Log - refs/heads/dev/buffer-resizing - mirror/mbed-tls

73c616b Put includes in alphabetical order by Janos Follath · 6 years ago
865b3eb Initialize return values to an error by Janos Follath · 6 years ago
de718b9 Make calc_verify() return the length as well by Manuel Pégourié-Gonnard · 6 years ago
a0e20d0 Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID by Hanno Becker · 6 years ago
ebcc913 Consistently reference CID draft through name + URL by Hanno Becker · 6 years ago
4cac442 Update references to CID draft to version 5 by Hanno Becker · 6 years ago
5903de4 Split mbedtls_ssl_hdr_len() in separate functions for in/out records by Hanno Becker · 6 years ago
08556bf Improve structure of ssl_parse_cid_ext() by Hanno Becker · 6 years ago
a34ff5b Correct compile-time guard around CID extension writing func on srv by Hanno Becker · 6 years ago
51de2d3 Implement writing of CID extension in ServerHello by Hanno Becker · 6 years ago
89dcc88 Implement parsing of CID extension in ClientHello by Hanno Becker · 6 years ago
e694c3e Remove ciphersuite_info from ssl_transform by Hanno Becker · 8 years ago
8bf74f3 Add SSL configuration API for trusted CA callbacks by Hanno Becker · 6 years ago
2a831a4 Adapt client auth detection in ssl_parse_certificate_verify() by Hanno Becker · 6 years ago
a1ab9be Adapt server-side signature verification to use raw public key by Hanno Becker · 6 years ago
77adddc Make use of macro and helper detecting whether CertRequest allowed by Hanno Becker · 6 years ago
de5a007 Merge development commit f352f7 into development-psa by Andrzej Kurek · 6 years ago
f093a3d Use ecdh_setup instead of ecp_group_load by Andrzej Kurek · 6 years ago
c470b6b Merge development commit 8e76332 into development-psa by Andrzej Kurek · 6 years ago
36e89b5 Fix #2370, minor typos and spelling mistakes by Antonin Décimo · 7 years ago
3fbdada SSL: Make use of the new ECDH interface by Janos Follath · 7 years ago
c1385c1 Don't use idiom `if( func() )` but always add explicit value check by Hanno Becker · 7 years ago
845b946 Add server-support for opaque PSKs by Hanno Becker · 7 years ago
bc2498a Style: Add numerous comments indicating condition guarded by #endif by Hanno Becker · 7 years ago
327c93b Add parameter to ssl_read_record() controlling checksum update by Hanno Becker · 7 years ago
1985947 Store outgoing record sequence number outside record buffer by Hanno Becker · 7 years ago
87a346f Always save flight first, (re)send later by Manuel Pégourié-Gonnard · 8 years ago
31c1586 Start separating handshake from record writing by Manuel Pégourié-Gonnard · 8 years ago
cac0c1a Merge remote-tracking branch 'upstream-public/pr/1378' into development by Jaeden Amero · 7 years ago
df15356 Merge remote-tracking branch 'public/pr/1663' into development by Simon Butcher · 7 years ago
e7aeef0 Merge remote-tracking branch 'public/pr/536' into development by Simon Butcher · 7 years ago
755bb6a Add ecc extensions only if ecc ciphersuite is used by Ron Eldor · 7 years ago
d8213d0 Let MBEDTLS_SSL_MAX_CONTENT_LEN to be split into outward & inward sizes by Angus Gratton · 9 years ago
600c5e6 Compilation warning fixes on 32b platfrom with IAR by Simon Butcher · 7 years ago
5f57f1e Merge remote-tracking branch 'public/pr/1270' into development by Simon Butcher · 7 years ago
0a8352b Fix harmless use of uninitialized memory in ssl_parse_encrypted_pms by Gilles Peskine · 7 years ago
747fd53 Fixes different off by ones by Philippe Antoine · 7 years ago
1febfef Rename mbedtls_ssl_async_{get,set}_data for clarity by Gilles Peskine · 7 years ago
8f97af7 Don't pass the async config data to async callbacks by Gilles Peskine · 7 years ago
e141638 Finish writing an unfinished comment by Gilles Peskine · 7 years ago
0fd90dd ssl_prepare_server_key_exchange: clarify where the signature is written by Gilles Peskine · 7 years ago
22e695f Be more precise about when a variable is unused by Gilles Peskine · 7 years ago
ad28bf0 Documentation improvements by Gilles Peskine · 7 years ago
168dae8 Comment formatting and whitespace fixes by Gilles Peskine · 7 years ago
df13d5c Pass the SSL context to async callbacks by Gilles Peskine · 7 years ago
2e33337 Fix invalid data being accepted in RSA-decryption-based ciphersuites by Gilles Peskine · 7 years ago
b74a1c7 Rename MBEDTLS_SSL_ASYNC_PRIVATE_C to MBEDTLS_SSL_ASYNC_PRIVATE by Gilles Peskine · 7 years ago
f112725 Style and grammar fixes by Gilles Peskine · 7 years ago
b44692f Merge branch 'mbedtls_ssl_get_key_exchange_md_ssl_tls-return_hashlen' into tls_async_server-2.9 by Gilles Peskine · 7 years ago
8491406 Remove preprocessor directives around platform_util.h include by Andres Amaya Garcia · 7 years ago
ca1d742 mbedtls_ssl_get_key_exchange_md_tls1_2: return hashlen by Gilles Peskine · 7 years ago
