TrustedFirmware Git Browser
Code Review
Sign In
review.trustedfirmware.org
/
mirror
/
mbed-tls
/
a43f85c9b299caedab7d09a5a82e80c854e16b77
/
library
/
ssl_tls.c
e1c5608
Merge remote-tracking branch 'origin/pr/650' into baremetal
by Simon Butcher
· 6 years ago
8398582
Fix SSL context deserialization
by Hanno Becker
· 6 years ago
f6cc742
Prescribe inlining of tls_prf_generic()
by Hanno Becker
· 6 years ago
2793f74
Forbid inlining of some functions to reduce code-size on ARMC6
by Hanno Becker
· 6 years ago
298a470
Force inlining of ssl_populate_transform() if used only once
by Hanno Becker
· 6 years ago
fc7429e
Remove forward declarations of calc_finished functions in ssl_tls.c
by Hanno Becker
· 6 years ago
cf87c5e
Avoid forward declarations of calc_verify functions in ssl_tls.c
by Hanno Becker
· 6 years ago
2f41b24
Remove calc_verify SSL function pointer
by Hanno Becker
· 6 years ago
8443491
Make SSL checksum update function inline
by Hanno Becker
· 6 years ago
8a4b590
Remove checksum update function pointer from SSL handshake params
by Hanno Becker
· 6 years ago
533f5b1
Remove ssl_optimize_checksum()
by Hanno Becker
· 6 years ago
c2fb759
Remove TLS calc_finished function pointer from SSL handshake params
by Hanno Becker
· 6 years ago
39c7f7e
Remove TLS PRF function pointer from SSL handshake parameters
by Hanno Becker
· 6 years ago
87f57f6
Merge pull request #642 from jarvte/mbedtls_ssl_set_hostname_to_optional
by Manuel Pégourié-Gonnard
· 6 years ago
4009d8f
Make function mbedtls_ssl_set_hostname(...) as optional
by Teppo Järvelin
· 6 years ago
6617a24
Merge remote-tracking branch 'origin/pr/633' into baremetal
by Simon Butcher
· 6 years ago
f0f01e1
Merge remote-tracking branch 'origin/pr/630' into baremetal
by Simon Butcher
· 6 years ago
434ab19
Merge remote-tracking branch 'origin/pr/629' into baremetal
by Simon Butcher
· 6 years ago
0863b2a
Merge remote-tracking branch 'origin/pr/612' into baremetal
by Simon Butcher
· 6 years ago
a9d5c45
Remove mbedtls_ssl_transform::minlen
by Hanno Becker
· 6 years ago
7a19633
tinyCrypt: Avoid unused var warning by marking vars as unused
by Hanno Becker
· 6 years ago
29d1655
Add MBEDTLS_ECDH_C guards to ECDH code-paths using legacy ECDH
by Hanno Becker
· 6 years ago
a3c2c17
tinyCrypt: Share ECDH secret calculation code-path
by Hanno Becker
· 6 years ago
75f12d1
tinyCrypt: Add ServerKeyExchange parsing code
by Hanno Becker
· 6 years ago
d089fad
tinyCrypt: Adapt RNG wrapper to return 0 on failure
by Hanno Becker
· 6 years ago
ef982d5
tinyCrypt: Bind RNG wrapper to tinyCrypt in mbedtls_ssl_setup()
by Hanno Becker
· 6 years ago
e12aafb
tinyCrypt: Initial commit towards ECDHE support
by Jarno Lamsa
· 6 years ago
fb02e96
Fix indentation to a multiple of 4 spaces
by Manuel Pégourié-Gonnard
· 6 years ago
8793fab
Fix two typos in comments
by Manuel Pégourié-Gonnard
· 6 years ago
572d448
Enforce NULL context for hardcoded RNG
by Hanno Becker
· 6 years ago
9a12243
Introduce getter function for RNG context
by Hanno Becker
· 6 years ago
09d2364
Share code between In-CliKeyExch and Out-CliKeyExch
by Hanno Becker
· 6 years ago
f3a15b3
Fix possibly-lossy conversion warning from MSVC
