yuzu-emu/mbedtls
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
mbedtls/library
History
Hanno Becker 64ce974180 Don't check ciphersuite and compression in SSL session cache lookup 
Session-ID based session resumption requires that the resumed session
is consistent with the client's ClientHello in terms of choice of
ciphersuite and choice of compression.

This check was previously assumed to be performed in the session cache
implementation, which seems wrong: The session cache should be an id-based
lookup only, and protocol specific checks should be left to Mbed TLS.

This commit
- adds an explicit ciphersuite and compression consistency check after
  the SSL session cache has been queried
- removes the ciphersuite and compression consistency check from
  Mbed TLS' session cache reference implementation.

Signed-off-by: Hanno Becker <hanno.becker@arm.com>
2021-04-15 10:47:40 +01:00
..
.gitignore
aes.c Move padlock.h to library 2021-03-10 12:52:37 +00:00
aesni.c Move aesni.h to library 2021-03-10 12:52:37 +00:00
aesni.h Move aesni.h to library 2021-03-10 12:52:37 +00:00
arc4.c
aria.c
asn1parse.c Add missing const attribute to asn1 api 2021-01-26 13:57:46 +01:00
asn1write.c Add missing const attribute to asn1write api 2021-01-27 15:37:12 +01:00
base64.c Code style fixups 2021-03-04 14:34:50 +00:00
bignum.c Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
blowfish.c
bn_mul.h Move bn_mul.h to library/ 2021-03-10 12:52:37 +00:00
camellia.c
ccm.c
chacha20.c
chachapoly.c
check_crypto_config.h psa: config: Add CAMELLIA to the list of possible CMAC ciphers 2021-03-25 14:25:46 +01:00
cipher.c Rename <pk/md/cipher>_internal.h to *_wrap.h 2021-03-10 12:52:37 +00:00
cipher_wrap.c Rename <pk/md/cipher>_internal.h to *_wrap.h 2021-03-10 12:52:37 +00:00
cipher_wrap.h Rename <pk/md/cipher>_internal.h to *_wrap.h 2021-03-10 12:52:37 +00:00
cmac.c Update comment to only apply to AES-192 2021-01-29 11:09:50 +01:00
CMakeLists.txt Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
common.h
ctr_drbg.c Document mutex invariant for CTR_DRBG 2021-02-22 19:24:03 +01:00
debug.c Declare mbedtls_debug_print_msg as printf-like 2021-03-10 17:00:32 +00:00
des.c
dhm.c
ecdh.c
ecdsa.c Fix unused argument when compiling with MBEDTLS_ECDSA_SIGN_ALT 2021-02-10 17:07:20 +01:00
ecjpake.c Skip tests requiring known entropy for ECJPAKE ALT implementations 2021-01-22 14:23:08 +01:00
ecp.c Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
ecp_alt.h Rename ecp_internal.h to ecp_alt.h 2021-03-10 12:52:37 +00:00
ecp_curves.c Cosmetic improvement 2021-03-10 23:44:28 +01:00
entropy.c Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
entropy_poll.c Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
entropy_poll.h Move entropy_poll.h to library 2021-03-10 12:52:37 +00:00
error.c Move padlock.h to library 2021-03-10 12:52:37 +00:00
gcm.c Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
hkdf.c
hmac_drbg.c Document mutex invariant for HMAC_DRBG 2021-02-22 19:24:03 +01:00
Makefile Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
md.c Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
md2.c Merge branch 'development' into development-restricted 2020-12-03 09:59:42 +01:00
md4.c Merge branch 'development' into development-restricted 2020-12-03 09:59:42 +01:00
md5.c Merge branch 'development' into development-restricted 2020-12-03 09:59:42 +01:00
md_wrap.h Rename <pk/md/cipher>_internal.h to *_wrap.h 2021-03-10 12:52:37 +00:00
memory_buffer_alloc.c
mps_common.h Capitalise MPS trace macros 2021-04-07 12:45:35 +01:00
mps_error.h Fix Doxygen headers for MPS files 2021-03-29 14:20:18 +01:00
mps_reader.c Capitalise MPS trace macros 2021-04-07 12:45:35 +01:00
mps_reader.h Fix Doxygen headers for MPS files 2021-03-29 14:20:18 +01:00
mps_trace.c Capitalise MPS trace macros 2021-04-07 12:45:35 +01:00
mps_trace.h Capitalise MPS trace macros 2021-04-07 12:45:35 +01:00
net_sockets.c Fix sloppy wording around stricly less-than vs less or equal 2021-03-01 11:39:21 +01:00
nist_kw.c
oid.c
padlock.c Move padlock.h to library 2021-03-10 12:52:37 +00:00
padlock.h Move padlock.h to library 2021-03-10 12:52:37 +00:00
pem.c Remove Extraneous bytes from buffer post pem write 2020-12-07 17:29:42 +00:00
pk.c Rename <pk/md/cipher>_internal.h to *_wrap.h 2021-03-10 12:52:37 +00:00
