TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / c8183cc4924e25a205db6f42150fd075cdeb83c8 / library / ssl_tls.c
  1. 9bbb7ba Merge pull request #5791 from superna9999/5788-unify-non-opaque-and-opaque-psks by Manuel Pégourié-Gonnard · 3 years, 3 months ago
  2. aad9b0a Update code base on comments by XiaokangQian · 3 years, 3 months ago
  3. eaf3651 Rebase and solve conflicts by XiaokangQian · 3 years, 3 months ago
  4. 8ecd668 Keep raw PSK when set via mbedtls_ssl_conf_psk() and feed as input_bytes by Neil Armstrong · 3 years, 3 months ago
  5. 80f6f32 Make mbedtls_ssl_psk_derive_premaster() only for when MBEDTLS_USE_PSA_CRYPTO is not selected by Neil Armstrong · 3 years, 3 months ago
  6. 044a32c Remove mbedtls_ssl_get_psk() and it's usage when MBEDTLS_USE_PSA_CRYPTO is selected by Neil Armstrong · 3 years, 3 months ago
  7. e952a30 Remove RAW PSK when MBEDTLS_USE_PSA_CRYPTO is selected by Neil Armstrong · 3 years, 3 months ago
  8. 501c932 Import PSK as opaque PSA key for mbedtls_ssl_conf_psk() & mbedtls_ssl_set_hs_psk() by Neil Armstrong · 3 years, 3 months ago
  9. 67397fa Merge pull request #5704 from mprse/mixed_psk_2cx by Manuel Pégourié-Gonnard · 3 years, 3 months ago
  10. 169bf0b Fix comments (#endif flags) by Przemek Stekiel · 3 years, 3 months ago
  11. 8855e36 Merge pull request #5674 from superna9999/5668-abstract-tls-mode-cleanup by Gilles Peskine · 3 years, 3 months ago
  12. 8a4b7fd Optimize code by Przemek Stekiel · 3 years, 3 months ago
  13. 8abcee9 Fix typos by Przemek Stekiel · 3 years, 3 months ago
  14. 2230e6c Simplify PSA transform->ivlen set in ssl_tls12_populate_transform() by Neil Armstrong · 3 years, 3 months ago
  15. 301711e Simplify mbedtls_ssl_get_base_mode by Gilles Peskine · 3 years, 3 months ago
  16. e108d98 Simplify mbedtls_ssl_get_mode by Gilles Peskine · 3 years, 3 months ago
  17. 99114f3 Fix build flags for opaque/raw psk checks by Przemek Stekiel · 3 years, 3 months ago
  18. b293aaa Enable support for psa opaque DHE-PSK key exchange on the client side by Przemek Stekiel · 3 years, 3 months ago
  19. 19b80f8 Enable support for psa opaque ECDHE-PSK key exchange on the client side by Przemek Stekiel · 3 years, 4 months ago
  20. 51a1f36 setup_psa_key_derivation(): change salt parameter to other_secret by Przemek Stekiel · 3 years, 4 months ago
  21. c203340 Add support for psa rsa-psk key exchange by Przemek Stekiel · 3 years, 4 months ago
  22. ae4ed30 Fix naming: random bytes are the seed (not salt) in derivation process by Przemek Stekiel · 3 years, 4 months ago
  23. 1f02703 setup_psa_key_derivation(): add optional salt parameter by Przemek Stekiel · 3 years, 4 months ago
  24. 55132c6 Merge pull request #5703 from superna9999/5322-ecdh-remove-legacy-context by Manuel Pégourié-Gonnard · 3 years, 3 months ago
  25. f2c82f0 Introduce MBEDTLS_SSL_SOME_SUITES_USE_CBC_ETM macro to determine if Encrypt-then-MAC with CBC is used in a ciphersuite by Neil Armstrong · 3 years, 4 months ago
  26. ccc074e Use correct condition to use encrypt_then_mac in ssl_tls.c by Neil Armstrong · 3 years, 4 months ago
  27. d1be767 Use PSA_BLOCK_CIPHER_BLOCK_LENGTH instead of PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE in ssl_tls12_populate_transform() by Neil Armstrong · 3 years, 4 months ago
  28. 6b27c97 Rename mbedtls_get_mode() to mbedtls_ssl_get_mode() by Neil Armstrong · 3 years, 4 months ago
  29. ab555e0 Rename mbedtls_get_mode_from_XXX to mbedtls_ssl_get_mode_from_XXX by Neil Armstrong · 3 years, 4 months ago
  30. a0eeb7f Remove cipher_info in ssl_tls12_populate_transform() when USE_PSA_CRYPTO is defined by Neil Armstrong · 3 years, 4 months ago
  31. 7fea33e Use mbedtls_get_mode_from_ciphersuite() in ssl_tls12_populate_transform() by Neil Armstrong · 3 years, 4 months ago
