TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / e3dbdd8d908218c7b7c3c3a62babb658c5c8a2a4 / library
  1. e3dbdd8 Gate entropy injection through a dedicated configuration option by Gilles Peskine · 6 years ago
  2. 6bf4bae Remove compilation option MBEDTLS_PSA_HAS_ITS_IO by Gilles Peskine · 6 years ago
  3. 5e80d91 Remove psa_crypto_storage_backend.h by Gilles Peskine · 6 years ago
  4. 088b77f Merge psa_crypto_storage_its into psa_crypto_storage by Gilles Peskine · 6 years ago
  5. e435f23 Remove psa_crypto_storage_file by Gilles Peskine · 6 years ago
  6. 2379348 Support ITS over file in PSA crypto by Gilles Peskine · 6 years ago
  7. bc1f272 Tests for PSA ITS over files by Gilles Peskine · 7 years ago
  8. 6194dc2 Implement PSA ITS over files by Gilles Peskine · 7 years ago
  9. 601bd53 Fix up ITS header files for internal use in crypto by Gilles Peskine · 6 years ago
  10. 5f54497 Import ITS header files by Gilles Peskine · 6 years ago
  11. de0a41b ecp: Remove dependency on TLS and X.509 by Jaeden Amero · 7 years ago
  12. ebbc5f7 md: Remove dependency on X.509 by Jaeden Amero · 6 years ago
  13. 2b9eb0b Merge remote-tracking branch 'tls/development' into development by Jaeden Amero · 6 years ago
  14. a96f4fe Merge remote-tracking branch 'origin/pr/2380' into development by Jaeden Amero · 6 years ago
  15. 0a9f9b2 Merge remote-tracking branch 'origin/pr/2317' into development by Jaeden Amero · 6 years ago
  16. db2c2ce Merge remote-tracking branch 'origin/pr/2158' into development by Jaeden Amero · 6 years ago
  17. c851b08 Merge remote-tracking branch 'origin/pr/1818' into development by Jaeden Amero · 6 years ago
  18. 7df1bec Merge remote-tracking branch 'origin/pr/1520' into development by Jaeden Amero · 6 years ago
  19. 535ee4a Merge remote-tracking branch 'public/pr/2421' into development by Simon Butcher · 6 years ago archive/mbedtls-2.17 mbedtls-2.17
  20. 195bdde Merge remote-tracking branch 'restricted/pr/528' into development by Simon Butcher · 6 years ago
  21. 74ac6e3 Merge remote-tracking branch 'public/pr/2028' into development by Simon Butcher · 6 years ago
  22. bbed914 Merge remote-tracking branch 'public/pr/2447' into development by Simon Butcher · 6 years ago
  23. 4a51228 Reduce priority of 3DES ciphersuites by Andres Amaya Garcia · 7 years ago
  24. 84d9d27 Fix unused variable warning in ssl_parse_certificate_coordinate() by Hanno Becker · 6 years ago
  25. 6e95914 Add new function mbedtls_asn1_write_named_bitstring() by Andres Amaya Garcia · 7 years ago
  26. a78c958 Merge remote-tracking branch 'tls/pr/2028' into development by Jaeden Amero · 6 years ago
  27. a9d6ba2 Merge remote-tracking branch 'tls/development' into development by Jaeden Amero · 6 years ago
  28. bd5580a Add further debug statements on assertion failures by Hanno Becker · 6 years ago
  29. 353a6f0 Fix typo in documentation of ssl_parse_certificate_chain() by Hanno Becker · 6 years ago
  30. 62d58ed Add debug output in case of assertion failure by Hanno Becker · 6 years ago
  31. 6883874 Fix typo in SSL ticket documentation by Hanno Becker · 6 years ago
  32. accc599 Set peer CRT length only after successful allocation by Hanno Becker · 6 years ago
  33. 3acc9b9 Remove question in comment about verify flags on cli vs. server by Hanno Becker · 6 years ago
