TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / refs/heads/dev/mbedtls-2.10.0-preview / library / ssl_tls.c
  1. a331e0f Merge remote-tracking branch 'upstream-restricted/pr/421' into development-proposed by Jaeden Amero · 7 years ago
  2. a9ceef8 Change variable bytes_written to header_bytes in record decompression by Andrzej Kurek · 7 years ago archive/iotssl-1401-record-compression iotssl-1401-record-compression
  3. 5462e02 ssl_tls: Fix invalid buffer sizes during compression / decompression by Andrzej Kurek · 7 years ago
  4. 1f6301b Rename mbedtls_zeroize to mbedtls_platform_zeroize by Andres Amaya Garcia · 7 years ago
  5. e32df08 Remove individual copies of mbedtls_zeroize() by Andres Amaya Garcia · 8 years ago
  6. 80aa3b8 Merge branch 'pr_946' into development-proposed by Gilles Peskine · 7 years ago
  7. 73db838 Merge remote-tracking branch 'upstream-public/pr/1547' into development-proposed by Gilles Peskine · 7 years ago
  8. a09453f Merge branch 'pr_1395' into development-proposed by Gilles Peskine · 7 years ago
  9. 19d392b Fix compatibility problem in the printed message by mohammad1603 · 7 years ago
  10. 039fd12 Robustness fix in mbedtls_ssl_derive_keys by Gilles Peskine · 7 years ago
  11. 52aecb9 Check whether INT_MAX larger than SIZE_MAX scenario by mohammad1603 · 7 years ago
  12. 2bd5757 Merge branch 'development' into iotssl-1204 by Hanno Becker · 7 years ago
  13. b878805 Verify that f_send and f_recv send and receive the expected length by mohammad1603 · 7 years ago
  14. 27e8a12 Assign NULL after freeing psk and psk_identity by Azim Khan · 7 years ago
  15. 316b162 Separate psk and psk_identity buffers free by junyeonLEE · 8 years ago
  16. b4c571e Merge remote-tracking branch 'upstream-public/pr/1296' into HEAD by Gilles Peskine · 7 years ago
  17. 5bd15cb Avoid wraparound for ssl->in_left by mohammad1603 · 7 years ago
  18. b7f6086 Merge branch 'prr_424' into development-proposed by Gilles Peskine · 7 years ago
  19. 4bbaeb4 Add guard to out_left to avoid negative values by mohammad1603 · 7 years ago
  20. 784de59 Merge remote-tracking branch 'upstream-restricted/pr/410' into development-restricted by Jaeden Amero · 8 years ago
  21. 66954e1 Merge branch 'development' into development-restricted by Jaeden Amero · 8 years ago
  22. 5e9f14d Set correct minimal versions in default conf by Ron Eldor · 8 years ago
  23. 9e4f77c New MD API: rename functions from _ext to _ret by Gilles Peskine · 8 years ago
  24. d91f2a2 Merge branch 'development' into iotssl-1251-2.7 by Gilles Peskine · 8 years ago
  25. 82d607e Merge remote-tracking branch 'upstream-restricted/pr/433' into development-restricted by Gilles Peskine · 8 years ago
  26. d04c623 Merge remote-tracking branch 'restricted/pr/403' into development-restricted by Manuel Pégourié-Gonnard · 8 years ago
  27. b053efb Fix magic constant in previous commit by Manuel Pégourié-Gonnard · 8 years ago
  28. 464147c Fix SSLv3 MAC computation by Manuel Pégourié-Gonnard · 8 years ago
  29. 02e28fe Merge remote-tracking branch 'upstream-restricted/pr/425' into development-restricted by Gilles Peskine · 8 years ago
  30. 0960f06 Merge branch 'development' into development-restricted by Gilles Peskine · 8 years ago
  31. 0884f48 Merge remote-tracking branch 'upstream-public/pr/1141' into development by Gilles Peskine · 8 years ago
