TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / ada856fab4c5db018b032f5ef0832d011aad5d2a / library / ssl_tls.c
  1. 3339fe9 Merge remote-tracking branch 'restricted/pr/495' into mbedtls-2.1 by Simon Butcher · 7 years ago
  2. 642ddb5 Merge remote-tracking branch 'public/pr/1864' into mbedtls-2.1 by Simon Butcher · 7 years ago
  3. eebee76 Merge remote-tracking branch 'public/pr/1846' into mbedtls-2.1 by Simon Butcher · 7 years ago
  4. fd1c5e8 Check for invalid short Alert messages by Angus Gratton · 7 years ago
  5. 485b393 TLSv1.2: Treat zero-length fragments as invalid, unless they are application data by Angus Gratton · 7 years ago
  6. 1226dd7 CBC mode: Allow zero-length message fragments (100% padding) by Angus Gratton · 7 years ago
  7. 671f932 Avoid debug message that might leak length by Manuel Pégourié-Gonnard · 7 years ago
  8. 99b6a71 Add counter-measure to cache-based Lucky 13 by Manuel Pégourié-Gonnard · 7 years ago
  9. bbc7918 Fixes different off by ones by Philippe Antoine · 7 years ago
  10. 8ba6ff5 about a issue Replace "new" variable #1782 by niisato · 7 years ago
  11. e5828ce Merge remote-tracking branch 'public/pr/1771' into mbedtls-2.1 by Simon Butcher · 7 years ago
  12. ad761c4 Fix multiple quality issues in the source by Simon Butcher · 7 years ago
  13. b999a73 Document ssl_write_real() behaviour in detail by Andres Amaya Garcia · 8 years ago
  14. e8dd77b Fix Lucky13 attack protection when using HMAC-SHA-384 by Gilles Peskine · 7 years ago
  15. 078014a Change variable bytes_written to header_bytes in record decompression by Andrzej Kurek · 7 years ago archive/iotssl-1401-record-compression-2.1 iotssl-1401-record-compression-2.1
  16. bb66614 ssl_tls: Fix invalid buffer sizes during compression / decompression by Andrzej Kurek · 7 years ago
  17. ac9939c Merge remote-tracking branch 'upstream-public/pr/1461' into mbedtls-2.1-proposed by Jaeden Amero · 7 years ago
  18. ee6c822 Merge remote-tracking branch 'upstream-public/pr/1396' into mbedtls-2.1-proposed by Jaeden Amero · 7 years ago
  19. ad2908c Fix compatibility problem in the printed message by mohammad1603 · 7 years ago
  20. f72e51f Check whether INT_MAX larger than SIZE_MAX scenario by mohammad1603 · 7 years ago
  21. cee0890 Verify that f_send and f_recv send and receive the expected length by mohammad1603 · 7 years ago
  22. 823734b Robustness fix in mbedtls_ssl_derive_keys by Gilles Peskine · 7 years ago
  23. 89c12ec Avoid wraparound on in_left by mohammad1603 · 7 years ago
  24. 9a00ef3 Merge branch 'pr_953' into HEAD by Gilles Peskine · 7 years ago
  25. 25ec9cc Merge branch 'prr_428' into mbedtls-2.1-proposed by Gilles Peskine · 7 years ago
  26. f65add4 Backport 2.1:Add guard to out_left to avoid negative values by mohammad1603 · 7 years ago
  27. bfafd12 Merge remote-tracking branch 'upstream-restricted/pr/414' into mbedtls-2.1-restricted by Jaeden Amero · 8 years ago
  28. 1ac9aa7 Set correct minimal versions in default conf by Ron Eldor · 8 years ago
  29. c83f57b Merge remote-tracking branch 'upstream-restricted/pr/434' into mbedtls-2.1-restricted by Gilles Peskine · 8 years ago
  30. 451ea75 Merge remote-tracking branch 'restricted/pr/412' into mbedtls-2.1-restricted by Manuel Pégourié-Gonnard · 8 years ago
