TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / refs/heads/better-cf-padding-checks / library / ssl_cli.c
  1. 6edfe60 Merge pull request #2182 from hanno-arm/key_pwd by Manuel Pégourié-Gonnard · 5 years ago
  2. 1e14827 Update copyright notices to use Linux Foundation guidance by Bence Szépkúti · 5 years ago
  3. 3c88c65 Fix debug format specifier in ClientHello ciphersuite log by Hanno Becker · 7 years ago
  4. ecea07d Unify ciphersuite related debug output on client and server by Hanno Becker · 7 years ago
  5. db09ef6 Include common.h instead of config.h in library source files by Gilles Peskine · 5 years ago
  6. 5ee5707 ssl_client: Align line breaking with MBEDTLS_SSL_DEBUG_* by Ronald Cron · 5 years ago
  7. e131bfe Return error in case of bad user configurations by Hanno Becker · 8 years ago
  8. 261602c Uniformize bounds checks using new macro by Hanno Becker · 8 years ago
  9. 4c7bbe2 Remove unnecessary MBEDTLS_ECP_C preprocessor condition by Ronald Cron · 5 years ago
  10. b2fff6d Shorten lines in library/ssl_cli.c to at most 80 characters by Hanno Becker · 8 years ago
  11. 2848239 Merge branch 'development-restricted' into prepare-rc-2.22.0-updated by Manuel Pégourié-Gonnard · 5 years ago
  12. 215d2e1 Merge remote-tracking branch 'restricted/pr/662' into development-restricted by Manuel Pégourié-Gonnard · 5 years ago
  13. 15f30dc Merge remote-tracking branch 'public/pr/2856' into development by Manuel Pégourié-Gonnard · 5 years ago
  14. eccd888 Rename identifiers containing double-underscore by Gilles Peskine · 5 years ago
  15. 4245980 USE_PSA_CRYPTO: don't rely on the curve encoding by Gilles Peskine · 6 years ago
  16. 73c616b Put includes in alphabetical order by Janos Follath · 6 years ago
  17. 865b3eb Initialize return values to an error by Janos Follath · 6 years ago
  18. 6527bd6 Fix issue #2718 (condition always false) by irwir · 6 years ago
  19. b64bf06 Parse HelloVerifyRequest: avoid buffer overread at the start by Gilles Peskine · 6 years ago
  20. b51130d Parse HelloVerifyRequest: avoid buffer overread on the cookie by Gilles Peskine · 6 years ago
  21. de718b9 Make calc_verify() return the length as well by Manuel Pégourié-Gonnard · 6 years ago
  22. df3b089 Use psa_raw_key_agreement by Janos Follath · 6 years ago
  23. 1239d70 Remove calls to psa_allocate_key by Janos Follath · 6 years ago
  24. 53b8ec2 Make variable naming consistent by Janos Follath · 6 years ago
  25. 7bb5e6b Update psa_create_key to PSA 1.0 by Janos Follath · 6 years ago
  26. bd09610 Update psa_generator_abort to PSA 1.0 by Janos Follath · 6 years ago
  27. 6de99db Update psa_generator_read to PSA 1.0 by Janos Follath · 6 years ago
  28. 7d7ded8 Update psa_key_agreement to PSA 1.0 by Janos Follath · 6 years ago
  29. 7374ee6 Update GENERATOR_INIT macro to PSA 1.0 by Janos Follath · 6 years ago
  30. 3d158eb Update KEYPAIR macros to PSA 1.0 by Janos Follath · 6 years ago
  31. a0e20d0 Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID by Hanno Becker · 6 years ago
  32. ebcc913 Consistently reference CID draft through name + URL by Hanno Becker · 6 years ago
  33. 4cac442 Update references to CID draft to version 5 by Hanno Becker · 6 years ago
  34. 79594fd Set pointer to start of plaintext at record decryption time by Hanno Becker · 6 years ago
