Rivoreo Source Code Repositories
src.rivoreo.one / security / mbedtls / f4253c72f0737752ffee29e1812e29990bc9ef40 / library / ssl_tls.c
  1. 085ab04 Fix website url to use https. by Manuel Pégourié-Gonnard · 10 years ago
  2. 9698f58 Remove maintainer line. by Manuel Pégourié-Gonnard · 10 years ago
  3. 19f6b5d Remove redundant "all rights reserved" by Manuel Pégourié-Gonnard · 10 years ago
  4. a658a40 Update copyright by Manuel Pégourié-Gonnard · 10 years ago
  5. 967a2a5 Change name to mbed TLS in the copyright notice by Manuel Pégourié-Gonnard · 10 years ago
  6. 5b8f7ea Merge new security defaults for programs (RC4 disabled, SSL3 disabled) by Paul Bakker · 10 years ago
  7. c82b7e2 Merge option to disable truncated hmac on the server-side by Paul Bakker · 10 years ago
  8. a852cf4 Fix issue with non-blocking I/O & record splitting by Manuel Pégourié-Gonnard · 10 years ago
  9. d5746b3 Fix warning by Manuel Pégourié-Gonnard · 10 years ago
  10. f356115 Merge support for 1/n-1 record splitting by Paul Bakker · 10 years ago
  11. f6080b8 Merge support for enabling / disabling renegotiation support at compile-time by Paul Bakker · 10 years ago
  12. d7e2483 Merge miscellaneous fixes into development by Paul Bakker · 10 years ago
  13. bd47a58 Add ssl_set_arc4_support() by Manuel Pégourié-Gonnard · 10 years ago
  14. 352143f Refactor for clearer correctness/security by Manuel Pégourié-Gonnard · 10 years ago
  15. e117a8f Make truncated hmac a runtime option server-side by Manuel Pégourié-Gonnard · 10 years ago
  16. cfa477e Allow disabling record splitting at runtime by Manuel Pégourié-Gonnard · 10 years ago
  17. d76314c Add 1/n-1 record splitting by Manuel Pégourié-Gonnard · 10 years ago
  18. 837f0fe Make renego period configurable by Manuel Pégourié-Gonnard · 10 years ago
  19. b445805 Auto-renegotiate before sequence number wrapping by Manuel Pégourié-Gonnard · 10 years ago
  20. 6186019 Save 48 bytes if SSLv3 is not defined by Manuel Pégourié-Gonnard · 10 years ago
  21. 615e677 Make renegotiation a compile-time option by Manuel Pégourié-Gonnard · 10 years ago
  22. 60346be Improve debugging message. by Manuel Pégourié-Gonnard · 10 years ago
  23. 2457fa0 Create ticket keys only if enabled by Manuel Pégourié-Gonnard · 10 years ago
  24. d16d1cb Use more #ifdef's on CLI_C and SRV_C in ssl_tls.c by Manuel Pégourié-Gonnard · 10 years ago
  25. 8e4b337 Fix some more warnings in reduced configs by Manuel Pégourié-Gonnard · 10 years ago
  26. e5b0fc1 Make malloc-init script a bit happier by Manuel Pégourié-Gonnard · 10 years ago
  27. 27e3edb Check key/cert pair in ssl_set_own_cert() by Manuel Pégourié-Gonnard · 10 years ago
  28. d056ce0 Use seq_num as AEAD nonce by default by Manuel Pégourié-Gonnard · 10 years ago
  29. 9d7821d Fix warning in reduced config by Manuel Pégourié-Gonnard · 10 years ago
  30. 1a03473 Keep EtM state across renegotiations by Manuel Pégourié-Gonnard · 10 years ago
  31. 169dd6a Adjust minimum length for EtM by Manuel Pégourié-Gonnard · 10 years ago
  32. 08558e5 Fix for the RFC erratum by Manuel Pégourié-Gonnard · 10 years ago
  33. 313d796 Implement EtM by Manuel Pégourié-Gonnard · 10 years ago