by Manuel Pégourié-Gonnard
· 6 years ago
8844055
Remove compression field from SSL session if compression disabled
by Hanno Becker
· 6 years ago
ec01408
Reintroduce length 0 check for records
by Hanno Becker
· 6 years ago
8061c6e
Don't use memcpy() for 2-byte copy operation
by Hanno Becker
· 6 years ago
7b5ba84
Remove integer parsing macro
by Hanno Becker
· 6 years ago
6181761
Fix alignment in record header parsing routine
by Hanno Becker
· 6 years ago
c1c173c
Make sure 'record from another epoch' is displayed for next epoch
by Hanno Becker
· 6 years ago
03e2db6
Implement record checking API
by Hanno Becker
· 6 years ago
21fc61c
Mark ssl_parse_record_header() as `const` in SSL context
by Hanno Becker
· 6 years ago
c360dcc
[API break] Remove mbedtls_ssl_context::in_iv field
by Hanno Becker
· 6 years ago
05413d9
Remove duplicate setting of ssl->in_msgtype and ssl->in_msglen
by Hanno Becker
· 6 years ago
bd70c8e
Move update of in_xxx fields in ssl_get_next_record()
by Hanno Becker
· 6 years ago
bf256cd
Move update of in_xxx fields outside of ssl_prepare_record_content()
by Hanno Becker
· 6 years ago
106f3da
Reduce dependency of ssl_prepare_record_content() on in_xxx fields
by Hanno Becker
· 6 years ago
6837972
Move ssl_update_in_pointers() to after record hdr parsing
by Hanno Becker
· 6 years ago
fc55172
Mark DTLS replay check as `const` on the SSL context
by Hanno Becker
· 6 years ago
6941245
Move updating the internal rec ptrs to outside of rec hdr parsing
by Hanno Becker
· 6 years ago
40478be
Mark ssl_decrypt_buf() as `const in the input SSL context
by Hanno Becker
· 6 years ago
a89610a
Adapt ssl_prepare_record_content() to use SSL record structure
by Hanno Becker
· 6 years ago
9babbf7
Use record length from record structure when fetching content in TLS
by Hanno Becker
· 6 years ago
2720f4c
Use record structure when remembering offset of next record in dgram
by Hanno Becker
· 6 years ago
2528ee0
Use SSL record structure when skipping over unexpected record
by Hanno Becker
· 6 years ago
af5bcfc
Adapt ssl_buffer_future_record() to work with SSL record structure
by Hanno Becker
· 6 years ago
c6e7c57
Setup SSL record structure in ssl_parse_record_header()
by Hanno Becker
· 6 years ago
6c0e53c
Minor documentation improvements in ssl_parse_record_header()
by Hanno Becker
· 6 years ago
e045277
Check for sufficient datagram size in ssl_parse_record_header()
by Hanno Becker
· 6 years ago
a61925f
Don't send an alert when receiving a record of unknown ContentType
by Hanno Becker
· 6 years ago
dc4d627
Don't call ssl_fetch_input for record content fetch in DTLS
by Hanno Becker
· 6 years ago
2982346
Don't call ssl_fetch_input for record hdr size check in DTLS
by Hanno Becker
· 6 years ago
de7d6d3
Move size-check for DTLS record header with CID to DTLS-only branch
by Hanno Becker
· 6 years ago
87b5626
Check same-port-reconnect from client outside of record hdr parsing
by Hanno Becker
· 6 years ago
07d420d
Remove unnecessary backup of explicit IV in AEAD record decryption
by Hanno Becker
· 6 years ago
8244cfa
Remove redundant minimum length check
by Hanno Becker
· 6 years ago
6d3db0f
Improve documentation of mbedtls_ssl_decrypt_buf()
