Rivoreo Source Code Repositories
src.rivoreo.one / security / mbedtls / 93784e12ae470e0dbd1d51323854b7b0ba90e782 / ChangeLog
  1. 5c2364c - Moved from unsigned long to uint32_t throughout code by Paul Bakker · 12 years ago
  2. 1d29fb5 - Added option to add minimum accepted SSL/TLS protocol version by Paul Bakker · 12 years ago
  3. 915275b - Revamped x509_verify() and the SSL f_vrfy callback implementations by Paul Bakker · 12 years ago
  4. 5701cdc - Added ServerName extension parsing (SNI) at server side by Paul Bakker · 12 years ago
  5. eb2c658 - Generalized external private key implementation handling (like PKCS#11) in SSL/TLS by Paul Bakker · 12 years ago
  6. 0a59707 - Added simple SSL session cache implementation by Paul Bakker · 12 years ago
  7. b00ca42 - Handle existence of OpenSSL Trust Extensions at end of X.509 DER blob by Paul Bakker · 12 years ago
  8. 29b6476 - Added predefined DHM groups from RFC 5114 by Paul Bakker · 12 years ago
  9. 995a215 - Added credits by Paul Bakker · 12 years ago
  10. d4c2bd7 - Added bug by Paul Bakker · 12 years ago
  11. 48916f9 - Added Secure Renegotiation (RFC 5746) by Paul Bakker · 12 years ago
  12. ec636f3 - Removed handling for SSLv2 Client Hello (as per RFC 5246 recommendation) by Paul Bakker · 12 years ago
  13. f518b16 - Added PKCS#5 PBKDF2 key derivation function by Paul Bakker · 12 years ago
  14. 535e97d - Better checking for reading over buffer boundaries by Paul Bakker · 12 years ago
  15. 3c16db9 - Fixed potential memory zeroization on miscrafted RSA key by Paul Bakker · 12 years ago
  16. 6132d0a - Added Blowfish to generic cipher layer by Paul Bakker · 12 years ago
  17. a9379c0 - Added base blowfish algorithm by Paul Bakker · 12 years ago
  18. 2770fbd - Added DEFLATE compression support as per RFC3749 (requires zlib) by Paul Bakker · 12 years ago
  19. 4f9a7bb - Added Thumb assembly optimizations by Paul Bakker · 12 years ago
  20. cefb396 - Handle empty certificate subject names by Paul Bakker · 12 years ago
  21. 8d91458 - Added X509 CA Path support by Paul Bakker · 12 years ago
  22. e6ee41f - Added OpenSSL / PolarSSL compatibility script (tests/compat.sh) and example application (programs/ssl/o_p_test) (Requires OpenSSL) by Paul Bakker · 12 years ago
  23. f6198c1 - mpi_exp_mod() now correctly handles negative base numbers (Closes ticket #52) by Paul Bakker · 12 years ago
  24. 5b37784 - Updated with tickets by Paul Bakker · 12 years ago
  25. 4d2c124 - Changed certificate verify behaviour to comply with RFC 6125 section 6.3 to not match CN if subjectAltName extension is present. by Paul Bakker · 12 years ago
  26. 186751d - Moved out_msg to out_hdr + 32 to support hardware acceleration by Paul Bakker · 12 years ago
  27. 6b906e5 - Const correctness mpi_get_bit() - Documentation mpi_lsb(), mpi_msb() by Paul Bakker · 12 years ago
  28. 05ef835 - Added support for Hardware Acceleration hooking in SSL/TLS by Paul Bakker · 12 years ago
  29. fad3893 - Added release notes for 1.1.2 and 1.1.3 to trunk by Paul Bakker · 12 years ago
  30. 01cc394 - Added commandline error code convertor (util/strerror) by Paul Bakker · 12 years ago
  31. 430ffbe - Fixed potential heap corruption in x509_name allocation by Paul Bakker · 12 years ago
  32. 4cf2b7f - Added name by Paul Bakker · 13 years ago
  33. 84bef1d - Fixed DHM length to correct one by Paul Bakker · 13 years ago
  34. ca4ab49 - Added GCM ciphersuites to TLS implementation by Paul Bakker · 13 years ago
  35. 915940e - Added TLS1.2 by Paul Bakker · 13 years ago
  36. 452d532 - Fixed potential memory corruption on miscrafted client messages (found by Frama-C team at CEA LIST) by Paul Bakker · 13 years ago
  37. 7beceb2 by Paul Bakker · 13 years ago
  38. 3782458 - Added Changelog for bugfix in mpi_cmp_mpi() by Paul Bakker · 13 years ago
  39. 89e80c9 - Added base Galois/Counter mode (GCM) for AES by Paul Bakker · 13 years ago