  34. 6b8fbab Free peer CRT chain immediately after verifying it by Hanno Becker · 6 years ago
  35. 0056eab Parse peer's CRT chain in-place from the input buffer by Hanno Becker · 6 years ago
  36. ae553dd Free peer's public key as soon as it's no longer needed by Hanno Becker · 6 years ago
  37. b9d4479 Correct compile-time guards for ssl_clear_peer_cert() by Hanno Becker · 6 years ago
  38. e682457 Guard mbedtls_ssl_get_peer_cert() by new compile-time option by Hanno Becker · 6 years ago
  39. b6c5eca Adapt mbedtls_ssl_parse_certificate() to removal of peer_cert field by Hanno Becker · 6 years ago
  40. 13c327d Adapt ssl_clear_peer_cert() to removal of `peer_cert` field by Hanno Becker · 6 years ago
  41. 6d1986e Adapt mbedtls_ssl_session_copy() to removal of `peer_cert` field by Hanno Becker · 6 years ago
  42. 94cc26d Adapt session ticket implementation to removal of `peer_cert` field by Hanno Becker · 6 years ago
  43. 2a831a4 Adapt client auth detection in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
  44. a1ab9be Adapt server-side signature verification to use raw public key by Hanno Becker · 6 years ago
  45. a6899bb Adapt client-side signature verification to use raw public key by Hanno Becker · 6 years ago
  46. be7f508 Adapt ssl_get_ecdh_params_from_cert() to use raw public key by Hanno Becker · 6 years ago
  47. c7d7e29 Adapt ssl_write_encrypted_pms() to use raw public key by Hanno Becker · 6 years ago
  48. a274753 Make a copy of peer's raw public key after verifying its CRT chain by Hanno Becker · 6 years ago
  49. 7517312 Add field for peer's raw public key to TLS handshake param structure by Hanno Becker · 6 years ago
  50. 494dd7a Add raw public key buffer bounds to mbedtls_x509_crt struct by Hanno Becker · 6 years ago
  51. a887d1a Remove peer CRT from cache if !MBEDTLS_SSL_KEEP_PEER_CERTIFICATE by Hanno Becker · 6 years ago
  52. c966bd1 Remove peer CRT from tickets if !MBEDTLS_SSL_KEEP_PEER_CERTIFICATE by Hanno Becker · 6 years ago
  53. c5fcbb3 Add peer CRT digest to session tickets by Hanno Becker · 6 years ago
  54. 3dad311 Parse and verify peer CRT chain in local variable by Hanno Becker · 7 years ago
  55. 177475a Mitigate triple handshake attack by comparing digests only by Hanno Becker · 7 years ago
  56. 6bbd94c Compute digest of peer's end-CRT in mbedtls_ssl_parse_certificate() by Hanno Becker · 7 years ago
  57. 9198ad1 Extend mbedtls_ssl_session by buffer holding peer CRT digest by Hanno Becker · 7 years ago
  58. 8d84fd8 Update version_features.c by Hanno Becker · 6 years ago
  59. 8273df8 Re-classify errors on missing peer CRT by Hanno Becker · 6 years ago
  60. 0329f75 Increase robustness and documentation of ticket implementation by Hanno Becker · 6 years ago
  61. aee8717 Simplify session cache implementation via mbedtls_ssl_session_copy() by Hanno Becker · 6 years ago
  62. 52055ae Give ssl_session_copy() external linkage by Hanno Becker · 6 years ago
  63. c7bd780 Allow passing any X.509 CRT chain to ssl_parse_certificate_chain() by Hanno Becker · 7 years ago
  64. 6863619 Introduce helper function for peer CRT chain verification by Hanno Becker · 7 years ago
  65. fcd9e71 Don't progress TLS state machine on peer CRT chain parsing error by Hanno Becker · 7 years ago
  66. 77adddc Make use of macro and helper detecting whether CertRequest allowed by Hanno Becker · 6 years ago