  31. 4b133e6 Fix magic constant in previous commit by Manuel Pégourié-Gonnard · 8 years ago
  32. b67a5c1 Fix SSLv3 MAC computation by Manuel Pégourié-Gonnard · 8 years ago
  33. aed7188 Merge remote-tracking branch 'upstream-restricted/pr/427' into mbedtls-2.1-restricted by Gilles Peskine · 8 years ago
  34. adb30b9 Improve documentation of MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT option by Hanno Becker · 8 years ago
  35. 053b345 Add fallback to non-compliant truncated HMAC for compatibiltiy by Hanno Becker · 8 years ago
  36. 64f0aed Don't truncate MAC key when truncated HMAC is negotiated by Hanno Becker · 8 years ago
  37. 6cf85ff Merge branch 'mbedtls-2.1' into mbedtls-2.1-restricted by Gilles Peskine · 8 years ago
  38. 49349ba Merge remote-tracking branch 'upstream-public/pr/1153' into mbedtls-2.1 by Gilles Peskine · 8 years ago
  39. 336b7de Merge remote-tracking branch 'upstream-restricted/pr/386' into mbedtls-2.1-restricted by Gilles Peskine · 8 years ago
  40. 7aa2419 Merge remote-tracking branch 'upstream-public/pr/1107' into mbedtls-2.1 by Gilles Peskine · 8 years ago
  41. ce516ff Fix heap corruption in ssl_decrypt_buf by Hanno Becker · 8 years ago
  42. ea0aa65 Merge branch 'mbedtls-2.1' into mbedtls-2.1-restricted by Manuel Pégourié-Gonnard · 8 years ago
  43. 3cd07be Fix handling of HS msgs in mbedtls_ssl_read if renegotiation unused by Hanno Becker · 8 years ago
  44. e454d73 Swap branches accepting/refusing renegotiation in in ssl_read by Hanno Becker · 8 years ago
  45. a360411 Fixed SIGSEGV problem when writing with ssl_write_real a buffer that is over MBEDTLS_SSL_MAX_CONTENT_LEN bytes by Florin · 8 years ago
  46. e298c8b Correct typo by Hanno Becker · 8 years ago
  47. 80e0d46 Use 2048-bit DHE parameters from RFC 3526 instead of 5114 by default by Hanno Becker · 8 years ago
  48. 6e052b0 Improve debugging output by Hanno Becker · 8 years ago
  49. 0983dc4 Add run-time check for handshake message size in ssl_write_record by Hanno Becker · 8 years ago
  50. aede183 Add run-time check for record content size in ssl_encrypt_buf by Hanno Becker · 8 years ago
  51. c7845e5 Enhance documentation of ssl_write_hostname_ext, adapt ChangeLog. by Hanno Becker · 8 years ago
  52. 593b0d3 Make mbedtls_ssl_set_hostname safe to be called multiple times by Hanno Becker · 8 years ago
  53. 1042d86 Dont send alert on invalid DTLS record type by Andres Amaya Garcia · 8 years ago
  54. 3d23146 Set len var to 0 when buf is freed in ssl_tls.c by Andres Amaya Garcia · 8 years ago
  55. 1b7d6f8 Zeroize old psk buf when changing value in ssl_tls by Andres Amaya Garcia · 8 years ago
  56. cc01908 Ensure application data records are not kept when fully processed by Hanno Becker · 8 years ago
  57. bfbc494 Add hard assertion to mbedtls_ssl_read_record_layer by Hanno Becker · 8 years ago
  58. 6a582e8 Fix mbedtls_ssl_read by Hanno Becker · 8 years ago
  59. 704f493 Simplify retaining of messages for future processing by Hanno Becker · 8 years ago
  60. 61c0c70 Add tests for missing CA chains and bad curves. by Hanno Becker · 8 years ago
  61. a3929ba Fix implementation of VERIFY_OPTIONAL verification mode by Hanno Becker · 8 years ago
  62. 7344e1b SHA-1 deprecation: allow it in key exchange by Gilles Peskine · 8 years ago
