TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / d73b47fe2eef8de421f341a655cc29dfce404e74 / library / ssl_tls.c
  1. d73b47f Move compress_buf allocation to derive_keys by Manuel Pégourié-Gonnard · 6 years ago
  2. 040a951 Move handling of randbytes to derive_keys() by Manuel Pégourié-Gonnard · 6 years ago
  3. de718b9 Make calc_verify() return the length as well by Manuel Pégourié-Gonnard · 6 years ago
  4. 0d56aaa Constify ssl_context param of calc_verify() by Manuel Pégourié-Gonnard · 6 years ago
  5. de047ad Improve signature of ssl_compute_master() by Manuel Pégourié-Gonnard · 6 years ago
  6. 85680c4 Reduce indentation in ssl_compute_master() by Manuel Pégourié-Gonnard · 6 years ago
  7. 9951b71 Start extracting ssl_compute_master() by Manuel Pégourié-Gonnard · 6 years ago
  8. 8d2805c Fix signature of ssl_set_transform_prfs() by Manuel Pégourié-Gonnard · 6 years ago
  9. 1b00c4f Start extraction ssl_set_handshake_prfs() by Manuel Pégourié-Gonnard · 6 years ago
  10. e59ae23 Start splitting populate_transform() out of derive_keys() by Manuel Pégourié-Gonnard · 6 years ago
  11. beec142 Merge remote-tracking branch 'origin/pr/2790' into development by Jaeden Amero · 6 years ago
  12. 9a09f51 Merge remote-tracking branch 'origin/pr/2781' into development by Jaeden Amero · 6 years ago
  13. da6ac01 Rename local variables by Janos Follath · 6 years ago
  14. 1239d70 Remove calls to psa_allocate_key by Janos Follath · 6 years ago
  15. 53b8ec2 Make variable naming consistent by Janos Follath · 6 years ago
  16. ed73b04 Update psa_import_key to PSA 1.0 by Janos Follath · 6 years ago
  17. bd09610 Update psa_generator_abort to PSA 1.0 by Janos Follath · 6 years ago
  18. 6de99db Update psa_generator_read to PSA 1.0 by Janos Follath · 6 years ago
  19. 8dee877 Update psa_crypto_generator_t to PSA 1.0 by Janos Follath · 6 years ago
  20. 7374ee6 Update GENERATOR_INIT macro to PSA 1.0 by Janos Follath · 6 years ago
  21. 922013e tls: Remove duplicate psa_util.h include by Jaeden Amero · 6 years ago
  22. 7e821b5 Fix possibly-lossy conversion warning from MSVC by Manuel Pégourié-Gonnard · 6 years ago
  23. d417cc9 Reintroduce length 0 check for records by Hanno Becker · 6 years ago
  24. d0b66d0 Don't use memcpy() for 2-byte copy operation by Hanno Becker · 6 years ago
  25. 9eca276 Remove integer parsing macro by Hanno Becker · 6 years ago
  26. f546625 Fix alignment in record header parsing routine by Hanno Becker · 6 years ago
  27. 552f747 Make sure 'record from another epoch' is displayed for next epoch by Hanno Becker · 6 years ago
  28. 5422981 Implement record checking API by Hanno Becker · 6 years ago
  29. 331de3d Mark ssl_parse_record_header() as `const` in SSL context by Hanno Becker · 6 years ago
  30. b0fe0ee Remove duplicate setting of ssl->in_msgtype and ssl->in_msglen by Hanno Becker · 6 years ago
  31. 44d89b2 Move update of in_xxx fields in ssl_get_next_record() by Hanno Becker · 6 years ago
  32. 8685c82 Move update of in_xxx fields outside of ssl_prepare_record_content() by Hanno Becker · 6 years ago
  33. 58ef0bf Reduce dependency of ssl_prepare_record_content() on in_xxx fields by Hanno Becker · 6 years ago
  34. d8bf8ce Move ssl_update_in_pointers() to after record hdr parsing by Hanno Becker · 6 years ago
  35. 0183d69 Mark DTLS replay check as `const` on the SSL context by Hanno Becker · 6 years ago
  36. 7ae20e0 Move updating the internal rec ptrs to outside of rec hdr parsing by Hanno Becker · 6 years ago
  37. 605949f Mark ssl_decrypt_buf() as `const in the input SSL context by Hanno Becker · 6 years ago
  38. fdf6604 Adapt ssl_prepare_record_content() to use SSL record structure by Hanno Becker · 6 years ago
  39. a317566 Use record length from record structure when fetching content in TLS by Hanno Becker · 6 years ago
  40. f50da50 Use record structure when remembering offset of next record in dgram by Hanno Becker · 6 years ago
  41. 4acada3 Use SSL record structure when skipping over unexpected record by Hanno Becker · 6 years ago
  42. 519f15d Adapt ssl_buffer_future_record() to work with SSL record structure by Hanno Becker · 6 years ago
  43. e5e7e78 Setup SSL record structure in ssl_parse_record_header() by Hanno Becker · 6 years ago
  44. 37cfe73 Minor documentation improvements in ssl_parse_record_header() by Hanno Becker · 6 years ago
  45. 955a5c9 Check for sufficient datagram size in ssl_parse_record_header() by Hanno Becker · 6 years ago
  46. d5c0f82 Don't send an alert when receiving a record of unknown ContentType by Hanno Becker · 6 years ago
  47. a881479 Don't call ssl_fetch_input for record content fetch in DTLS by Hanno Becker · 6 years ago
  48. 59be60e Don't call ssl_fetch_input for record hdr size check in DTLS by Hanno Becker · 6 years ago
  49. e538d82 Move size-check for DTLS record header with CID to DTLS-only branch by Hanno Becker · 6 years ago
  50. 2fddd37 Check same-port-reconnect from client outside of record hdr parsing by Hanno Becker · 6 years ago