  67. 28f2fcd Add helper function to check whether a CRT msg is expected by Hanno Becker · 6 years ago
  68. 7177a88 Introduce helper function to determine whether suite uses server CRT by Hanno Becker · 7 years ago
  69. 2148993 Use helper macro to detect whether some ciphersuite uses CRTs by Hanno Becker · 7 years ago
  70. 6bdfab2 Unify state machine update in mbedtls_ssl_parse_certificate() by Hanno Becker · 7 years ago
  71. 7a955a0 Clear peer's CRT chain outside before parsing new one by Hanno Becker · 7 years ago
  72. 4a55f63 Introduce helper to check for no-CRT notification from client by Hanno Becker · 7 years ago
  73. a028c5b Introduce CRT counter to CRT chain parsing function by Hanno Becker · 7 years ago
  74. 1294a0b Introduce helper function to clear peer CRT from session structure by Hanno Becker · 7 years ago
  75. f852b1c Break overly long line in definition of mbedtls_ssl_get_session() by Hanno Becker · 7 years ago
  76. 60848e6 Don't reuse CRT from initial handshake during renegotiation by Hanno Becker · 7 years ago
  77. 9ab61b6 Fix cleanup in psa_cipher_setup by Gilles Peskine · 6 years ago
  78. 86016a0 Merge remote-tracking branch 'origin/pr/2338' into development by Jaeden Amero · 6 years ago
  79. 461bd3d Merge remote-tracking branch 'origin/pr/2454' into development by Jaeden Amero · 6 years ago
  80. 9f47f82 Merge remote-tracking branch 'origin/pr/2391' into development by Jaeden Amero · 6 years ago
  81. 8963b03 Merge remote-tracking branch 'origin/pr/2411' into development by Jaeden Amero · 6 years ago
  82. bf61ca7 Merge pull request #58 from Patater/disallow-invalid-context by Jaeden Amero · 6 years ago
  83. e236c2a psa: Don't abort when operations are invalid by Jaeden Amero · 6 years ago
  84. 36ee5d0 psa: Disallow repeated setup by Jaeden Amero · 6 years ago
  85. a0f625a psa: Disallow use of invalid hash contexts by Jaeden Amero · 6 years ago
  86. ab43997 psa: Disallow use of invalid cipher contexts by Jaeden Amero · 6 years ago
  87. 252ef28 psa: Disallow use of invalid MAC contexts by Jaeden Amero · 6 years ago
  88. 93e2111 psa: Be compatible with deprecated constants by Jaeden Amero · 6 years ago
  89. 72f40c6 Merge pull request #59 from gilles-peskine-arm/psa-its-64_bit_internal_key_id by Jaeden Amero · 6 years ago
  90. 572f067 PSA crypto service: encode the key owner (ITS backend only) by Gilles Peskine · 6 years ago
  91. 69d7c8b Declare a psa_key_file_id_t layout with an owner field by Gilles Peskine · 6 years ago
  92. 5b229a0 Support encoding an owner in key file IDs by Gilles Peskine · 6 years ago
  93. e988a66 Fix PSA_MAX_PERSISTENT_KEY_IDENTIFIER to mean what it says by Gilles Peskine · 6 years ago
  94. c8569bc Move key id validity check into its own function by Gilles Peskine · 6 years ago
  95. 3497323 Initialize PSA Crypto operation contexts by Jaeden Amero · 6 years ago
  96. fe96fbe Initialize PSA Crypto operation contexts by Jaeden Amero · 6 years ago
  97. 7723ab1 Add common header for crypto service integration by itayzafrir · 6 years ago
  98. 7132dd9 Prepare support for 64 bit key ids in a PSA system. by itayzafrir · 7 years ago
  99. cf2010c psa: Check generator validity before read by Jaeden Amero · 6 years ago
  100. 0a94a64 Add debugging output to confirm that PSA was used for ECDHE by Hanno Becker · 7 years ago