Log - 3a6a95d67c025946dc664a15bbb8d370bf673c56 - security/mbedtls

5ec628a Add rsa_rsassa_pss_verify_ext() by Manuel Pégourié-Gonnard · 10 years ago
920e1cd Add basic PSS cert verification by Manuel Pégourié-Gonnard · 10 years ago
e6d1d82 Relax checks on RSA mode for public key operations by Manuel Pégourié-Gonnard · 10 years ago
78117d5 Consider trailerField a constant by Manuel Pégourié-Gonnard · 10 years ago
cac31ee Factor common code for printing sig_alg by Manuel Pégourié-Gonnard · 11 years ago
cf975a3 Factor out some common code by Manuel Pégourié-Gonnard · 11 years ago
39868ee Parse CSRs signed with RSASSA-PSS by Manuel Pégourié-Gonnard · 11 years ago
8e42ff6 Parse CRLs signed with RSASSA-PSS by Manuel Pégourié-Gonnard · 11 years ago
9df5c96 Fix dependencies by Manuel Pégourié-Gonnard · 11 years ago
9c9cf5b More checks for length match in rsassa-pss params by Manuel Pégourié-Gonnard · 11 years ago
e76b750 Finish parsing RSASSA-PSS parameters by Manuel Pégourié-Gonnard · 11 years ago
f346bab Start parsing RSASSA-PSS parameters by Manuel Pégourié-Gonnard · 11 years ago
59a75d5 Basic parsing of certs signed with RSASSA-PSS by Manuel Pégourié-Gonnard · 11 years ago
b5212b4 Merge CCM cipher mode and ciphersuites by Paul Bakker · 11 years ago
0f651c7 Stricter check on SSL ClientHello internal sizes compared to actual packet size by Paul Bakker · 11 years ago
12895d1 Fix less-than-zero checks on unsigned numbers by Brian White · 11 years ago
82a5de7 Enforce alignment even if buffer is not aligned by Manuel Pégourié-Gonnard · 11 years ago
fe671f4 Add markers around generated code in error.c by Manuel Pégourié-Gonnard · 11 years ago
8ff17c5 Add missing DEBUG_RET on cipher failures by Manuel Pégourié-Gonnard · 11 years ago
61edffe Normalize "should never happen" messages/errors by Manuel Pégourié-Gonnard · 11 years ago
2e5ee32 Implement CCM and CCM_8 ciphersuites by Manuel Pégourié-Gonnard · 11 years ago
5efd772 Small readability improvement by Manuel Pégourié-Gonnard · 11 years ago
6768da9 Register CCM ciphersuites (not implemented yet) by Manuel Pégourié-Gonnard · 11 years ago
4193695 Add AES-CCM and CAMELLIA-CCM to the cipher layer by Manuel Pégourié-Gonnard · 11 years ago
de7bb44 Use cipher_auth_{en,de}crypt() in ssl_tls.c by Manuel Pégourié-Gonnard · 11 years ago
4562ffe Add cipher_auth_{en,de}crypt() by Manuel Pégourié-Gonnard · 11 years ago
8764d27 Use cipher_crypt() in ssl_tls.c by Manuel Pégourié-Gonnard · 11 years ago
3c1d150 Add cipher_crypt() by Manuel Pégourié-Gonnard · 11 years ago
0f6b66d CCM operations allow input == output by Manuel Pégourié-Gonnard · 11 years ago
aed6065 CCM source cosmetics/tune-ups by Manuel Pégourié-Gonnard · 11 years ago
ce77d55 Implement ccm_auth_decrypt() by Manuel Pégourié-Gonnard · 11 years ago
0023233 Refactor to prepare for CCM decryption by Manuel Pégourié-Gonnard · 11 years ago
637eb3d Add ccm_encrypt_and_tag() by Manuel Pégourié-Gonnard · 11 years ago
9fe0d13 Add ccm_init/free() by Manuel Pégourié-Gonnard · 11 years ago
a6916fa Add (placeholder) CCM module by Manuel Pégourié-Gonnard · 11 years ago
5593f7c Fix typo in debug_print_msg() by Paul Bakker · 11 years ago
da13016 Prepped for 1.3.7 release by Paul Bakker · 11 years ago
c37b0ac Fix typo in bignum.c by Paul Bakker · 11 years ago
b9e4e2c Fix formatting: fix some 'easy' > 80 length lines by Paul Bakker · 11 years ago
9af723c Fix formatting: remove trailing spaces, #endif with comments (> 10 lines) by Paul Bakker · 11 years ago
c3f89aa Removed word 'warning' from PKCS#5 selftest (buildbot warning as a result) by Paul Bakker · 11 years ago
9bb04b6 Removed redundant code in mpi_fill_random() by Paul Bakker · 11 years ago
2ca1dc8 Updated error.c and version_features.c based on changes by Paul Bakker · 11 years ago
a26a005 Make compilation on DragonFly work by Markus Pfeiffer · 11 years ago
2a024ac Merge dependency fixes by Paul Bakker · 11 years ago
cef4ad2 Adapt sources to configurable config.h name by Manuel Pégourié-Gonnard · 11 years ago
c16f4e1 Move RC4 ciphersuites down the list by Manuel Pégourié-Gonnard · 11 years ago
8eab8d3 Merge more portable AES-NI by Paul Bakker · 11 years ago
33dc46b Fix bug with mpi_fill_random() on big-endian by Paul Bakker · 11 years ago
f96f7b6 On OpenBSD, use arc4random_buf() instead of rand() to prevent warnings by Paul Bakker · 11 years ago
6384440 Better support for the different Attribute Types from IETF PKIX (RFC 5280) by Paul Bakker · 11 years ago