  32. 1df4923 Remove compile-time deprecation warning for TRUNCATED_HMAC_COMPAT by Hanno Becker · 8 years ago
  33. c753f5d Merge remote-tracking branch 'upstream-restricted/pr/369' into development-restricted by Gilles Peskine · 8 years ago
  34. 68306ed Merge remote-tracking branch 'upstream-public/pr/1094' into development by Gilles Peskine · 8 years ago
  35. 4c2ac7e Deprecate MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT by Hanno Becker · 8 years ago
  36. 563423f Improve documentation of MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT option by Hanno Becker · 8 years ago
  37. e89353a Add fallback to non-compliant truncated HMAC for compatibiltiy by Hanno Becker · 8 years ago
  38. 81c7b18 Don't truncate MAC key when truncated HMAC is negotiated by Hanno Becker · 8 years ago
  39. 992b687 Fix heap corruption in ssl_decrypt_buf by Hanno Becker · 8 years ago
  40. 888fede Merge branch 'development' into development-restricted by Manuel Pégourié-Gonnard · 8 years ago
  41. 05c4fc8 Correct typo in debugging message by Hanno Becker · 8 years ago
  42. e41158b Add comment on the meaning of ssl->in_offt == NULL by Hanno Becker · 8 years ago
  43. e72489d Remove internal references and use milder wording for some comments by Hanno Becker · 8 years ago
  44. a6fb089 Don't split debug messages by Hanno Becker · 8 years ago
  45. 21df7f9 Fix handling of HS msgs in mbedtls_ssl_read if renegotiation unused by Hanno Becker · 8 years ago
  46. b4ff0aa Swap branches accepting/refusing renegotiation in in ssl_read by Hanno Becker · 8 years ago
  47. c76c619 Reconcile resending of previous flights by Hanno Becker · 8 years ago
  48. 90333da Replace wrong usage of WANT_READ by CONTINUE_PROCESSING by Hanno Becker · 8 years ago
  49. 52c6dc6 Correct length check for DTLS records from old epochs. by Hanno Becker · 8 years ago
  50. 8b170a0 Enhance and extend checking of message processing state by Hanno Becker · 8 years ago
  51. e65ce78 Enhance debugging output in ssl_tls.c by Hanno Becker · 8 years ago
  52. 1a9a51c Enhance documentation of ssl_write_hostname_ext, adapt ChangeLog. by Hanno Becker · 8 years ago
  53. 947194e Make mbedtls_ssl_set_hostname safe to be called multiple times by Hanno Becker · 8 years ago
  54. a90658f Add ssl_conf_dh_param_bin superseding ssl_conf_dh_param by Hanno Becker · 8 years ago
  55. 470a8c4 Deprecate mbedtls_ssl_conf_dh_param by Hanno Becker · 8 years ago
  56. 184f675 Improve debugging output by Hanno Becker · 8 years ago
  57. 00d0a68 Adapt code setting default DHM parameters by Hanno Becker · 8 years ago
  58. 2f38a43 Enhance documentation of ssl_write_hostname_ext, adapt ChangeLog. by Hanno Becker · 8 years ago
  59. 39f5d35 Make mbedtls_ssl_set_hostname safe to be called multiple times by Hanno Becker · 8 years ago
  60. 8c8b0ab Change default Diffie-Hellman parameters from RFC 5114 to RFC 7919 by Hanno Becker · 8 years ago
  61. 0b7b83f Fixed SIGSEGV problem when writing with ssl_write_real a buffer that is over MBEDTLS_SSL_MAX_CONTENT_LEN bytes by Florin · 8 years ago
  62. 2b187c4 Correct typo by Hanno Becker · 8 years ago
  63. 9648f8b Add run-time check for handshake message size in ssl_write_record by Hanno Becker · 8 years ago
  64. d33f1ca Add run-time check for record content size in ssl_encrypt_buf by Hanno Becker · 8 years ago
