1. 3497d8c Do not check sig on trust-ca (might not be top) by Paul Bakker · 12 years ago
  2. 769075d Fixed dependency on POLARSSL_SHA4_C in ssl modules by Paul Bakker · 12 years ago
  3. 78ce507 Fixed typo by Paul Bakker · 12 years ago
  4. 926af75 Fixed client certificate handling with TLS 1.2 by Paul Bakker · 12 years ago
  5. e44ec10 Fixed segfault in mpi_shift_r() by Manuel Pégourié-Gonnard · 12 years ago
  6. 90f309f Added proper gitignores for linux compilation by Paul Bakker · 12 years ago
  7. 43ae298 - Fixed argument types by Paul Bakker · 12 years ago
  8. 34d8dbc - Depth that the certificate verify callback receives is now numbered bottom-up (Peer cert depth is 0) by Paul Bakker · 12 years ago
  9. e0f41f3 - Updated version to 1.2.1 by Paul Bakker · 12 years ago
  10. 9daf0d0 - Added max length check for rsa_pkcs1_sign with PKCS#1 v2.1 by Paul Bakker · 12 years ago
  11. 96c4ed8 - Proper building of shared lib when SHARED defined by Paul Bakker · 12 years ago
  12. 644db38 - Added SHARED define for building with -fPIC by Paul Bakker · 12 years ago
  13. f02c564 - Allow R and A to point to same mpi in mpi_div_mpi by Paul Bakker · 12 years ago
  14. 36c4a67 - Fixed off-by-one loop by Paul Bakker · 12 years ago
  15. 096348f - Fixed comments / typos by Paul Bakker · 12 years ago
  16. fc975dc - Small Windows VC6 fixes by Paul Bakker · 12 years ago
  17. d9374b0 - Moved mpi_inv_mod() outside POLARSSL_GENPRIME by Paul Bakker · 12 years ago
  18. 7a2538e - Fixes for MSVC6 by Paul Bakker · 12 years ago
  19. 645ce3a - Moved ciphersuite naming scheme to IANA reserved names by Paul Bakker · 12 years ago
  20. bb0139c - Moved to more flexible define structure by Paul Bakker · 12 years ago
  21. 35a7fe5 - Prevent compiler warning by Paul Bakker · 12 years ago
  22. 8611e73 - Fixed infinite loop by Paul Bakker · 12 years ago
  23. b0550d9 - Added ssl_get_peer_cert() to SSL API by Paul Bakker · 12 years ago
  24. d2c167e - And fixed order by Paul Bakker · 12 years ago
  25. 98fe5ea - Removed snprintf altogether for critical code paths by Paul Bakker · 12 years ago
  26. 331f563 - Do not use sprintf(), use snprintf() instead. by Paul Bakker · 12 years ago
  27. ba26e9e - Cache now only allows a maximum of entries in cache for preventing memory overrun by Paul Bakker · 12 years ago
  28. f1ab0ec - Changed default compiler flags to include -O2 by Paul Bakker · 12 years ago
  29. 67f9d53 - Removed code breaking strict-aliasing by Paul Bakker · 12 years ago
  30. 81420ab - properly print minimum version by Paul Bakker · 12 years ago
  31. c110d02 - Added extra check to prevent crash on failed memory allocation by Paul Bakker · 12 years ago
  32. 0be82f2 - Updated rsa_pkcs1_verify() and rsa_pkcs1_sign() to use appropriate buffer size for max MPIs by Paul Bakker · 12 years ago
  33. 36fec23 - Updated to 1.2.0 by Paul Bakker · 12 years ago
  34. 62261d6 - Rewrote bignum type definition #ifdef tree to work better on all systems by Paul Bakker · 12 years ago
  35. 3338b79 - Fixed WIN32 version of x509parse_crtpath() by Paul Bakker · 12 years ago
  36. d6f17b4 - Moved definition to top to prevent MS VC compiler warning by Paul Bakker · 12 years ago
  37. 5c2364c - Moved from unsigned long to uint32_t throughout code by Paul Bakker · 12 years ago
  38. 0e19e9f - Minor define change to prevent warning by Paul Bakker · 12 years ago
  39. 993d11d - Send ClientHello with 'minimal version' by Paul Bakker · 12 years ago
  40. 23f3680 - Added proper support for TLS 1.2 signature_algorithm extension on server by Paul Bakker · 12 years ago
  41. 1d29fb5 - Added option to add minimum accepted SSL/TLS protocol version by Paul Bakker · 12 years ago
  42. 62f2dee - Set POLARSSL_DHM_RFC5114_MODP_1024_[PG] as default DHM MODP group for SSL/TLS by Paul Bakker · 12 years ago
  43. 915275b - Revamped x509_verify() and the SSL f_vrfy callback implementations by Paul Bakker · 12 years ago
  44. 5701cdc - Added ServerName extension parsing (SNI) at server side by Paul Bakker · 12 years ago
  45. eb2c658 - Generalized external private key implementation handling (like PKCS#11) in SSL/TLS by Paul Bakker · 12 years ago
  46. 321df6f - Expanded rsa_check_privkey() to check DP, DQ and QP as well by Paul Bakker · 12 years ago
  47. 5531c6d - Change buffer size on mpi_write_file() to cover larger size MPIs by Paul Bakker · 12 years ago
  48. 49d7567 - Support INTEGRITY OS by Paul Bakker · 12 years ago
  49. d14277d - Added PBKDF2 error code by Paul Bakker · 12 years ago
  50. 0a59707 - Added simple SSL session cache implementation by Paul Bakker · 12 years ago
  51. b00ca42 - Handle existence of OpenSSL Trust Extensions at end of X.509 DER blob by Paul Bakker · 12 years ago
