TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / cf4d9f98c79b45d7b5f38880d0bb7535d5b408b0 / library / ssl_tls12_server.c
  1. 8ecd668 Keep raw PSK when set via mbedtls_ssl_conf_psk() and feed as input_bytes by Neil Armstrong · 3 years, 3 months ago
  2. 80f6f32 Make mbedtls_ssl_psk_derive_premaster() only for when MBEDTLS_USE_PSA_CRYPTO is not selected by Neil Armstrong · 3 years, 3 months ago
  3. cd05f0b Drop skip PMS generation for opaque XXX-PSK now Opaque PSA key is always present when MBEDTLS_USE_PSA_CRYPTO selected by Neil Armstrong · 3 years, 3 months ago
  4. e952a30 Remove RAW PSK when MBEDTLS_USE_PSA_CRYPTO is selected by Neil Armstrong · 3 years, 3 months ago
  5. 61f237a Remove PSA-only code dealing with non-opaque PSA key by Neil Armstrong · 3 years, 3 months ago
  6. 67397fa Merge pull request #5704 from mprse/mixed_psk_2cx by Manuel Pégourié-Gonnard · 3 years, 3 months ago
  7. 8855e36 Merge pull request #5674 from superna9999/5668-abstract-tls-mode-cleanup by Gilles Peskine · 3 years, 3 months ago
  8. 99114f3 Fix build flags for opaque/raw psk checks by Przemek Stekiel · 3 years, 3 months ago
  9. cb322ea Enable support for psa opaque DHE-PSK key exchange on the server side by Przemek Stekiel · 3 years, 3 months ago
  10. 14d11b0 Enable support for psa opaque ECDHE-PSK key exchange on the server side by Przemek Stekiel · 3 years, 4 months ago
  11. aeb710f Enable support for psa opaque RSA-PSK key exchange on the server side by Przemek Stekiel · 3 years, 4 months ago
  12. 55132c6 Merge pull request #5703 from superna9999/5322-ecdh-remove-legacy-context by Manuel Pégourié-Gonnard · 3 years, 3 months ago
  13. 76b7407 Use MBEDTLS_SSL_SOME_SUITES_USE_CBC_ETM to enable ssl_write_encrypt_then_mac_ext() by Neil Armstrong · 3 years, 4 months ago
  14. ab555e0 Rename mbedtls_get_mode_from_XXX to mbedtls_ssl_get_mode_from_XXX by Neil Armstrong · 3 years, 4 months ago
  15. fe635e4 Use mbedtls_get_mode_from_ciphersuite() in server-side ssl_write_encrypt_then_mac_ext() by Neil Armstrong · 3 years, 4 months ago
  16. a2da9c7 Merge pull request #5631 from gstrauss/enum-tls-vers by Paul Elliott · 3 years, 3 months ago
  17. 8315811 Remove restrictive proto ver negotiation checks by Glenn Strauss · 3 years, 4 months ago
  18. 041a376 Remove some tls_ver < MBEDTLS_SSL_VERSION_TLS1_2 checks by Glenn Strauss · 3 years, 5 months ago
  19. e3af4cb mbedtls_ssl_(read|write)_version using tls_version by Glenn Strauss · 3 years, 5 months ago
  20. 60bfe60 mbedtls_ssl_ciphersuite_t min_tls_version,max_tls_version by Glenn Strauss · 3 years, 5 months ago
  21. da7851c Rename mbedtls_ssl_session minor_ver to tls_version by Glenn Strauss · 3 years, 5 months ago
  22. 913b364 Simplify compile-time PSA/non-PSA ECDH(E) code in ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  23. 3ea0149 Store TLS1.2 ECDH point format only when USE_PSA_CRYPTO isn't selected by Neil Armstrong · 3 years, 4 months ago
  24. d91526c Refactor to make PSA and non-PSA ECDH(E) server code exclusive by Neil Armstrong · 3 years, 4 months ago
  25. 927410d Merge pull request #5611 from superna9999/5318-tls-ecdhe-psk by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  26. 1b05aff Merge pull request #5624 from superna9999/5312-tls-server-ecdh by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  27. 1039ba5 Check if not using Opaque PSK in ECHDE-PSK PSA version of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  28. ede381c Get PSK length & check for buffer size before writting in ECHDE-PSK PSA version of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  29. 