TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / refs/heads/archive/mbedtls-2.1 / library / ssl_tls.c
  1. 5ca1f27 Merge remote-tracking branch 'public/pr/2097' into mbedtls-2.1-proposed by Simon Butcher · 7 years ago
  2. 3aab4cc Fail when encountering invalid CBC padding in EtM records by Hanno Becker · 7 years ago
  3. 728d6cd Add missing zeroization of reassembled handshake messages by Hanno Becker · 7 years ago
  4. 8d408fa Merge remote-tracking branch 'restricted/pr/438' into mbedtls-2.1-restricted by Simon Butcher · 7 years ago
  5. d22de0a Merge remote-tracking branch 'restricted/pr/492' into mbedtls-2.1-restricted by Simon Butcher · 7 years ago
  6. d288ac0 Merge remote-tracking branch 'public/pr/1959' into mbedtls-2.1 by Simon Butcher · 7 years ago
  7. 42d267b Compute record expansion in steps to ease readability by Hanno Becker · 7 years ago
  8. 07eb7ca Fix mbedtls_ssl_get_record_expansion() for CBC modes by Hanno Becker · 7 years ago
  9. 3328d8c Reset session_in/out pointers in ssl_session_reset_int() by Hanno Becker · 7 years ago
  10. 83f9fba Revert change of a return variable name by k-stachowiak · 7 years ago
  11. 3339fe9 Merge remote-tracking branch 'restricted/pr/495' into mbedtls-2.1 by Simon Butcher · 7 years ago
  12. 642ddb5 Merge remote-tracking branch 'public/pr/1864' into mbedtls-2.1 by Simon Butcher · 7 years ago
  13. eebee76 Merge remote-tracking branch 'public/pr/1846' into mbedtls-2.1 by Simon Butcher · 7 years ago
  14. fd1c5e8 Check for invalid short Alert messages by Angus Gratton · 7 years ago
  15. 485b393 TLSv1.2: Treat zero-length fragments as invalid, unless they are application data by Angus Gratton · 7 years ago
  16. 1226dd7 CBC mode: Allow zero-length message fragments (100% padding) by Angus Gratton · 7 years ago
  17. 671f932 Avoid debug message that might leak length by Manuel Pégourié-Gonnard · 7 years ago
  18. 99b6a71 Add counter-measure to cache-based Lucky 13 by Manuel Pégourié-Gonnard · 7 years ago
  19. 4772a1f Fix memory leak in ssl_setup by k-stachowiak · 7 years ago
  20. bbc7918 Fixes different off by ones by Philippe Antoine · 7 years ago
  21. 8ba6ff5 about a issue Replace "new" variable #1782 by niisato · 7 years ago
  22. e5828ce Merge remote-tracking branch 'public/pr/1771' into mbedtls-2.1 by Simon Butcher · 7 years ago
  23. ad761c4 Fix multiple quality issues in the source by Simon Butcher · 7 years ago
  24. b999a73 Document ssl_write_real() behaviour in detail by Andres Amaya Garcia · 8 years ago
  25. e8dd77b Fix Lucky13 attack protection when using HMAC-SHA-384 by Gilles Peskine · 7 years ago
  26. 078014a Change variable bytes_written to header_bytes in record decompression by Andrzej Kurek · 7 years ago archive/iotssl-1401-record-compression-2.1 iotssl-1401-record-compression-2.1
  27. bb66614 ssl_tls: Fix invalid buffer sizes during compression / decompression by Andrzej Kurek · 7 years ago
  28. ac9939c Merge remote-tracking branch 'upstream-public/pr/1461' into mbedtls-2.1-proposed by Jaeden Amero · 7 years ago
  29. ee6c822 Merge remote-tracking branch 'upstream-public/pr/1396' into mbedtls-2.1-proposed by Jaeden Amero · 7 years ago
  30. ad2908c Fix compatibility problem in the printed message by mohammad1603 · 7 years ago
  31. f72e51f Check whether INT_MAX larger than SIZE_MAX scenario by mohammad1603 · 7 years ago