1a1fbba Sanity length checks in ssl_read_record() and ssl_fetch_input() by Paul Bakker · 11 years ago
24f37cc rsa_check_pubkey() now allows an E up to N by Paul Bakker · 11 years ago
0f90d7d version_check_feature() added to check for compile-time options at run-time by Paul Bakker · 11 years ago
a703663 Improve interop by not writing ext_len in ClientHello / ServerHello when 0 by Paul Bakker · 11 years ago
3d41370 Fix hash dependencies in X.509 tests by Manuel Pégourié-Gonnard · 11 years ago
3a306b9 Fix misplaced #endif in ssl_tls.c by Manuel Pégourié-Gonnard · 11 years ago
b1fd397 Adapt AES-NI code to "old" binutil versions by Manuel Pégourié-Gonnard · 11 years ago
c73079a Add debug_set_threshold() and thresholding of messages by Paul Bakker · 11 years ago
92478c3 Debug module only outputs full lines instead of parts by Paul Bakker · 11 years ago
eaebbd5 debug_set_log_mode() added to determine raw or full logging by Paul Bakker · 11 years ago
61885c7 Fix false reject in padding check in ssl_decrypt_buf() for CBC ciphersuites by Paul Bakker · 11 years ago
4ffcd2f Typo in PKCS#11 module by Paul Bakker · 11 years ago
10a9dd3 Typo in POLARSSL_PLATFORM_STD_FPRINTF in platform.c by Paul Bakker · 11 years ago
0767e67 Add support for 'emailAddress' to x509_string_to_names() by Paul Bakker · 11 years ago
c70e425 Only iterate over actual certificates in ssl_write_certificate_request() by Paul Bakker · 11 years ago
f4cf80b Restructured pk_parse_key_pkcs8_encrypted_der() to prevent unreachable code by Paul Bakker · 11 years ago
4f42c11 Remove arbitrary maximum length for cipher_list and content length by Paul Bakker · 11 years ago
d893aef Force default value to curve parameter by Paul Bakker · 11 years ago
93389cc Remove const indicator by Paul Bakker · 11 years ago
874bd64 Check setsockopt() return value in net_bind() by Paul Bakker · 11 years ago
3d8fb63 Added missing MPI_CHK around mpi functions by Paul Bakker · 11 years ago
a9c16d2 Removed unused cur variable in x509_string_to_names() by Paul Bakker · 11 years ago
0e4f911 Fix iteration counter by Paul Bakker · 11 years ago
784b04f Prepared for version 1.3.6 by Paul Bakker · 11 years ago polarssl-1.3.6
9655e45 Reject certificates with times not in UTC by Manuel Pégourié-Gonnard · 11 years ago
0776a43 Use UTC to heck certificate validity by Manuel Pégourié-Gonnard · 11 years ago
52c5af7 Merge support for verifying the extendedKeyUsage extension in X.509 by Paul Bakker · 11 years ago
7884837 Declare EC constants as 'const' by Manuel Pégourié-Gonnard · 11 years ago
1630058 Potential buffer overwrite in pem_write_buffer() fixed by Paul Bakker · 11 years ago
0408fd1 Add extendedKeyUsage checking in SSL modules by Manuel Pégourié-Gonnard · 11 years ago
7afb8a0 Add x509_crt_check_extended_key_usage() by Manuel Pégourié-Gonnard · 11 years ago
d6ad8e9 Make ssl_check_cert_usage() dependent on POLARSSL_X509_CRT_PARSE_C by Paul Bakker · 11 years ago
a77de8c Prevent warnings in ssl_check_cert_usage() if keyUsage checks are off by Paul Bakker · 11 years ago
043a2e2 Merge verification of the keyUsage extension in X.509 certificates by Paul Bakker · 11 years ago
a9db85d Add tests for keyUsage with client auth by Manuel Pégourié-Gonnard · 11 years ago
490047c Code cosmetics by Manuel Pégourié-Gonnard · 11 years ago
312010e Factor common parent checking code by Manuel Pégourié-Gonnard · 11 years ago
f93a3c43 Check the CA bit on trusted CAs too by Manuel Pégourié-Gonnard · 11 years ago
99d4f19 Add keyUsage checking for CAs by Manuel Pégourié-Gonnard · 11 years ago
3fed0b3 Factor some common code in x509_verify{,_child} by Manuel Pégourié-Gonnard · 11 years ago
7f2a07d Check keyUsage in SSL client and server by Manuel Pégourié-Gonnard · 11 years ago
603116c Add x509_crt_check_key_usage() by Manuel Pégourié-Gonnard · 11 years ago
2abed84 Specific return code for PK sig length mismatch by Manuel Pégourié-Gonnard · 11 years ago
35e95dd Add special return code for ecdsa length mismatch by Manuel Pégourié-Gonnard · 11 years ago
ddd427a Fixed spacing in entropy_gather() by Paul Bakker · 11 years ago
75342a6 Fixed typos in code by Paul Bakker · 11 years ago
0f79bab Disable timing_selftest() for now by Manuel Pégourié-Gonnard · 11 years ago
17b85cb Merged additional tests and improved code coverage by Paul Bakker · 11 years ago
0763a40 Merged support for the ALPN extension by Paul Bakker · 11 years ago