TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / cb6410c67d95facd80eefd4cbbeefaf04c9eb3ab / library / x509_crt.c
  1. e3c4ee5 Rename mbedtls_platform_memcmp() to mbedtls_platform_memequal() by Piotr Nowicki · 5 years ago
  2. e048b91 Add returning a FAULT_DETECTED error on suspected FI attacks by Piotr Nowicki · 5 years ago
  3. 825ebd4 Merge mbedtls 2.16.6 into baremetal by Andrzej Kurek · 5 years ago
  4. ac6d226 Update signature of mbedtls_platform_random_delay by Arto Kinnunen · 6 years ago
  5. e91f0dc Replace mbedtls_platform_enforce_volatile_reads by Arto Kinnunen · 6 years ago
  6. 9ca11fc Fix issues found by the CI by Manuel Pégourié-Gonnard · 6 years ago
  7. 6bdc680 Initialise variables to failing values by Manuel Pégourié-Gonnard · 6 years ago
  8. 1876192 Fix double-check for bad signature by Manuel Pégourié-Gonnard · 6 years ago
  9. 4c9b556 Add double-check for flags == 0 in crt_verify() by Manuel Pégourié-Gonnard · 6 years ago
  10. ea7eab1 Add redundancy (Hamming distance) to cert flags by Manuel Pégourié-Gonnard · 6 years ago
  11. 81c1fc4 Add double check on bad signature flagging by Manuel Pégourié-Gonnard · 6 years ago
  12. f66657a Use large Hamming distance for signature validity by Manuel Pégourié-Gonnard · 6 years ago
  13. d1e55df Add double check on cert signature verification by Manuel Pégourié-Gonnard · 6 years ago
  14. 91d7938 Changed every memcpy to SCA equivalent mbedtls_platform_memcpy by Teppo Järvelin · 6 years ago
  15. e2bf54d Merge remote-tracking branch 'public/pr/2877' into baremetal by Simon Butcher · 6 years ago
  16. 713e5c3 Merge remote-tracking branch 'public/pr/2880' into baremetal by Simon Butcher · 6 years ago
  17. 54526c3 Use plain memset() for freshly allocated objects by Manuel Pégourié-Gonnard · 6 years ago
  18. 9941933 Use plain memset() in context init functions by Manuel Pégourié-Gonnard · 6 years ago
  19. 7a346b8 Replace memset() with mbedtls_platform_memset() by Manuel Pégourié-Gonnard · 6 years ago
  20. 61f412e Changed every memcmp to SCA equivalent mbedtls_platform_memcmp by Teppo Järvelin · 6 years ago
  21. 85b495b Merge remote-tracking branch 'origin/pr/652' into baremetal by Simon Butcher · 6 years ago
  22. e5a0b36 Merge branch 'baremetal' into baremetal-2.16-20190909 by Manuel Pégourié-Gonnard · 6 years ago
  23. 88b535a Merge remote-tracking branch 'origin/pr/654' into baremetal by Simon Butcher · 6 years ago
  24. 8abd0a0 Merge branch 'mbedtls-2.16' into baremetal-2.16-20190909 by Manuel Pégourié-Gonnard · 6 years ago
  25. 14b0a68 x509_crt.c: Indicate guarding condition in #else branch by Hanno Becker · 6 years ago
  26. 8d6d320 Re-implement verify chain if vrfy cbs are disabled by Hanno Becker · 6 years ago
  27. adc282a Add zero-cost abstraction layer for CRT verification chain by Hanno Becker · 6 years ago
  28. 9ec3fe0 Introduce configuration option to remove CRT verification callbacks by Hanno Becker · 6 years ago
  29. a5cedbc Introduce MD handle type by Hanno Becker · 6 years ago
  30. d82db9d Merge remote-tracking branch 'origin/pr/649' into baremetal by Simon Butcher · 6 years ago
  31. f69e641 Changed x509_internal.h methods as static. by Teppo Järvelin · 6 years ago
  32. c3e5716 Some minor struct optimizations. by Teppo Järvelin · 6 years ago
  33. 59e7b08 TinyCrypt X.509: Adapt profiles to use TinyCrypt curve identifier by Hanno Becker · 6 years ago
