TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / fbb44a422f209998b6372eb83a8306105defe12b / library / ssl_tls.c
  1. ef4ae61 Add support for serialisation session with ticket by Manuel Pégourié-Gonnard · 6 years ago
  2. 91f4ca2 Move session save/load function to ssl_tls.c by Manuel Pégourié-Gonnard · 6 years ago
  3. 0d1d76f Merge remote-tracking branch 'origin/pr/561' into baremetal by Simon Butcher · 6 years ago
  4. 5a790f9 Merge remote-tracking branch 'origin/pr/563' into baremetal by Simon Butcher · 6 years ago
  5. 675c4d6 Add debug line witnessing receipt of unexpected CID by Hanno Becker · 6 years ago
  6. d8f7c4a Fix indentation in debug message in ssl_tls.c by Hanno Becker · 6 years ago
  7. 3b2bf5b Improve comment in ssl_parse_record_header() by Hanno Becker · 6 years ago
  8. 633d604 Allow passing NULL pointers to mbedtls_ssl_get_peer_cid() by Hanno Becker · 6 years ago
  9. a5a2b08 Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID by Hanno Becker · 6 years ago
  10. e582d12 Slightly reorder CID debug messages during creation of transforms by Hanno Becker · 6 years ago
  11. 791ec6b Fix mbedtls_ssl_conf_cid() to not depend on macro constant values by Hanno Becker · 6 years ago
  12. b86c2a8 Remove warnings about unfinished CID implementation by Hanno Becker · 6 years ago
  13. e8eff9a Allow to configure the stack's behaviour on unexpected CIDs by Hanno Becker · 6 years ago
  14. 7842609 Remove restriction on value of MBEDTLS_SSL_CID_PADDING_GRANULARITY by Hanno Becker · 6 years ago
  15. 7ba3568 Make signed to unsigned integer truncation cast explicit by Hanno Becker · 6 years ago
  16. 550e166 Allow the configuration of padding when using CID extension by Hanno Becker · 6 years ago
  17. 9bf10ea Set CID pointer to default value even for TLS by Hanno Becker · 6 years ago
  18. f65ad82 Fix typo in comment by Hanno Becker · 6 years ago
  19. 043a2a4 Remove indicators and warnings about unfinished CID implementation by Hanno Becker · 6 years ago
  20. 4932f9f Re-enable passing CIDs to record transforms by Hanno Becker · 6 years ago
  21. 687e0fb Don't fail on record with unexpected CID by Hanno Becker · 6 years ago
  22. abd7c89 Re-enable CID comparison when decrypting CID-based records by Hanno Becker · 6 years ago
  23. 8b09b73 Implement parsing of CID-based records by Hanno Becker · 6 years ago
  24. ff3e9c2 Adapt record encryption/decryption routines to change of record type by Hanno Becker · 6 years ago
  25. 70e7928 Add pointers to in/out CID fields to mbedtls_ssl_context by Hanno Becker · 6 years ago
  26. add0190 Account for additional record expansion when using CIDs by Hanno Becker · 6 years ago
  27. eec2be9 Add CID configuration API by Hanno Becker · 6 years ago
  28. 4339576 Split mbedtls_ssl_hdr_len() in separate functions for in/out records by Hanno Becker · 6 years ago
  29. 46483f1 Add helper function to check validity of record content type by Hanno Becker · 6 years ago
  30. 74dd3a7 Move dropping of unexpected AD records to after record decryption by Hanno Becker · 6 years ago
  31. f5970a0 Set pointer to start of plaintext at record decryption time by Hanno Becker · 6 years ago
  32. 16e9ae2 Treat an invalid record after decryption as fatal by Hanno Becker · 6 years ago
  33. 70463db Expain rationale for handling of consecutive empty AD records by Hanno Becker · 6 years ago