  40. bdb912d - Added preliminary ASN.1 buffer writing support by Paul Bakker · 13 years ago
  41. 048d04e - AES code only check for Padlock once by Paul Bakker · 13 years ago
  42. 1504af5 - Removed redundant POLARSSL_DEBUG_MSG define by Paul Bakker · 13 years ago
  43. a8cd239 - Added support for wildcard certificates by Paul Bakker · 13 years ago
  44. fab5c82 - Added support for NULL cipher (POLARSSL_CIPHER_NULL_CIPHER) and weak ciphersuites (POLARSSL_ENABLE_WEAK_CIPHERSUITES). They are disabled by default! by Paul Bakker · 13 years ago
  45. 99955bf - Final changes for 1.1.1 release by Paul Bakker · 13 years ago
  46. 2ec0a56 - Fixed issue with Intel compiler on 64-bit platforms by Paul Bakker · 13 years ago
  47. b15b851 - Check for failed malloc() in ssl_set_hostname() and x509_get_entries() (Closes ticket #47, found by Hugo Leisink) by Paul Bakker · 13 years ago
  48. 08a5088 - Updated release date by Paul Bakker · 13 years ago
  49. a42b3e9 - Fixed top line for version by Paul Bakker · 13 years ago
  50. 69e095c - Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. by Paul Bakker · 13 years ago
  51. c50132d - Updated version of PolarSSL to 1.1.0 by Paul Bakker · 13 years ago
  52. c8ffbe7 - Corrected removal of leading '00:' in printing serial numbers in certificates and CRLs by Paul Bakker · 13 years ago
  53. 4f5ae80 - Fixed MS Visual C++ name clash with int64 in sha4.h by Paul Bakker · 13 years ago
  54. 508ad5a - Moved all examples programs to use the new entropy and CTR_DRBG by Paul Bakker · 13 years ago
  55. 6c0ceb3 - Added permissive certificate parsing to x509parse_crt() and x509parse_crtfile(). With permissive parsing the parsing does not stop on encountering a parse-error by Paul Bakker · 13 years ago
  56. 6083fd2 - Added a generic entropy accumulator that provides support for adding custom entropy sources and added some generic and platform dependent entropy sources by Paul Bakker · 13 years ago
  57. a3d195c - Changed the used random function pointer to more flexible format. Renamed havege_rand() to havege_random() to prevent mistakes. Lots of changes as a consequence in library code and programs by Paul Bakker · 13 years ago
  58. 0e04d0e - Added CTR_DRBG based on AES-256-CTR (NIST SP 800-90) random generator by Paul Bakker · 13 years ago
  59. 4463740 - Improved build support for s390x and sparc64 in bignum.h by Paul Bakker · 13 years ago
  60. 03c7c25 - * If certificate serial is longer than 32 octets, serial number is now appended with '....' after first 28 octets by Paul Bakker · 13 years ago
  61. fe3256e - Introduced POLARSSL_MPI_MAX_SIZE and POLARSSL_MPI_MAX_BITS for MPI size management (Closes ticket #44) by Paul Bakker · 13 years ago
  62. b6d5f08 - Added POLARSSL_MPI_WINDOW_SIZE definition to allow easier time to memory trade-off by Paul Bakker · 13 years ago
  63. 2e6d532 - Added credits! by Paul Bakker · 13 years ago
  64. cce9d77 - Lots of minimal changes to better support WINCE as a build target by Paul Bakker · 13 years ago
  65. 5e18aed - Changed the defined key-length of DES ciphers in cipher.h to include the parity bits, to prevent mistakes in copying data. (Closes ticket #33) by Paul Bakker · 13 years ago
  66. 1fe7d9b - Fixed incorrect behaviour in case of RSASSA-PSS with a salt length smaller than the hash length. (Closes ticket #41) by Paul Bakker · 13 years ago
  67. cebdf17 - Allowed X509 key usage parsing to accept 4 byte values instead of the standard 1 byte version sometimes used by Microsoft. (Closes ticket #38) by Paul Bakker · 13 years ago
  68. 03a30d3 - Added latest fix to ChangeLog by Paul Bakker · 13 years ago
  69. efc3029 - Extracted ASN.1 parsing code from the X.509 parsing code. Added new module. by Paul Bakker · 13 years ago
  70. b5a11ab - Added a separate CRL entry extension parsing function by Paul Bakker · 13 years ago
  71. fbc09f3 - Added an EXPLICIT tag number parameter to x509_get_ext() by Paul Bakker · 13 years ago
