index
:
riscv-gnu-toolchain/qemu/roms/edk2/CryptoPkg/Library/MbedTlsLib/mbedtls.git
2.28-sphinx-versioned-documentation
archive/2.19
archive/Remove__CHECK_PARAMS_option
archive/armv8_crypto_extensions
archive/baremetal
archive/baremetal-test
archive/better-cf-padding-checks
archive/code
archive/config-header-check-2.7
archive/datagram_packing_1919_CI_failure_debug
archive/dev/buffer-resizing
archive/dev/fix_tls12_sent_sigalgs
archive/dev/gilles-peskine-arm/codegen_1.0-pip
archive/dev/gilles-peskine-arm/default-issue-templates
archive/dev/gilles-peskine-arm/no-generated-files-3.0
archive/dev/gilles-peskine-arm/no-generated-files-3.0-windows
archive/dev/gilles-peskine-arm/pip-requirements
archive/dev/gilles-peskine-arm/pr_3010-7
archive/dev/gilles-peskine-arm/pr_3010-8
archive/dev/gilles-peskine-arm/pr_4006-5
archive/dev/gilles-peskine-arm/pr_4067-2
archive/dev/gilles-peskine-arm/psa-storage-format-test-algorithms
archive/dev/gilles-peskine-arm/travis-20200724
archive/dev/gilles-peskine-arm/travis-20200821
archive/dev/gilles-peskine-arm/travis-arm-experiment
archive/dev/gilles-peskine-arm/travis-windows-20200426
archive/dev/mbedtls-2.10.0-preview
archive/dev/mstarzyk-mobica/code_style_v2
archive/dev/patater/201907-remove-crypto-wip
archive/dev/relnotes
archive/dev/yanesca/everest_ci_testing
archive/development-psa
archive/development-psa-big-merge-test-branch
archive/development-psa-merged-dev-8e76332
archive/development-psa-proposed-2
archive/development_2.x
archive/ecp_function_level_public_pr
archive/feature-aria-evaluation
archive/feature-opaque-keys
archive/feature-opaque-keys-ECDSA
archive/feature-opaque-keys-RSA
archive/fi_write_user_data
archive/iotssl-1169-pem-missing-checks
archive/iotssl-1401-record-compression
archive/iotssl-1401-record-compression-2.1
archive/iotssl-2299-param-valid-cmac
archive/iotssl-2299-param-valid-md
archive/iotssl-2495-full-config-ssl-opt-fails
archive/iotssl-2689-psa-tls1_2-get-key-exchange
archive/iotssl-2690-tls-prf-generic
archive/iotssl-2691-psa-running-handshake
archive/iotssl-2800-remove-crypto-all.sh
archive/iotssl-2801-generate-files-with-submodule
archive/iotssl-2885-wait-for-proxy
archive/iotssl-580-invalid-curves-crash
archive/iotssl-580-invalid-curves-crash-1.3
archive/iotssl-580-invalid-curves-crash-2.1
archive/iotssl-602-san-ip
archive/iotssl-683-travis-failing-intermittently-1.3
archive/iotssl-683-travis-failing-intermittently-2.1
archive/iotssl-683-travis-failing-intermittently-tmp
archive/iotssl-719-ssl3-non-compliance
archive/iotssl-784-array-entry_name-too-small-2.1
archive/jenkinsfile
archive/key_der_ecc
archive/lcov
archive/mbedtls-1.3
archive/mbedtls-1.4
archive/mbedtls-2.0
archive/mbedtls-2.1
archive/mbedtls-2.14
archive/mbedtls-2.15.1
archive/mbedtls-2.16
archive/mbedtls-2.17
archive/mbedtls-2.18
archive/mbedtls-2.3
archive/mbedtls-2.4
archive/mbedtls-2.5
archive/mbedtls-2.5.2
archive/mbedtls-2.6
archive/mbedtls-2.7
archive/new_mul_shortcut
archive/origin/remove_deprecated_functions
archive/partner-workshop-17Q2
archive/polarssl-0.10
archive/polarssl-0.11
archive/polarssl-0.12
archive/polarssl-0.13
archive/polarssl-0.14
archive/polarssl-1.0
archive/polarssl-1.1
archive/polarssl-1.2
archive/pre-vfy-callback
archive/psa-all-sh-fixes
archive/psa-hash-clone
archive/psa-storage-format-test-algorithms
archive/reduced-snprintf-for-trusted-firmware
archive/regularize_k_restore
archive/restartable-ecc-unused-variable
archive/restartable-ecc-unused-variable-2-16
archive/travis-coverity
coverity_scan
