TrustedFirmware Git Browser
Code Review
Sign In
review.trustedfirmware.org
/
mirror
/
mbed-tls
/
51a0bfd9bc07a549368eb0b87f79291fb96ae4e8
/
library
/
ssl_tls.c
51a0bfd
Fix bug in cert digest serialisation
by Manuel Pégourié-Gonnard
· 6 years ago
686adb4
Normalize spelling to serialiZation
by Manuel Pégourié-Gonnard
· 6 years ago
a3d831b
Add test for session_load() from small buffers
by Manuel Pégourié-Gonnard
· 6 years ago
26f982f
Improve save API by always updating olen
by Manuel Pégourié-Gonnard
· 6 years ago
b5e4e0a
Add mbedtls_ssl_get_session_pointer()
by Manuel Pégourié-Gonnard
· 6 years ago
35eb802
Add support for serialisation session with ticket
by Manuel Pégourié-Gonnard
· 6 years ago
a3e7c65
Move session save/load function to ssl_tls.c
by Manuel Pégourié-Gonnard
· 6 years ago
8faa70e
Use more specific name in debug message for testing
by Manuel Pégourié-Gonnard
· 6 years ago
d91efa4
Fix alignment issues
by Manuel Pégourié-Gonnard
· 6 years ago
47e33e1
Clarify comment about TLS versions
by Manuel Pégourié-Gonnard
· 6 years ago
7fa1407
Remove redundant debug message.
by Manuel Pégourié-Gonnard
· 6 years ago
6fa57bf
Remove 'session' input from populate_tranform()
by Manuel Pégourié-Gonnard
· 6 years ago
31d3ef1
Fix typo in comment
by Manuel Pégourié-Gonnard
· 6 years ago
a7505d1
Enforce promise to not use whole ssl context
by Manuel Pégourié-Gonnard
· 6 years ago
c864f6a
Partially rm 'ssl' input from populate_transform()
by Manuel Pégourié-Gonnard
· 6 years ago
9b108c2
Remove "handshake" input from populate_transform()
by Manuel Pégourié-Gonnard
· 6 years ago
344460c
Work around bug in key exporter API
by Manuel Pégourié-Gonnard
· 6 years ago
cba40d9
Start refining parameters of populate_transform()
by Manuel Pégourié-Gonnard
· 6 years ago
d73b47f
Move compress_buf allocation to derive_keys
by Manuel Pégourié-Gonnard
· 6 years ago
040a951
Move handling of randbytes to derive_keys()
by Manuel Pégourié-Gonnard
· 6 years ago
de718b9
Make calc_verify() return the length as well
by Manuel Pégourié-Gonnard
· 6 years ago
0d56aaa
Constify ssl_context param of calc_verify()
by Manuel Pégourié-Gonnard
· 6 years ago
de047ad
Improve signature of ssl_compute_master()
by Manuel Pégourié-Gonnard
· 6 years ago
85680c4
Reduce indentation in ssl_compute_master()
by Manuel Pégourié-Gonnard
· 6 years ago
9951b71
Start extracting ssl_compute_master()
by Manuel Pégourié-Gonnard
· 6 years ago
8d2805c
Fix signature of ssl_set_transform_prfs()
by Manuel Pégourié-Gonnard
· 6 years ago
1b00c4f
Start extraction ssl_set_handshake_prfs()
by Manuel Pégourié-Gonnard
· 6 years ago
e59ae23
Start splitting populate_transform() out of derive_keys()
by Manuel Pégourié-Gonnard
· 6 years ago
beec142
Merge remote-tracking branch 'origin/pr/2790' into development
by Jaeden Amero
· 6 years ago
9a09f51
Merge remote-tracking branch 'origin/pr/2781' into development
by Jaeden Amero
· 6 years ago
da6ac01
Rename local variables
by Janos Follath
· 6 years ago
1239d70
Remove calls to psa_allocate_key
by Janos Follath
· 6 years ago
53b8ec2
Make variable naming consistent
by Janos Follath
· 6 years ago
ed73b04
Update psa_import_key to PSA 1.0
by Janos Follath
· 6 years ago
bd09610
Update psa_generator_abort to PSA 1.0
by Janos Follath
· 6 years ago
6de99db
Update psa_generator_read to PSA 1.0
by Janos Follath
· 6 years ago
8dee877
Update psa_crypto_generator_t to PSA 1.0
by Janos Follath
· 6 years ago
7374ee6
Update GENERATOR_INIT macro to PSA 1.0
by Janos Follath
· 6 years ago
922013e
tls: Remove duplicate psa_util.h include
by Jaeden Amero
· 6 years ago
7e821b5
Fix possibly-lossy conversion warning from MSVC
by Manuel Pégourié-Gonnard
· 6 years ago
d417cc9
Reintroduce length 0 check for records
by Hanno Becker
· 6 years ago
d0b66d0
Don't use memcpy() for 2-byte copy operation
by Hanno Becker
· 6 years ago
9eca276
Remove integer parsing macro
by Hanno Becker
· 6 years ago
f546625
Fix alignment in record header parsing routine
by Hanno Becker
· 6 years ago
552f747
Make sure 'record from another epoch' is displayed for next epoch
by Hanno Becker
· 6 years ago
5422981
Implement record checking API
by Hanno Becker
· 6 years ago
331de3d
Mark ssl_parse_record_header() as `const` in SSL context
by Hanno Becker
· 6 years ago
b0fe0ee
Remove duplicate setting of ssl->in_msgtype and ssl->in_msglen
by Hanno Becker
· 6 years ago
44d89b2
Move update of in_xxx fields in ssl_get_next_record()
by Hanno Becker
· 6 years ago
8685c82
Move update of in_xxx fields outside of ssl_prepare_record_content()
by Hanno Becker
· 6 years ago
58ef0bf
Reduce dependency of ssl_prepare_record_content() on in_xxx fields
by Hanno Becker
· 6 years ago
d8bf8ce