  72. 3329d1f - Fixed a bug where the CRL parser expected an EXPLICIT ASN.1 tag before version numbers by Paul Bakker · 13 years ago
  73. c4909d9 - Inceased maximum size of ASN1 length reads to 32-bits by Paul Bakker · 13 years ago
  74. fa1c592 - Fixed faulty HMAC-MD2 implementation (Fixes ticket #37) by Paul Bakker · 13 years ago
  75. d246ed3 - Fixed rsa_encrypt and rsa_decrypt example programs to use public key for encryption and private key for decryption (Fixes ticket #34) by Paul Bakker · 13 years ago
  76. ca6f3e2 - Clarified use of AES and Camellia in CFB and CTR modes by Paul Bakker · 13 years ago
  77. 490ecc8 - Added ssl_set_max_version() to set the client's maximum sent version number by Paul Bakker · 13 years ago
  78. 7eb013f - Added ssl_session_reset() to allow re-use of already set non-connection specific context information by Paul Bakker · 13 years ago
  79. 7bc05ff - Added rsa_encrypt and rsa_decrypt example programs by Paul Bakker · 13 years ago
  80. 968bc98 - Preparations for v1.0.0 release of PolarSSL by Paul Bakker · 13 years ago
  81. 42e5981 - Updated to reflect changes in error codes in the generic cipher and message digest layers by Paul Bakker · 13 years ago
  82. 343a870 - Expanded generic cipher layer with support for CTR and CFB128 modes of operation. by Paul Bakker · 13 years ago
  83. 887bd50 - Undid fix for ssl_write that introduced a true bug when buffers are running full. by Paul Bakker · 13 years ago
  84. 828acb2 - Updated for release 0.99-pre5 by Paul Bakker · 13 years ago
  85. 1496d38 - Added the ssl_mail_client example application by Paul Bakker · 13 years ago
  86. 2f5947e - Added mpi_get_bit() and mpi_set_bit() individual bit setter/getter functions. by Paul Bakker · 13 years ago
  87. 831a755 - Changed behaviour of net_recv(), ssl_fetch_input() and ssl_read(). net_recv() now returns 0 on EOF instead of POLARSSL_ERR_NET_CONN_RESET. ssl_fetch_input() returns POLARSSL_ERR_SSL_CONN_EOF on an EOF from its f_recv() function. ssl_read() returns 0 if a POLARSSL_ERR_SSL_CONN_EOF is received after the handshake. by Paul Bakker · 13 years ago
  88. 9d78140 - A error_strerror function() has been added to translate between error codes and their description. by Paul Bakker · 13 years ago
  89. 6c591fa - mpi_init() and mpi_free() only accept a single argument and do not accept variable arguments anymore. This prevents unexpected memory corruption in a number of use cases. by Paul Bakker · 13 years ago
  90. 335db3f - Functions requiring File System functions can now be disables by undefining POLARSSL_FS_IO by Paul Bakker · 13 years ago
  91. a755ca1 - Renamed t_s_int, t_int and t_dbl to respectively t_sint, t_uint and t_udbl for clarity by Paul Bakker · 13 years ago
  92. 23986e5 - Major type rewrite of int to size_t for most variables and arguments used for buffer lengths and loops by Paul Bakker · 13 years ago
  93. b6ecaf5 - Added additional (configurable) cipher block modes. AES-CTR, Camellia-CTR, XTEA-CBC by Paul Bakker · 14 years ago
  94. 3efa575 - Ready for release 0.99-pre4 by Paul Bakker · 14 years ago
  95. 287781a - Added mpi_fill_random() for centralized filling of big numbers with random data (Fixed ticket #10) by Paul Bakker · 14 years ago
  96. 9867549 - Added information about changed behaviour of x509parse_key() by Paul Bakker · 14 years ago
  97. e77db2e - Added bugfix info for previous checkin by Paul Bakker · 14 years ago
  98. 1fd00bf - Fixed bug in ssl_write() when flushing old data (Fixes ticket #18) by Paul Bakker · 14 years ago
  99. be4e7dc - Debug print of MPI now removes leading zero octets and displays actual bit size of the value by Paul Bakker · 14 years ago
  100. 9dcc322 - Added support for PKCS#1 v2.1 encoding and thus support for the RSAES-OAEP and RSASSA-PSS operations (enabled by POLARSSL_PKCS1_V21) by Paul Bakker · 14 years ago