dev/bensze01/in-tree-redirects-test
dev/bensze01/merge-queue-test
dev/gilles-peskine-arm/all.sh-modern-ubsan
dev/gilles-peskine-arm/before-python-fix
dev/gilles-peskine-arm/ci-testing-2.2x
dev/gilles-peskine-arm/ci-testing-abi-change
dev/gilles-peskine-arm/ci-testing-development
dev/gilles-peskine-arm/ci-testing-fail-cmake
dev/gilles-peskine-arm/ci-testing-outcome-analysis-failure-3.6
dev/gilles-peskine-arm/coding-style-switch-to-enforcement
dev/gilles-peskine-arm/issue8709
dev/gilles-peskine-arm/issue8710
dev/gilles-peskine-arm/pk-psa-bridge-design
dev/gilles-peskine-arm/psa-test-op-fail
dev/gilles-peskine-arm/travis-tcp_client-experiment
dev/minosgalanakis/issue_8961_review_base
development
features/new-code-style/development
features/new-code-style/mbedtls-2.28
features/new-code-style/test/6802/new
features/new-code-style/test/6802/old
features/new-code-style/test/6802/target
features/new-code-style/test/6844/old
features/new-code-style/test/6844/target
features/new-code-style/test/6863/new
features/new-code-style/test/6863/old
features/new-code-style/test/6863/target
features/new-code-style/test/6866/old
features/new-code-style/test/6882/new
features/new-code-style/test/6882/old
features/new-code-style/test/6882/target
features/new-code-style/test/6883/new
features/new-code-style/test/6883/old
features/new-code-style/test/6883/target
features/new-code-style/test/6888/new
features/new-code-style/test/6888/old
features/new-code-style/test/6888/target
features/new-code-style/test/6889/new
features/new-code-style/test/6889/old
features/new-code-style/test/6889/target
features/new-code-style/test/6890/new
features/new-code-style/test/6890/old
features/new-code-style/test/6890/target
features/new-code-style/test/good/new/6863
features/new-code-style/test/good/new/6866
features/new-code-style/test/good/old/6863
features/new-code-style/test/good/old/6866
features/new-code-style/test/good/old/rename-delete
features/new-code-style/test/old/rename-delete
features/new-code-style/test/rename-delete/new
features/new-code-style/test/rename-delete/old
features/new-code-style/test/rename-delete/target
fix-cmake-header-include
fix-pkwrite-test-dependencies
main
master
mbedtls-2.28
mbedtls-3.6
md_tls13
move-test-code-to-framework
revert-8352-iar-fixes
sphinx-versioned-documentation
tls_ecdh_2c
origin/new_mul_shortcut
Unnamed repository; edit this file 'description' to name the repository.
root
about
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
library
/
ssl_tls.c
Age
Commit message (
Expand
)
Author
Files
Lines
2015-09-30
Added max length checking of hostname
Simon Butcher
1
-0
/
+3
2015-07-03
Up default server DH params to 2048 bits
Manuel Pégourié-Gonnard
1
-2
/
+2
2015-06-29
Fix unchecked malloc()
Manuel Pégourié-Gonnard
1
-0
/
+5
2015-04-29
Add countermeasure against cache-based lucky 13
Manuel Pégourié-Gonnard
1
-4
/
+7
2015-02-13
Update copyright line to 2015
Paul Bakker
1
-1
/
+1
2015-01-28
Fix url
Manuel Pégourié-Gonnard
1
-1
/
+1
2015-01-26
Update copyright notice
Manuel Pégourié-Gonnard
1
-5
/
+2
2014-10-23
Fix ssl_read wrt non-Application Data
Manuel Pégourié-Gonnard
1
-3
/
+12
2014-10-23
Fix ssl_close_notify() with non-blocking I/O
Manuel Pégourié-Gonnard
1
-6
/
+3
2014-07-09
Fix minlen for GCM suites
Manuel Pégourié-Gonnard
1
-2
/
+2
2014-07-08
Add static and casts to prevent compiler warnings
Paul Bakker
1
-3
/
+3
2014-07-08
Latest CBC padding check
Paul Bakker
1
-6
/
+22
2014-07-08
Fix length checking for AEAD ciphersuites
