Log - refs/heads/mbedtls-2.18 - mirror/mbed-tls.git

eb33978 Remove use of CMAKE_SOURCE_DIR by Ashley Duncan · 6 years ago
b1c72f5 Update library version to 2.18.0 by Jaeden Amero · 6 years ago
2de07f1 ssl: Don't access non-existent encrypt_then_mac field by Jaeden Amero · 6 years ago
e8d6afd Add debug line witnessing receipt of unexpected CID by Hanno Becker · 6 years ago
92d30f5 Fix indentation in debug message in ssl_tls.c by Hanno Becker · 6 years ago
8e55b0f Improve comment in ssl_parse_record_header() by Hanno Becker · 6 years ago
615ef17 Allow passing NULL pointers to mbedtls_ssl_get_peer_cid() by Hanno Becker · 6 years ago
a0e20d0 Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID by Hanno Becker · 6 years ago
ebcc913 Consistently reference CID draft through name + URL by Hanno Becker · 6 years ago
d1f2035 Slightly reorder CID debug messages during creation of transforms by Hanno Becker · 6 years ago
4cac442 Update references to CID draft to version 5 by Hanno Becker · 6 years ago
611ac77 Fix mbedtls_ssl_conf_cid() to not depend on macro constant values by Hanno Becker · 6 years ago
5d12467 Remove warnings about unfinished CID implementation by Hanno Becker · 6 years ago
8367ccc Allow to configure the stack's behaviour on unexpected CIDs by Hanno Becker · 6 years ago
c37c96a Add specific SSL error code for unexpected CIDs by Hanno Becker · 6 years ago
b9ec44f Remove restriction on value of MBEDTLS_SSL_CID_PADDING_GRANULARITY by Hanno Becker · 6 years ago
2cdc5c3 Make signed to unsigned integer truncation cast explicit by Hanno Becker · 6 years ago
b1aa1b3 Allow the configuration of padding when using CID extension by Hanno Becker · 6 years ago
4c3eb7c Set CID pointer to default value even for TLS by Hanno Becker · 6 years ago
4a4af9f Fix typo in comment by Hanno Becker · 6 years ago
22a59fd Remove indicators and warnings about unfinished CID implementation by Hanno Becker · 6 years ago
05154c3 Re-enable passing CIDs to record transforms by Hanno Becker · 6 years ago
16ded98 Don't fail on record with unexpected CID by Hanno Becker · 6 years ago
938489a Re-enable CID comparison when decrypting CID-based records by Hanno Becker · 6 years ago
ca59c2b Implement parsing of CID-based records by Hanno Becker · 6 years ago
6430faf Adapt record encryption/decryption routines to change of record type by Hanno Becker · 6 years ago
f9c6a4b Add pointers to in/out CID fields to mbedtls_ssl_context by Hanno Becker · 6 years ago
6cbad55 Account for additional record expansion when using CIDs by Hanno Becker · 6 years ago
ad4a137 Add CID configuration API by Hanno Becker · 6 years ago
5903de4 Split mbedtls_ssl_hdr_len() in separate functions for in/out records by Hanno Becker · 6 years ago
f661c9c Add helper function to check validity of record content type by Hanno Becker · 6 years ago
37ae952 Move dropping of unexpected AD records to after record decryption by Hanno Becker · 6 years ago
79594fd Set pointer to start of plaintext at record decryption time by Hanno Becker · 6 years ago
82e2a39 Treat an invalid record after decryption as fatal by Hanno Becker · 6 years ago
6e7700d Expain rationale for handling of consecutive empty AD records by Hanno Becker · 6 years ago
76a79ab Don't allow calling CID API outside of DTLS by Hanno Becker · 6 years ago
95e4bbc Fix additional data calculation if CID is disabled by Hanno Becker · 6 years ago
af05ac0 Remove unnecessary empty line in ssl_tls.c by Hanno Becker · 6 years ago
07dc97d Don't quote DTLSInnerPlaintext structure multiple times by Hanno Becker · 6 years ago
d3f8c79 Improve wording in ssl_build_inner_plaintext() by Hanno Becker · 6 years ago
edb24f8 Remove unnecessary whitespace in ssl_extract_add_data_from_record() by Hanno Becker · 6 years ago
92fb4fa Reduce stack usage for additional data buffers in record dec/enc by Hanno Becker · 6 years ago
c4a190b Add length of CID to additional data used for record protection by Hanno Becker · 6 years ago
d5aeab1 Improve documentation of ssl_extract_add_data_from_record() by Hanno Becker · 6 years ago
43c24b8 Fix missing compile-time guards around CID-only constants by Hanno Becker · 6 years ago
f44e55d Remove TODO by Hanno Becker · 6 years ago
75f080f Use MBEDTLS_ namespace for internal CID length constant by Hanno Becker · 6 years ago
8a7f972 Skip copying CIDs to SSL transforms until CID feature is complete by Hanno Becker · 6 years ago
