssl_srv.c
  1. 73f4cb1 Rename XXX_SINGLE_CIPHERSUITE -> XXX_CONF_SINGLE_CIPHERSUITE by Hanno Becker · 6 years ago
  2. e02758c Remove ciphersuite from SSL session if single suite hardcoded by Hanno Becker · 6 years ago
  3. df64596 Remove ciphersuite from handshake params if single suite hardcoded by Hanno Becker · 6 years ago
  4. 2d46b4f Adapt ClientHello parsing to case of single hardcoded ciphersuite by Hanno Becker · 6 years ago
  5. 473f98f Introduce ciphersuite handle type by Hanno Becker · 6 years ago
  6. 5455afd Merge pull request #599 from ARMmbed/baremetal-ec-preparation by Manuel Pégourié-Gonnard · 6 years ago
  7. d3b2fcb Don't store client-supported ECs in heap-allocated buffer by Hanno Becker · 6 years ago
  8. ece325c Allow compile-time configuration of PRNG in SSL module by Hanno Becker · 6 years ago
  9. de8869c Merge remote-tracking branch 'restricted/pr/608' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  10. 44ba6b0 Merge remote-tracking branch 'restricted/pr/594' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  11. 37261e6 Merge remote-tracking branch 'restricted/pr/601' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  12. 417d2ce Merge remote-tracking branch 'restricted/pr/584' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  13. c2cfdaa Allow config'n of incl of CertificateReq CA list Y/N at compile-time by Hanno Becker · 6 years ago
  14. 2d9623f Allow configuration of endpoint (cli/srv) at compile-time by Hanno Becker · 6 years ago
  15. b0b2b67 Allow compile-time configuration of legacy renegotiation by Hanno Becker · 6 years ago
  16. acd4fc0 Allow compile-time configuration of authentication mode by Hanno Becker · 6 years ago
  17. bc6b598 [Fixup] Add missing PK release call in Cert Verify parsing by Hanno Becker · 6 years ago
  18. 754b9f3 Introduce getter function for renego_status by Manuel Pégourié-Gonnard · 6 years ago
  19. 3652e99 Add getter function for handshake->resume by Manuel Pégourié-Gonnard · 6 years ago
  20. 29f2dd0 Address review comments by Jarno Lamsa · 6 years ago
  21. 59bd12b Add new config MBEDTLS_SSL_SESSION_RESUMPTION by Jarno Lamsa · 6 years ago
  22. 7be1406 Add config MBEDTLS_SSL_SESSION_CACHE by Jarno Lamsa · 6 years ago
  23. abd929c Merge branch 'mbedtls-2.16' into baremetal-2.16-01_07_19 by Hanno Becker · 6 years ago
  24. 2224ccf Don't use assertion for failures of mbedtls_x509_crt_x_acquire() by Hanno Becker · 6 years ago
  25. 5f268b3 Don't allow change of CRT frame returned by x509_crt_frame_acquire() by Hanno Becker · 6 years ago
  26. c6d1c3e Remove frame/pk parameter from mbedtls_x509_crt_xxx_release() by Hanno Becker · 6 years ago
  27. 1e11f21 Solely use raw X.509 name data references including SEQUENCE header by Hanno Becker · 6 years ago
  28. 828a8c0 Add compile-guard for < TLS1.2 path in server-side ssl_pick_cert() by Hanno Becker · 6 years ago
  29. 73cd8d8 Make use of acquire/release in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
  30. 232f8fa Make use of CRT acquire/release in ssl_write_certificate_request() by Hanno Becker · 6 years ago
  31. 30649f7 Make use of CRT acquire/release in server-side ssl_pick_cert() by Hanno Becker · 6 years ago
  32. 371e0e4 Determine whether CRT is initialized or not through raw data pointer by Hanno Becker · 6 years ago
  33. 74b89f6 Use private key to check suitability of PK type when picking srv CRT by Hanno Becker · 6 years ago
