TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / refs/heads/archive/better-cf-padding-checks / library / ssl_srv.c
  1. 6edfe60 Merge pull request #2182 from hanno-arm/key_pwd by Manuel Pégourié-Gonnard · 5 years ago
  2. 1e14827 Update copyright notices to use Linux Foundation guidance by Bence Szépkúti · 5 years ago
  3. 5c5efdf Fix format specifier in ssl_ciphersuite_match() by Hanno Becker · 6 years ago
  4. ecea07d Unify ciphersuite related debug output on client and server by Hanno Becker · 7 years ago
  5. db09ef6 Include common.h instead of config.h in library source files by Gilles Peskine · 5 years ago
  6. 6bd4c79 Merge pull request #3150 from irwir/fix_ssl_srv by Manuel Pégourié-Gonnard · 5 years ago
  7. c9bc300 Simplify bounds check in ssl_write_certificate_request by irwir · 5 years ago
  8. 15f30dc Merge remote-tracking branch 'public/pr/2856' into development by Manuel Pégourié-Gonnard · 5 years ago
  9. 5e7d6fd Merge 'mbedtls/development' into merge-crypto-unremoved-20200304 by Gilles Peskine · 5 years ago
  10. eccd888 Rename identifiers containing double-underscore by Gilles Peskine · 5 years ago
  11. 7ed01e8 ssl_srv.c: initialize flags on each iteration of the loop by Andrzej Kurek · 5 years ago
  12. 73c616b Put includes in alphabetical order by Janos Follath · 6 years ago
  13. 865b3eb Initialize return values to an error by Janos Follath · 6 years ago
  14. 6527bd6 Fix issue #2718 (condition always false) by irwir · 6 years ago
  15. de718b9 Make calc_verify() return the length as well by Manuel Pégourié-Gonnard · 6 years ago
  16. a0e20d0 Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID by Hanno Becker · 6 years ago
  17. ebcc913 Consistently reference CID draft through name + URL by Hanno Becker · 6 years ago
  18. 4cac442 Update references to CID draft to version 5 by Hanno Becker · 6 years ago
  19. 5903de4 Split mbedtls_ssl_hdr_len() in separate functions for in/out records by Hanno Becker · 6 years ago
  20. 08556bf Improve structure of ssl_parse_cid_ext() by Hanno Becker · 6 years ago
  21. a34ff5b Correct compile-time guard around CID extension writing func on srv by Hanno Becker · 6 years ago
  22. 51de2d3 Implement writing of CID extension in ServerHello by Hanno Becker · 6 years ago
  23. 89dcc88 Implement parsing of CID extension in ClientHello by Hanno Becker · 6 years ago
  24. e694c3e Remove ciphersuite_info from ssl_transform by Hanno Becker · 8 years ago
  25. 8bf74f3 Add SSL configuration API for trusted CA callbacks by Hanno Becker · 6 years ago
  26. 2a831a4 Adapt client auth detection in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
  27. a1ab9be Adapt server-side signature verification to use raw public key by Hanno Becker · 6 years ago
  28. 77adddc Make use of macro and helper detecting whether CertRequest allowed by Hanno Becker · 6 years ago
  29. de5a007 Merge development commit f352f7 into development-psa by Andrzej Kurek · 6 years ago
  30. f093a3d Use ecdh_setup instead of ecp_group_load by Andrzej Kurek · 6 years ago
  31. c470b6b Merge development commit 8e76332 into development-psa by Andrzej Kurek · 6 years ago
  32. 36e89b5 Fix #2370, minor typos and spelling mistakes by Antonin Décimo · 6 years ago
  33. 3fbdada SSL: Make use of the new ECDH interface by Janos Follath · 7 years ago
  34. c1385c1 Don't use idiom `if( func() )` but always add explicit value check by Hanno Becker · 7 years ago