  34. 78c4302 Don't allow calling CID API outside of DTLS by Hanno Becker · 6 years ago
  35. 1f02f05 Fix additional data calculation if CID is disabled by Hanno Becker · 6 years ago
  36. 3b1a885 Remove unnecessary empty line in ssl_tls.c by Hanno Becker · 6 years ago
  37. 7dc2577 Don't quote DTLSInnerPlaintext structure multiple times by Hanno Becker · 6 years ago
  38. 8969369 Improve wording in ssl_build_inner_plaintext() by Hanno Becker · 6 years ago
  39. 24ce1eb Remove unnecessary whitespace in ssl_extract_add_data_from_record() by Hanno Becker · 6 years ago
  40. 28a0c4e Reduce stack usage for additional data buffers in record dec/enc by Hanno Becker · 6 years ago
  41. acadb0a Add length of CID to additional data used for record protection by Hanno Becker · 6 years ago
  42. 99abf51 Improve documentation of ssl_extract_add_data_from_record() by Hanno Becker · 6 years ago
  43. 9c5bcc9 Use more specific name in debug message for testing by Manuel Pégourié-Gonnard · 6 years ago
  44. 762d011 Fix alignment issues by Manuel Pégourié-Gonnard · 6 years ago
  45. 42c814f Clarify comment about TLS versions by Manuel Pégourié-Gonnard · 6 years ago
  46. 5478e1e Remove redundant debug message. by Manuel Pégourié-Gonnard · 6 years ago
  47. 505089d Fix missing compile-time guards around CID-only constants by Hanno Becker · 6 years ago
  48. 4c6fe12 Remove TODO by Hanno Becker · 6 years ago
  49. 2e7cd5a Use MBEDTLS_ namespace for internal CID length constant by Hanno Becker · 6 years ago
  50. d91dc37 Skip copying CIDs to SSL transforms until CID feature is complete by Hanno Becker · 6 years ago
  51. 92c930f Implement inner plaintext parsing/writing for CID-based connections by Hanno Becker · 6 years ago
  52. e83efe6 Incorporate CID into MAC computations during record protection by Hanno Becker · 6 years ago
  53. 8013b27 Replace 'ingoing' -> 'incoming' in CID debug messages by Hanno Becker · 6 years ago
  54. cb063f5 Document behaviour of mbedtls_ssl_get_peer_cid() for empty CIDs by Hanno Becker · 6 years ago
  55. b4a5606 Make integer truncation explicit in mbedtls_ssl_set_cid() by Hanno Becker · 6 years ago
  56. 2de89fa Implement mbedtls_ssl_get_peer_cid() by Hanno Becker · 6 years ago
  57. dd0afca Copy CIDs into SSL transform if use of CID has been negotiated by Hanno Becker · 6 years ago
  58. 0748986 Allow configuring own CID fields through mbedtls_ssl_get_peer_cid() by Hanno Becker · 6 years ago
  59. 84ef8bd Remove 'session' input from populate_tranform() by Manuel Pégourié-Gonnard · 6 years ago
  60. cf31216 Fix typo in comment by Manuel Pégourié-Gonnard · 6 years ago
  61. 724a695 Merge remote-tracking branch 'origin/pr/562' into baremetal by Simon Butcher · 6 years ago
  62. 86e48c2 Enforce promise to not use whole ssl context by Manuel Pégourié-Gonnard · 6 years ago
  63. 1d10a98 Partially rm 'ssl' input from populate_transform() by Manuel Pégourié-Gonnard · 6 years ago
  64. 0bcfbc3 Remove "handshake" input from populate_transform() by Manuel Pégourié-Gonnard · 6 years ago
  65. 12a3f44 Start refining parameters of populate_transform() by Manuel Pégourié-Gonnard · 6 years ago
  66. a1abb26 Move compress_buf allocation to derive_keys by Manuel Pégourié-Gonnard · 6 years ago