2c6078e SSL asynchronous decryption (server side) by Gilles Peskine · 8 years ago
bcd98a5 ssl_parse_encrypted_pms refactor: prepare, decrypt, return by Gilles Peskine · 8 years ago
422ccab ssl_parse_encrypted_pms refactor: prepare for remote private key by Gilles Peskine · 8 years ago
f9f15ae ssl_write_server_key_exchange refactor: don't use p at all by Gilles Peskine · 8 years ago
d3eb061 ssl_write_server_key_exchange refactor: minor cleanup by Gilles Peskine · 8 years ago
ebd30ae ssl_write_server_key_exchange refactor: ssl_resume_server_key_exchange by Gilles Peskine · 8 years ago
d04d292 Get rid of useless handshake field out_async_start by Gilles Peskine · 8 years ago
7ab013a ssl_write_server_key_exchange refactor: move signature_len out by Gilles Peskine · 8 years ago
1004c19 ssl_write_server_key_exchange refactor: don't use p in the signing phase by Gilles Peskine · 8 years ago
184a3fa ssl_write_server_key_exchange refactor: create ssl_prepare_server_key_exchange by Gilles Peskine · 8 years ago
3ce9b90 ssl_write_server_key_exchange refactor: remove dig_signed_len by Gilles Peskine · 8 years ago
4bf9a28 SSL asynchronous signature: first implementation by Gilles Peskine · 8 years ago
ebd652f ssl_write_server_key_exchange: calculate hashlen explicitly by Gilles Peskine · 8 years ago
e1efdf9 ssl_write_server_key_exchange: don't hard-code max hash size by Gilles Peskine · 8 years ago
e198df5 ssl_pick_cert: use the public key for can_do by Gilles Peskine · 8 years ago
fe1c093 ssl_write_server_key_exchange refactor: remove redundant variable n by Gilles Peskine · 8 years ago
81d4e89 Don't rely on private key metadata in SSL by Gilles Peskine · 8 years ago
1f6301b Rename mbedtls_zeroize to mbedtls_platform_zeroize by Andres Amaya Garcia · 7 years ago
e32df08 Remove individual copies of mbedtls_zeroize() by Andres Amaya Garcia · 8 years ago
2bd5757 Merge branch 'development' into iotssl-1204 by Hanno Becker · 7 years ago
784de59 Merge remote-tracking branch 'upstream-restricted/pr/410' into development-restricted by Jaeden Amero · 7 years ago
66954e1 Merge branch 'development' into development-restricted by Jaeden Amero · 7 years ago
005239e Merge remote-tracking branch 'upstream-public/pr/1294' into development by Jaeden Amero · 7 years ago
41b40e6 Merge remote-tracking branch 'upstream-restricted/pr/441' into development-restricted by Gilles Peskine · 8 years ago
aaaa98c Merge branch 'development-proposed' into development-restricted by Gilles Peskine · 8 years ago
d91f2a2 Merge branch 'development' into iotssl-1251-2.7 by Gilles Peskine · 8 years ago
239987f Fix heap-buffer overread in ALPN ext parsing by Manuel Pégourié-Gonnard · 8 years ago
1a2640c Merge branch 'iotssl-1368-unsafe-bounds-check-psk-identity-merge' into development-restricted by Gilles Peskine · 8 years ago
27b34d5 Wrong identifier used to check Encrypt-then-MAC flag by Hanno Becker · 8 years ago
73a3817 Parse Signature Algorithm ext when renegotiating by Ron Eldor · 8 years ago
8dd73e6 Parse Signature Algorithm ext when renegotiating by Ron Eldor · 8 years ago
90333da Replace wrong usage of WANT_READ by CONTINUE_PROCESSING by Hanno Becker · 8 years ago
4cb1f4d Style corrections by Hanno Becker · 8 years ago
ab74056 Make use of `mbedtls_dhm_set_group` when generating DHM params by Hanno Becker · 8 years ago
46f5a3e Check return codes from MD in ssl code by Andres Amaya Garcia · 8 years ago
d21d625 Change ssl_srv to new MD API and check return code by Andres Amaya Garcia · 8 years ago
83c9f49 Prevent bounds check bypass through overflow in PSK identity parsing by Hanno Becker · 8 years ago
ddc6e52 Merge remote-tracking branch 'gilles/iotssl-1223/development' into development by Manuel Pégourié-Gonnard · 8 years ago
383a118 Merge remote-tracking branch 'gilles/IOTSSL-1330/development' into development by Manuel Pégourié-Gonnard · 8 years ago
23b33f8 Merge remote-tracking branch 'hanno/sig_hash_compatibility' into development by Manuel Pégourié-Gonnard · 8 years ago
d50177f Fix FALLBACK_SCSV parsing by Gilles Peskine · 8 years ago
088ce43 Implement optional CA list suppression in Certificate Request by Janos Follath · 8 years ago
cf7ae7e Improve documentation by Hanno Becker · 8 years ago
0d0cd4b Split long lines by Hanno Becker · 8 years ago
7e5437a Remember suitable hash function for any signature algorithm. by Hanno Becker · 8 years ago
1aa267c Introduce macros and functions to characterize certain ciphersuites. by Hanno Becker · 8 years ago
c94f735 Ignore failures when sending fatal alerts by Gilles Peskine · 8 years ago
1cc8e34 Send TLS alerts in many more cases by Gilles Peskine · 8 years ago
f982852 Balanced braces across preprocessor conditionals by Gilles Peskine · 8 years ago