TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / d5258faa29c9e36608a0aedd5ef99365fc0dbb4f / library
  1. d5258fa Adapt mbedtls_ssl_session_copy() to removal of `peer_cert` field by Hanno Becker · 6 years ago
  2. cd90126 Adapt client auth detection in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
  3. 0833c10 Adapt server-side signature verification to use raw public key by Hanno Becker · 6 years ago
  4. 69fad13 Adapt client-side signature verification to use raw public key by Hanno Becker · 6 years ago
  5. 53b6b7e Adapt ssl_get_ecdh_params_from_cert() to use raw public key by Hanno Becker · 6 years ago
  6. 374800a Adapt ssl_write_encrypted_pms() to use raw public key by Hanno Becker · 6 years ago
  7. cf291d6 Make a copy of peer's raw public key after verifying its CRT chain by Hanno Becker · 6 years ago
  8. 3bf8cdf Add field for peer's raw public key to TLS handshake param structure by Hanno Becker · 6 years ago
  9. 32c530e Add raw public key buffer bounds to mbedtls_x509_crt struct by Hanno Becker · 6 years ago
  10. 2e6d347 Remove peer CRT from mbedtls_ssl_session if !KEEP_PEER_CERT by Hanno Becker · 6 years ago
  11. 4a2f8e5 Add peer CRT digest to session tickets by Hanno Becker · 6 years ago
  12. e4aeb76 Parse and verify peer CRT chain in local variable by Hanno Becker · 7 years ago
  13. df75938 Mitigate triple handshake attack by comparing digests only by Hanno Becker · 7 years ago
  14. 3008d28 Compute digest of peer's end-CRT in mbedtls_ssl_parse_certificate() by Hanno Becker · 7 years ago
  15. 9fb6e2e Extend mbedtls_ssl_session by buffer holding peer CRT digest by Hanno Becker · 7 years ago
  16. c88289a Update version_features.c by Hanno Becker · 6 years ago
  17. f02d550 Re-classify errors on missing peer CRT by Hanno Becker · 6 years ago
  18. a177b38 Simplify session cache implementation via mbedtls_ssl_session_copy() by Hanno Becker · 6 years ago
  19. 58fccf2 Give ssl_session_copy() external linkage by Hanno Becker · 6 years ago
  20. 35e4177 Allow passing any X.509 CRT chain to ssl_parse_certificate_chain() by Hanno Becker · 7 years ago
  21. 3cf5061 Introduce helper function for peer CRT chain verification by Hanno Becker · 7 years ago
  22. a7c1df6 Don't progress TLS state machine on peer CRT chain parsing error by Hanno Becker · 7 years ago
  23. ae39b9e Make use of macro and helper detecting whether CertRequest allowed by Hanno Becker · 6 years ago
  24. 6b9a6f3 Add helper function to check whether a CRT msg is expected by Hanno Becker · 6 years ago
  25. 5097cba Introduce helper function to determine whether suite uses server CRT by Hanno Becker · 7 years ago
  26. b71e90a Use helper macro to detect whether some ciphersuite uses CRTs by Hanno Becker · 7 years ago
  27. 613d490 Unify state machine update in mbedtls_ssl_parse_certificate() by Hanno Becker · 7 years ago
  28. a46c287 Clear peer's CRT chain outside before parsing new one by Hanno Becker · 7 years ago
  29. b8a0857 Introduce helper to check for no-CRT notification from client by Hanno Becker · 7 years ago
  30. 8794fd9 Introduce CRT counter to CRT chain parsing function by Hanno Becker · 7 years ago
  31. 2214159 Introduce helper function to clear peer CRT from session structure by Hanno Becker · 7 years ago
  32. 933b9fc Break overly long line in definition of mbedtls_ssl_get_session() by Hanno Becker · 7 years ago