  52. 29b6476 - Added predefined DHM groups from RFC 5114 by Paul Bakker · 12 years ago
  53. d0f6fa7 - Sending of handshake_failures during renegotiation added by Paul Bakker · 12 years ago
  54. 2d319fd - Fixed bug in mpi_add_abs with adding a small number to a large mpi with carry rollover. by Paul Bakker · 12 years ago
  55. 48916f9 - Added Secure Renegotiation (RFC 5746) by Paul Bakker · 12 years ago
  56. b5b20f1 - Extra sanity check for input added by Paul Bakker · 12 years ago
  57. 5f70b25 - Correctly handle SHA256 ciphersuites in SSLv3 by Paul Bakker · 12 years ago
  58. ec636f3 - Removed handling for SSLv2 Client Hello (as per RFC 5246 recommendation) by Paul Bakker · 12 years ago
  59. 94a6796 - Correctly handle MS certificate's key usage bits by Paul Bakker · 12 years ago
  60. f518b16 - Added PKCS#5 PBKDF2 key derivation function by Paul Bakker · 12 years ago
  61. 535e97d - Better checking for reading over buffer boundaries by Paul Bakker · 12 years ago
  62. b68cad6 - Made cipersuites in ssl context const (no intention to modify) by Paul Bakker · 12 years ago
  63. bb51f0c - Only include md.h if needed by POLARSSL_PKCS1_V21 by Paul Bakker · 12 years ago
  64. 6a2f857 - Added DragonflyBSD support by Paul Bakker · 12 years ago
  65. 3c16db9 - Fixed potential memory zeroization on miscrafted RSA key by Paul Bakker · 12 years ago
  66. 6132d0a - Added Blowfish to generic cipher layer by Paul Bakker · 12 years ago
  67. 83f00bb - Updated strerror codes for SSL Compression and Blowfish by Paul Bakker · 12 years ago
  68. a9379c0 - Added base blowfish algorithm by Paul Bakker · 12 years ago
  69. 2770fbd - Added DEFLATE compression support as per RFC3749 (requires zlib) by Paul Bakker · 12 years ago
  70. cefb396 - Handle empty certificate subject names by Paul Bakker · 12 years ago
  71. e4791f3 - Bugfix for Windows in cert path handling by Paul Bakker · 12 years ago
  72. 67820bd - Only include padlock header when POLARSSL_PADLOCK_C is defined by Paul Bakker · 12 years ago
  73. 8d91458 - Added X509 CA Path support by Paul Bakker · 12 years ago
  74. e6ee41f - Added OpenSSL / PolarSSL compatibility script (tests/compat.sh) and example application (programs/ssl/o_p_test) (Requires OpenSSL) by Paul Bakker · 13 years ago
  75. 5054692 - Moved to prevent uninitialized exit var by Paul Bakker · 13 years ago
  76. f6198c1 - mpi_exp_mod() now correctly handles negative base numbers (Closes ticket #52) by Paul Bakker · 13 years ago
  77. 2a5c7a8 - Add Windows required library by Paul Bakker · 13 years ago
  78. 62f88dc Makefile more compatible with WINDOWS environment by Paul Bakker · 13 years ago
  79. cd5b529 - Added automatic WINDOWS define in Makefile by Paul Bakker · 13 years ago
  80. 4d2c124 - Changed certificate verify behaviour to comply with RFC 6125 section 6.3 to not match CN if subjectAltName extension is present. by Paul Bakker · 13 years ago
  81. 7e2c728 - Updated to support NetBSD by Paul Bakker · 13 years ago
  82. 186751d - Moved out_msg to out_hdr + 32 to support hardware acceleration by Paul Bakker · 13 years ago
  83. 3aac1da - Added exception error parsing when FATAL ssl message is received by Paul Bakker · 13 years ago
  84. 6b906e5 - Const correctness mpi_get_bit() - Documentation mpi_lsb(), mpi_msb() by Paul Bakker · 13 years ago
  85. 05ef835 - Added support for Hardware Acceleration hooking in SSL/TLS by Paul Bakker · 13 years ago
  86. 430ffbe - Fixed potential heap corruption in x509_name allocation by Paul Bakker · 13 years ago
  87. aec37cb - Added extra sanity check to DHM values by Paul Bakker · 13 years ago
  88. 279432a - Fixed size of clean by Paul Bakker · 13 years ago
  89. 901c656 - Fill full buffer (Wrong parameter usage) by Paul Bakker · 13 years ago
  90. 380da53 - Abstracted checksum updating during handshake by Paul Bakker · 13 years ago
  91. ca4ab49 - Added GCM ciphersuites to TLS implementation by Paul Bakker · 13 years ago
  92. d8ef167 - Updated for latest GCM error by Paul Bakker · 13 years ago
  93. fc5183c - Added input checking and more efficient buffer overlap use by Paul Bakker · 13 years ago
  94. 369e14b - Small code rewrite by Paul Bakker · 13 years ago
  95. 030277a - Updated error.c to include GCM errors by Paul Bakker · 13 years ago
  96. 13ed9ab - Removed unused variable by Paul Bakker · 13 years ago
  97. 0a92518 - Report unexpected_message if unknown record type is received by Paul Bakker · 13 years ago
  98. 10cd225 - Added support for the SHA256 ciphersuites of AES and Camellia by Paul Bakker · 13 years ago
  99. bf63b36 - Updated comments by Paul Bakker · 13 years ago
  100. c3f177a - Added client side support for signature_algorithm extension and affiliated handling by Paul Bakker · 13 years ago