by Hanno Becker
· 6 years ago
9520b31
Remove misleading comment in mbedtls_ssl_decrypt_buf()
by Hanno Becker
· 6 years ago
b603bd3
Remove assertion in mbedtls_ssl_decrypt_buf()
by Hanno Becker
· 6 years ago
f024285
Check architectural bound for max record payload len in one place
by Hanno Becker
· 6 years ago
408a274
Remove redundant length-0 checks for incoming unprotected records
by Hanno Becker
· 6 years ago
1c26845
Remove redundant length check during record header parsing
by Hanno Becker
· 6 years ago
02f2609
Introduce configuration option and API for SSL record checking
by Hanno Becker
· 6 years ago
cdb83e7
Merge pull request #616 from mpg/context-s11n
by Manuel Pégourié-Gonnard
· 6 years ago
69a3e41
Improve reability and debugability of large if
by Manuel Pégourié-Gonnard
· 6 years ago
18332c5
Improve getter for renegotiation enabled
by Manuel Pégourié-Gonnard
· 6 years ago
b3bb31b
Introduce getter function for disable_renego
by Manuel Pégourié-Gonnard
· 6 years ago
14e2a8a
Fix a typo in a comment
by Manuel Pégourié-Gonnard
· 6 years ago
42a6b04
Don't forget about pending alerts after ssl_get_next_record()
by Hanno Becker
· 6 years ago
b82350b
Introduce helper function to send pending fatal alerts
by Hanno Becker
· 6 years ago
c8f5299
Rename pend_alert_msg -> pending_fatal_alert_msg
by Hanno Becker
· 6 years ago
2e8d133
Reintroduce return code checking when sending NoRenego alert
by Hanno Becker
· 6 years ago
3caf718
Remove field to store level of pending alert
by Hanno Becker
· 6 years ago
de62da9
Use separate functions to pend fatal and non-fatal alerts
by Hanno Becker
· 6 years ago
1facd55
Replace xxx_send_alert by xxx_pend_alert to save code
by Hanno Becker
· 6 years ago
f46e1ce
Introduce SSL helper function to mark pending alerts
by Hanno Becker
· 6 years ago
7af7375
Fix MSVC warning
by Manuel Pégourié-Gonnard
· 6 years ago
2cc9223
Fix compile error in reduced configurations
by Manuel Pégourié-Gonnard
· 6 years ago
3b014fc
Merge remote-tracking branch 'origin/pr/604' into baremetal
by Simon Butcher
· 6 years ago
7ce9446
Avoid duplication of session format header
by Manuel Pégourié-Gonnard
· 6 years ago
a7cd483
Implement config-checking header to context s11n
by Manuel Pégourié-Gonnard
· 6 years ago
4c1d06e
Provide serialisation API only if it's enabled
by Manuel Pégourié-Gonnard
· 6 years ago
73a4636
Adapt to hardcoded single version
by Manuel Pégourié-Gonnard
· 6 years ago
2f3fa62
Fix compiler warning: comparing signed to unsigned
by Manuel Pégourié-Gonnard
· 6 years ago
bc847ca
Actually reset the context on save as advertised
by Manuel Pégourié-Gonnard
· 6 years ago
ff22200
Re-use buffer allocated by handshake_init()
by Manuel Pégourié-Gonnard
· 6 years ago
138079d
Add setting of forced fields when deserializing
by Manuel Pégourié-Gonnard
· 6 years ago
16d1485
Add saved fields from top-level structure
by Manuel Pégourié-Gonnard
· 6 years ago
322f3c7
Add transform (de)serialization
by Manuel Pégourié-Gonnard
· 6 years ago
8175816
Fix English in comments
by Manuel Pégourié-Gonnard
· 6 years ago
f1f3e52
Add session saving/loading
by Manuel Pégourié-Gonnard
· 6 years ago
Next »