TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 351e6885f55fd6354b57b51a5dbaadf3231aa7c8 / library / ssl_tls12_server.c
  1. 744fd37 Merge pull request #6467 from davidhorstmann-arm/fix-unusual-macros-0 by Gilles Peskine · 2 years, 9 months ago
  2. 3a334c2 Minor improvements to ssl_tls12_server.c by David Horstmann · 2 years, 9 months ago
  3. e0af39a Refactor macro-spanning ifs in ssl_tls12_server.c by David Horstmann · 2 years, 9 months ago
  4. 945b23c Include platform.h unconditionally: automatic part by Gilles Peskine · 2 years, 10 months ago
  5. 5166954 Make more use of MBEDTLS_MAX_HASH_SIZE macro by Przemek Stekiel · 2 years, 10 months ago
  6. 70dfd4c ssl_tls12_server: fix potential NULL-dereferencing if local certificate was not set. by Leonid Rozenboim · 3 years ago
  7. 20f89a9 Remove uses of SSL compression by Thomas Daubney · 3 years, 1 month ago
  8. f518f81 Ensure return for mbedtls_ssl_write_alpn_ext() is checked by Paul Elliott · 3 years ago
  9. ce7d76e Merge remote-tracking branch 'mbedtls-restricted/development-restricted' into mbedtls-3.2.0rc0-pr by Ronald Cron · 3 years ago
  10. 4d7af2a Merge pull request #5835 from superna9999/5831-tls-1-2-ciphersuite-selection by Manuel Pégourié-Gonnard · 3 years ago
  11. 999ef70 Add accessors to config DN hints for cert request by Glenn Strauss · 3 years, 4 months ago
  12. 9f1176a Move preferred_hash_for_sig_alg() check after ssl_pick_cert() and check if hash alg is supported with mbedtls_pk_can_do_ext() by Neil Armstrong · 3 years, 1 month ago
  13. 9f4606e Rename mbedtls_ssl_get_ciphersuite_sig_pk_ext_XXX in mbedtls_ssl_get_ciphersuite_sig_pk_ext_XXX() by Neil Armstrong · 3 years, 1 month ago
  14. 0c9c10a Introduce mbedtls_ssl_get_ciphersuite_sig_pk_ext_alg() and use it in ssl_pick_cert() by Neil Armstrong · 3 years, 2 months ago
  15. acb3992 Add ALPN extension to the server side by XiaokangQian · 3 years, 1 month ago
  16. a3115dc Mark static int SSL functions CHECK_RETURN_CRITICAL by Manuel Pégourié-Gonnard · 3 years, 1 month ago
  17. b64fb62 Fix unchecked return value from internal function by Manuel Pégourié-Gonnard · 3 years, 1 month ago
  18. e0469b5 Merge pull request #931 from AndrzejKurek/clihlo_cookie_pxy_fix by Gilles Peskine · 3 years, 1 month ago
  19. ca3c6a5 Merge pull request #5817 from xkqian/tls13_add_server_name by Ronald Cron · 3 years, 1 month ago
  20. 755ddff Fix print format in a debug message by Andrzej Kurek · 3 years, 1 month ago
  21. cbe14ec Improve variable extracting operations by using MBEDTLS_GET macros by Andrzej Kurek · 3 years, 1 month ago
  22. b58cf0d Split a debug message into two - for clarity by Andrzej Kurek · 3 years, 1 month ago
  23. 364fd8b More SSL debug messages for ClientHello parsing by Gilles Peskine · 3 years, 5 months ago
  24. a3344f7 Merge pull request #5767 from leorosen/avoid-null-args by Dave Rodgman · 3 years, 2 months ago
  25. 9b2b771 Change mbedtls_ssl_parse_server_name_ext base on comments by XiaokangQian · 3 years, 2 months ago
  26. 40a3523 Add support of server name extension to server side by XiaokangQian · 3 years, 2 months ago
  27. 9edf51d Merge pull request #5785 from gabor-mezei-arm/5460_unify_parsing_sig_alg_ext by Ronald Cron · 3 years, 2 months ago
  28. 1142038 Better check for NULL pointer by Paul Elliott · 3 years, 2 months ago
  29. dd428d3 Fix incorrect error message by Paul Elliott · 3 years, 2 months ago
  30. 696956d Typo by Gabor Mezei · 3 years, 2 months ago
  31. 0a4298b Remove unnecessary duble conversion by Gabor Mezei · 3 years, 2 months ago
  32. 8b0ecbc Redo of PR#5345. Fixed spelling and typographical errors found by CodeSpell. by Shaun Case · 3 years, 7 months ago
  33. 86acf05 Update signiture algorithm handling by Gabor Mezei · 3 years, 2 months ago
  34. c1051b6 Remove `MBEDTLS_SSL_SIG_ALG_SET` macro by Gabor Mezei · 3 years, 2 months ago
