TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 5097cba93c531cdaee8e6ac459aa3ec3111ead6b / library / ssl_tls.c
  1. 5097cba Introduce helper function to determine whether suite uses server CRT by Hanno Becker · 6 years ago
  2. b71e90a Use helper macro to detect whether some ciphersuite uses CRTs by Hanno Becker · 6 years ago
  3. 613d490 Unify state machine update in mbedtls_ssl_parse_certificate() by Hanno Becker · 6 years ago
  4. a46c287 Clear peer's CRT chain outside before parsing new one by Hanno Becker · 6 years ago
  5. b8a0857 Introduce helper to check for no-CRT notification from client by Hanno Becker · 6 years ago
  6. 8794fd9 Introduce CRT counter to CRT chain parsing function by Hanno Becker · 6 years ago
  7. 2214159 Introduce helper function to clear peer CRT from session structure by Hanno Becker · 6 years ago
  8. 933b9fc Break overly long line in definition of mbedtls_ssl_get_session() by Hanno Becker · 6 years ago
  9. 1332f35 Don't reuse CRT from initial handshake during renegotiation by Hanno Becker · 6 years ago
  10. f2ef573 Merge remote-tracking branch 'origin/pr/598' into baremetal by Simon Butcher · 6 years ago
  11. 889bbc7 Fix unreachable code warnings with armc5 by Manuel Pégourié-Gonnard · 6 years ago
  12. cc71c77 Fix typos, grammar and wording in documentation by Manuel Pégourié-Gonnard · 6 years ago
  13. d87601e Declare and document ssl_context_save()/load() by Manuel Pégourié-Gonnard · 6 years ago
  14. c725e4b Merge remote-tracking branch 'origin/pr/590' into baremetal by Simon Butcher · 6 years ago
  15. 01a8eb2 Merge remote-tracking branch 'origin/pr/585' into baremetal by Simon Butcher · 6 years ago
  16. ec1c222 Fix a few style issues by Manuel Pégourié-Gonnard · 6 years ago
  17. 8794a42 Clarify a few more comments and documentation by Manuel Pégourié-Gonnard · 6 years ago
  18. 18b9a49 Disable the enforce flag by default by Jarno Lamsa · 6 years ago
  19. 842be16 Check for the enforcing and fail handshake if the peer doesn't support by Jarno Lamsa · 6 years ago
  20. d9382f8 Add definitions for enforce flag values by Jarno Lamsa · 6 years ago
  21. 7a5e2be Create a new flag for enforcing the extended master secret by Jarno Lamsa · 6 years ago
  22. 64c1681 Use new macros for all TLS/DTLS tests by Manuel Pégourié-Gonnard · 6 years ago
  23. ff4bd9f Use new tools for all cases with TLS-specific code by Manuel Pégourié-Gonnard · 6 years ago
  24. 25838b7 Introduce tools for transport-specific code by Manuel Pégourié-Gonnard · 6 years ago
  25. e744eab Adapt defaults and programs documentation by Manuel Pégourié-Gonnard · 6 years ago
  26. 68b856d Fix style issue and wording by Hanno Becker · 6 years ago
  27. fe87027 Fix memory leak by Hanno Becker · 7 years ago
  28. fd39919 Improve formatting of ssl_parse_certificate_chain() by Hanno Becker · 7 years ago
  29. 285ff0c Add compile-time guards around helper routine by Hanno Becker · 7 years ago
  30. 33c3dc8 Don't store the peer CRT chain twice during renegotiation by Hanno Becker · 7 years ago
  31. 7bf7710 Remove reference to outdated compile-time option by Hanno Becker · 6 years ago
  32. 5dbcc9f Introduce specific error for ver/cfg mismatch on deserialization by Hanno Becker · 6 years ago
  33. baf968c Use def'n consts for bits in config-identifier of serialized data by Hanno Becker · 6 years ago
  34. b36db4f Note that ver+fmt bytes in serialized data must not be removed by Hanno Becker · 6 years ago
  35. 26829e9 Improve doc'n of config-identifying bitfield in serialized session by Hanno Becker · 6 years ago
  36. 1d8b6d7 Session serialization: Fail with BAD_INPUT_DATA if buffer too small by Hanno Becker · 6 years ago
  37. 4152762 Encode relevant parts of the config in serialized session header by Hanno Becker · 6 years ago
  38. 557fe9f Add configuration identifier to serialized SSL sessions by Hanno Becker · 6 years ago
  39. b5352f0 Add Mbed TLS version to SSL sessions by Hanno Becker · 6 years ago
  40. 60a4299 Add new ABI-independent format for serialization by Manuel Pégourié-Gonnard · 6 years ago
  41. 35ccdbb Normalize spelling to serialiZation by Manuel Pégourié-Gonnard · 6 years ago
  42. 5709811 Add test for session_load() from small buffers by Manuel Pégourié-Gonnard · 6 years ago
  43. 32ce596 Improve save API by always updating olen by Manuel Pégourié-Gonnard · 6 years ago
  44. 37a5324 Add mbedtls_ssl_get_session_pointer() by Manuel Pégourié-Gonnard · 6 years ago
  45. ef4ae61 Add support for serialisation session with ticket by Manuel Pégourié-Gonnard · 6 years ago
  46. 91f4ca2 Move session save/load function to ssl_tls.c by Manuel Pégourié-Gonnard · 6 years ago
  47. 0d1d76f Merge remote-tracking branch 'origin/pr/561' into baremetal by Simon Butcher · 6 years ago
  48. 5a790f9 Merge remote-tracking branch 'origin/pr/563' into baremetal by Simon Butcher · 6 years ago
  49. 675c4d6 Add debug line witnessing receipt of unexpected CID by Hanno Becker · 6 years ago