  35. 5a29990 Improve structure of client-side CID extension parsing by Hanno Becker · 6 years ago
  36. 2262648 Improve debugging output of client-side CID extension parsing by Hanno Becker · 6 years ago
  37. a8373a1 Implement parsing of CID extension in ServerHello by Hanno Becker · 6 years ago
  38. 49770ff Implement writing of CID extension in ClientHello by Hanno Becker · 6 years ago
  39. ade9e28 ssl_cli.c : add explicit casting to unsigned char by Andrzej Kurek · 6 years ago
  40. e694c3e Remove ciphersuite_info from ssl_transform by Hanno Becker · 8 years ago
  41. bd5580a Add further debug statements on assertion failures by Hanno Becker · 6 years ago
  42. 62d58ed Add debug output in case of assertion failure by Hanno Becker · 6 years ago
  43. ae553dd Free peer's public key as soon as it's no longer needed by Hanno Becker · 6 years ago
  44. a6899bb Adapt client-side signature verification to use raw public key by Hanno Becker · 6 years ago
  45. be7f508 Adapt ssl_get_ecdh_params_from_cert() to use raw public key by Hanno Becker · 6 years ago
  46. c7d7e29 Adapt ssl_write_encrypted_pms() to use raw public key by Hanno Becker · 6 years ago
  47. 8273df8 Re-classify errors on missing peer CRT by Hanno Becker · 6 years ago
  48. 77adddc Make use of macro and helper detecting whether CertRequest allowed by Hanno Becker · 6 years ago
  49. 86016a0 Merge remote-tracking branch 'origin/pr/2338' into development by Jaeden Amero · 6 years ago
  50. 9f47f82 Merge remote-tracking branch 'origin/pr/2391' into development by Jaeden Amero · 6 years ago
  51. 0a94a64 Add debugging output to confirm that PSA was used for ECDHE by Hanno Becker · 7 years ago
  52. c14a3bb Make variable in ssl_write_client_key_exchange() more descriptive by Hanno Becker · 7 years ago
  53. 4a63ed4 Implement ClientKeyExchange writing in PSA-based ECDHE suites by Hanno Becker · 7 years ago
  54. bb89e27 Implement ServerKeyExchange parsing for PSA-based ECDHE suites by Hanno Becker · 7 years ago
  55. b2964cb SSL/TLS client: Remove old session ticket on renegotiation by Hanno Becker · 6 years ago
  56. c470b6b Merge development commit 8e76332 into development-psa by Andrzej Kurek · 6 years ago
  57. 3fbdada SSL: Make use of the new ECDH interface by Janos Follath · 7 years ago
  58. 520224e Rename ssl_conf_has_[raw_]_psk to ssl_conf_has_static_[raw_]psk by Hanno Becker · 7 years ago
  59. afd311e Skip PMS generation on client if opaque PSK is used by Hanno Becker · 7 years ago
  60. dfab8e2 Allow opaque PSKs in pure-PSK ciphersuites only by Hanno Becker · 7 years ago
  61. 2e4f616 Don't suggest the use of a PSK suite if no PSK configured on client by Hanno Becker · 7 years ago
  62. de13963 Merge remote-tracking branch 'restricted/pr/520' into development-restricted-proposed by Simon Butcher · 7 years ago
  63. c37423f Fix misleading sub-state name and comments by Manuel Pégourié-Gonnard · 7 years ago
  64. 8df1023 Add explicit unsigned-to-signed integer conversion by Hanno Becker · 7 years ago
  65. 0c161d1 Fix bounds check in ssl_parse_server_psk_hint() by Hanno Becker · 7 years ago
  66. 1c1c20e Fix some whitespace issues by Manuel Pégourié-Gonnard · 7 years ago
  67. 125af94 Merge branch 'development-restricted' into iotssl-1260-non-blocking-ecc-restricted by Manuel Pégourié-Gonnard · 7 years ago
  68. 552754a Merge remote-tracking branch 'public/pr/1988' into development by Simon Butcher · 7 years ago