  63. 955738a Remove SHA-1 in TLS by default by Gilles Peskine · 8 years ago
  64. aa8a2bd Remember suitable hash function for any signature algorithm. by Hanno Becker · 8 years ago
  65. 7fa66d4 Fix renegotiation at incorrect times in DTLS by Andres AG · 9 years ago
  66. e7f8dc3 Clarify Comments and Fix Typos (#651) by Brian J Murray · 9 years ago
  67. 0be55a0 Remove MBEDTLS_SSL_AEAD_RANDOM_IV feature by Janos Follath · 9 years ago
  68. c941b6c Fix for unused variable warning by Simon Butcher · 10 years ago
  69. aa41149 Merge 'iotssl-558-2.1-md5-tls-sigs-restricted' by Simon Butcher · 10 years ago
  70. e103aa8 Added description of change to the Changelog by Simon Butcher · 10 years ago
  71. b39528e Disable MD5 in handshake signatures by default by Manuel Pégourié-Gonnard · 10 years ago
  72. 013198f DTLS: avoid dropping too many records by Manuel Pégourié-Gonnard · 10 years ago
  73. c282405 Fix other int casts in bounds checking by Manuel Pégourié-Gonnard · 10 years ago
  74. ffb8180 Fix potential double-free in ssl_conf_psk() by Manuel Pégourié-Gonnard · 10 years ago
  75. 94c5e3c Fixed typo in comment by Simon Butcher · 10 years ago
  76. a314076 Fix handling of non-fatal alerts by Manuel Pégourié-Gonnard · 10 years ago
  77. f9945bc Fix #ifdef inconsistency by Manuel Pégourié-Gonnard · 10 years ago
  78. 770f453 Remove useless code by Manuel Pégourié-Gonnard · 10 years ago
  79. fec73a8 Merge of fix for IOTSSL-481 - Double free by Simon Butcher · 10 years ago
  80. 5b8d1d6 Fix for IOTSSL-473 Double free error by Simon Butcher · 10 years ago
  81. ef388f1 Merge branch 'development' into development-restricted by Manuel Pégourié-Gonnard · 10 years ago
  82. 9f81231 Revised hostname length check from review by Simon Butcher · 10 years ago
  83. 24417f0 Fix potential double-free in mbedtls_ssl_conf_psk() by Manuel Pégourié-Gonnard · 10 years ago
  84. 89f7762 Added max length checking of hostname by Simon Butcher · 10 years ago
  85. 588ad50 Fix a fairly common typo in comments by Tillmann Karras · 10 years ago
  86. 5793e7e Merge 'development' into iotssl-411-port-reuse by Simon Butcher · 10 years ago
  87. ea5370d Don't allow reconnect during handshake by Manuel Pégourié-Gonnard · 10 years ago
  88. d0bf6a3 Update ssl_tls.c by Simon Butcher · 10 years ago
  89. 74ca8d0 Update ssl_tls.c by Simon Butcher · 10 years ago
  90. 0789aed Update ssl_tls.c by Simon Butcher · 10 years ago
  91. ddfe5d2 Tune dependencies by Manuel Pégourié-Gonnard · 10 years ago
  92. 2ed05a0 Fix typos by Manuel Pégourié-Gonnard · 10 years ago
  93. 62c74bb Stop wasting resources by Manuel Pégourié-Gonnard · 10 years ago
  94. 2088e2e fix const-ness of argument to mbedtls_ssl_conf_cert_profile by Nicholas Wilson · 10 years ago
  95. 3f09b6d Fix API by Manuel Pégourié-Gonnard · 10 years ago
  96. be619c1 Clean up error codes by Manuel Pégourié-Gonnard · 10 years ago
  97. 11331fc First working dirty version by Manuel Pégourié-Gonnard · 10 years ago
  98. 9650205 Start detecting epoch 0 ClientHellos by Manuel Pégourié-Gonnard · 10 years ago
  99. 37ff140 Change main license to Apache 2.0 by Manuel Pégourié-Gonnard · 10 years ago
  100. ed51594 Merge pull request #265 from ARMmbed/iotssl-460-bugfixes by Simon Butcher · 10 years ago