  32. 4bf4c86 Introduce mbedtls_get_mode_from_ciphersuite() by reusing mbedtls_get_mode_from_transform() logic by Neil Armstrong · 3 years, 4 months ago
  33. 8a0f3e8 Introduce mbedtls_ssl_mode_t & mbedtls_get_mode_from_transform() by Neil Armstrong · 3 years, 4 months ago
  34. 4d3a604 Change default config version to development style by XiaokangQian · 3 years, 3 months ago
  35. 060d867 Update parse_key_share in server side and version config by XiaokangQian · 3 years, 3 months ago
  36. 75d40ef Refine code base on review by XiaokangQian · 3 years, 3 months ago
  37. 8f9dfe4 Fix comments about coding styles and test cases by XiaokangQian · 3 years, 4 months ago
  38. ed582dd Update based on comments by XiaokangQian · 3 years, 4 months ago
  39. c4b8c99 Rebase and solve conflicts and issues by XiaokangQian · 3 years, 4 months ago
  40. a2da9c7 Merge pull request #5631 from gstrauss/enum-tls-vers by Paul Elliott · 3 years, 3 months ago
  41. 041a376 Remove some tls_ver < MBEDTLS_SSL_VERSION_TLS1_2 checks by Glenn Strauss · 3 years, 5 months ago
  42. 60bfe60 mbedtls_ssl_ciphersuite_t min_tls_version,max_tls_version by Glenn Strauss · 3 years, 5 months ago
  43. 2dfcea2 mbedtls_ssl_config min_tls_version, max_tls_version by Glenn Strauss · 3 years, 5 months ago
  44. da7851c Rename mbedtls_ssl_session minor_ver to tls_version by Glenn Strauss · 3 years, 5 months ago
  45. 07c6416 Rename mbedtls_ssl_transform minor_ver to tls_version by Glenn Strauss · 3 years, 5 months ago
  46. dff8462 Unify internal/external TLS protocol version enums by Glenn Strauss · 3 years, 5 months ago
  47. f3f4641 Remove ecdh_ctx variable, init & free when USE_PSA_CRYPTO isn't selected by Neil Armstrong · 3 years, 4 months ago
  48. a33a255 Disable non-PSA ECDHE code in mbedtls_ssl_psk_derive_premaster() when USE_PSA_CRYPTO is selected by Neil Armstrong · 3 years, 4 months ago
  49. 236e17e Introduce mbedtls_ssl_hs_cb_t typedef by Glenn Strauss · 3 years, 5 months ago
  50. 1b05aff Merge pull request #5624 from superna9999/5312-tls-server-ecdh by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  51. f716a70 Rename mbedtls_ssl_handshake_params variable ecdh_psa_shared_key to ecdh_psa_privkey_is_external by Neil Armstrong · 3 years, 4 months ago
  52. 0e980e8 Merge pull request #5640 from ronald-cron-arm/version-negotiation-2 by Ronald Cron · 3 years, 4 months ago
  53. 33a9d61 Merge pull request #5638 from paul-elliott-arm/ssl_cid_accessors by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  54. 451114f Merge pull request #5647 from superna9999/5179-follow-up-tls-record-hmac-no-mdinfo by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  55. 0113cf1 Add accessor for own cid to ssl context by Paul Elliott · 3 years, 5 months ago
  56. 8113d25 Add ecdh_psa_shared_key flag to protect PSA privkey if imported by Neil Armstrong · 3 years, 4 months ago
  57. a980adf Merge pull request #5637 from ronald-cron-arm/version-negotiation-1 by Ronald Cron · 3 years, 4 months ago
  58. 1fa4f68 ssl_tls.c: Return in error if default config fails by Ronald Cron · 3 years, 4 months ago
  59. 37bdaab tls: Simplify the logic of the config version check and test it by Ronald Cron · 3 years, 4 months ago
  60. e451295 Remove md_info in ssl_tls12_populate_transform() when USE_PSA_CRYPTO is defined by Neil Armstrong · 3 years, 5 months ago
  61. 3304f25 Merge pull request #5653 from paul-elliott-arm/handshake_over by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  62. f660655 TLS: Allow hybrid TLS 1.2/1.3 in default configurations by Ronald Cron · 3 years, 5 months ago
  63. e71639d Simplify TLS major version default value setting by Ronald Cron · 3 years, 5 months ago
  64. 9f0fba3 Add logic to switch to TLS 1.2 by Ronald Cron · 3 years, 6 months ago
  65. e1d3f06 Allow hybrid TLS 1.3 + TLS 1.2 configuration by Ronald Cron · 3 years, 6 months ago