Move ssl_update_in_pointers() to after record hdr parsing
by Hanno Becker
· 6 years ago
0183d69
Mark DTLS replay check as `const` on the SSL context
by Hanno Becker
· 6 years ago
7ae20e0
Move updating the internal rec ptrs to outside of rec hdr parsing
by Hanno Becker
· 6 years ago
605949f
Mark ssl_decrypt_buf() as `const in the input SSL context
by Hanno Becker
· 6 years ago
fdf6604
Adapt ssl_prepare_record_content() to use SSL record structure
by Hanno Becker
· 6 years ago
a317566
Use record length from record structure when fetching content in TLS
by Hanno Becker
· 6 years ago
f50da50
Use record structure when remembering offset of next record in dgram
by Hanno Becker
· 6 years ago
4acada3
Use SSL record structure when skipping over unexpected record
by Hanno Becker
· 6 years ago
519f15d
Adapt ssl_buffer_future_record() to work with SSL record structure
by Hanno Becker
· 6 years ago
e5e7e78
Setup SSL record structure in ssl_parse_record_header()
by Hanno Becker
· 6 years ago
37cfe73
Minor documentation improvements in ssl_parse_record_header()
by Hanno Becker
· 6 years ago
955a5c9
Check for sufficient datagram size in ssl_parse_record_header()
by Hanno Becker
· 6 years ago
d5c0f82
Don't send an alert when receiving a record of unknown ContentType
by Hanno Becker
· 6 years ago
a881479
Don't call ssl_fetch_input for record content fetch in DTLS
by Hanno Becker
· 6 years ago
59be60e
Don't call ssl_fetch_input for record hdr size check in DTLS
by Hanno Becker
· 6 years ago
e538d82
Move size-check for DTLS record header with CID to DTLS-only branch
by Hanno Becker
· 6 years ago
2fddd37
Check same-port-reconnect from client outside of record hdr parsing
by Hanno Becker
· 6 years ago
4894873
Remove redundant minimum length check
by Hanno Becker
· 6 years ago
2001665
Remove unnecessary backup of explicit IV in AEAD record decryption
by Hanno Becker
· 6 years ago
d96a652
Improve documentation of mbedtls_ssl_decrypt_buf()
by Hanno Becker
· 6 years ago
c957e3b
Remove redundant length check during record header parsing
by Hanno Becker
· 6 years ago
e2b786d
Remove misleading comment in mbedtls_ssl_decrypt_buf()
by Hanno Becker
· 6 years ago
47ebaa2
Remove assertion in mbedtls_ssl_decrypt_buf()
by Hanno Becker
· 6 years ago
d96e10b
Check architectural bound for max record payload len in one place
by Hanno Becker
· 6 years ago
3be264e
Remove redundant length-0 checks for incoming unprotected records
by Hanno Becker
· 6 years ago
cfe4579
Introduce configuration option and API for SSL record checking
by Hanno Becker
· 6 years ago
d431104
ssl_tls: Enable Suite B with subset of ECP curves
by Jaeden Amero
· 6 years ago
2de07f1
ssl: Don't access non-existent encrypt_then_mac field
by Jaeden Amero
· 6 years ago
e8d6afd
Add debug line witnessing receipt of unexpected CID
by Hanno Becker
· 6 years ago
92d30f5
Fix indentation in debug message in ssl_tls.c
by Hanno Becker
· 6 years ago
8e55b0f
Improve comment in ssl_parse_record_header()
by Hanno Becker
· 6 years ago
615ef17
Allow passing NULL pointers to mbedtls_ssl_get_peer_cid()
by Hanno Becker
· 6 years ago
a0e20d0
Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID
by Hanno Becker
· 6 years ago
d1f2035
Slightly reorder CID debug messages during creation of transforms
by Hanno Becker
· 6 years ago
611ac77
Fix mbedtls_ssl_conf_cid() to not depend on macro constant values
by Hanno Becker
· 6 years ago
5d12467
Remove warnings about unfinished CID implementation
by Hanno Becker
· 6 years ago
8367ccc
Allow to configure the stack's behaviour on unexpected CIDs
by Hanno Becker
· 6 years ago
b9ec44f
Remove restriction on value of MBEDTLS_SSL_CID_PADDING_GRANULARITY
by Hanno Becker
· 6 years ago
2cdc5c3
Make signed to unsigned integer truncation cast explicit
by Hanno Becker
· 6 years ago
b1aa1b3
Allow the configuration of padding when using CID extension
by Hanno Becker
· 6 years ago
4c3eb7c
Set CID pointer to default value even for TLS
by Hanno Becker
· 6 years ago
4a4af9f
Fix typo in comment
by Hanno Becker
· 6 years ago
22a59fd
Remove indicators and warnings about unfinished CID implementation
by Hanno Becker
· 6 years ago
05154c3
Re-enable passing CIDs to record transforms
by Hanno Becker
· 6 years ago
16ded98
Don't fail on record with unexpected CID
by Hanno Becker
· 6 years ago
938489a
Re-enable CID comparison when decrypting CID-based records
by Hanno Becker
· 6 years ago
ca59c2b
Implement parsing of CID-based records
by Hanno Becker
· 6 years ago
6430faf
Adapt record encryption/decryption routines to change of record type
by Hanno Becker
· 6 years ago
f9c6a4b
Add pointers to in/out CID fields to mbedtls_ssl_context
by Hanno Becker
· 6 years ago
Next »