  35. a3d016c Rename and rewrite `mbedtls_ssl_sig_hash_set_find` function by Gabor Mezei · 3 years, 2 months ago
  36. 1226590 Explicitly set invalid value for the end of the signiture algorithm set by Gabor Mezei · 3 years, 2 months ago
  37. 15b95a6 Use common macro for the invalid signiture algorithm botn in TLS 1.2 and 1.3 by Gabor Mezei · 3 years, 2 months ago
  38. 078e803 Unify parsing of the signature algorithms extension by Gabor Mezei · 3 years, 3 months ago
  39. 8ecd668 Keep raw PSK when set via mbedtls_ssl_conf_psk() and feed as input_bytes by Neil Armstrong · 3 years, 2 months ago
  40. 80f6f32 Make mbedtls_ssl_psk_derive_premaster() only for when MBEDTLS_USE_PSA_CRYPTO is not selected by Neil Armstrong · 3 years, 2 months ago
  41. cd05f0b Drop skip PMS generation for opaque XXX-PSK now Opaque PSA key is always present when MBEDTLS_USE_PSA_CRYPTO selected by Neil Armstrong · 3 years, 3 months ago
  42. e952a30 Remove RAW PSK when MBEDTLS_USE_PSA_CRYPTO is selected by Neil Armstrong · 3 years, 3 months ago
  43. 61f237a Remove PSA-only code dealing with non-opaque PSA key by Neil Armstrong · 3 years, 3 months ago
  44. 67397fa Merge pull request #5704 from mprse/mixed_psk_2cx by Manuel Pégourié-Gonnard · 3 years, 3 months ago
  45. 8855e36 Merge pull request #5674 from superna9999/5668-abstract-tls-mode-cleanup by Gilles Peskine · 3 years, 3 months ago
  46. 99114f3 Fix build flags for opaque/raw psk checks by Przemek Stekiel · 3 years, 3 months ago
  47. cb322ea Enable support for psa opaque DHE-PSK key exchange on the server side by Przemek Stekiel · 3 years, 3 months ago
  48. 14d11b0 Enable support for psa opaque ECDHE-PSK key exchange on the server side by Przemek Stekiel · 3 years, 3 months ago
  49. aeb710f Enable support for psa opaque RSA-PSK key exchange on the server side by Przemek Stekiel · 3 years, 3 months ago
  50. 55132c6 Merge pull request #5703 from superna9999/5322-ecdh-remove-legacy-context by Manuel Pégourié-Gonnard · 3 years, 3 months ago
  51. 76b7407 Use MBEDTLS_SSL_SOME_SUITES_USE_CBC_ETM to enable ssl_write_encrypt_then_mac_ext() by Neil Armstrong · 3 years, 3 months ago
  52. ab555e0 Rename mbedtls_get_mode_from_XXX to mbedtls_ssl_get_mode_from_XXX by Neil Armstrong · 3 years, 3 months ago
  53. fe635e4 Use mbedtls_get_mode_from_ciphersuite() in server-side ssl_write_encrypt_then_mac_ext() by Neil Armstrong · 3 years, 4 months ago
  54. 2875270 Avoid potentially passing NULL arguments by Leonid Rozenboim · 3 years, 3 months ago
  55. a2da9c7 Merge pull request #5631 from gstrauss/enum-tls-vers by Paul Elliott · 3 years, 3 months ago
  56. 8315811 Remove restrictive proto ver negotiation checks by Glenn Strauss · 3 years, 3 months ago
  57. 041a376 Remove some tls_ver < MBEDTLS_SSL_VERSION_TLS1_2 checks by Glenn Strauss · 3 years, 4 months ago
  58. e3af4cb mbedtls_ssl_(read|write)_version using tls_version by Glenn Strauss · 3 years, 4 months ago
  59. 60bfe60 mbedtls_ssl_ciphersuite_t min_tls_version,max_tls_version by Glenn Strauss · 3 years, 4 months ago
  60. da7851c Rename mbedtls_ssl_session minor_ver to tls_version by Glenn Strauss · 3 years, 4 months ago
  61. 913b364 Simplify compile-time PSA/non-PSA ECDH(E) code in ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 3 months ago
  62. 3ea0149 Store TLS1.2 ECDH point format only when USE_PSA_CRYPTO isn't selected by Neil Armstrong · 3 years, 3 months ago
  63. d91526c Refactor to make PSA and non-PSA ECDH(E) server code exclusive by Neil Armstrong · 3 years, 3 months ago
  64. 927410d Merge pull request #5611 from superna9999/5318-tls-ecdhe-psk by Manuel Pégourié-Gonnard · 3 years, 3 months ago
  65. 1b05aff Merge pull request #5624 from superna9999/5312-tls-server-ecdh by Manuel Pégourié-Gonnard · 3 years, 3 months ago
  66. 1039ba5 Check if not using Opaque PSK in ECHDE-PSK PSA version of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 3 months ago