  34. 81bb4d0 Simplify server-side ssl_decrypt_encrypted_pms() by Hanno Becker · 6 years ago
  35. 1ab322b Remove extended_ms field from HS param if ExtendedMS enforced by Hanno Becker · 6 years ago
  36. a49ec56 Introduce getter function for `extended_ms` field in HS struct by Hanno Becker · 6 years ago
  37. 03b64fa Rearrange ExtendedMasterSecret parsing logic by Hanno Becker · 6 years ago
  38. aabbb58 Exemplify harcoding SSL config at compile-time in example of ExtMS by Hanno Becker · 6 years ago
  39. 5882dd0 Remove CRT digest from SSL session if !RENEGO + !KEEP_PEER_CERT by Hanno Becker · 6 years ago
  40. cd90126 Adapt client auth detection in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
  41. 0833c10 Adapt server-side signature verification to use raw public key by Hanno Becker · 6 years ago
  42. ae39b9e Make use of macro and helper detecting whether CertRequest allowed by Hanno Becker · 6 years ago
  43. c725e4b Merge remote-tracking branch 'origin/pr/590' into baremetal by Simon Butcher · 6 years ago
  44. ec1c222 Fix a few style issues by Manuel Pégourié-Gonnard · 6 years ago
  45. 20095af Changes according to review comments by Jarno Lamsa · 6 years ago
  46. 842be16 Check for the enforcing and fail handshake if the peer doesn't support by Jarno Lamsa · 6 years ago
  47. 64c1681 Use new macros for all TLS/DTLS tests by Manuel Pégourié-Gonnard · 6 years ago
  48. ff4bd9f Use new tools for all cases with TLS-specific code by Manuel Pégourié-Gonnard · 6 years ago
  49. 0d1d76f Merge remote-tracking branch 'origin/pr/561' into baremetal by Simon Butcher · 6 years ago
  50. 5a790f9 Merge remote-tracking branch 'origin/pr/563' into baremetal by Simon Butcher · 6 years ago
  51. a5a2b08 Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID by Hanno Becker · 6 years ago
  52. 3cdf8fe Consistently reference CID draft through name + URL by Hanno Becker · 6 years ago
  53. 75b334f Update references to CID draft to version 5 by Hanno Becker · 6 years ago
  54. 4339576 Split mbedtls_ssl_hdr_len() in separate functions for in/out records by Hanno Becker · 6 years ago
  55. 19976b5 Improve structure of ssl_parse_cid_ext() by Hanno Becker · 6 years ago
  56. 31f1668 Correct compile-time guard around CID extension writing func on srv by Hanno Becker · 6 years ago
  57. 072d4ec Implement writing of CID extension in ServerHello by Hanno Becker · 6 years ago
  58. c403b26 Implement parsing of CID extension in ClientHello by Hanno Becker · 6 years ago
  59. a575975 Make calc_verify() return the length as well by Manuel Pégourié-Gonnard · 6 years ago
  60. 8759e16 Remove ciphersuite_info from ssl_transform by Hanno Becker · 8 years ago
  61. d5f4759 Fix #2370, minor typos and spelling mistakes by Antonin Décimo · 7 years ago
  62. 3fbdada SSL: Make use of the new ECDH interface by Janos Follath · 7 years ago
  63. bc2498a Style: Add numerous comments indicating condition guarded by #endif by Hanno Becker · 7 years ago
  64. 327c93b Add parameter to ssl_read_record() controlling checksum update by Hanno Becker · 7 years ago
  65. 1985947 Store outgoing record sequence number outside record buffer by Hanno Becker · 7 years ago
  66. 87a346f Always save flight first, (re)send later by Manuel Pégourié-Gonnard · 8 years ago
  67. 31c1586 Start separating handshake from record writing by Manuel Pégourié-Gonnard · 8 years ago
