1. 1a2640c Merge branch 'iotssl-1368-unsafe-bounds-check-psk-identity-merge' into development-restricted by Gilles Peskine · 7 years ago
  2. bfa8df4 Merge remote-tracking branch 'restricted/pr/416' into development-restricted by Manuel Pégourié-Gonnard · 7 years ago
  3. 888fede Merge branch 'development' into development-restricted by Manuel Pégourié-Gonnard · 7 years ago
  4. 91048a3 RSA PSS: remove redundant check; changelog by Gilles Peskine · 7 years ago
  5. b00b0da RSA PSS: fix first byte check for keys of size 8N+1 by Gilles Peskine · 7 years ago
  6. 139108a RSA PSS: fix minimum length check for keys of size 8N+1 by Gilles Peskine · 7 years ago
  7. 6a54b02 RSA: Fix another buffer overflow in PSS signature verification by Gilles Peskine · 7 years ago
  8. 28a0c72 RSA: Fix buffer overflow in PSS signature verification by Gilles Peskine · 7 years ago
  9. 735b37e Correctly handle leap year in x509_date_is_valid() by Andres Amaya Garcia · 8 years ago
  10. 73a3817 Parse Signature Algorithm ext when renegotiating by Ron Eldor · 7 years ago
  11. bd9d42c Fix typo and bracketing in macro args by Andres Amaya Garcia · 7 years ago
  12. 106637f Correctly handle leap year in x509_date_is_valid() by Andres Amaya Garcia · 8 years ago
  13. 8dd73e6 Parse Signature Algorithm ext when renegotiating by Ron Eldor · 7 years ago
  14. 86968c6 Fix typo and bracketing in macro args by Andres Amaya Garcia · 7 years ago
  15. 6bce9cb Always print gmt_unix_time in TLS client by Andres Amaya Garcia · 7 years ago
  16. 1a9a51c Enhance documentation of ssl_write_hostname_ext, adapt ChangeLog. by Hanno Becker · 8 years ago
  17. 947194e Make mbedtls_ssl_set_hostname safe to be called multiple times by Hanno Becker · 8 years ago
  18. 074c58f Always print gmt_unix_time in TLS client by Andres Amaya Garcia · 7 years ago
  19. 2f38a43 Enhance documentation of ssl_write_hostname_ext, adapt ChangeLog. by Hanno Becker · 8 years ago
  20. 39f5d35 Make mbedtls_ssl_set_hostname safe to be called multiple times by Hanno Becker · 8 years ago
  21. 0169253 Document code silently discarding invalid records by Andres Amaya Garcia · 7 years ago
  22. 2fad94b Dont send alert on invalid DTLS record type by Andres Amaya Garcia · 7 years ago
  23. 72ea31b Update version number to 2.6.0 by Simon Butcher · 7 years ago mbedtls-2.6.0
  24. a55e084 Fix naked call to time() with platform call by Simon Butcher · 7 years ago
  25. 61937d4 Rename time and index parameter to avoid name conflict. by Hanno Becker · 8 years ago
  26. 2e3ddfa Prevent signed integer overflow in CSR parsing by Andres AG · 8 years ago
  27. 8016474 Fix potential integer overflow parsing DER CRT by Andres AG · 8 years ago
  28. 4f753c1 Fix potential integer overflow parsing DER CRL by Andres AG · 8 years ago
  29. 683ac27 Checked names by Gilles Peskine · 7 years ago
  30. a95d630 Fix platform setup/teardown feature and comments by Simon Butcher · 7 years ago
  31. d91f99f Rename macro SETUP_ALT to SETUP_TEARDOWN_ALT by Andres Amaya Garcia · 7 years ago
  32. 3c8a39d Remove internal functions from setup API by Andres Amaya Garcia · 7 years ago
  33. 2a6f39c Add library setup and teardown APIs by Andres Amaya Garcia · 7 years ago
  34. bedc205 Export mbedtls_aes_(en/de)crypt to retain for API compatibility by Hanno Becker · 7 years ago
  35. 639ce56 Undo API change from SHA1 deprecation by Hanno Becker · 7 years ago
  36. d300a57 Undo API change by Hanno Becker · 7 years ago
  37. 7269fee Check return code of mbedtls_mpi_fill_random by Ron Eldor · 8 years ago
  38. 3e19df5 Resource leak fix on windows platform by Ron Eldor · 8 years ago
  39. 8ab0595 Wrong preproccessor condition fix by Ron Eldor · 8 years ago
  40. 5a21fd6 fix for issue 1118: check if iv is zero in gcm. by Ron Eldor · 8 years ago
  41. bfea4a7 Remove mutexes from ECP hardware acceleration by Janos Follath · 7 years ago
  42. 9107b5f Improve comments by Manuel Pégourié-Gonnard · 7 years ago
  43. 31458a1 Only return VERIFY_FAILED from a single point by Manuel Pégourié-Gonnard · 7 years ago
  44. d15795a Improve behaviour on fatal errors by Manuel Pégourié-Gonnard · 7 years ago
  45. 83c9f49 Prevent bounds check bypass through overflow in PSK identity parsing by Hanno Becker · 7 years ago
  46. f2a597f Update the version number to 2.5.1 by Simon Butcher · 7 years ago mbedtls-2.5.1
  47. 4a42f3c Merge remote-tracking branch 'restricted/iotssl-1398' into development-restricted by Manuel Pégourié-Gonnard · 7 years ago
  48. bdf3905 Ensure application data records are not kept when fully processed by Hanno Becker · 7 years ago
  49. b86b143 Merge remote-tracking branch 'restricted/iotssl-1138-rsa-padding-check-restricted' into development-restricted by Manuel Pégourié-Gonnard · 7 years ago