  67. 707728d Move handling of randbytes to derive_keys() by Manuel Pégourié-Gonnard · 6 years ago
  68. bcf258e Remove duplicated branch in ssl_compute_master() by Manuel Pégourié-Gonnard · 6 years ago
  69. a575975 Make calc_verify() return the length as well by Manuel Pégourié-Gonnard · 6 years ago
  70. ed3b7a9 Constify ssl_context param of calc_verify() by Manuel Pégourié-Gonnard · 6 years ago
  71. c28c889 Improve signature of ssl_compute_master() by Manuel Pégourié-Gonnard · 6 years ago
  72. dafe522 Reduce indentation in ssl_compute_master() by Manuel Pégourié-Gonnard · 6 years ago
  73. 7edd587 Start extracting ssl_compute_master() by Manuel Pégourié-Gonnard · 6 years ago
  74. aa3c701 Fix signature of ssl_set_transform_prfs() by Manuel Pégourié-Gonnard · 6 years ago
  75. 52aa520 Start extraction ssl_set_handshake_prfs() by Manuel Pégourié-Gonnard · 6 years ago
  76. 5ed5e90 Start splitting populate_transform() out of derive_keys() by Manuel Pégourié-Gonnard · 6 years ago
  77. 0888581 Fix uninitialized variable access in debug output of record enc/dec by Hanno Becker · 6 years ago
  78. c5aee96 Adapt record length value after encryption by Hanno Becker · 6 years ago
  79. 30d02cd Rename ssl_decrypt_buf() to mbedtls_ssl_decrypt_buf() in comment by Hanno Becker · 7 years ago
  80. 93012fe Double check that record expansion is as expected during decryption by Hanno Becker · 7 years ago
  81. a795323 Move debugging output after record decryption by Hanno Becker · 7 years ago
  82. 611a83b Add tests for record encryption/decryption by Hanno Becker · 8 years ago
  83. 9223132 Reduce size of `ssl_transform` if no MAC ciphersuite is enabled by Hanno Becker · 8 years ago
  84. f122944 Remove code from `ssl_derive_keys` if relevant modes are not enabled by Hanno Becker · 8 years ago
  85. 4c6876b Provide standalone version of `ssl_decrypt_buf` by Hanno Becker · 8 years ago
  86. 3307b53 Provide standalone version of `ssl_encrypt_buf` by Hanno Becker · 8 years ago
  87. 5cc04d5 Correct space needed for MAC in case of NULL cipher by Hanno Becker · 8 years ago
  88. 8759e16 Remove ciphersuite_info from ssl_transform by Hanno Becker · 8 years ago
  89. e7f2df0 Remove key length field from ssl_transform by Hanno Becker · 8 years ago
  90. ba8cd67 Guard CID implementations by MBEDTLS_SSL_CID by Hanno Becker · 6 years ago
  91. 8d0893d Add warnings about status of implementation of CID API by Hanno Becker · 6 years ago
  92. b9e7dea Add dummy implementations for CID API by Hanno Becker · 6 years ago
  93. e1b1a2c Merge remote-tracking branch 'upstream-public/pr/2181' into development by Jaeden Amero · 7 years ago
  94. 3fbdada SSL: Make use of the new ECDH interface by Janos Follath · 7 years ago
  95. f6d6e30 Fix incomplete assertion in ssl_write_handshake_msg() by Hanno Becker · 7 years ago
  96. 2705bea Merge remote-tracking branch 'public/pr/2095' into development-proposed by Simon Butcher · 7 years ago
  97. 17a0fab Merge remote-tracking branch 'public/pr/2111' into development-proposed by Simon Butcher · 7 years ago
  98. 169712e Merge remote-tracking branch 'restricted/pr/390' into development by Simon Butcher · 7 years ago
  99. dd3ab13 Fail when encountering invalid CBC padding in EtM records by Hanno Becker · 7 years ago
  100. 805f2e1 Add missing zeroization of buffered handshake messages by Hanno Becker · 7 years ago