  32. cee0890 Verify that f_send and f_recv send and receive the expected length by mohammad1603 · 7 years ago
  33. 823734b Robustness fix in mbedtls_ssl_derive_keys by Gilles Peskine · 7 years ago
  34. 89c12ec Avoid wraparound on in_left by mohammad1603 · 7 years ago
  35. 9a00ef3 Merge branch 'pr_953' into HEAD by Gilles Peskine · 7 years ago
  36. 25ec9cc Merge branch 'prr_428' into mbedtls-2.1-proposed by Gilles Peskine · 7 years ago
  37. f65add4 Backport 2.1:Add guard to out_left to avoid negative values by mohammad1603 · 7 years ago
  38. bfafd12 Merge remote-tracking branch 'upstream-restricted/pr/414' into mbedtls-2.1-restricted by Jaeden Amero · 8 years ago
  39. 1ac9aa7 Set correct minimal versions in default conf by Ron Eldor · 8 years ago
  40. 394767c Compute outgoing MAC in temporary buffer for MAC-then-Encrypt by Hanno Becker · 8 years ago
  41. c83f57b Merge remote-tracking branch 'upstream-restricted/pr/434' into mbedtls-2.1-restricted by Gilles Peskine · 8 years ago
  42. 451ea75 Merge remote-tracking branch 'restricted/pr/412' into mbedtls-2.1-restricted by Manuel Pégourié-Gonnard · 8 years ago
  43. 4b133e6 Fix magic constant in previous commit by Manuel Pégourié-Gonnard · 8 years ago
  44. b67a5c1 Fix SSLv3 MAC computation by Manuel Pégourié-Gonnard · 8 years ago
  45. aed7188 Merge remote-tracking branch 'upstream-restricted/pr/427' into mbedtls-2.1-restricted by Gilles Peskine · 8 years ago
  46. adb30b9 Improve documentation of MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT option by Hanno Becker · 8 years ago
  47. 053b345 Add fallback to non-compliant truncated HMAC for compatibiltiy by Hanno Becker · 8 years ago
  48. 64f0aed Don't truncate MAC key when truncated HMAC is negotiated by Hanno Becker · 8 years ago
  49. 6cf85ff Merge branch 'mbedtls-2.1' into mbedtls-2.1-restricted by Gilles Peskine · 8 years ago
  50. 49349ba Merge remote-tracking branch 'upstream-public/pr/1153' into mbedtls-2.1 by Gilles Peskine · 8 years ago
  51. 336b7de Merge remote-tracking branch 'upstream-restricted/pr/386' into mbedtls-2.1-restricted by Gilles Peskine · 8 years ago
  52. 7aa2419 Merge remote-tracking branch 'upstream-public/pr/1107' into mbedtls-2.1 by Gilles Peskine · 8 years ago
  53. ce516ff Fix heap corruption in ssl_decrypt_buf by Hanno Becker · 8 years ago
  54. ea0aa65 Merge branch 'mbedtls-2.1' into mbedtls-2.1-restricted by Manuel Pégourié-Gonnard · 8 years ago
  55. 3cd07be Fix handling of HS msgs in mbedtls_ssl_read if renegotiation unused by Hanno Becker · 8 years ago
  56. e454d73 Swap branches accepting/refusing renegotiation in in ssl_read by Hanno Becker · 8 years ago
  57. a360411 Fixed SIGSEGV problem when writing with ssl_write_real a buffer that is over MBEDTLS_SSL_MAX_CONTENT_LEN bytes by Florin · 8 years ago
  58. e298c8b Correct typo by Hanno Becker · 8 years ago
  59. 80e0d46 Use 2048-bit DHE parameters from RFC 3526 instead of 5114 by default by Hanno Becker · 8 years ago
  60. 6e052b0 Improve debugging output by Hanno Becker · 8 years ago
  61. 0983dc4 Add run-time check for handshake message size in ssl_write_record by Hanno Becker · 8 years ago
  62. aede183 Add run-time check for record content size in ssl_encrypt_buf by Hanno Becker · 8 years ago
  63. c7845e5 Enhance documentation of ssl_write_hostname_ext, adapt ChangeLog. by Hanno Becker · 8 years ago
