TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / e46aa5e336dfdbc302044f0c5451abdd2e98ddb6 / library / ssl_tls.c
  1. 8d4ad07 SHA-2 ciphersuites now require TLS 1.x by Manuel Pégourié-Gonnard · 11 years ago
  2. 968afaa ssl_key_cert not available in all configurations by Paul Bakker · 11 years ago
  3. 84bbeb5 Adapt cipher and MD layer with _init() and _free() by Paul Bakker · 11 years ago
  4. accaffe Restructure ssl_handshake_init() and small fixes by Paul Bakker · 11 years ago
  5. 8f870b0 Add dhm_init() by Paul Bakker · 11 years ago
  6. 5b4af39 Add _init() and _free() for hash modules by Paul Bakker · 11 years ago
  7. c7ea99a Add _init() and _free() for cipher modules by Paul Bakker · 11 years ago
  8. 8fb99ab Merge changes for leaner memory footprint by Paul Bakker · 11 years ago
  9. 481fcfd Make PSK_LEN configurable and adjust PMS size by Manuel Pégourié-Gonnard · 11 years ago
  10. a9964db Add ssl_set_renegotiation_enforced() by Manuel Pégourié-Gonnard · 11 years ago
  11. dd0c0f3 Better usage of dhm_calc_secret in SSL by Manuel Pégourié-Gonnard · 11 years ago
  12. 8df6863 Fix bug in DHE-PSK PMS computation by Manuel Pégourié-Gonnard · 11 years ago
  13. 0357688 Remove misplaced debugging message by Manuel Pégourié-Gonnard · 11 years ago
  14. eaa76f7 Fix computation of minlen for encrypted packets by Manuel Pégourié-Gonnard · 11 years ago
  15. e800cd8 Re-arrange some code in ssl_derive_keys() by Manuel Pégourié-Gonnard · 11 years ago
  16. 0bcc4e1 Fix length checking for AEAD ciphersuites by Manuel Pégourié-Gonnard · 11 years ago
  17. 4d2a8eb SSL modules now using x509_crt_parse_der() by Manuel Pégourié-Gonnard · 11 years ago
  18. 66d5d07 Fix formatting in various code to match spacing from coding style by Paul Bakker · 11 years ago
  19. d8bb826 Fix code styling for return statements by Paul Bakker · 11 years ago
  20. 3461772 Introduce polarssl_zeroize() instead of memset() for zeroization by Paul Bakker · 11 years ago
  21. 7792198 Normalize some error messages by Manuel Pégourié-Gonnard · 11 years ago
  22. c2bbac9 Fix misplaced parenthesis. by Peter Vaskovic · 11 years ago
  23. b5212b4 Merge CCM cipher mode and ciphersuites by Paul Bakker · 11 years ago
  24. 8ff17c5 Add missing DEBUG_RET on cipher failures by Manuel Pégourié-Gonnard · 11 years ago
  25. 61edffe Normalize "should never happen" messages/errors by Manuel Pégourié-Gonnard · 11 years ago
  26. 2e5ee32 Implement CCM and CCM_8 ciphersuites by Manuel Pégourié-Gonnard · 11 years ago
  27. 5efd772 Small readability improvement by Manuel Pégourié-Gonnard · 11 years ago
  28. de7bb44 Use cipher_auth_{en,de}crypt() in ssl_tls.c by Manuel Pégourié-Gonnard · 11 years ago
  29. 8764d27 Use cipher_crypt() in ssl_tls.c by Manuel Pégourié-Gonnard · 11 years ago
  30. b9e4e2c Fix formatting: fix some 'easy' > 80 length lines by Paul Bakker · 11 years ago
  31. 9af723c Fix formatting: remove trailing spaces, #endif with comments (> 10 lines) by Paul Bakker · 11 years ago
  32. 2a024ac Merge dependency fixes by Paul Bakker · 11 years ago
  33. cef4ad2 Adapt sources to configurable config.h name by Manuel Pégourié-Gonnard · 11 years ago
  34. 1a1fbba Sanity length checks in ssl_read_record() and ssl_fetch_input() by Paul Bakker · 11 years ago
