TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / c047c74b95b25e79f0638b51cadde192d521b910 / include / polarssl / ssl.h
  1. 13ca895 Added max length checking of hostname by Simon Butcher · 10 years ago
  2. 3517c20 Up default server DH params to 2048 bits by Manuel Pégourié-Gonnard · 10 years ago
  3. 5324d41 Up min size of DHM params to 1024 bits by Manuel Pégourié-Gonnard · 10 years ago
  4. 530927b Update copyright line to 2015 by Paul Bakker · 10 years ago
  5. e12abf9 Fix url by Manuel Pégourié-Gonnard · 11 years ago
  6. 0edee5e Update copyright notice by Manuel Pégourié-Gonnard · 11 years ago
  7. 7bf9f7e Fix documentation issues found by Clang by Manuel Pégourié-Gonnard · 11 years ago
  8. 8a56d30 Update doc of ssl_set_authmode() by Manuel Pégourié-Gonnard · 11 years ago
  9. be04673 Forbid sequence number wrapping by Manuel Pégourié-Gonnard · 11 years ago
  10. a1caf6e SSL now gracefully handles missing RNG by Paul Bakker · 12 years ago
  11. 5c8434c Safer buffer comparisons in the SSL modules by Manuel Pégourié-Gonnard · 12 years ago
  12. 915ee19 Do not allow SHA256/SHA384 ciphersuites in < TLS 1.2 by Paul Bakker · 12 years ago
  13. 43f9799 RSA blinding on CRT operations to counter timing attacks by Paul Bakker · 12 years ago
  14. 6fa5488 Centralized module option values in config.h by Paul Bakker · 12 years ago
  15. f4a84b1 Added default value comment for ssl_set_ciphersuites*() by Paul Bakker · 12 years ago
  16. a627298 Ability to specify allowed ciphersuites based on the protocol version. by Paul Bakker · 12 years ago
  17. 1961b70 Added ssl_handshake_step() to allow single stepping the handshake process by Paul Bakker · 13 years ago
  18. 926af75 Fixed client certificate handling with TLS 1.2 by Paul Bakker · 13 years ago
  19. e667c98 Added p_hw_data to ssl_context for context specific hardware acceleration data by Paul Bakker · 13 years ago
  20. 1f9d02d Added more notes / comments on own_cert, trust_ca purposes by Paul Bakker · 13 years ago
  21. 6831c4a - Fixed typos by Paul Bakker · 13 years ago
  22. 7c90078 - Default to disabled renegotiation by Paul Bakker · 13 years ago
  23. 7a2538e - Fixes for MSVC6 by Paul Bakker · 13 years ago
  24. 645ce3a - Moved ciphersuite naming scheme to IANA reserved names by Paul Bakker · 13 years ago
  25. b0550d9 - Added ssl_get_peer_cert() to SSL API by Paul Bakker · 13 years ago
  26. df2bb75 - Premaster should have a maximum of MPI size by Paul Bakker · 13 years ago
  27. 09f097d - Added more documentation on disable / enable renegotiation by Paul Bakker · 13 years ago
  28. 0f5281a - Enlarged buffer to fit gcm_context on all platforms by Paul Bakker · 13 years ago
  29. 5c2364c - Moved from unsigned long to uint32_t throughout code by Paul Bakker · 13 years ago
  30. 6adff74 - Fixed typo by Paul Bakker · 13 years ago
  31. 23f3680 - Added proper support for TLS 1.2 signature_algorithm extension on server by Paul Bakker · 13 years ago
  32. 1d29fb5 - Added option to add minimum accepted SSL/TLS protocol version by Paul Bakker · 13 years ago
  33. 62f2dee - Set POLARSSL_DHM_RFC5114_MODP_1024_[PG] as default DHM MODP group for SSL/TLS by Paul Bakker · 13 years ago
  34. 915275b - Revamped x509_verify() and the SSL f_vrfy callback implementations by Paul Bakker · 13 years ago
  35. 5701cdc - Added ServerName extension parsing (SNI) at server side by Paul Bakker · 13 years ago
  36. eb2c658 - Generalized external private key implementation handling (like PKCS#11) in SSL/TLS by Paul Bakker · 13 years ago
  37. 0a59707 - Added simple SSL session cache implementation by Paul Bakker · 13 years ago
  38. d0f6fa7 - Sending of handshake_failures during renegotiation added by Paul Bakker · 13 years ago
  39. 48916f9 - Added Secure Renegotiation (RFC 5746) by Paul Bakker · 13 years ago
  40. b68cad6 - Made cipersuites in ssl context const (no intention to modify) by Paul Bakker · 13 years ago
  41. 2770fbd - Added DEFLATE compression support as per RFC3749 (requires zlib) by Paul Bakker · 13 years ago
  42. 186751d - Moved out_msg to out_hdr + 32 to support hardware acceleration by Paul Bakker · 13 years ago
  43. 05ef835 - Added support for Hardware Acceleration hooking in SSL/TLS by Paul Bakker · 13 years ago
  44. 380da53 - Abstracted checksum updating during handshake by Paul Bakker · 13 years ago
  45. ca4ab49 - Added GCM ciphersuites to TLS implementation by Paul Bakker · 13 years ago
  46. 0a92518 - Report unexpected_message if unknown record type is received by Paul Bakker · 13 years ago
  47. 10cd225 - Added support for the SHA256 ciphersuites of AES and Camellia by Paul Bakker · 13 years ago
  48. c3f177a - Added client side support for signature_algorithm extension and affiliated handling by Paul Bakker · 13 years ago
  49. 1ef83d6 - Initial bare version of TLS 1.2 by Paul Bakker · 13 years ago
  50. e93dfa7 - Added hex documentation for alerts by Paul Bakker · 13 years ago
