Log - e3c4ee51b2d2ee35294643583c6a70fd5c08cdb7 - mirror/mbed-tls

e3c4ee5 Rename mbedtls_platform_memcmp() to mbedtls_platform_memequal() by Piotr Nowicki · 5 years ago
afec885 Revert a part of the sensitive information duplication changes by Andrzej Kurek · 5 years ago
84bde41 Add FI countermeasures to the ssl module by Andrzej Kurek · 5 years ago
74f7d0f Duplicate sensitive buffer and buffer length information by Andrzej Kurek · 5 years ago
e048b91 Add returning a FAULT_DETECTED error on suspected FI attacks by Piotr Nowicki · 5 years ago
fd56f40 Change the default value of status variables to an error by Andrzej Kurek · 5 years ago
ac6d226 Update signature of mbedtls_platform_random_delay by Arto Kinnunen · 6 years ago
7195571 Replace mbedtls_platform_enforce_volatile_reads 2 by Arto Kinnunen · 6 years ago
af60cd7 Protect the peer_authenticated flag more by Jarno Lamsa · 6 years ago
8d09e57 Increase hamming distance for session resume flag by Jarno Lamsa · 6 years ago
0616405 Check that we have all the proper keys by Jarno Lamsa · 6 years ago
e1621d4 Check that the peer_authenticated flag by Jarno Lamsa · 6 years ago
67f0a1e Protect setting of premaster_generated flag by Jarno Lamsa · 6 years ago
98801af Protect setting of hello_random flag by Jarno Lamsa · 6 years ago
46afd5d Fix CI issues by Jarno Lamsa · 6 years ago
83a56a6 Double check mbedtls_pk_verify by Jarno Lamsa · 6 years ago
70abd7a Add enumeration for invalid state by Jarno Lamsa · 6 years ago
2b20516 Make TLS state changes explicit by Jarno Lamsa · 6 years ago
9d6a535 Return and propagate UECC_FAULT_DETECTED by Manuel Pégourié-Gonnard · 6 years ago
1a53371 Remove curve parameter from public functions by Manuel Pégourié-Gonnard · 6 years ago
677b7f6 Fix direct use of struct instead of abstract type by Manuel Pégourié-Gonnard · 6 years ago
6f4e030 Changed mbedtls_platform_memcpy to memcpy in places which don't handle critical data by Teppo Järvelin · 6 years ago
91d7938 Changed every memcpy to SCA equivalent mbedtls_platform_memcpy by Teppo Järvelin · 6 years ago
713e5c3 Merge remote-tracking branch 'public/pr/2880' into baremetal by Simon Butcher · 6 years ago
707ceb8 Replaced mbedtls_ssl_safer_memcmp with mbedtls_platform_memcmp by Teppo Järvelin · 6 years ago
61f412e Changed every memcmp to SCA equivalent mbedtls_platform_memcmp by Teppo Järvelin · 6 years ago
d198672 Harmonize static function compiler flags by Arto Kinnunen · 6 years ago
2829bbf Remove dependency from SSL on PK internals by Manuel Pégourié-Gonnard · 6 years ago
020d9ba Introduce abstraction mbedtls_pk_handle_t by Manuel Pégourié-Gonnard · 6 years ago
e8144aa Merge remote-tracking branch 'origin/pr/657' into baremetal by Simon Butcher · 6 years ago
3d7439e Review corrections 6 by Arto Kinnunen · 6 years ago
a3fa06e Review corrections 3 by Arto Kinnunen · 6 years ago
4f4849a Review corrections 2 by Arto Kinnunen · 6 years ago
6e3f09b Review corrections by Arto Kinnunen · 6 years ago
0b62ce8 Use function for 16/24/32-bit BE conversion by Arto Kinnunen · 6 years ago
7fce190 Merge remote-tracking branch 'origin/pr/635' into HEAD by Simon Butcher · 6 years ago
7bcf2b5 Introduce version comparing functions by Hanno Becker · 6 years ago
358b300 TinyCrypt ECDHE-PSK: Implement CliKeyExchange parsing by Hanno Becker · 6 years ago
40ee0d4 Fixup: Correct #else and #endif comments in SrvKeyExch writing by Hanno Becker · 6 years ago
b42e238 TinyCrypt SSL: Extend scope of CliKeyExchange parsing by Hanno Becker · 6 years ago
8ea7da2 TinyCrypt SSL: Extend scope of TC-based SrvKeyExch writing by Hanno Becker · 6 years ago
b3a2448 TinyCrypt SSL: Impl. ECDH-param extraction from CRT for TinyCrypt by Hanno Becker · 6 years ago
2e80173 Fixup: Correct wrong comment ssl_prepare_server_key_exchange() by Hanno Becker · 6 years ago
27b7e50 TinyCrypt SSL: Declare EC-related TLS RFC constants in SSL namespace by Hanno Becker · 6 years ago
461fa72 TinyCrypt SSL: Adapt ssl_check_key_curve() to TinyCrypt by Hanno Becker · 6 years ago
7cb5c11 Missing uECC ECDSA flagging by Jarno Lamsa · 6 years ago
8671e7b Remove redundant SHA-1 code-path in TLS-1.2 handling of CrtVrfy by Hanno Becker · 6 years ago
2f41b24 Remove calc_verify SSL function pointer by Hanno Becker · 6 years ago
8a4b590 Remove checksum update function pointer from SSL handshake params by Hanno Becker · 6 years ago
f0f01e1 Merge remote-tracking branch 'origin/pr/630' into baremetal by Simon Butcher · 6 years ago
434ab19 Merge remote-tracking branch 'origin/pr/629' into baremetal by Simon Butcher · 6 years ago