  67. ede381c Get PSK length & check for buffer size before writting in ECHDE-PSK PSA version of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 3 months ago
  68. 3cae167 Check buffer pointers before storing peer's public key in ECHDE-PSK PSA version of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 3 months ago
  69. fdf20cb Fix command indentation in ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  70. 2d63da9 Introduce zlen size variable in ECHDE-PSK part of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  71. d6e2759 Change to more appropriate pointer declaration in ECHDE-PSK part of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  72. fb0a81e Return PSA translated errors in ECHDE-PSK part of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  73. 5a1455d Remove useless braces in ECHDE-PSK part of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  74. 3bcef08 Update comments in ECHDE-PSK part of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  75. 549a3e4 Initialize uninitialized variable in ECHDE-PSK part of ssl_parse_client_key_exchange() by Neil Armstrong · 3 years, 4 months ago
  76. 039db29 Implement PSA server-side ECDHE-PSK by Neil Armstrong · 3 years, 4 months ago
  77. e88d190 Set ecdh_psa_privkey_is_external to 1 right after setting ecdh_psa_privkey in ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 3 months ago
  78. f716a70 Rename mbedtls_ssl_handshake_params variable ecdh_psa_shared_key to ecdh_psa_privkey_is_external by Neil Armstrong · 3 years, 3 months ago
  79. 91477a7 Switch handshake->ecdh_bits to size_t and remove now useless cast & limit checks by Neil Armstrong · 3 years, 4 months ago
  80. 1335222 Return translated PSA error in PSA version of ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  81. f788253 Fix comment typo in PSA version of ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  82. 104a7c1 Handle Opaque PK EC keys in ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  83. 8113d25 Add ecdh_psa_shared_key flag to protect PSA privkey if imported by Neil Armstrong · 3 years, 4 months ago
  84. 5cd5f76 Use mbedtls_platform_zeroize() in ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  85. 4f33fbc Use PSA define for max EC key pair size in ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  86. 306d607 Fix indentation issue in PSA version of ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  87. 062de7d Use PSA_BITS_TO_BYTES instead of open-coded calculation in PSA version of ssl_get_ecdh_params_from_cert() by Neil Armstrong · 3 years, 4 months ago
  88. 1f4b396 Implement PSA server-side ECDH-RSA/ECDSA by Neil Armstrong · 3 years, 4 months ago
  89. 3cffc5c tls: Remove unnecessary checks of MBEDTLS_CIPHERSUITE_NODTLS by Ronald Cron · 3 years, 4 months ago
  90. 90f0120 ssl_tls12_server.c: Simplify TLS version check in ClientHello by Ronald Cron · 3 years, 4 months ago
  91. 8457c12 ssl_tls12_server.c: Remove some unnecessary checks on TLS minor version by Ronald Cron · 3 years, 4 months ago
  92. b894ac7 ssl_tls12_server.c: Remove some dead code for versions of TLS < 1.2 by Ronald Cron · 3 years, 4 months ago
  93. de1adee Rename ssl_cli/srv.c by Ronald Cron · 3 years, 4 months ago[Renamed from library/ssl_srv.c]
  94. 862902d ssl_srv.c: Mark ETM as disabled if cipher is not CBC by Ronald Cron · 3 years, 4 months ago
  95. 560ef59 Merge pull request #5613 from mprse/tls_ecdh_2a by Manuel Pégourié-Gonnard · 3 years, 4 months ago
  96. dd482bf Modify own_pubkey_max_len calculation by Przemek Stekiel · 3 years, 4 months ago
  97. a4e15cc Fix comment: add fields size by Przemek Stekiel · 3 years, 4 months ago
  98. 855938e Move mbedtls_ecdh_setup() to no-psa path by Przemek Stekiel · 3 years, 4 months ago
  99. 338b61d Fix code style by Przemek Stekiel · 3 years, 4 months ago
  100. ce1d792 Remove duplicated code by Przemek Stekiel · 3 years, 4 months ago