3cae167 Check buffer pointers before storing peer's public key in ECHDE-PSK PSA version of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  30. fdf20cb Fix command indentation in ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  31. 2d63da9 Introduce zlen size variable in ECHDE-PSK part of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  32. d6e2759 Change to more appropriate pointer declaration in ECHDE-PSK part of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  33. fb0a81e Return PSA translated errors in ECHDE-PSK part of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  34. 5a1455d Remove useless braces in ECHDE-PSK part of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  35. 3bcef08 Update comments in ECHDE-PSK part of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  36. 549a3e4 Initialize uninitialized variable in ECHDE-PSK part of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  37. 039db29 Implement PSA server-side ECDHE-PSK by Neil Armstrong · 3 years, 5 months ago
  38. e88d190 Set ecdh_psa_privkey_is_external to 1 right after setting ecdh_psa_privkey in ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  39. f716a70 Rename mbedtls_ssl_handshake_params variable ecdh_psa_shared_key to ecdh_psa_privkey_is_external by Neil Armstrong · 3 years, 4 months ago
  40. 91477a7 Switch handshake->ecdh_bits to size_t and remove now useless cast & limit checks by Neil Armstrong · 3 years, 4 months ago
  41. 1335222 Return translated PSA error in PSA version of ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  42. f788253 Fix comment typo in PSA version of ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  43. 104a7c1 Handle Opaque PK EC keys in ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  44. 8113d25 Add ecdh_psa_shared_key flag to protect PSA privkey if imported by Neil Armstrong · 3 years, 4 months ago
  45. 5cd5f76 Use mbedtls_platform_zeroize() in ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  46. 4f33fbc Use PSA define for max EC key pair size in ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  47. 306d607 Fix indentation issue in PSA version of ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  48. 062de7d Use PSA_BITS_TO_BYTES instead of open-coded calculation in PSA version of ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  49. 1f4b396 Implement PSA server-side ECDH-RSA/ECDSA by Neil Armstrong · 3 years, 5 months ago
  50. 3cffc5c tls: Remove unnecessary checks of MBEDTLS_CIPHERSUITE_NODTLS by Ronald Cron · 3 years, 4 months ago
  51. 90f0120 ssl_tls12_server.c: Simplify TLS version check in ClientHello by Ronald Cron · 3 years, 5 months ago
  52. 8457c12 ssl_tls12_server.c: Remove some unnecessary checks on TLS minor version by Ronald Cron · 3 years, 5 months ago
  53. b894ac7 ssl_tls12_server.c: Remove some dead code for versions of TLS < 1.2 by Ronald Cron · 3 years, 5 months ago
  54. de1adee Rename ssl_cli/srv.c by Ronald Cron · 3 years, 5 months ago[Renamed from library/ssl_srv.c]
  55. 862902d ssl_srv.c: Mark ETM as disabled if cipher is not CBC by Ronald Cron · 3 years, 4 months ago
  56. 560ef59 Merge pull request #5613 from mprse/tls_ecdh_2a by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  57. dd482bf Modify own_pubkey_max_len calculation by Przemek Stekiel · 3 years, 5 months ago
  58. a4e15cc Fix comment: add fields size by Przemek Stekiel · 3 years, 5 months ago
  59. 855938e Move mbedtls_ecdh_setup() to no-psa path by Przemek Stekiel · 3 years, 5 months ago
  60. 338b61d Fix code style by Przemek Stekiel · 3 years, 5 months ago
  61. ce1d792 Remove duplicated code by Przemek Stekiel · 3 years, 5 months ago
  62. fc91a1f Use PSA for private key generation and public key export only for ECDHE keys by Przemek Stekiel · 3 years, 5 months ago