  69. 68dbc94 Merge remote-tracking branch 'public/pr/1951' into development by Simon Butcher · 7 years ago
  70. 9d5a9e1 Merge remote-tracking branch 'public/pr/1625' into development by Simon Butcher · 7 years ago
  71. bc2498a Style: Add numerous comments indicating condition guarded by #endif by Hanno Becker · 7 years ago
  72. 327c93b Add parameter to ssl_read_record() controlling checksum update by Hanno Becker · 7 years ago
  73. 3879fdf Merge remote-tracking branch 'public/pr/1955' into iotssl-165-dtls-hs-fragmentation-new by Manuel Pégourié-Gonnard · 7 years ago
  74. ad17fe9 Fix overly strict bounds check in ssl_parse_certificate_request() by Hanno Becker · 7 years ago
  75. 87a346f Always save flight first, (re)send later by Manuel Pégourié-Gonnard · 8 years ago
  76. 31c1586 Start separating handshake from record writing by Manuel Pégourié-Gonnard · 8 years ago
  77. cac0c1a Merge remote-tracking branch 'upstream-public/pr/1378' into development by Jaeden Amero · 7 years ago
  78. df15356 Merge remote-tracking branch 'public/pr/1663' into development by Simon Butcher · 7 years ago
  79. 755bb6a Add ecc extensions only if ecc ciphersuite is used by Ron Eldor · 7 years ago
  80. 79d9b50 Merge branch 'development' into iotssl-1260-non-blocking-ecc-restricted by Manuel Pégourié-Gonnard · 7 years ago
  81. d8213d0 Let MBEDTLS_SSL_MAX_CONTENT_LEN to be split into outward & inward sizes by Angus Gratton · 9 years ago
  82. 5f57f1e Merge remote-tracking branch 'public/pr/1270' into development by Simon Butcher · 7 years ago
  83. 558da9c Make SSL error code more generic by Manuel Pégourié-Gonnard · 7 years ago
  84. da19f4c Merge branch 'development' into iotssl-1260-non-blocking-ecc-restricted by Manuel Pégourié-Gonnard · 7 years ago
  85. b5b2543 Fix undefined shifts by Philippe Antoine · 7 years ago
  86. 747fd53 Fixes different off by ones by Philippe Antoine · 7 years ago
  87. 11999bb Fix minor code style issues by Darryl Green · 7 years ago
  88. a331e0f Merge remote-tracking branch 'upstream-restricted/pr/421' into development-proposed by Jaeden Amero · 7 years ago
  89. 03bac44 Change accepted ciphersuite versions when parsing server hello by Andrzej Kurek · 7 years ago
  90. ca1d742 mbedtls_ssl_get_key_exchange_md_tls1_2: return hashlen by Gilles Peskine · 7 years ago
  91. 1d3b508 Same ciphersuite validation in server and client hello by Mohammad Azim Khan · 7 years ago
  92. f2b76cd Merge remote-tracking branch 'upstream-restricted/pr/461' into development-restricted-proposed by Gilles Peskine · 7 years ago
  93. 1f6301b Rename mbedtls_zeroize to mbedtls_platform_zeroize by Andres Amaya Garcia · 7 years ago
  94. e32df08 Remove individual copies of mbedtls_zeroize() by Andres Amaya Garcia · 8 years ago
  95. 94d4997 Improve comments style by Krzysztof Stachowiak · 7 years ago
  96. cd09fc8 Remove a redundant test by Krzysztof Stachowiak · 7 years ago
  97. 73b183c Add buffer size check before cert_type_len read by Krzysztof Stachowiak · 7 years ago
  98. f15a8be Merge remote-tracking branch 'upstream-public/pr/1256' into development-proposed by Gilles Peskine · 7 years ago
  99. bc231cc Add a missing buffer size check by Krzysztof Stachowiak · 7 years ago
  100. bc145f7 Correct buffer size check by Krzysztof Stachowiak · 7 years ago