  68. cac0c1a Merge remote-tracking branch 'upstream-public/pr/1378' into development by Jaeden Amero · 7 years ago
  69. df15356 Merge remote-tracking branch 'public/pr/1663' into development by Simon Butcher · 7 years ago
  70. e7aeef0 Merge remote-tracking branch 'public/pr/536' into development by Simon Butcher · 7 years ago
  71. 755bb6a Add ecc extensions only if ecc ciphersuite is used by Ron Eldor · 7 years ago
  72. d8213d0 Let MBEDTLS_SSL_MAX_CONTENT_LEN to be split into outward & inward sizes by Angus Gratton · 9 years ago
  73. 600c5e6 Compilation warning fixes on 32b platfrom with IAR by Simon Butcher · 7 years ago
  74. 5f57f1e Merge remote-tracking branch 'public/pr/1270' into development by Simon Butcher · 7 years ago
  75. 0a8352b Fix harmless use of uninitialized memory in ssl_parse_encrypted_pms by Gilles Peskine · 7 years ago
  76. 747fd53 Fixes different off by ones by Philippe Antoine · 7 years ago
  77. 1febfef Rename mbedtls_ssl_async_{get,set}_data for clarity by Gilles Peskine · 7 years ago
  78. 8f97af7 Don't pass the async config data to async callbacks by Gilles Peskine · 7 years ago
  79. e141638 Finish writing an unfinished comment by Gilles Peskine · 7 years ago
  80. 0fd90dd ssl_prepare_server_key_exchange: clarify where the signature is written by Gilles Peskine · 7 years ago
  81. 22e695f Be more precise about when a variable is unused by Gilles Peskine · 7 years ago
  82. ad28bf0 Documentation improvements by Gilles Peskine · 7 years ago
  83. 168dae8 Comment formatting and whitespace fixes by Gilles Peskine · 7 years ago
  84. df13d5c Pass the SSL context to async callbacks by Gilles Peskine · 7 years ago
  85. 2e33337 Fix invalid data being accepted in RSA-decryption-based ciphersuites by Gilles Peskine · 7 years ago
  86. b74a1c7 Rename MBEDTLS_SSL_ASYNC_PRIVATE_C to MBEDTLS_SSL_ASYNC_PRIVATE by Gilles Peskine · 7 years ago
  87. f112725 Style and grammar fixes by Gilles Peskine · 7 years ago
  88. b44692f Merge branch 'mbedtls_ssl_get_key_exchange_md_ssl_tls-return_hashlen' into tls_async_server-2.9 by Gilles Peskine · 7 years ago
  89. 8491406 Remove preprocessor directives around platform_util.h include by Andres Amaya Garcia · 7 years ago
  90. ca1d742 mbedtls_ssl_get_key_exchange_md_tls1_2: return hashlen by Gilles Peskine · 7 years ago
  91. 2c6078e SSL asynchronous decryption (server side) by Gilles Peskine · 8 years ago
  92. bcd98a5 ssl_parse_encrypted_pms refactor: prepare, decrypt, return by Gilles Peskine · 8 years ago
  93. 422ccab ssl_parse_encrypted_pms refactor: prepare for remote private key by Gilles Peskine · 8 years ago
  94. f9f15ae ssl_write_server_key_exchange refactor: don't use p at all by Gilles Peskine · 8 years ago
  95. d3eb061 ssl_write_server_key_exchange refactor: minor cleanup by Gilles Peskine · 8 years ago
  96. ebd30ae ssl_write_server_key_exchange refactor: ssl_resume_server_key_exchange by Gilles Peskine · 8 years ago
  97. d04d292 Get rid of useless handshake field out_async_start by Gilles Peskine · 8 years ago
  98. 7ab013a ssl_write_server_key_exchange refactor: move signature_len out by Gilles Peskine · 8 years ago
  99. 1004c19 ssl_write_server_key_exchange refactor: don't use p in the signing phase by Gilles Peskine · 8 years ago
  100. 184a3fa ssl_write_server_key_exchange refactor: create ssl_prepare_server_key_exchange by Gilles Peskine · 8 years ago