8b3eb5a Implement inner plaintext parsing/writing for CID-based connections by Hanno Becker · 6 years ago
cab87e6 Incorporate CID into MAC computations during record protection by Hanno Becker · 6 years ago
1c1f046 Replace 'ingoing' -> 'incoming' in CID debug messages by Hanno Becker · 6 years ago
c5f2422 Document behaviour of mbedtls_ssl_get_peer_cid() for empty CIDs by Hanno Becker · 6 years ago
5a29990 Improve structure of client-side CID extension parsing by Hanno Becker · 6 years ago
2262648 Improve debugging output of client-side CID extension parsing by Hanno Becker · 6 years ago
08556bf Improve structure of ssl_parse_cid_ext() by Hanno Becker · 6 years ago
a34ff5b Correct compile-time guard around CID extension writing func on srv by Hanno Becker · 6 years ago
b7ee0cf Make integer truncation explicit in mbedtls_ssl_set_cid() by Hanno Becker · 6 years ago
b1f89cd Implement mbedtls_ssl_get_peer_cid() by Hanno Becker · 6 years ago
4bf7465 Copy CIDs into SSL transform if use of CID has been negotiated by Hanno Becker · 6 years ago
a8373a1 Implement parsing of CID extension in ServerHello by Hanno Becker · 6 years ago
51de2d3 Implement writing of CID extension in ServerHello by Hanno Becker · 6 years ago
89dcc88 Implement parsing of CID extension in ClientHello by Hanno Becker · 6 years ago
49770ff Implement writing of CID extension in ClientHello by Hanno Becker · 6 years ago
ca09224 Allow configuring own CID fields through mbedtls_ssl_get_peer_cid() by Hanno Becker · 6 years ago
35c36a6 Guard CID implementations by MBEDTLS_SSL_CID by Hanno Becker · 6 years ago
f1f9a82 Add warnings about status of implementation of CID API by Hanno Becker · 6 years ago
f8542cf Add dummy implementations for CID API by Hanno Becker · 6 years ago
f8c1026 Update version_features.c by Hanno Becker · 6 years ago
2ab5cf6 Merge remote-tracking branch 'origin/pr/2403' into development by Jaeden Amero · 6 years ago
ade9e28 ssl_cli.c : add explicit casting to unsigned char by Andrzej Kurek · 6 years ago
346747c Force the usage of crypto submodule by Andrzej Kurek · 6 years ago
45be3d8 Fix compile guard for static function in ssl by Manuel Pégourié-Gonnard · 6 years ago
d8167e8 Build from submodule by default (make, cmake) by Manuel Pégourié-Gonnard · 7 years ago
5aebeeb Set next sequence of subject_alt_names to NULL by Ron Eldor · 6 years ago
31d1432 Merge remote-tracking branch 'origin/pr/2530' into development by Jaeden Amero · 6 years ago
9ebcf9b Merge remote-tracking branch 'origin/pr/2538' into development by Jaeden Amero · 6 years ago
6aeae9e Style fix by Ron Eldor · 6 years ago
a291391 Fix minor issues by Ron Eldor · 6 years ago
dbbd966 Check that SAN is not malformed when parsing by Ron Eldor · 6 years ago
c8b5f3f Documentation fixes by Ron Eldor · 6 years ago
d2f25f7 Fix missing tls version test failures by Ron Eldor · 6 years ago
0810f0b Fix typo by Ron Eldor · 6 years ago
cf28009 Add function to retrieve the tls_prf type by Ron Eldor · 6 years ago
51d3ab5 Add public API for tls_prf by Ron Eldor · 6 years ago
b7fd64c Add eap-tls key derivation in the examples. by Ron Eldor · 6 years ago
f5cc10d Add an extra key export function by Ron Eldor · 6 years ago
3b35085 Have the temporary buffer allocated dynamically by Ron Eldor · 6 years ago
a9f9a73 Zeroize secret data in the exit point by Ron Eldor · 6 years ago
e699270 Add a single exit point in key derivation function by Ron Eldor · 6 years ago
8b0c3c9 Fail in case critical crt policy not supported by Ron Eldor · 6 years ago
f05f594 change the type of hardware_module_name member by Ron Eldor · 6 years ago
890819a Change mbedtls_x509_subject_alternative_name by Ron Eldor · 6 years ago
0806379 Add length checking in certificate policy parsing by Ron Eldor · 6 years ago
293c3da Remove redundant memset() by Janos Follath · 6 years ago
6c379b4 Propogate error when parsing SubjectAltNames by Janos Follath · 6 years ago
2f0ec1e Tidy up style in x509_info_subject_alt_name by Janos Follath · 6 years ago
22f605f Print unparseable SubjectAlternativeNames by Janos Follath · 6 years ago
ab23cd1 Remove unneeded checks from x509_get_other_name by Janos Follath · 6 years ago
74d9acc Add support for certificate policies extension by Ron Eldor · 6 years ago
b2dc3fa Suppport otherName of type hardware module name by Ron Eldor · 6 years ago