  51. fab5c82 - Added support for NULL cipher (POLARSSL_CIPHER_NULL_CIPHER) and weak ciphersuites (POLARSSL_ENABLE_WEAK_CIPHERSUITES). They are disabled by default! by Paul Bakker · 13 years ago
  52. b15b851 - Check for failed malloc() in ssl_set_hostname() and x509_get_entries() (Closes ticket #47, found by Hugo Leisink) by Paul Bakker · 14 years ago
  53. 69e095c - Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. by Paul Bakker · 14 years ago
  54. a3d195c - Changed the used random function pointer to more flexible format. Renamed havege_rand() to havege_random() to prevent mistakes. Lots of changes as a consequence in library code and programs by Paul Bakker · 14 years ago
  55. 490ecc8 - Added ssl_set_max_version() to set the client's maximum sent version number by Paul Bakker · 14 years ago
  56. 7eb013f - Added ssl_session_reset() to allow re-use of already set non-connection specific context information by Paul Bakker · 14 years ago
  57. 314052f - Removed extraneous "polarssl/" in front on include directives in header files by Paul Bakker · 14 years ago
  58. 09b1ec6 - Adapted define for inline to be more solid by Paul Bakker · 14 years ago
  59. 74fb74e - Updated ARMCC_VERSION to __ARMCC_VERSION by Paul Bakker · 14 years ago
  60. 569df2c - Fixed inline definition for ARM systems by Paul Bakker · 14 years ago
  61. 39bb418 - Made second argument of f_send() prototype and of net_send() const by Paul Bakker · 14 years ago
  62. 831a755 - Changed behaviour of net_recv(), ssl_fetch_input() and ssl_read(). net_recv() now returns 0 on EOF instead of POLARSSL_ERR_NET_CONN_RESET. ssl_fetch_input() returns POLARSSL_ERR_SSL_CONN_EOF on an EOF from its f_recv() function. ssl_read() returns 0 if a POLARSSL_ERR_SSL_CONN_EOF is received after the handshake. by Paul Bakker · 14 years ago
  63. 9d78140 - A error_strerror function() has been added to translate between error codes and their description. by Paul Bakker · 14 years ago
  64. 23986e5 - Major type rewrite of int to size_t for most variables and arguments used for buffer lengths and loops by Paul Bakker · 14 years ago
  65. af5c85f - Improved portability with Microsoft Visual C by Paul Bakker · 14 years ago
  66. fbc4a45 - Fixed typo in define by Paul Bakker · 14 years ago
  67. e3166ce - Renamed ciphers member of ssl_context and cipher member of ssl_session to ciphersuites and ciphersuite respectively. This clarifies the difference with the generic cipher layer and is better naming altogether by Paul Bakker · 15 years ago
  68. 43b7e35 - Support for PKCS#11 through the use of the pkcs11-helper library by Paul Bakker · 15 years ago
  69. 72f6266 - Improved information provided about current Hashing, Cipher and Suite capabilities by Paul Bakker · 15 years ago
  70. 43ca69c - Added function for stringified SSL/TLS version by Paul Bakker · 15 years ago
  71. b63b0af - Added verification callback in certificate verification chain in order to allow external blacklisting by Paul Bakker · 15 years ago
  72. 1b57b06 - Added reading of DHM context from memory and file by Paul Bakker · 15 years ago
  73. 37ca75d - Added Doxygen source code documentation parts (donated by Fox-IT) by Paul Bakker · 15 years ago
  74. 2e11f7d - Added support for TLS v1.1 by Paul Bakker · 15 years ago
  75. b96f154 - Fixed copyright message by Paul Bakker · 15 years ago
  76. 84f12b7 - Updated Copyright to correct entity by Paul Bakker · 15 years ago
  77. 77a4358 - Added support for the SSL_EDH_RSA_AES_128_SHA and SSL_EDH_RSA_CAMELLIA_128_SHA ciphersuites by Paul Bakker · 15 years ago
  78. 57b7914 - String peer_cn in ssl context made const as well. by Paul Bakker · 15 years ago
  79. fc8c436 - Updated copyright line to 2010 by Paul Bakker · 15 years ago
  80. 1f3c39c - Removed copyright line for Christophe Devine for clarity by Paul Bakker · 15 years ago
  81. ff60ee6 - Added const-correctness to main codebase by Paul Bakker · 15 years ago
  82. 3391b12 - Fixed error codes. Negative when needed (SSL error codes). Non-negative if error-codes are OR'ed to other error codes (ASN1, Base64, MPI, DHM). The rest is negative by default. by Paul Bakker · 16 years ago
  83. 77b385e - Updated copyright messages on all relevant files by Paul Bakker · 16 years ago
  84. 13e2dfe - Cleaned up header documentation by Paul Bakker · 16 years ago
  85. b5bf176 - Major change: Errors are now positive numbers instead of negative. by Paul Bakker · 16 years ago
  86. 40ea7de - Added CRL revocation support to x509parse_verify() by Paul Bakker · 16 years ago
  87. 785a9ee - Added email address to header license information by Paul Bakker · 17 years ago
  88. b5ef0ba - Added SSL_RSA_CAMELLIA_128_SHA, SSL_RSA_CAMELLIA_256_SHA, SSL_EDH_RSA_CAMELLIA_256_SHA ciphersuites to SSL by Paul Bakker · 17 years ago
  89. e0ccd0a - Updated Copyright notices by Paul Bakker · 17 years ago
  90. 40e4694 - First replacement of xyssl by polarssl where needed by Paul Bakker · 17 years ago
  91. 8e831ed by Paul Bakker · 17 years ago
  92. 5121ce5 - Renamed include directory to polarssl by Paul Bakker · 17 years ago