  51. 4894873 Remove redundant minimum length check by Hanno Becker · 6 years ago
  52. 2001665 Remove unnecessary backup of explicit IV in AEAD record decryption by Hanno Becker · 6 years ago
  53. d96a652 Improve documentation of mbedtls_ssl_decrypt_buf() by Hanno Becker · 6 years ago
  54. c957e3b Remove redundant length check during record header parsing by Hanno Becker · 6 years ago
  55. e2b786d Remove misleading comment in mbedtls_ssl_decrypt_buf() by Hanno Becker · 6 years ago
  56. 47ebaa2 Remove assertion in mbedtls_ssl_decrypt_buf() by Hanno Becker · 6 years ago
  57. d96e10b Check architectural bound for max record payload len in one place by Hanno Becker · 6 years ago
  58. 3be264e Remove redundant length-0 checks for incoming unprotected records by Hanno Becker · 6 years ago
  59. cfe4579 Introduce configuration option and API for SSL record checking by Hanno Becker · 6 years ago
  60. d431104 ssl_tls: Enable Suite B with subset of ECP curves by Jaeden Amero · 6 years ago
  61. 2de07f1 ssl: Don't access non-existent encrypt_then_mac field by Jaeden Amero · 6 years ago
  62. e8d6afd Add debug line witnessing receipt of unexpected CID by Hanno Becker · 6 years ago
  63. 92d30f5 Fix indentation in debug message in ssl_tls.c by Hanno Becker · 6 years ago
  64. 8e55b0f Improve comment in ssl_parse_record_header() by Hanno Becker · 6 years ago
  65. 615ef17 Allow passing NULL pointers to mbedtls_ssl_get_peer_cid() by Hanno Becker · 6 years ago
  66. a0e20d0 Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID by Hanno Becker · 6 years ago
  67. d1f2035 Slightly reorder CID debug messages during creation of transforms by Hanno Becker · 6 years ago
  68. 611ac77 Fix mbedtls_ssl_conf_cid() to not depend on macro constant values by Hanno Becker · 6 years ago
  69. 5d12467 Remove warnings about unfinished CID implementation by Hanno Becker · 6 years ago
  70. 8367ccc Allow to configure the stack's behaviour on unexpected CIDs by Hanno Becker · 6 years ago
  71. b9ec44f Remove restriction on value of MBEDTLS_SSL_CID_PADDING_GRANULARITY by Hanno Becker · 6 years ago
  72. 2cdc5c3 Make signed to unsigned integer truncation cast explicit by Hanno Becker · 6 years ago
  73. b1aa1b3 Allow the configuration of padding when using CID extension by Hanno Becker · 6 years ago
  74. 4c3eb7c Set CID pointer to default value even for TLS by Hanno Becker · 6 years ago
  75. 4a4af9f Fix typo in comment by Hanno Becker · 6 years ago
  76. 22a59fd Remove indicators and warnings about unfinished CID implementation by Hanno Becker · 6 years ago
  77. 05154c3 Re-enable passing CIDs to record transforms by Hanno Becker · 6 years ago
  78. 16ded98 Don't fail on record with unexpected CID by Hanno Becker · 6 years ago
  79. 938489a Re-enable CID comparison when decrypting CID-based records by Hanno Becker · 6 years ago
  80. ca59c2b Implement parsing of CID-based records by Hanno Becker · 6 years ago
  81. 6430faf Adapt record encryption/decryption routines to change of record type by Hanno Becker · 6 years ago
  82. f9c6a4b Add pointers to in/out CID fields to mbedtls_ssl_context by Hanno Becker · 6 years ago
  83. 6cbad55 Account for additional record expansion when using CIDs by Hanno Becker · 6 years ago
  84. ad4a137 Add CID configuration API by Hanno Becker · 6 years ago
  85. 5903de4 Split mbedtls_ssl_hdr_len() in separate functions for in/out records by Hanno Becker · 6 years ago
  86. f661c9c Add helper function to check validity of record content type by Hanno Becker · 6 years ago
  87. 37ae952 Move dropping of unexpected AD records to after record decryption by Hanno Becker · 6 years ago
  88. 79594fd Set pointer to start of plaintext at record decryption time by Hanno Becker · 6 years ago
  89. 82e2a39 Treat an invalid record after decryption as fatal by Hanno Becker · 6 years ago
  90. 6e7700d Expain rationale for handling of consecutive empty AD records by Hanno Becker · 6 years ago
  91. 76a79ab Don't allow calling CID API outside of DTLS by Hanno Becker · 6 years ago
  92. 95e4bbc Fix additional data calculation if CID is disabled by Hanno Becker · 6 years ago
  93. af05ac0 Remove unnecessary empty line in ssl_tls.c by Hanno Becker · 6 years ago
  94. 07dc97d Don't quote DTLSInnerPlaintext structure multiple times by Hanno Becker · 6 years ago
  95. d3f8c79 Improve wording in ssl_build_inner_plaintext() by Hanno Becker · 6 years ago
  96. edb24f8 Remove unnecessary whitespace in ssl_extract_add_data_from_record() by Hanno Becker · 6 years ago
  97. 92fb4fa Reduce stack usage for additional data buffers in record dec/enc by Hanno Becker · 6 years ago
  98. c4a190b Add length of CID to additional data used for record protection by Hanno Becker · 6 years ago
  99. d5aeab1 Improve documentation of ssl_extract_add_data_from_record() by Hanno Becker · 6 years ago
  100. 43c24b8 Fix missing compile-time guards around CID-only constants by Hanno Becker · 6 years ago