  34. 0098e7d Preparation for EtM by Manuel Pégourié-Gonnard · 10 years ago
  35. 699cafa Implement initial negotiation of EtM by Manuel Pégourié-Gonnard · 10 years ago
  36. ada3030 Implement extended master secret by Manuel Pégourié-Gonnard · 10 years ago
  37. 367381f Add negotiation of Extended Master Secret by Manuel Pégourié-Gonnard · 10 years ago
  38. 1cbd39d Implement FALLBACK_SCSV client-side by Manuel Pégourié-Gonnard · 10 years ago
  39. 82788fb Fix minor style issues by Paul Bakker · 10 years ago polarssl-1.3.9
  40. a13500f Fix bug with ssl_close_notify and non-blocking I/O by Manuel Pégourié-Gonnard · 11 years ago
  41. f07f421 Fix server-initiated renego with non-blocking I/O by Manuel Pégourié-Gonnard · 11 years ago
  42. 6591962 Allow delay on renego on client by Manuel Pégourié-Gonnard · 11 years ago
  43. f26a1e8 ssl_read() stops returning non-application data by Manuel Pégourié-Gonnard · 11 years ago
  44. 55e4ff2 Tune comments by Manuel Pégourié-Gonnard · 11 years ago
  45. 8d4ad07 SHA-2 ciphersuites now require TLS 1.x by Manuel Pégourié-Gonnard · 11 years ago
  46. 968afaa ssl_key_cert not available in all configurations by Paul Bakker · 11 years ago
  47. 84bbeb5 Adapt cipher and MD layer with _init() and _free() by Paul Bakker · 11 years ago
  48. accaffe Restructure ssl_handshake_init() and small fixes by Paul Bakker · 11 years ago
  49. 8f870b0 Add dhm_init() by Paul Bakker · 11 years ago
  50. 5b4af39 Add _init() and _free() for hash modules by Paul Bakker · 11 years ago
  51. c7ea99a Add _init() and _free() for cipher modules by Paul Bakker · 11 years ago
  52. 8fb99ab Merge changes for leaner memory footprint by Paul Bakker · 11 years ago
  53. 481fcfd Make PSK_LEN configurable and adjust PMS size by Manuel Pégourié-Gonnard · 11 years ago
  54. a9964db Add ssl_set_renegotiation_enforced() by Manuel Pégourié-Gonnard · 11 years ago
  55. dd0c0f3 Better usage of dhm_calc_secret in SSL by Manuel Pégourié-Gonnard · 11 years ago
  56. 8df6863 Fix bug in DHE-PSK PMS computation by Manuel Pégourié-Gonnard · 11 years ago
  57. 0357688 Remove misplaced debugging message by Manuel Pégourié-Gonnard · 11 years ago
  58. eaa76f7 Fix computation of minlen for encrypted packets by Manuel Pégourié-Gonnard · 11 years ago
  59. e800cd8 Re-arrange some code in ssl_derive_keys() by Manuel Pégourié-Gonnard · 11 years ago
  60. 0bcc4e1 Fix length checking for AEAD ciphersuites by Manuel Pégourié-Gonnard · 11 years ago
  61. 4d2a8eb SSL modules now using x509_crt_parse_der() by Manuel Pégourié-Gonnard · 11 years ago
  62. 66d5d07 Fix formatting in various code to match spacing from coding style by Paul Bakker · 11 years ago
  63. d8bb826 Fix code styling for return statements by Paul Bakker · 11 years ago
  64. 3461772 Introduce polarssl_zeroize() instead of memset() for zeroization by Paul Bakker · 11 years ago
  65. 7792198 Normalize some error messages by Manuel Pégourié-Gonnard · 11 years ago
  66. c2bbac9 Fix misplaced parenthesis. by Peter Vaskovic · 11 years ago
  67. b5212b4 Merge CCM cipher mode and ciphersuites by Paul Bakker · 11 years ago