  64. 593b0d3 Make mbedtls_ssl_set_hostname safe to be called multiple times by Hanno Becker · 8 years ago
  65. 1042d86 Dont send alert on invalid DTLS record type by Andres Amaya Garcia · 8 years ago
  66. 3d23146 Set len var to 0 when buf is freed in ssl_tls.c by Andres Amaya Garcia · 8 years ago
  67. 1b7d6f8 Zeroize old psk buf when changing value in ssl_tls by Andres Amaya Garcia · 8 years ago
  68. cc01908 Ensure application data records are not kept when fully processed by Hanno Becker · 8 years ago
  69. bfbc494 Add hard assertion to mbedtls_ssl_read_record_layer by Hanno Becker · 8 years ago
  70. 6a582e8 Fix mbedtls_ssl_read by Hanno Becker · 8 years ago
  71. 704f493 Simplify retaining of messages for future processing by Hanno Becker · 8 years ago
  72. 61c0c70 Add tests for missing CA chains and bad curves. by Hanno Becker · 8 years ago
  73. a3929ba Fix implementation of VERIFY_OPTIONAL verification mode by Hanno Becker · 8 years ago
  74. 7344e1b SHA-1 deprecation: allow it in key exchange by Gilles Peskine · 8 years ago
  75. 955738a Remove SHA-1 in TLS by default by Gilles Peskine · 8 years ago
  76. aa8a2bd Remember suitable hash function for any signature algorithm. by Hanno Becker · 8 years ago
  77. 7fa66d4 Fix renegotiation at incorrect times in DTLS by Andres AG · 9 years ago
  78. e7f8dc3 Clarify Comments and Fix Typos (#651) by Brian J Murray · 9 years ago
  79. 0be55a0 Remove MBEDTLS_SSL_AEAD_RANDOM_IV feature by Janos Follath · 9 years ago
  80. c941b6c Fix for unused variable warning by Simon Butcher · 10 years ago
  81. aa41149 Merge 'iotssl-558-2.1-md5-tls-sigs-restricted' by Simon Butcher · 10 years ago
  82. e103aa8 Added description of change to the Changelog by Simon Butcher · 10 years ago
  83. b39528e Disable MD5 in handshake signatures by default by Manuel Pégourié-Gonnard · 10 years ago
  84. 013198f DTLS: avoid dropping too many records by Manuel Pégourié-Gonnard · 10 years ago
  85. c282405 Fix other int casts in bounds checking by Manuel Pégourié-Gonnard · 10 years ago
  86. ffb8180 Fix potential double-free in ssl_conf_psk() by Manuel Pégourié-Gonnard · 10 years ago
  87. 94c5e3c Fixed typo in comment by Simon Butcher · 10 years ago
  88. a314076 Fix handling of non-fatal alerts by Manuel Pégourié-Gonnard · 10 years ago
  89. f9945bc Fix #ifdef inconsistency by Manuel Pégourié-Gonnard · 10 years ago
  90. 770f453 Remove useless code by Manuel Pégourié-Gonnard · 10 years ago
  91. fec73a8 Merge of fix for IOTSSL-481 - Double free by Simon Butcher · 10 years ago
  92. 5b8d1d6 Fix for IOTSSL-473 Double free error by Simon Butcher · 10 years ago
  93. ef388f1 Merge branch 'development' into development-restricted by Manuel Pégourié-Gonnard · 10 years ago
  94. 9f81231 Revised hostname length check from review by Simon Butcher · 10 years ago
  95. 24417f0 Fix potential double-free in mbedtls_ssl_conf_psk() by Manuel Pégourié-Gonnard · 10 years ago
  96. 89f7762 Added max length checking of hostname by Simon Butcher · 10 years ago
  97. 588ad50 Fix a fairly common typo in comments by Tillmann Karras · 10 years ago
  98. 5793e7e Merge 'development' into iotssl-411-port-reuse by Simon Butcher · 10 years ago
  99. ea5370d Don't allow reconnect during handshake by Manuel Pégourié-Gonnard · 10 years ago
  100. d0bf6a3 Update ssl_tls.c by Simon Butcher · 10 years ago