  33. 1332f35 Don't reuse CRT from initial handshake during renegotiation by Hanno Becker · 7 years ago
  34. 7400e8f Merge remote-tracking branch 'origin/pr/591' into baremetal by Simon Butcher · 6 years ago
  35. f2ef573 Merge remote-tracking branch 'origin/pr/598' into baremetal by Simon Butcher · 6 years ago
  36. f1ff745 Merge remote-tracking branch 'origin/pr/597' into baremetal by Simon Butcher · 6 years ago
  37. c6043f2 Address review comments by Hanno Becker · 6 years ago
  38. 02a2193 Rename MBEDTLS_X509_INFO to !MBEDTLS_X509_REMOVE_INFO by Hanno Becker · 6 years ago
  39. dc470ae Reduce code size when mbedtls_x509_*_info() unused by Peter Kolbus · 7 years ago
  40. e83b2c2 Fix unused variable warnings in pkparse.c by Manuel Pégourié-Gonnard · 6 years ago
  41. 889bbc7 Fix unreachable code warnings with armc5 by Manuel Pégourié-Gonnard · 6 years ago
  42. cc71c77 Fix typos, grammar and wording in documentation by Manuel Pégourié-Gonnard · 6 years ago
  43. d87601e Declare and document ssl_context_save()/load() by Manuel Pégourié-Gonnard · 6 years ago
  44. 91fa5ba Add new config MBEDTLS_SSL_CONTEXT_SERIALIZATION by Manuel Pégourié-Gonnard · 6 years ago
  45. 1abb159 Merge branch 'mbedtls-2.16' into baremetal by Hanno Becker · 6 years ago
  46. c725e4b Merge remote-tracking branch 'origin/pr/590' into baremetal by Simon Butcher · 6 years ago
  47. 01a8eb2 Merge remote-tracking branch 'origin/pr/585' into baremetal by Simon Butcher · 6 years ago
  48. ba8b1eb Use negated option for controlling TLS support. by Manuel Pégourié-Gonnard · 6 years ago
  49. 418e761 Merge remote-tracking branch 'origin/pr/2484' into mbedtls-2.16 by Jaeden Amero · 6 years ago
  50. ec1c222 Fix a few style issues by Manuel Pégourié-Gonnard · 6 years ago
  51. 20095af Changes according to review comments by Jarno Lamsa · 6 years ago
  52. 8794a42 Clarify a few more comments and documentation by Manuel Pégourié-Gonnard · 6 years ago
  53. 18b9a49 Disable the enforce flag by default by Jarno Lamsa · 6 years ago
  54. 842be16 Check for the enforcing and fail handshake if the peer doesn't support by Jarno Lamsa · 6 years ago
  55. d9382f8 Add definitions for enforce flag values by Jarno Lamsa · 6 years ago
  56. 7a5e2be Create a new flag for enforcing the extended master secret by Jarno Lamsa · 6 years ago
  57. 64c1681 Use new macros for all TLS/DTLS tests by Manuel Pégourié-Gonnard · 6 years ago
  58. ff4bd9f Use new tools for all cases with TLS-specific code by Manuel Pégourié-Gonnard · 6 years ago
  59. 25838b7 Introduce tools for transport-specific code by Manuel Pégourié-Gonnard · 6 years ago
  60. e744eab Adapt defaults and programs documentation by Manuel Pégourié-Gonnard · 6 years ago
  61. a771160 Introduce new config.h flag for TLS by Manuel Pégourié-Gonnard · 6 years ago
  62. 68b856d Fix style issue and wording by Hanno Becker · 6 years ago
  63. fe87027 Fix memory leak by Hanno Becker · 7 years ago
  64. fd39919 Improve formatting of ssl_parse_certificate_chain() by Hanno Becker · 7 years ago
  65. 285ff0c Add compile-time guards around helper routine by Hanno Becker · 7 years ago
  66. 33c3dc8 Don't store the peer CRT chain twice during renegotiation by Hanno Becker · 7 years ago
  67. 3d699e4 SSL/TLS client: Remove old session ticket on renegotiation by Hanno Becker · 7 years ago