Paul Bakker
1
-5
/
+13
2014-07-08
Introduce polarssl_zeroize() instead of memset() for zeroization
Paul Bakker
1
-37
/
+40
2014-07-08
Sanity length checks in ssl_read_record() and ssl_fetch_input()
Paul Bakker
1
-3
/
+16
2014-07-08
Prevent potential NULL pointer dereference in ssl_read_record()
Paul Bakker
1
-1
/
+2
2014-07-08
Make sure no random pointer occur during failed malloc()'s
Paul Bakker
1
-4
/
+12
2014-07-08
ssl_init() left a dirty in_ctr pointer on failed allocation of out_ctr
Paul Bakker
1
-0
/
+1
2014-07-08
Forbid sequence number wrapping
Manuel Pégourié-Gonnard
1
-0
/
+14
2014-07-07
Countermeasure against "triple handshake" attack
Manuel Pégourié-Gonnard
1
-0
/
+24
2014-07-07
Remove a few dead stores
Paul Bakker
1
-1
/
+0
2014-07-07
Add a length check in ssl_derive_keys()
Paul Bakker
1
-0
/
+6
2014-07-07
Fixed potential overflow in certificate size in ssl_write_certificate()
Paul Bakker
1
-1
/
+1
2014-07-07
Safer buffer comparisons in the SSL modules
Manuel Pégourié-Gonnard
1
-3
/
+3
2013-09-23
Do not allow SHA256/SHA384 ciphersuites in < TLS 1.2
Paul Bakker
1
-0
/
+44
2013-09-23
RSA blinding on CRT operations to counter timing attacks
Paul Bakker
1
-3
/
+5
2013-09-11
Fixed potential memory leak when failing to resume a session
Paul Bakker
1
-0
/
+7
2013-09-11
Fixed potential heap buffer overflow on large hostname setting
Paul Bakker
1
-1
/
+5
2013-06-12
Added mechanism to provide alternative cipher / hash implementations
Paul Bakker
1
-0
/
+12
2013-06-06
ssl_parse_certificate() now calls x509parse_crt_der() directly
Paul Bakker
1
-2
/
+2
2013-06-06
Fixed const correctness issues that have no impact on the ABI
Paul Bakker
1
-18
/
+18
2013-04-12
Ability to specify allowed ciphersuites based on the protocol version.
Paul Bakker
1
-2
/
+20
2013-03-06
Fixed possible NULL pointer exception in ssl_get_ciphersuite()
Paul Bakker
1
-0
/
+3
2013-02-27
Removed further timing differences during SSL message decryption in ssl_decry...
Paul Bakker
1
-27
/
+57
2013-02-14
Fixed comment
Paul Bakker
1
-1
/
+1
2013-02-14
Fixed memory leak in ssl_free() and ssl_reset() for active session
Paul Bakker
1
-0
/
+13
2013-02-02
Added sending of alert messages in case of decryption failures as per RFC
Paul Bakker
1
-0
/
+8
2013-02-02
Disable debug messages that can introduce a timing side channel.
Paul Bakker
1
-1
/
+6
2013-02-02
Fixed timing difference resulting from badly formatted padding.
Paul Bakker
1
-23
/
+50
2013-01-25
Added ssl_handshake_step() to allow single stepping the handshake
Paul Bakker
1
-6
/
+24
2012-11-24
Fixed dependency on POLARSSL_SHA4_C in ssl modules
Paul Bakker
1
-2
/
+25
2012-10-31
- Moved ciphersuite naming scheme to IANA reserved names
Paul Bakker
1
-256
/
+258
2012-10-30
- Added ssl_get_peer_cert() to SSL API
Paul Bakker
1
-0
/
+8
2012-09-28
- Added proper support for TLS 1.2 signature_algorithm extension on server
Paul Bakker
1
-1
/
+2
2012-09-28
- Added option to add minimum accepted SSL/TLS protocol version
Paul Bakker
1
-0
/
+9
2012-09-28
- Set POLARSSL_DHM_RFC5114_MODP_1024_[PG] as default DHM MODP group for SSL/TLS
Paul Bakker
1
-0
/
+17
2012-09-28
- Revamped x509_verify() and the SSL f_vrfy callback implementations
Paul Bakker
1
-1
/
+1
2012-09-27
- Added ServerName extension parsing (SNI) at server side
Paul Bakker
1
-0
/
+9
2012-09-27
- Generalized external private key implementation handling (like PKCS#11) in...
Paul Bakker
1
-5
/
+36
2012-09-25
- Added simple SSL session cache implementation
Paul Bakker
1
-44
/
+30
[next]