  50. d8f7c4a Fix indentation in debug message in ssl_tls.c by Hanno Becker · 6 years ago
  51. 3b2bf5b Improve comment in ssl_parse_record_header() by Hanno Becker · 6 years ago
  52. 633d604 Allow passing NULL pointers to mbedtls_ssl_get_peer_cid() by Hanno Becker · 6 years ago
  53. a5a2b08 Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID by Hanno Becker · 6 years ago
  54. e582d12 Slightly reorder CID debug messages during creation of transforms by Hanno Becker · 6 years ago
  55. 791ec6b Fix mbedtls_ssl_conf_cid() to not depend on macro constant values by Hanno Becker · 6 years ago
  56. b86c2a8 Remove warnings about unfinished CID implementation by Hanno Becker · 6 years ago
  57. e8eff9a Allow to configure the stack's behaviour on unexpected CIDs by Hanno Becker · 6 years ago
  58. 7842609 Remove restriction on value of MBEDTLS_SSL_CID_PADDING_GRANULARITY by Hanno Becker · 6 years ago
  59. 7ba3568 Make signed to unsigned integer truncation cast explicit by Hanno Becker · 6 years ago
  60. 550e166 Allow the configuration of padding when using CID extension by Hanno Becker · 6 years ago
  61. 9bf10ea Set CID pointer to default value even for TLS by Hanno Becker · 6 years ago
  62. f65ad82 Fix typo in comment by Hanno Becker · 6 years ago
  63. 043a2a4 Remove indicators and warnings about unfinished CID implementation by Hanno Becker · 6 years ago
  64. 4932f9f Re-enable passing CIDs to record transforms by Hanno Becker · 6 years ago
  65. 687e0fb Don't fail on record with unexpected CID by Hanno Becker · 6 years ago
  66. abd7c89 Re-enable CID comparison when decrypting CID-based records by Hanno Becker · 6 years ago
  67. 8b09b73 Implement parsing of CID-based records by Hanno Becker · 6 years ago
  68. ff3e9c2 Adapt record encryption/decryption routines to change of record type by Hanno Becker · 6 years ago
  69. 70e7928 Add pointers to in/out CID fields to mbedtls_ssl_context by Hanno Becker · 6 years ago
  70. add0190 Account for additional record expansion when using CIDs by Hanno Becker · 6 years ago
  71. eec2be9 Add CID configuration API by Hanno Becker · 6 years ago
  72. 4339576 Split mbedtls_ssl_hdr_len() in separate functions for in/out records by Hanno Becker · 6 years ago
  73. 46483f1 Add helper function to check validity of record content type by Hanno Becker · 6 years ago
  74. 74dd3a7 Move dropping of unexpected AD records to after record decryption by Hanno Becker · 6 years ago
  75. f5970a0 Set pointer to start of plaintext at record decryption time by Hanno Becker · 6 years ago
  76. 16e9ae2 Treat an invalid record after decryption as fatal by Hanno Becker · 6 years ago
  77. 70463db Expain rationale for handling of consecutive empty AD records by Hanno Becker · 6 years ago
  78. 78c4302 Don't allow calling CID API outside of DTLS by Hanno Becker · 6 years ago
  79. 1f02f05 Fix additional data calculation if CID is disabled by Hanno Becker · 6 years ago
  80. 3b1a885 Remove unnecessary empty line in ssl_tls.c by Hanno Becker · 6 years ago
  81. 7dc2577 Don't quote DTLSInnerPlaintext structure multiple times by Hanno Becker · 6 years ago
  82. 8969369 Improve wording in ssl_build_inner_plaintext() by Hanno Becker · 6 years ago
  83. 24ce1eb Remove unnecessary whitespace in ssl_extract_add_data_from_record() by Hanno Becker · 6 years ago
  84. 28a0c4e Reduce stack usage for additional data buffers in record dec/enc by Hanno Becker · 6 years ago
  85. acadb0a Add length of CID to additional data used for record protection by Hanno Becker · 6 years ago
  86. 99abf51 Improve documentation of ssl_extract_add_data_from_record() by Hanno Becker · 6 years ago
  87. 9c5bcc9 Use more specific name in debug message for testing by Manuel Pégourié-Gonnard · 6 years ago
  88. 762d011 Fix alignment issues by Manuel Pégourié-Gonnard · 6 years ago
  89. 42c814f Clarify comment about TLS versions by Manuel Pégourié-Gonnard · 6 years ago
  90. 5478e1e Remove redundant debug message. by Manuel Pégourié-Gonnard · 6 years ago
  91. 505089d Fix missing compile-time guards around CID-only constants by Hanno Becker · 6 years ago
  92. 4c6fe12 Remove TODO by Hanno Becker · 6 years ago
  93. 2e7cd5a Use MBEDTLS_ namespace for internal CID length constant by Hanno Becker · 6 years ago
  94. d91dc37 Skip copying CIDs to SSL transforms until CID feature is complete by Hanno Becker · 6 years ago
  95. 92c930f Implement inner plaintext parsing/writing for CID-based connections by Hanno Becker · 6 years ago
  96. e83efe6 Incorporate CID into MAC computations during record protection by Hanno Becker · 6 years ago
  97. 8013b27 Replace 'ingoing' -> 'incoming' in CID debug messages by Hanno Becker · 6 years ago
  98. cb063f5 Document behaviour of mbedtls_ssl_get_peer_cid() for empty CIDs by Hanno Becker · 6 years ago
  99. b4a5606 Make integer truncation explicit in mbedtls_ssl_set_cid() by Hanno Becker · 6 years ago
  100. 2de89fa Implement mbedtls_ssl_get_peer_cid() by Hanno Becker · 6 years ago