  35. 845b946 Add server-support for opaque PSKs by Hanno Becker · 7 years ago
  36. bc2498a Style: Add numerous comments indicating condition guarded by #endif by Hanno Becker · 7 years ago
  37. 327c93b Add parameter to ssl_read_record() controlling checksum update by Hanno Becker · 7 years ago
  38. 1985947 Store outgoing record sequence number outside record buffer by Hanno Becker · 7 years ago
  39. 87a346f Always save flight first, (re)send later by Manuel Pégourié-Gonnard · 8 years ago
  40. 31c1586 Start separating handshake from record writing by Manuel Pégourié-Gonnard · 8 years ago
  41. cac0c1a Merge remote-tracking branch 'upstream-public/pr/1378' into development by Jaeden Amero · 7 years ago
  42. df15356 Merge remote-tracking branch 'public/pr/1663' into development by Simon Butcher · 7 years ago
  43. e7aeef0 Merge remote-tracking branch 'public/pr/536' into development by Simon Butcher · 7 years ago
  44. 755bb6a Add ecc extensions only if ecc ciphersuite is used by Ron Eldor · 7 years ago
  45. d8213d0 Let MBEDTLS_SSL_MAX_CONTENT_LEN to be split into outward & inward sizes by Angus Gratton · 9 years ago
  46. 600c5e6 Compilation warning fixes on 32b platfrom with IAR by Simon Butcher · 7 years ago
  47. 5f57f1e Merge remote-tracking branch 'public/pr/1270' into development by Simon Butcher · 7 years ago
  48. 0a8352b Fix harmless use of uninitialized memory in ssl_parse_encrypted_pms by Gilles Peskine · 7 years ago
  49. 747fd53 Fixes different off by ones by Philippe Antoine · 7 years ago
  50. 1febfef Rename mbedtls_ssl_async_{get,set}_data for clarity by Gilles Peskine · 7 years ago
  51. 8f97af7 Don't pass the async config data to async callbacks by Gilles Peskine · 7 years ago
  52. e141638 Finish writing an unfinished comment by Gilles Peskine · 7 years ago
  53. 0fd90dd ssl_prepare_server_key_exchange: clarify where the signature is written by Gilles Peskine · 7 years ago
  54. 22e695f Be more precise about when a variable is unused by Gilles Peskine · 7 years ago
  55. ad28bf0 Documentation improvements by Gilles Peskine · 7 years ago
  56. 168dae8 Comment formatting and whitespace fixes by Gilles Peskine · 7 years ago
  57. df13d5c Pass the SSL context to async callbacks by Gilles Peskine · 7 years ago
  58. 2e33337 Fix invalid data being accepted in RSA-decryption-based ciphersuites by Gilles Peskine · 7 years ago
  59. b74a1c7 Rename MBEDTLS_SSL_ASYNC_PRIVATE_C to MBEDTLS_SSL_ASYNC_PRIVATE by Gilles Peskine · 7 years ago
  60. f112725 Style and grammar fixes by Gilles Peskine · 7 years ago
  61. b44692f Merge branch 'mbedtls_ssl_get_key_exchange_md_ssl_tls-return_hashlen' into tls_async_server-2.9 by Gilles Peskine · 7 years ago
  62. 8491406 Remove preprocessor directives around platform_util.h include by Andres Amaya Garcia · 7 years ago
  63. ca1d742 mbedtls_ssl_get_key_exchange_md_tls1_2: return hashlen by Gilles Peskine · 7 years ago
  64. 2c6078e SSL asynchronous decryption (server side) by Gilles Peskine · 8 years ago
  65. bcd98a5 ssl_parse_encrypted_pms refactor: prepare, decrypt, return by Gilles Peskine · 8 years ago
  66. 422ccab ssl_parse_encrypted_pms refactor: prepare for remote private key by Gilles Peskine · 8 years ago
  67. f9f15ae ssl_write_server_key_exchange refactor: don't use p at all by Gilles Peskine · 8 years ago