  35. 3a306b9 Fix misplaced #endif in ssl_tls.c by Manuel Pégourié-Gonnard · 11 years ago
  36. 61885c7 Fix false reject in padding check in ssl_decrypt_buf() for CBC ciphersuites by Paul Bakker · 11 years ago
  37. 93389cc Remove const indicator by Paul Bakker · 11 years ago
  38. 0408fd1 Add extendedKeyUsage checking in SSL modules by Manuel Pégourié-Gonnard · 11 years ago
  39. d6ad8e9 Make ssl_check_cert_usage() dependent on POLARSSL_X509_CRT_PARSE_C by Paul Bakker · 11 years ago
  40. a77de8c Prevent warnings in ssl_check_cert_usage() if keyUsage checks are off by Paul Bakker · 11 years ago
  41. a9db85d Add tests for keyUsage with client auth by Manuel Pégourié-Gonnard · 11 years ago
  42. 7f2a07d Check keyUsage in SSL client and server by Manuel Pégourié-Gonnard · 11 years ago
  43. 0763a40 Merged support for the ALPN extension by Paul Bakker · 11 years ago
  44. 4224bc0 Prevent potential NULL pointer dereference in ssl_read_record() by Paul Bakker · 11 years ago
  45. 0b874dc Implement ALPN client-side by Manuel Pégourié-Gonnard · 11 years ago
  46. 7e250d4 Add ALPN interface by Manuel Pégourié-Gonnard · 11 years ago
  47. 77f4f39 Make sure no random pointer occur during failed malloc()'s by Paul Bakker · 11 years ago
  48. 91c61bc Further tightened the padlen check to prevent underflow / overflow by Paul Bakker · 11 years ago
  49. b2bf5a1 Fix possible buffer overflow with PSK by Manuel Pégourié-Gonnard · 11 years ago
  50. 3d6504a ssl_init() left a dirty in_ctr pointer on failed allocation of out_ctr by Paul Bakker · 11 years ago
  51. 83cdffc Forbid sequence number wrapping by Manuel Pégourié-Gonnard · 11 years ago
  52. 796c6f3 Countermeasure against "triple handshake" attack by Manuel Pégourié-Gonnard · 11 years ago
  53. 7dc4c44 Library files moved to use platform layer by Paul Bakker · 12 years ago
  54. ab24010 Enforce our choice of allowed curves. by Manuel Pégourié-Gonnard · 11 years ago
  55. 7f38ed0 ssl_set_curves is no longer ECDHE only by Manuel Pégourié-Gonnard · 11 years ago
  56. ac71941 Renamings and other fixes by Manuel Pégourié-Gonnard · 11 years ago
  57. e40c469 The default ECDH curve list will be dynamically built in the ecp module based on ecp_supported_curves[]. by Gergely Budai · 12 years ago
  58. de05390 Rename ecdh_curve_list to curve_list by Manuel Pégourié-Gonnard · 11 years ago
  59. 5de2580 Make ssl_set_ecdh_curves() a compile-time option by Manuel Pégourié-Gonnard · 12 years ago
  60. 987bfb5 Added the possibility to define the allowed curves for ECDHE handshake. It also defines the preference of the curves. by Gergely Budai · 12 years ago
  61. 7c59363 Remove a few dead stores by Manuel Pégourié-Gonnard · 12 years ago
  62. 7cfdcb8 Add a length check in ssl_derive_keys() by Manuel Pégourié-Gonnard · 12 years ago
  63. 6992eb7 Fixed potential overflow in certificate size in ssl_write_certificate() by Paul Bakker · 12 years ago
  64. 956c9e0 Reduced the input / output overhead with 200+ bytes and covered corner case by Paul Bakker · 12 years ago
  65. 1e5369c Variables in proper block or within proper defines in ssl_decrypt_buf() by Paul Bakker · 12 years ago
  66. fdf9469 Merged support for ECDH-RSA / ECDH-ECDSA key exchanges and ciphersuites by Paul Bakker · 12 years ago