  34. d931ad2 Implement x509_profile_check_key() for TinyCrypt-based PK context by Hanno Becker · 6 years ago
  35. ffaba55 Changed x509.c to be one single compilation unit for all x509 files. by Teppo Järvelin · 6 years ago
  36. 3fc6f9d Fix uninitialized variable in x509_crt by Andy Gross · 7 years ago
  37. 4009d8f Make function mbedtls_ssl_set_hostname(...) as optional by Teppo Järvelin · 6 years ago
  38. f1358ac Fix bug in MBEDTLS_X509_CRT_REMOVE_TIME by Manuel Pégourié-Gonnard · 6 years ago
  39. 0d1db20 Fix bug in skip_date() (MBEDTLS_X509_CRT_REMOVE_TIME) by Manuel Pégourié-Gonnard · 6 years ago
  40. d07614c Introduce MBEDTLS_X509_CRT_REMOVE_SUBJECT_ISSUER_ID removing IDs by Hanno Becker · 6 years ago
  41. 843b71a Introduce MBEDTLS_X509_CRT_REMOVE_TIME removing time fields from CRT by Hanno Becker · 6 years ago
  42. 6f61b7b Remove 'CRT fallback' during X.509 CRT verification if !TIME_DATE by Hanno Becker · 6 years ago
  43. de8869c Merge remote-tracking branch 'restricted/pr/608' into baremetal-proposed by Manuel Pégourié-Gonnard · 6 years ago
  44. 3aa1216 Add comment about X.509 name comparison of buffer with itself by Hanno Becker · 6 years ago
  45. 410322f Fix guard controlling whether nested acquire calls are allowed by Hanno Becker · 6 years ago
  46. abd929c Merge branch 'mbedtls-2.16' into baremetal-2.16-01_07_19 by Hanno Becker · 6 years ago
  47. fc99a09 Don't allow nested CRT acquire()-calls if MBEDTLS_X509_ALWAYS_FLUSH by Hanno Becker · 6 years ago
  48. a4bfaa8 Make X.509 CRT cache reference counting unconditional by Hanno Becker · 6 years ago
  49. ed05888 x509_crt.c: Add blank line to increase readability by Hanno Becker · 6 years ago
  50. 08d3412 Move signature-info extraction out of MBEDTLS_X509_REMOVE_INFO by Hanno Becker · 6 years ago
  51. 040c564 Fix certificate validity checking logic to work with !TIME_DATE by Hanno Becker · 6 years ago
  52. 97aa436 Simplify X.509 CRT version check in UID parsing by Hanno Becker · 6 years ago
  53. e908412 Simplify logic for issuer/subject ID parsing by Hanno Becker · 6 years ago
  54. fd64f14 Remove redundant CRT version check during CRT parsing by Hanno Becker · 6 years ago
  55. b36a245 Add comment to #endif indicating which condition was guarded by Hanno Becker · 6 years ago
  56. 484caf0 Consistently use (type *) instead of (type*) for pointer conversion by Hanno Becker · 6 years ago
  57. 2ba9fbd Allow multiple concurrent readers for X.509 CRT frame and PK context by Hanno Becker · 6 years ago
  58. 5f268b3 Don't allow change of CRT frame returned by x509_crt_frame_acquire() by Hanno Becker · 6 years ago
  59. 1250623 Mark CRT frame argument to mbedtls_x509_xxx_from_frame() constant by Hanno Becker · 6 years ago
  60. fd5c185 Use uint16_t to store key usage field in X.509 CRT by Hanno Becker · 6 years ago
  61. 54f1c2c Rename MBEDTLS_X509_SAFE_SNPRINTF_WITH_ERROR to _WITH_CLEANUP by Hanno Becker · 6 years ago
  62. 7b8e11e Avoid allocating empty buffers when handling length-0 CRTs by Hanno Becker · 6 years ago
  63. 529f25d Don't use mbedtls_asn1_get_sequence_of() in x509_crt.c by Hanno Becker · 6 years ago
  64. 15b73b4 Correct placement of comment on X.509 SAN parsing by Hanno Becker · 6 years ago
  65. f6bc888 Move declarations of internal X.509 functions to separate header by Hanno Becker · 6 years ago
  66. 7642835 Move existence check for pk/frame to mbedtls_x509_crt_provide_xxx() by Hanno Becker · 6 years ago
