22360825ae
Address PR review comments
...
set `cache->chain` to NULL,
instead of setting the whole structure to zero.
2017-10-29 17:53:52 +02:00
e1a9a4a826
Fix crash when calling mbedtls_ssl_cache_free twice
...
Set `cache` to zero at the end of `mbedtls_ssl_cache_free` #1104
2017-10-17 18:15:41 +03:00
a55e084bce
Fix naked call to time() with platform call
...
In ssl_cache.c a call to time() was being made instead of it's platform
equivalent.
2017-07-28 23:46:43 +01:00
b5b6af2663
Puts platform time abstraction into its own header
...
Separates platform time abstraction into it's own header from the
general platform abstraction as both depend on different build options.
(MBEDTLS_PLATFORM_C vs MBEDTLS_HAVE_TIME)
2016-07-13 14:46:18 +01:00
d5800b7761
Abstracts away time()/stdlib.h into platform
...
Substitutes time() into a configurable platform interface to allow it to be
easily substituted.
2016-04-26 14:49:59 +01:00
37ff14062e
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
6fb8187279
Update date in copyright line
2015-07-28 17:11:58 +02:00
12ad798c87
Rename ssl_session.length to id_len
2015-06-18 15:50:37 +02:00
1b8de57827
Remove a few redundant memset after calloc.
...
Using the following semantic patch provided by Mansour Moufid:
@@
expression x;
@@
x = mbedtls_calloc(...)
...
- memset(x, 0, ...);
2015-05-27 16:58:55 +02:00
7551cb9ee9
Replace malloc with calloc
...
- platform layer currently broken (not adapted yet)
- memmory_buffer_alloc too
2015-05-26 16:04:06 +02:00
2cf5a7c98e
The Great Renaming
...
A simple execution of tmp/invoke-rename.pl
2015-04-08 13:25:31 +02:00
7f8099773e
Rename include directory to mbedtls
2015-03-10 11:23:56 +00:00
fe44643b0e
Rename website and repository
2015-03-06 13:17:10 +00:00
99b9259f76
Fix whitespace of 369e6c20.
2015-02-16 10:43:52 +00:00
c531b4af3c
Apply the semantic patch rm-malloc-cast.cocci.
...
for dir in library programs; do
spatch --sp-file scripts/rm-malloc-cast.cocci --dir $dir \
--in-place;
done
2015-02-16 10:43:52 +00:00
00ab47026b
cleanup library and some basic tests. Includes, add guards to includes
2015-02-10 11:28:46 +00:00
860b51642d
Fix url again
2015-01-28 17:12:07 +00:00
085ab040aa
Fix website url to use https.
2015-01-23 11:06:27 +00:00
9698f5852c
Remove maintainer line.
2015-01-23 10:59:00 +00:00
19f6b5dfaa
Remove redundant "all rights reserved"
2015-01-23 10:54:00 +00:00
a658a4051b
Update copyright
2015-01-23 09:55:24 +00:00
967a2a5f8c
Change name to mbed TLS in the copyright notice
2015-01-22 14:28:16 +00:00
e5b0fc1847
Make malloc-init script a bit happier
2014-11-13 12:42:12 +01:00
14b16c62e9
Minor optimizations (original by Peter Vaskovic, modified by Paul Bakker)
...
Move strlen out of for loop.
Remove redundant null checks before free.
2014-05-28 11:34:33 +02:00
b9e4e2c97a
Fix formatting: fix some 'easy' > 80 length lines
2014-05-01 14:18:25 +02:00
cef4ad2509
Adapt sources to configurable config.h name
2014-04-30 16:40:20 +02:00
84c30c7e83
Fix memory leak in ssl_cache
2014-03-14 08:41:01 +01:00
274a12e17c
Fix bug with ssl_cache and max_entries=0
2014-03-14 08:41:00 +01:00
7dc4c44267
Library files moved to use platform layer
2014-02-06 13:20:16 +01:00
c55988406f
SSL Cache threading support
2013-09-28 15:24:59 +02:00
b6b0956631
Rm of memset instead of x509_crt_init()
2013-09-18 14:32:52 +02:00
c559c7a680
Renamed x509_cert structure to x509_crt for consistency
2013-09-18 14:32:52 +02:00
ddf26b4e38
Renamed x509parse_* functions to new form
...
e.g. x509parse_crtfile -> x509_crt_parse_file
2013-09-18 13:46:23 +02:00
7c6b2c320e
Split up X509 files into smaller modules
2013-09-16 21:41:54 +02:00
38d1eba3b5
Move verify_result from ssl_context to session
2013-08-26 14:26:02 +02:00
fa9b10050b
Also compiles / runs without time-based functions in OS
...
Can now run without need of time() / localtime() and gettimeofday()
2013-07-03 17:22:32 +02:00
6e339b52e8
Memory-allocation abstraction layer and buffer-based allocator added
2013-07-03 17:22:31 +02:00
ed27a041e4
More granular define selections within code to allow for smaller code
...
sizes
2013-04-18 23:12:34 +02:00
e81beda60f
The SSL session cache module (ssl_cache) now also retains peer_cert information (not the entire chain)
...
The real peer certificate is copied into a x509_buf in the
ssl_cache_entry and reinstated upon cache retrieval. The information
about the rest of the certificate chain is lost in the process.
As the handshake (and certificate verification) has already been
performed, no issue is foreseen.
2013-03-06 18:01:03 +01:00
ba26e9ebfd
- Cache now only allows a maximum of entries in cache for preventing memory overrun
2012-10-23 22:18:28 +00:00
0a59707523
- Added simple SSL session cache implementation
...
- Revamped session resumption handling
2012-09-25 21:55:46 +00:00