0863b2a Merge remote-tracking branch 'origin/pr/612' into baremetal by Simon Butcher · 6 years ago
b72fc6a Don't use const var in initialization of another const var by Hanno Becker · 6 years ago
8295ff0 tinyCrypt: Don't store public ECDH-share in handshake struct by Hanno Becker · 6 years ago
b1626fb tinyCrypt: Remove check for Secp256r1 in SrvKeyExch writing by Hanno Becker · 6 years ago
9cf087d Use tinyCrypt only for ECDHE-RSA/ECDSA in SrvKeyExch writing by Hanno Becker · 6 years ago
7a19633 tinyCrypt: Avoid unused var warning by marking vars as unused by Hanno Becker · 6 years ago
29d1655 Add MBEDTLS_ECDH_C guards to ECDH code-paths using legacy ECDH by Hanno Becker · 6 years ago
975b9ee Fix guards around use of legacy ECDH context by Hanno Becker · 6 years ago
a3c2c17 tinyCrypt: Share ECDH secret calculation code-path by Hanno Becker · 6 years ago
75f12d1 tinyCrypt: Add ServerKeyExchange parsing code by Hanno Becker · 6 years ago
d849c7c tinyCrypt: Hardcode ECDH parameter header by Hanno Becker · 6 years ago
ef982d5 tinyCrypt: Bind RNG wrapper to tinyCrypt in mbedtls_ssl_setup() by Hanno Becker · 6 years ago
e12aafb tinyCrypt: Initial commit towards ECDHE support by Jarno Lamsa · 6 years ago
4e46709 Document precoditions on some HS parsing/writing functions by Hanno Becker · 6 years ago
7d552fa Avoid collision of ssl_xxx_key_exchange_yyy() func names in cli/srv by Hanno Becker · 6 years ago
7ba0a88 Fix 'set but not used' ARM compiler warning by Hanno Becker · 6 years ago
868cb58 Rename SSL_PROC_CHK -> MBEDTLS_SSL_CHK by Hanno Becker · 6 years ago
9a12243 Introduce getter function for RNG context by Hanno Becker · 6 years ago
9db697e Async operations: Simplify restart logic by Hanno Becker · 6 years ago
4ec73cb Restructure SrvKeyExchange: Move parsing code by Hanno Becker · 6 years ago
09d2364 Share code between In-CliKeyExch and Out-CliKeyExch by Hanno Becker · 6 years ago
d116e82 Restructure incoming CliKeyExch: Shorten postprocessing by Hanno Becker · 7 years ago
2eb716d Restructure incoming CliKeyExch: Remove old code by Hanno Becker · 6 years ago
e7c4eed Restructure incoming CliKeyExch: Parsing code by Hanno Becker · 7 years ago
1e23af8 Restructure incoming CliKeyExch: Move PMS assembly code by Hanno Becker · 7 years ago
dc8bfb9 Restructure incoming CliKeyExch: Move key derivation code by Hanno Becker · 7 years ago
7ec345d Restructure incoming CliKeyExch: Add frame for restructuring by Hanno Becker · 7 years ago
8844055 Remove compression field from SSL session if compression disabled by Hanno Becker · 6 years ago
93de296 Fix rebase slip by Hanno Becker · 6 years ago
de62da9 Use separate functions to pend fatal and non-fatal alerts by Hanno Becker · 6 years ago
1facd55 Replace xxx_send_alert by xxx_pend_alert to save code by Hanno Becker · 6 years ago
3b014fc Merge remote-tracking branch 'origin/pr/604' into baremetal by Simon Butcher · 6 years ago
981f81d Add missing uses of mbedtls_ssl_get_minor() by Hanno Becker · 6 years ago
f1bc9e1 Introduce helper functions to traverse signature hashes by Hanno Becker · 6 years ago
0af717b Don't use mbedtls_ssL_set_calc_verify_md writing CertificateRequest by Hanno Becker · 6 years ago
feb1cee Merge remote-tracking branch 'origin/pr/602' into baremetal by Simon Butcher · 6 years ago
a4a9c69 Introduce helper macro for traversal of supported EC TLS IDs by Hanno Becker · 6 years ago
84fb902 Work on client-provided supported EC TLS ID list in-place by Hanno Becker · 6 years ago
004619f Store TLS curve ID instead of information structure by Hanno Becker · 6 years ago
18729ae Guard RSA-only max_major/minor_ver fields from SSL handshake params by Hanno Becker · 6 years ago
381eaa5 Remove min/maj version from SSL context if only one version enabled by Hanno Becker · 6 years ago
2881d80 Introduce getter function for max/min SSL version by Hanno Becker · 6 years ago
3fa1ee5 Set SSL minor version only after validation by Hanno Becker · 6 years ago
e965bd3 Allow hardcoding of min/max minor/major SSL version at compile-time by Hanno Becker · 6 years ago
f4d6b49 Allow use of continue in single-ciphersuite 'loops' by Hanno Becker · 6 years ago
73f4cb1 Rename XXX_SINGLE_CIPHERSUITE -> XXX_CONF_SINGLE_CIPHERSUITE by Hanno Becker · 6 years ago
e02758c Remove ciphersuite from SSL session if single suite hardcoded by Hanno Becker · 6 years ago
df64596 Remove ciphersuite from handshake params if single suite hardcoded by Hanno Becker · 6 years ago
2d46b4f Adapt ClientHello parsing to case of single hardcoded ciphersuite by Hanno Becker · 6 years ago