  66. fbd9f99 ssl_tls.c: Move some client specific functions to ssl_client.c by Ronald Cron · 3 years, 5 months ago
  67. 27c85e7 ssl_tls.c: Unify TLS 1.2 and TLS 1.3 SSL state logs by Ronald Cron · 3 years, 5 months ago
  68. 8f6d39a Make some handshake TLS 1.3 utility routines available for TLS 1.2 by Ronald Cron · 3 years, 5 months ago
  69. 086ee0b ssl_tls.c: Reject TLS 1.3 version configuration for server by Ronald Cron · 3 years, 5 months ago
  70. a25cf58 ssl_tls.c: Remove one unnecessary minor version check by Ronald Cron · 3 years, 5 months ago
  71. c2f13a0 ssl_tls.c: Modify mbedtls_ssl_set_calc_verify_md() by Ronald Cron · 3 years, 5 months ago
  72. 4dcbca9 ssl_tls.c: Move mbedtls_ssl_set_calc_verify_md() to TLS 1.2 section by Ronald Cron · 3 years, 5 months ago
  73. 81591aa ssl_tls.c: Remove ssl_set_handshake_prfs unnecessary minor_ver param by Ronald Cron · 3 years, 5 months ago
  74. f12b81d ssl_tls.c: Fix PSA ECDH private key destruction by Ronald Cron · 3 years, 5 months ago
  75. 8540cf6 ssl_tls.c: Propose PKCS1 v1.5 signatures with SHA_384/512 by Ronald Cron · 3 years, 5 months ago
  76. 39f2f73 Merge pull request #5630 from ronald-cron-arm/restore-full-compat-testing by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  77. fb39f15 ssl_tls.c: Use ETM status only in CBC mode case by Ronald Cron · 3 years, 4 months ago
  78. 9b93c0d Change cookie parameters for dtls and tls 1.3 by XiaokangQian · 3 years, 6 months ago
  79. 27b0d94 Use mbedtls_ssl_is_handshake_over() by Paul Elliott · 3 years, 5 months ago
  80. f4042f0 Merge pull request #5573 from superna9999/5176-5177-5178-5179-tsl-record-hmac by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  81. 8d7afc6 Merge pull request #5523 from ronald-cron-arm/one-flush-output-development by Ronald Cron · 3 years, 4 months ago
  82. 29c0c04 Only make PSA HMAC key exportable when NULL or CBC & not EtM in ssl_tls12_populate_transform() by Neil Armstrong · 3 years, 5 months ago
  83. 3f20b77 Improve comment by Ronald Cron · 3 years, 5 months ago
  84. 66dbf91 TLS 1.3: Do not send handshake data in handshake step handlers by Ronald Cron · 3 years, 6 months ago
  85. 6828d8f Return MBEDTLS_ERR_SSL_BAD_INPUT_DATA if MAC algorithm isn't supported in ssl_tls.c by Neil Armstrong · 3 years, 5 months ago
  86. 321116c Remove spurious debug in ssl_tls12_populate_transform() by Neil Armstrong · 3 years, 5 months ago
  87. 6989407 Add accessor to retrieve SNI during handshake by Glenn Strauss · 3 years, 6 months ago
  88. 36872db Provide means to reset handshake cert list by Glenn Strauss · 3 years, 6 months ago
  89. 2ed9527 Add server certificate selection callback by Glenn Strauss · 3 years, 6 months ago
  90. e858996 Use PSA version of mbedtls_ct_hmac() in mbedtls_ssl_decrypt_buf() by Neil Armstrong · 3 years, 5 months ago
  91. cf8841a Remove non-PSA MAC keys in mbedtls_ssl_transform when MBEDTLS_USE_PSA_CRYPTO is defined by Neil Armstrong · 3 years, 5 months ago
  92. 0760ade Setup & Import HMAC keys in ssl_tls12_populate_transform() by Neil Armstrong · 3 years, 5 months ago
  93. 39b8e7d Add, Initialize & Free HMAC keys in mbedtls_ssl_transform by Neil Armstrong · 3 years, 5 months ago
  94. c63a1e0 Fix mbedtls_ssl_get_version() for TLSv1.3 by Gilles Peskine · 3 years, 7 months ago
  95. e1a0c25 New function to access the TLS version from a context as an enum by Gilles Peskine · 3 years, 7 months ago
  96. f1b23ca move wrong comments by Jerry Yu · 3 years, 5 months ago
  97. 18621df remove extra empty line by Jerry Yu · 3 years, 5 months ago
  98. 50f2f70 remove extra guards by Jerry Yu · 3 years, 5 months ago
  99. 840fbb2 guards populate_transform reference by Jerry Yu · 3 years, 5 months ago
  100. 4f9e3ef move session_save/load_tls12 by Jerry Yu · 3 years, 5 months ago