  65. 0169253 Document code silently discarding invalid records by Andres Amaya Garcia · 8 years ago
  66. 2fad94b Dont send alert on invalid DTLS record type by Andres Amaya Garcia · 8 years ago
  67. 3395250 Fix use of uninitialised ret ssl_tls.c by Andres Amaya Garcia · 8 years ago
  68. 46f5a3e Check return codes from MD in ssl code by Andres Amaya Garcia · 8 years ago
  69. bbafd34 Set len var to 0 when buf is freed in ssl_tls.c by Andres Amaya Garcia · 8 years ago
  70. 1a607a1 Change ssl_tls to use new MD API and check ret code by Andres Amaya Garcia · 8 years ago
  71. a004988 Zeroize old psk buf when changing value in ssl_tls by Andres Amaya Garcia · 8 years ago
  72. bdf3905 Ensure application data records are not kept when fully processed by Hanno Becker · 8 years ago
  73. bb9dd0c Add hard assertion to mbedtls_ssl_read_record_layer by Hanno Becker · 8 years ago
  74. 4a810fb Fix mbedtls_ssl_read by Hanno Becker · 8 years ago
  75. af0665d Simplify retaining of messages for future processing by Hanno Becker · 8 years ago
  76. e6706e6 Add tests for missing CA chains and bad curves. by Hanno Becker · 8 years ago
  77. 39ae8cd Fix implementation of VERIFY_OPTIONAL verification mode by Hanno Becker · 8 years ago
  78. 383a118 Merge remote-tracking branch 'gilles/IOTSSL-1330/development' into development by Manuel Pégourié-Gonnard · 8 years ago
  79. 5d2511c SHA-1 deprecation: allow it in key exchange by Gilles Peskine · 8 years ago
  80. 5e79cb3 Remove SHA-1 in TLS by default by Gilles Peskine · 8 years ago
  81. 23b33f8 Merge remote-tracking branch 'hanno/sig_hash_compatibility' into development by Manuel Pégourié-Gonnard · 8 years ago
  82. 088ce43 Implement optional CA list suppression in Certificate Request by Janos Follath · 8 years ago
  83. 7e5437a Remember suitable hash function for any signature algorithm. by Hanno Becker · 8 years ago
  84. 92e4426 SSLv3: when refusing renegotiation, stop processing by Gilles Peskine · 8 years ago
  85. c94f735 Ignore failures when sending fatal alerts by Gilles Peskine · 8 years ago
  86. 8498cb3 Cleaned up double variable declaration by Gilles Peskine · 8 years ago
  87. 064a85c Code portability fix by Gilles Peskine · 8 years ago
  88. 1cc8e34 Send TLS alerts in many more cases by Gilles Peskine · 8 years ago
  89. f982852 Balanced braces across preprocessor conditionals by Gilles Peskine · 8 years ago
  90. 182013f Prevent SLOTH attacks by Janos Follath · 9 years ago
  91. 2196c7f Fix renegotiation at incorrect times in DTLS by Andres AG · 9 years ago
  92. 1903fb3 Clarify Comments and Fix Typos (#651) by Brian J Murray · 9 years ago
  93. 8e00410 Merge fix for AEAD Random IVs by Simon Butcher · 9 years ago
  94. 9900014 Merge fix for IE Certificate Compatibility by Simon Butcher · 9 years ago
  95. 23bdca0 Fix an x509 compatibility issue by Janos Follath · 9 years ago
  96. b5b6af2 Puts platform time abstraction into its own header by Simon Butcher · 9 years ago
  97. 8eb6413 Address issues find by manual coverity scan. by Janos Follath · 9 years ago
  98. f002164 Refactor slightly to silence a clang-analyze warning by Nicholas Wilson · 9 years ago
  99. d5800b7 Abstracts away time()/stdlib.h into platform by SimonB · 9 years ago
  100. e846b51 Use the SSL IO and time callback typedefs consistently by Simon Butcher · 9 years ago