  63. a21af3d Use mbedtls_psa_parse_tls_ecc_group() instead PSA_KEY_TYPE_ECC_KEY_PAIR( mbedtls_ecc_group_to_psa() ) by Przemek Stekiel · 3 years, 5 months ago
  64. 0a60c12 Add intermediate variables to increase code readability by Przemek Stekiel · 3 years, 5 months ago
  65. e9f0044 Destroy ecdh_psa_privkey on failure by Przemek Stekiel · 3 years, 5 months ago
  66. 130c4b5 Use PSA version of key agreement only for ECDHE keys by Przemek Stekiel · 3 years, 5 months ago
  67. fd32e96 ssl_parse_client_key_exchange(): read the curve identifier and the peer's public key and compute the shared secret using PSA by Przemek Stekiel · 3 years, 5 months ago
  68. b6ce0b6 ssl_prepare_server_key_exchange(): generate a private/public key and write out the curve identifier and public key using PSA by Przemek Stekiel · 3 years, 5 months ago
  69. 6989407 Add accessor to retrieve SNI during handshake by Glenn Strauss · 3 years, 6 months ago
  70. 2ed9527 Add server certificate selection callback by Glenn Strauss · 3 years, 6 months ago
  71. e754193 Remove guard inside ssl_srv.c by Jerry Yu · 3 years, 6 months ago
  72. fb4b647 tls13_only: improve guards of files. by Jerry Yu · 3 years, 6 months ago
  73. c5aef88 tls13_only: guard ssl_{cli,srv}.c with TLS1_2 by Jerry Yu · 3 years, 7 months ago
  74. c3091b1 tls13_only: compile pass by Jerry Yu · 3 years, 7 months ago
  75. 8c010eb Fix comments, code style, remove debug code by Przemyslaw Stekiel · 3 years, 6 months ago
  76. 2c87a20 ssl_write_encrypt_then_mac_ext(): adapt to psa crypto by Przemyslaw Stekiel · 3 years, 6 months ago
  77. 9719885 fix coding style issues by Jerry Yu · 3 years, 6 months ago
  78. eb821c6 remove check_sig_hash by Jerry Yu · 3 years, 6 months ago
  79. 24811fb replace check_sig_hash with is_offered by Jerry Yu · 3 years, 6 months ago
  80. 1bab301 Add signature algorithm supported check by Jerry Yu · 3 years, 6 months ago
  81. 713013f fix various issues by Jerry Yu · 3 years, 6 months ago
  82. 6106fdc fix build fail without TLS13 by Jerry Yu · 3 years, 7 months ago
  83. 1abd1bc Change write_sig_alg_ext of tls12 by Jerry Yu · 3 years, 7 months ago
  84. 0e5bcb6 Replace directly access for sig_hashes by Jerry Yu · 3 years, 7 months ago
  85. 18cd439 Align signature_algorithms extension name by Jerry Yu · 3 years, 7 months ago
  86. d491ea4 fix comment issue by Jerry Yu · 3 years, 7 months ago
  87. b925f21 fix comment issues by Jerry Yu · 3 years, 7 months ago
  88. ffef9c5 fix alignment issue by Jerry Yu · 3 years, 7 months ago
  89. b47d0f8 Replace SUPPORTED_ELLIPTIC_CURVES with SUPPORTED_GROUPS by Jerry Yu · 3 years, 7 months ago
  90. 69a6342 psa: Fix the size of hash buffers by Ronald Cron · 3 years, 10 months ago
  91. be7b21d Merge branch 'development' into 3649_move_constant_time_functions_into_separate_module by Gabor Mezei · 3 years, 8 months ago
  92. 01f3dae Refactor elliptic curve extension for NamedGroups by Brett Warren · 4 years ago
  93. 22c9a6f Rename internal header constant_time.h to constant_time_internal.h by Gabor Mezei · 3 years, 9 months ago
  94. 90437e3 Rename constant-time functions to have mbedtls_ct prefix by Gabor Mezei · 3 years, 9 months ago
  95. 765862c Move mbedtls_cf_memcmp to a new public header by Gabor Mezei · 3 years, 9 months ago
  96. d96a5c2 Fix wrong usage of counter len macro by Jerry Yu · 3 years, 10 months ago
  97. 9cb5569 Propagate usage of mask generation functions by gabor-mezei-arm · 4 years ago
  98. 4602564 Unify memcmp functions by gabor-mezei-arm · 4 years ago
  99. db9a38c Move contatnt-time memcmp functions to the contant-time module by gabor-mezei-arm · 3 years, 10 months ago
  100. d9a94fe Add counter length macro by Jerry Yu · 3 years, 10 months ago