Gilles Peskine 311f54d0ee tls_prf: support an empty master secret ...

In TLS, the master secret is always a key. But EAP-TLS uses the TLS
PRF to derive an IV with an empty string for the "secret" input. The
code always stored the secret into a key slot before calling the TLS
PRF, but this doesn't work when the secret is empty, since PSA Crypto
no longer supports empty keys. Add a special case for an empty secret.

2019-09-23 18:19:22 +02:00

..

.gitignore

…

certs.c

Add support for all SHA modes in cert_write

2019-07-14 09:17:57 +03:00

CMakeLists.txt

Merge remote-tracking branch 'origin/pr/2799' into development

2019-08-30 15:50:45 +01:00

debug.c

…

error.c

Introduce specific error for ver/cfg mismatch on deserialization

2019-08-23 12:51:21 +03:00

Makefile

Handle deleting non-existant files on Windows

2019-08-30 15:45:46 +01:00

net_sockets.c

Added mbedtls_net_close and use it in ssl_fork_server to correctly

2019-08-23 10:57:03 +02:00

pkcs11.c

…

ssl_cache.c

…

ssl_ciphersuites.c

…

ssl_cli.c

Make calc_verify() return the length as well

2019-08-23 12:45:33 +03:00

ssl_cookie.c

…

ssl_srv.c

Make calc_verify() return the length as well

2019-08-23 12:45:33 +03:00

ssl_ticket.c

Move session save/load function to ssl_tls.c

2019-08-23 12:48:41 +03:00

ssl_tls.c

tls_prf: support an empty master secret

2019-09-23 18:19:22 +02:00

version_features.c

Add new config MBEDTLS_SSL_CONTEXT_SERIALIZATION

2019-08-23 12:52:29 +03:00

version.c

…

x509_create.c

…

x509_crl.c

Always return a high-level error code from X.509 module

2019-06-04 13:59:48 +01:00

x509_crt.c

Fix uninitialized variable in x509_crt

2019-08-30 14:48:36 +03:00

x509_csr.c

…

x509.c

Improve documentation of mbedtls_x509_get_ext()

2019-06-04 13:59:55 +01:00

x509write_crt.c

Merge remote-tracking branch 'origin/development' into development-restricted

2019-07-10 08:46:54 +01:00

x509write_csr.c

Change size of preallocated buffer for pk_sign() calls

2019-06-06 13:20:48 +02:00