  67. bc68519 Implement MBEDTLS_X509_ALWAYS_FLUSH by Hanno Becker · 6 years ago
  68. c6d1c3e Remove frame/pk parameter from mbedtls_x509_crt_xxx_release() by Hanno Becker · 6 years ago
  69. 38f0cb4 Introduce helpers for conversion between X.509 buffer structs by Hanno Becker · 6 years ago
  70. 1e11f21 Solely use raw X.509 name data references including SEQUENCE header by Hanno Becker · 6 years ago
  71. 4e021c8 Remove raw SubjectAltNames and ExtKeyUsage from legacy CRT struct by Hanno Becker · 6 years ago
  72. ea32d8b Provide direct way of setting up a CRT frame from legacy CRT struct by Hanno Becker · 6 years ago
  73. 5226c53 Modify mbedtls_x509_crt_info() to use getter API by Hanno Becker · 6 years ago
  74. 7a4de9c Flush CRT cache after parsing by Hanno Becker · 6 years ago
  75. 2bcc764 Give x509_{sequence|name}_free() external linkage by Hanno Becker · 6 years ago
  76. ab6c8ea Add public API to query SubjectAltNames and ExtKeyUsage extensions by Hanno Becker · 6 years ago
  77. 63e6998 Add public API to query subject and issuer from CRT by Hanno Becker · 6 years ago
  78. 823efad Add public API to query for CRT frame and PK by Hanno Becker · 6 years ago
  79. 180f7bf Add compile-time option to remove legacy CRT fields by Hanno Becker · 6 years ago
  80. b6c39fc Add parsing cache to `mbedtls_x509_crt` by Hanno Becker · 6 years ago
  81. 8723336 Make use of CRT acquire/release in x509_crt_verify_restartable by Hanno Becker · 6 years ago
  82. 082435c Make use of CRT acquire/release in x509_crt_verify_name() by Hanno Becker · 6 years ago
  83. 58c3564 Make use of CRT acquire/release in CRT chain verification #2 by Hanno Becker · 6 years ago
  84. bb26613 Make use of CRT acquire/release in x509_crt_verifycrl() by Hanno Becker · 6 years ago
  85. 79ae5b6 Make use of CRT acquire/release in x509_serial_is_revoked() by Hanno Becker · 6 years ago
  86. e9718b4 Make use of CRT acquire/release in ExtKeyUsage checking by Hanno Becker · 6 years ago
  87. 371e0e4 Determine whether CRT is initialized or not through raw data pointer by Hanno Becker · 6 years ago
  88. 4f869ed Make use of CRT acquire/release in mbedtls_x509_crt_info() by Hanno Becker · 6 years ago
  89. 45eedf1 Make use of CRT acquire/release in mbedtls_x509_crt_check_key_usage by Hanno Becker · 6 years ago
  90. 43bf900 Make use of CRT acquire/release searching for issuer in CRT verif. by Hanno Becker · 6 years ago
  91. e449e2d Make use of CRT acquire/release for X.509 CRT signature checking by Hanno Becker · 6 years ago
  92. 5299cf8 Add structure holding X.509 CRT signature information by Hanno Becker · 6 years ago
  93. a788cab Check validity of potential parent before checking signature by Hanno Becker · 6 years ago
  94. 1e0677a Make use of CRT acquire/release for child in CRT chain verification by Hanno Becker · 6 years ago
  95. 337088a Add internal API for acquire/release of CRT frames and PKs by Hanno Becker · 6 years ago
  96. 21f5567 Introduce X.509 CRT frame structure by Hanno Becker · 6 years ago
  97. 6b37812 Add `next_merged` field to X.509 name comparison abort callback by Hanno Becker · 6 years ago
  98. 10e6b9b Move point of re-entry for restartable X.509 verification by Hanno Becker · 6 years ago
  99. c84fd1c Check whether CRT is revoked by passing its serial number only by Hanno Becker · 6 years ago
  100. b3def1d Move length check into mbedtls_x509_memcasecmp() by Hanno Becker · 6 years ago