  68. aa8665a Add a new X.509 API call for copy-less parsing of CRTs by Hanno Becker · 7 years ago
  69. c74ce44 Improve documentation of mbedtls_x509_get_ext() by Hanno Becker · 6 years ago
  70. 2f47214 Always return a high-level error code from X.509 module by Hanno Becker · 6 years ago
  71. 4e1bfc1 Obey bounds of ASN.1 substructures by Hanno Becker · 6 years ago
  72. 7bf7710 Remove reference to outdated compile-time option by Hanno Becker · 6 years ago
  73. 5dbcc9f Introduce specific error for ver/cfg mismatch on deserialization by Hanno Becker · 6 years ago
  74. baf968c Use def'n consts for bits in config-identifier of serialized data by Hanno Becker · 6 years ago
  75. b36db4f Note that ver+fmt bytes in serialized data must not be removed by Hanno Becker · 6 years ago
  76. 26829e9 Improve doc'n of config-identifying bitfield in serialized session by Hanno Becker · 6 years ago
  77. 1d8b6d7 Session serialization: Fail with BAD_INPUT_DATA if buffer too small by Hanno Becker · 6 years ago
  78. 4152762 Encode relevant parts of the config in serialized session header by Hanno Becker · 6 years ago
  79. 557fe9f Add configuration identifier to serialized SSL sessions by Hanno Becker · 6 years ago
  80. b5352f0 Add Mbed TLS version to SSL sessions by Hanno Becker · 6 years ago
  81. 60a4299 Add new ABI-independent format for serialization by Manuel Pégourié-Gonnard · 6 years ago
  82. 35ccdbb Normalize spelling to serialiZation by Manuel Pégourié-Gonnard · 6 years ago
  83. 5709811 Add test for session_load() from small buffers by Manuel Pégourié-Gonnard · 6 years ago
  84. 32ce596 Improve save API by always updating olen by Manuel Pégourié-Gonnard · 6 years ago
  85. 37a5324 Add mbedtls_ssl_get_session_pointer() by Manuel Pégourié-Gonnard · 6 years ago
  86. ef4ae61 Add support for serialisation session with ticket by Manuel Pégourié-Gonnard · 6 years ago
  87. 91f4ca2 Move session save/load function to ssl_tls.c by Manuel Pégourié-Gonnard · 6 years ago
  88. 9582a47 Re-generate library/certs.c from script by Hanno Becker · 6 years ago
  89. bc12242 Use strict syntax to annotate origin of test data in certs.c by Hanno Becker · 6 years ago
  90. 7b34f0f Allow DHM self test to run without MBEDTLS_PEM_PARSE_C by Hanno Becker · 6 years ago
  91. 72309d0 Document origin of hardcoded certificates in library/certs.c by Hanno Becker · 6 years ago
  92. 0d1d76f Merge remote-tracking branch 'origin/pr/561' into baremetal by Simon Butcher · 6 years ago
  93. d5e1bfc Merge remote-tracking branch 'origin/pr/569' into baremetal by Simon Butcher · 6 years ago
  94. 0edb924 Merge remote-tracking branch 'origin/pr/565' into baremetal by Simon Butcher · 6 years ago
  95. 5a790f9 Merge remote-tracking branch 'origin/pr/563' into baremetal by Simon Butcher · 6 years ago
  96. 675c4d6 Add debug line witnessing receipt of unexpected CID by Hanno Becker · 6 years ago
  97. d8f7c4a Fix indentation in debug message in ssl_tls.c by Hanno Becker · 6 years ago
  98. 3b2bf5b Improve comment in ssl_parse_record_header() by Hanno Becker · 6 years ago
  99. 633d604 Allow passing NULL pointers to mbedtls_ssl_get_peer_cid() by Hanno Becker · 6 years ago
  100. a5a2b08 Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID by Hanno Becker · 6 years ago