  50. a0bf6ec Merge remote-tracking branch 'restricted/IOTSSL-1366/development-restricted' into development-restricted by Manuel Pégourié-Gonnard · 7 years ago
  51. db108ac Merge remote-tracking branch 'hanno/mpi_read_file_underflow' into development by Manuel Pégourié-Gonnard · 7 years ago
  52. 1178ac5 Merge remote-tracking branch 'hanno/sliding_exponentiation' into development by Manuel Pégourié-Gonnard · 7 years ago
  53. bb9dd0c Add hard assertion to mbedtls_ssl_read_record_layer by Hanno Becker · 7 years ago
  54. 4a810fb Fix mbedtls_ssl_read by Hanno Becker · 8 years ago
  55. af0665d Simplify retaining of messages for future processing by Hanno Becker · 8 years ago
  56. e6706e6 Add tests for missing CA chains and bad curves. by Hanno Becker · 8 years ago
  57. 39ae8cd Fix implementation of VERIFY_OPTIONAL verification mode by Hanno Becker · 8 years ago
  58. ddc6e52 Merge remote-tracking branch 'gilles/iotssl-1223/development' into development by Manuel Pégourié-Gonnard · 7 years ago
  59. 383a118 Merge remote-tracking branch 'gilles/IOTSSL-1330/development' into development by Manuel Pégourié-Gonnard · 7 years ago
  60. 5d2511c SHA-1 deprecation: allow it in key exchange by Gilles Peskine · 8 years ago
  61. cd3c845 Allow SHA-1 in SSL renegotiation tests by Gilles Peskine · 8 years ago
  62. 750c353 X.509 self-tests: replaced SHA-1 certificates by SHA-256 by Gilles Peskine · 8 years ago
  63. 5e79cb3 Remove SHA-1 in TLS by default by Gilles Peskine · 8 years ago
  64. 23b33f8 Merge remote-tracking branch 'hanno/sig_hash_compatibility' into development by Manuel Pégourié-Gonnard · 7 years ago
  65. d50177f Fix FALLBACK_SCSV parsing by Gilles Peskine · 8 years ago
  66. 9f77017 Updated version number to 2.5.0 by Simon Butcher · 8 years ago mbedtls-2.5.0
  67. f5bf718 Change return type of AES decrypt and encrypt by Andres AG · 8 years ago
  68. 18ac716 RSA: wipe more stack buffers by Gilles Peskine · 8 years ago
  69. 4a7f6a0 RSA: wipe stack buffers by Gilles Peskine · 8 years ago
  70. 6e87698 Fix bug in threading sample implementation #667 by Janos Follath · 8 years ago
  71. f9203b4 Add exponent blinding to RSA with CRT by Janos Follath · 8 years ago
  72. e81102e Add exponent blinding to RSA without CRT by Janos Follath · 8 years ago
  73. 088ce43 Implement optional CA list suppression in Certificate Request by Janos Follath · 8 years ago
  74. cf7ae7e Improve documentation by Hanno Becker · 8 years ago
  75. 0d0cd4b Split long lines by Hanno Becker · 8 years ago
  76. 7e5437a Remember suitable hash function for any signature algorithm. by Hanno Becker · 8 years ago
  77. 1aa267c Introduce macros and functions to characterize certain ciphersuites. by Hanno Becker · 8 years ago
  78. af610a0 Fix check-doxy-blocks.pl errors (cmac.c ecjpake.h) by Andres Amaya Garcia · 8 years ago
  79. 6c8ccd5 Fix cleanup label alignment by Janos Follath · 8 years ago
  80. 69b2051 Update version features with ECP macros by Janos Follath · 8 years ago
  81. c44ab97 Apply review feedback on ECP interface by Janos Follath · 8 years ago
  82. b8a90fb Update ECP hardware abstraction interface by Janos Follath · 8 years ago
  83. 430d337 Add thread safety to ECP hardware acceleration by Janos Follath · 8 years ago
  84. 552f6b6 Add global mutex for asymmetric crypto accelerator by Janos Follath · 8 years ago
  85. 16e63ea Fix alternative ECP function names by Janos Follath · 8 years ago
  86. 4d9c69d Fix ECP alternative macro names by Janos Follath · 8 years ago
  87. 47d28f0 Remove alt_internal directory by Janos Follath · 8 years ago
  88. 372697b Clean up ECP abstraction layer code by Janos Follath · 8 years ago
  89. b069753 ECP: Add module and function level replacement options. by Janos Follath · 8 years ago
  90. 7284987 Fix data loss in unsigned int cast in PK by Andres AG · 8 years ago
  91. c1380de RSA PKCS1v1.5 verification: check padding length by Manuel Pégourié-Gonnard · 8 years ago
  92. 92e4426 SSLv3: when refusing renegotiation, stop processing by Gilles Peskine · 8 years ago
  93. c94f735 Ignore failures when sending fatal alerts by Gilles Peskine · 8 years ago
  94. 8498cb3 Cleaned up double variable declaration by Gilles Peskine · 8 years ago
  95. 064a85c Code portability fix by Gilles Peskine · 8 years ago
  96. b2034b7 Fix potential stack underflow in mpi_read_file. by Hanno Becker · 8 years ago
  97. 4bcb491 Abort modular inversion when modulus is one. by Hanno Becker · 8 years ago
  98. e7e7650 More length checks in RSA PKCS1v15 verify by Gilles Peskine · 8 years ago
  99. 0e17eb0 More length checks in RSA PKCS1v15 verify by Gilles Peskine · 8 years ago
  100. 1cc8e34 Send TLS alerts in many more cases by Gilles Peskine · 8 years ago