  68. d3eb061 ssl_write_server_key_exchange refactor: minor cleanup by Gilles Peskine · 8 years ago
  69. ebd30ae ssl_write_server_key_exchange refactor: ssl_resume_server_key_exchange by Gilles Peskine · 8 years ago
  70. d04d292 Get rid of useless handshake field out_async_start by Gilles Peskine · 8 years ago
  71. 7ab013a ssl_write_server_key_exchange refactor: move signature_len out by Gilles Peskine · 8 years ago
  72. 1004c19 ssl_write_server_key_exchange refactor: don't use p in the signing phase by Gilles Peskine · 8 years ago
  73. 184a3fa ssl_write_server_key_exchange refactor: create ssl_prepare_server_key_exchange by Gilles Peskine · 8 years ago
  74. 3ce9b90 ssl_write_server_key_exchange refactor: remove dig_signed_len by Gilles Peskine · 8 years ago
  75. 4bf9a28 SSL asynchronous signature: first implementation by Gilles Peskine · 8 years ago
  76. ebd652f ssl_write_server_key_exchange: calculate hashlen explicitly by Gilles Peskine · 8 years ago
  77. e1efdf9 ssl_write_server_key_exchange: don't hard-code max hash size by Gilles Peskine · 8 years ago
  78. e198df5 ssl_pick_cert: use the public key for can_do by Gilles Peskine · 8 years ago
  79. fe1c093 ssl_write_server_key_exchange refactor: remove redundant variable n by Gilles Peskine · 8 years ago
  80. 81d4e89 Don't rely on private key metadata in SSL by Gilles Peskine · 8 years ago
  81. 1f6301b Rename mbedtls_zeroize to mbedtls_platform_zeroize by Andres Amaya Garcia · 7 years ago
  82. e32df08 Remove individual copies of mbedtls_zeroize() by Andres Amaya Garcia · 8 years ago
  83. 2bd5757 Merge branch 'development' into iotssl-1204 by Hanno Becker · 7 years ago
  84. 784de59 Merge remote-tracking branch 'upstream-restricted/pr/410' into development-restricted by Jaeden Amero · 7 years ago
  85. 66954e1 Merge branch 'development' into development-restricted by Jaeden Amero · 7 years ago
  86. 005239e Merge remote-tracking branch 'upstream-public/pr/1294' into development by Jaeden Amero · 7 years ago
  87. 41b40e6 Merge remote-tracking branch 'upstream-restricted/pr/441' into development-restricted by Gilles Peskine · 7 years ago
  88. aaaa98c Merge branch 'development-proposed' into development-restricted by Gilles Peskine · 7 years ago
  89. d91f2a2 Merge branch 'development' into iotssl-1251-2.7 by Gilles Peskine · 7 years ago
  90. 239987f Fix heap-buffer overread in ALPN ext parsing by Manuel Pégourié-Gonnard · 8 years ago
  91. 1a2640c Merge branch 'iotssl-1368-unsafe-bounds-check-psk-identity-merge' into development-restricted by Gilles Peskine · 8 years ago
  92. 27b34d5 Wrong identifier used to check Encrypt-then-MAC flag by Hanno Becker · 8 years ago
  93. 73a3817 Parse Signature Algorithm ext when renegotiating by Ron Eldor · 8 years ago
  94. 8dd73e6 Parse Signature Algorithm ext when renegotiating by Ron Eldor · 8 years ago
  95. 90333da Replace wrong usage of WANT_READ by CONTINUE_PROCESSING by Hanno Becker · 8 years ago
  96. 4cb1f4d Style corrections by Hanno Becker · 8 years ago
  97. ab74056 Make use of `mbedtls_dhm_set_group` when generating DHM params by Hanno Becker · 8 years ago
  98. 46f5a3e Check return codes from MD in ssl code by Andres Amaya Garcia · 8 years ago
  99. d21d625 Change ssl_srv to new MD API and check return code by Andres Amaya Garcia · 8 years ago
  100. 83c9f49 Prevent bounds check bypass through overflow in PSK identity parsing by Hanno Becker · 8 years ago