pk_wrap.c Rename <pk/md/cipher>_internal.h to *_wrap.h 2021-03-10 12:52:37 +00:00
pk_wrap.h Rename <pk/md/cipher>_internal.h to *_wrap.h 2021-03-10 12:52:37 +00:00
pkcs5.c
pkcs11.c
pkcs12.c
pkparse.c
pkwrite.c Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
platform.c
platform_util.c Fixes two _POSIX_C_SOURCE typos. 2020-11-13 09:20:18 +00:00
poly1305.c
psa_crypto.c Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
psa_crypto_cipher.c psa: cipher: Remove cipher_generate_iv driver entry point 2021-03-26 15:58:25 +01:00
psa_crypto_cipher.h psa: cipher: Remove cipher_generate_iv driver entry point 2021-03-26 15:58:25 +01:00
psa_crypto_client.c psa: Make sure MBEDTLS_PSA_CRYPTO_CLIENT is defined 2021-02-09 15:36:08 +01:00
psa_crypto_core.h Move mbedtls_cipher_info_from_psa to psa_crypto_cipher.c 2021-03-26 15:48:13 +01:00
psa_crypto_driver_wrappers.c psa: cipher: Remove cipher_generate_iv driver entry point 2021-03-26 15:58:25 +01:00
psa_crypto_driver_wrappers.h psa: cipher: Remove cipher_generate_iv driver entry point 2021-03-26 15:58:25 +01:00
psa_crypto_ecp.c Move mbedtls_md_info_from_psa into the mbedtls hash driver 2021-03-15 12:14:40 +01:00
psa_crypto_ecp.h psa: Rework ECDSA sign/verify support in the transparent test driver 2021-02-18 15:45:12 +01:00
psa_crypto_hash.c Simplify compilation guards around hash driver testing 2021-03-16 11:07:55 +01:00
psa_crypto_hash.h Fix some errors relating to header file renames 2021-04-07 16:36:53 +01:00
psa_crypto_invasive.h Rework MAC algorithm / key type validation 2021-03-03 19:58:02 +01:00
psa_crypto_its.h Update documentation 2020-11-25 13:10:50 +01:00
psa_crypto_random_impl.h Work around MSVC bug with duplicate static declarations 2021-02-16 18:55:05 +01:00
psa_crypto_rsa.c Fix some errors relating to header file renames 2021-04-07 16:36:53 +01:00
psa_crypto_rsa.h psa: Add RSA sign/verify hash support to the transparent test driver 2021-02-18 15:45:06 +01:00
psa_crypto_se.c
psa_crypto_se.h Update documentation 2020-11-25 13:10:50 +01:00
psa_crypto_service_integration.h
psa_crypto_slot_management.c Merge pull request #4279 from ronald-cron-arm/fix-invalid-id-error-code 2021-04-06 18:46:30 +02:00
psa_crypto_slot_management.h psa: Fix error code when creating/registering a key with invalid id 2021-04-01 14:05:41 +02:00
psa_crypto_storage.c Merge pull request #3872 from gabor-mezei-arm/3275_use_PSA_ERROR_DATA_INVALID_where_warranted 2021-02-03 20:54:46 +01:00
psa_crypto_storage.h Rename PSA_KEY_SLOT_COUNT to MBEDTLS_PSA_KEY_SLOT_COUNT 2021-02-15 14:26:44 +01:00
psa_its_file.c Correct fix for potential truncation 2021-03-10 17:00:32 +00:00
ripemd160.c Merge branch 'development' into development-restricted 2020-12-03 09:59:42 +01:00
rsa.c Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
rsa_alt_helpers.c Rename rsa_internal.* to rsa_alt_helpers.* 2021-03-10 12:52:37 +00:00
rsa_alt_helpers.h Rename rsa_internal.* to rsa_alt_helpers.* 2021-03-10 12:52:37 +00:00
sha1.c
sha256.c
sha512.c Merge branch 'development' into development-restricted 2020-12-03 09:59:42 +01:00
ssl_cache.c Don't check ciphersuite and compression in SSL session cache lookup 2021-04-15 10:47:40 +01:00
ssl_ciphersuites.c
ssl_cli.c Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
ssl_cookie.c Rename ssl_internal.h to ssl_misc.h 2021-03-10 12:52:37 +00:00
ssl_invasive.h
ssl_misc.h Rename ssl_internal.h to ssl_misc.h 2021-03-10 12:52:37 +00:00
ssl_msg.c Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
ssl_srv.c Don't check ciphersuite and compression in SSL session cache lookup 2021-04-15 10:47:40 +01:00
ssl_ticket.c Rename ssl_internal.h to ssl_misc.h 2021-03-10 12:52:37 +00:00
ssl_tls.c Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
ssl_tls13_keys.c Rename ssl_internal.h to ssl_misc.h 2021-03-10 12:52:37 +00:00
ssl_tls13_keys.h
threading.c Explain the usage of is_valid in pthread mutexes 2021-02-22 19:24:03 +01:00
timing.c
version.c
version_features.c Merge remote-tracking branch 'origin/development' into development_new 2021-04-07 16:31:09 +01:00
x509.c Remove certs module from mbedtls. 2021-03-16 15:51:25 +01:00
x509_create.c
x509_crl.c
x509_crt.c Fix memsan build with clang 11 2021-03-05 14:24:03 +00:00
x509_csr.c
x509write_crt.c
x509write_csr.c
xtea.c