  68. 8ff17c5 Add missing DEBUG_RET on cipher failures by Manuel Pégourié-Gonnard · 11 years ago
  69. 61edffe Normalize "should never happen" messages/errors by Manuel Pégourié-Gonnard · 11 years ago
  70. 2e5ee32 Implement CCM and CCM_8 ciphersuites by Manuel Pégourié-Gonnard · 11 years ago
  71. 5efd772 Small readability improvement by Manuel Pégourié-Gonnard · 11 years ago
  72. de7bb44 Use cipher_auth_{en,de}crypt() in ssl_tls.c by Manuel Pégourié-Gonnard · 11 years ago
  73. 8764d27 Use cipher_crypt() in ssl_tls.c by Manuel Pégourié-Gonnard · 11 years ago
  74. b9e4e2c Fix formatting: fix some 'easy' > 80 length lines by Paul Bakker · 11 years ago
  75. 9af723c Fix formatting: remove trailing spaces, #endif with comments (> 10 lines) by Paul Bakker · 11 years ago
  76. 2a024ac Merge dependency fixes by Paul Bakker · 11 years ago
  77. cef4ad2 Adapt sources to configurable config.h name by Manuel Pégourié-Gonnard · 11 years ago
  78. 1a1fbba Sanity length checks in ssl_read_record() and ssl_fetch_input() by Paul Bakker · 11 years ago
  79. 3a306b9 Fix misplaced #endif in ssl_tls.c by Manuel Pégourié-Gonnard · 11 years ago
  80. 61885c7 Fix false reject in padding check in ssl_decrypt_buf() for CBC ciphersuites by Paul Bakker · 11 years ago
  81. 93389cc Remove const indicator by Paul Bakker · 11 years ago
  82. 0408fd1 Add extendedKeyUsage checking in SSL modules by Manuel Pégourié-Gonnard · 11 years ago
  83. d6ad8e9 Make ssl_check_cert_usage() dependent on POLARSSL_X509_CRT_PARSE_C by Paul Bakker · 11 years ago
  84. a77de8c Prevent warnings in ssl_check_cert_usage() if keyUsage checks are off by Paul Bakker · 11 years ago
  85. a9db85d Add tests for keyUsage with client auth by Manuel Pégourié-Gonnard · 11 years ago
  86. 7f2a07d Check keyUsage in SSL client and server by Manuel Pégourié-Gonnard · 11 years ago
  87. 0763a40 Merged support for the ALPN extension by Paul Bakker · 11 years ago
  88. 4224bc0 Prevent potential NULL pointer dereference in ssl_read_record() by Paul Bakker · 11 years ago
  89. 0b874dc Implement ALPN client-side by Manuel Pégourié-Gonnard · 11 years ago
  90. 7e250d4 Add ALPN interface by Manuel Pégourié-Gonnard · 11 years ago
  91. 77f4f39 Make sure no random pointer occur during failed malloc()'s by Paul Bakker · 11 years ago
  92. 91c61bc Further tightened the padlen check to prevent underflow / overflow by Paul Bakker · 11 years ago
  93. b2bf5a1 Fix possible buffer overflow with PSK by Manuel Pégourié-Gonnard · 11 years ago
  94. 3d6504a ssl_init() left a dirty in_ctr pointer on failed allocation of out_ctr by Paul Bakker · 11 years ago
  95. 83cdffc Forbid sequence number wrapping by Manuel Pégourié-Gonnard · 11 years ago
  96. 796c6f3 Countermeasure against "triple handshake" attack by Manuel Pégourié-Gonnard · 11 years ago
  97. 7dc4c44 Library files moved to use platform layer by Paul Bakker · 11 years ago
  98. ab24010 Enforce our choice of allowed curves. by Manuel Pégourié-Gonnard · 11 years ago
  99. 7f38ed0 ssl_set_curves is no longer ECDHE only by Manuel Pégourié-Gonnard · 11 years ago
  100. ac71941 Renamings and other fixes by Manuel Pégourié-Gonnard · 11 years ago