  67. 77e257e Fixed bad check for maximum size of fragment length index by Paul Bakker · 12 years ago
  68. 6f0636a Potential memory leak in ssl_ticket_keys_init() by Paul Bakker · 12 years ago
  69. d18cc57 Add client-side support for ECDH key exchanges by Manuel Pégourié-Gonnard · 12 years ago
  70. c72ac7c Fix SSLv3 handling of SHA-384 suites by Manuel Pégourié-Gonnard · 12 years ago
  71. dc953e8 Add missing defines/cases for RSA_PSK key exchange by Manuel Pégourié-Gonnard · 12 years ago
  72. 08b028f Prevent unlikely NULL dereference by Paul Bakker · 12 years ago
  73. 0333b97 Handshake key_cert should be set on first addition to the key_cert chain by Paul Bakker · 12 years ago
  74. 993e386 Merged renegotiation refactoring by Paul Bakker · 12 years ago
  75. 37ce0ff Added defines around renegotiation code for SSL_SRV and SSL_CLI by Paul Bakker · 12 years ago
  76. 31ff1d2 Safer buffer comparisons in the SSL modules by Manuel Pégourié-Gonnard · 12 years ago
  77. 6d8404d Server: enforce renegotiation by Manuel Pégourié-Gonnard · 12 years ago
  78. 9c1e189 Move some code around, improve documentation by Manuel Pégourié-Gonnard · 12 years ago
  79. 214eed3 Make ssl_renegotiate the only interface by Manuel Pégourié-Gonnard · 12 years ago
  80. caed054 Allow ssl_renegotiate() to be called in a loop by Manuel Pégourié-Gonnard · 12 years ago
  81. e5e1bb9 Fix misplaced initialisation by Manuel Pégourié-Gonnard · 12 years ago
  82. f3dc2f6 Add code for testing server-initiated renegotiation by Manuel Pégourié-Gonnard · 12 years ago
  83. 6edcd41 Addition conditions for UEFI environment under MSVC by Paul Bakker · 12 years ago
  84. fa6a620 Defines for UEFI environment under MSVC added by Paul Bakker · 12 years ago
  85. a8a25ae Fix bad error codes by Manuel Pégourié-Gonnard · 12 years ago
  86. 7109624 Skip MAC computation/check when GCM is used by Manuel Pégourié-Gonnard · 12 years ago
  87. 8866591 Don't special-case NULL cipher in ssl_tls.c by Manuel Pégourié-Gonnard · 12 years ago
  88. 126a66f Simplify switching on mode in ssl_tls.c by Manuel Pégourié-Gonnard · 12 years ago
  89. 8d01eea Add Camellia-GCM ciphersuites by Manuel Pégourié-Gonnard · 12 years ago
  90. f34673e Merged RSA-PSK key-exchange and ciphersuites by Paul Bakker · 12 years ago
  91. 376e815 Merged ECDHE-PSK ciphersuites by Paul Bakker · 12 years ago
  92. 8a3c64d Fix and simplify *-PSK ifdef's by Manuel Pégourié-Gonnard · 12 years ago
  93. 0fae60b Implement RSA-PSK key exchange by Manuel Pégourié-Gonnard · 12 years ago
  94. b9cfaa0 Explicit conversions and minor changes to prevent MSVC compiler warnings by Paul Bakker · 12 years ago
  95. 1b62c7f Fix dependencies and related issues by Manuel Pégourié-Gonnard · 12 years ago
  96. bd1ae24 Factor PSK pms computation to ssl_tls.c by Manuel Pégourié-Gonnard · 12 years ago
  97. 3ce3bbd Add support for ECDHE_PSK key exchange by Manuel Pégourié-Gonnard · 12 years ago
  98. beccd9f Explicit void pointer cast for buggy MS compiler by Paul Bakker · 12 years ago
  99. 1677033 TLS compression only allocates working buffer once by Paul Bakker · 12 years ago
  100. ca9c87e Removed possible cache-timing difference for pad check by Paul Bakker · 12 years ago