1. 28144de PKCS#5 v2 PBES2 support and use in PKCS#8 encrypted certificates by Paul Bakker · 11 years ago
  2. b0c19a4 PKCS#5 module added. Moved PBKDF2 functionality inside and deprecated by Paul Bakker · 11 years ago
  3. fc4f46f Fixed bignum.c and bn_mul.h to support Thumb2 and LLVM compiler by Paul Bakker · 11 years ago
  4. 531e294 Fixed location of brackets in pkcs12.c by Paul Bakker · 11 years ago
  5. 2c8cdd2 x509parse_crtpath() is now reentrant and uses more portable stat() by Paul Bakker · 11 years ago
  6. 42c6581 Changed x509parse_crt_der() to support adding to chain. by Paul Bakker · 11 years ago
  7. 90995b5 Added mechanism to provide alternative cipher / hash implementations by Paul Bakker · 11 years ago
  8. f1f21fe Parsing of PKCS#8 encrypted private key files added and PKCS#12 basis by Paul Bakker · 11 years ago
  9. e2f5040 Internally split up x509parse_key() by Paul Bakker · 11 years ago
  10. 89ecb2d ssl_parse_certificate() now calls x509parse_crt_der() directly by Paul Bakker · 11 years ago
  11. 5ed3b34 x509parse_crt() now better handles PEM error situations by Paul Bakker · 11 years ago
  12. 00b2860 pem_read_buffer() already update use_len after header and footer are read by Paul Bakker · 11 years ago
  13. 3c2122f Fixed const correctness issues that have no impact on the ABI by Paul Bakker · 11 years ago
  14. 2013950 Secure renegotiation extension should only be sent in case client supports secure renegotiation by Paul Bakker · 11 years ago
  15. 73d4431 Fixed parse error in ssl_parse_certificate_request() by Paul Bakker · 12 years ago
  16. f6a19bd Possible resource leak on FILE* removed in X509 parse by Paul Bakker · 12 years ago
  17. c72d3f7 Possible resource leak on FILE* removed in CTR_DRBG by Paul Bakker · 12 years ago
  18. 40afb4b Added PSK GCM, SHA256 and SHA384 ciphers from RFC5487 by Paul Bakker · 12 years ago
  19. a1bf92d Added PSK NULL ciphers from RFC4785 by Paul Bakker · 12 years ago
  20. 48f7a5d DHE-PSK based ciphersuite support added and cleaner key exchange based by Paul Bakker · 12 years ago
  21. 188c8de Only allow missing SereverKeyExchange message in bare PSK mode by Paul Bakker · 12 years ago
  22. e07f41d Introduced defines to control availability of specific SSL Key Exchange methods. by Paul Bakker · 12 years ago
  23. ed27a04 More granular define selections within code to allow for smaller code sizes by Paul Bakker · 12 years ago
  24. 73a899a Changed error code message to also cover missing pre-shared key by Paul Bakker · 12 years ago
  25. fbb1780 Added pre-shared key handling for the server side of SSL / TLS by Paul Bakker · 12 years ago
  26. 70df2fb Split parts of ssl_parse_client_key_exchange() into separate functions by Paul Bakker · 12 years ago
  27. d4a56ec Added pre-shared key handling for the client side of SSL / TLS by Paul Bakker · 12 years ago
  28. f7abd42 Removed extra spaces on end of lines by Paul Bakker · 12 years ago
  29. 29e1f12 split parts of ssl_parse_server_key_exchange() into separate functions by Paul Bakker · 12 years ago
  30. 8f4ddae Ability to specify allowed ciphersuites based on the protocol version. by Paul Bakker · 12 years ago
  31. 0ecdb23 Cleanup of the GCM code by Paul Bakker · 12 years ago
  32. a280d0f Fixed compiler warning for possible uninitialized ret by Paul Bakker · 12 years ago
  33. 27714b1 Added Camellia ECDHE-based CBC ciphersuites by Paul Bakker · 12 years ago
  34. bfe671f Blowfish has default of 128-bit keysize in cipher layer by Paul Bakker · 12 years ago
  35. c70b982 OID functionality moved to a separate module. by Paul Bakker · 12 years ago
  36. 37de6be Const correctness added for asn1write functions by Paul Bakker · 12 years ago
  37. 3b6a07b Prevented compiler warning on uninitialized end by Paul Bakker · 12 years ago
  38. d3edc86 Moved writing of client extensions to separate functions in ssl_cli.c by Paul Bakker · 12 years ago
  39. a54e493 Added ECDHE-based SHA256 and SHA384 ciphersuites by Paul Bakker · 12 years ago
  40. b7149bc Corrected behaviour for CBC-based suites using the SHA384 MAC and PRF by Paul Bakker · 12 years ago
  41. 41c83d3 Added Ephemeral Elliptic Curve Diffie Hellman ciphersuites to SSL/TLS by Paul Bakker · 12 years ago
  42. 00c1f43 Merge branch 'ecc-devel-mpg' into development by Paul Bakker · 12 years ago
  43. d589a0d Modified Makefiles to include new files and and config.h to PolarSSL standard by Paul Bakker · 12 years ago
  44. 68884e3 Moved to advanced ciphersuite representation and more dynamic SSL code by Paul Bakker · 12 years ago
  45. c9118b4 Renamed hash structures to ctx by Paul Bakker · 12 years ago
  46. 09d6725 Modified to work in-place by Paul Bakker · 12 years ago
  47. 92be97b Align data with future location based on IV size by Paul Bakker · 12 years ago
  48. 07eb38b Update ssl_hw_record_init() to receive keylen, ivlen and maclen as well by Paul Bakker · 12 years ago
  49. c787811 Do not set done in case of a fall-through by Paul Bakker · 12 years ago
  50. 5bd4229 Reverted commit 186751d9dd28082d4b19e69a2c15fd432d366133 and made out_hdr and out_msg back-to-back again by Paul Bakker · 12 years ago
  51. fae35f0 Functions in cipher_wrap.c marked static by Paul Bakker · 12 years ago
  52. d1df02a Functions inside md_wrap.c now marked static by Paul Bakker · 12 years ago
  53. ac0fba5 Added missing header for MD2 and made code compile with missing header files by Paul Bakker · 12 years ago
  54. 1bd3ae8 Added md_process() to MD layer for generic internal access to hash by Paul Bakker · 12 years ago
  55. 90f042d Prepared for PolarSSL 1.2.6 release by Paul Bakker · 12 years ago polarssl-1.2.6
  56. e81beda The SSL session cache module (ssl_cache) now also retains peer_cert information (not the entire chain) by Paul Bakker · 12 years ago
  57. 78a8c71 Re-added support for parsing and handling SSLv2 Client Hello messages by Paul Bakker · 12 years ago
  58. 37286a5 Fixed net_bind() for specified IP addresses on little endian systems by Paul Bakker · 12 years ago
  59. 926c8e4 Fixed possible NULL pointer exception in ssl_get_ciphersuite() by Paul Bakker · 12 years ago
  60. 8804f69 Removed timing differences due to bad padding from RSA decrypt for by Paul Bakker · 12 years ago
  61. a43231c Added support for custom labels when using rsa_rsaes_oaep_encrypt() or rsa_rsaes_oaep_decrypt() by Paul Bakker · 12 years ago
  62. b386913 Split up the RSA PKCS#1 encrypt, decrypt, sign and verify functions by Paul Bakker · 12 years ago
  63. 8ddb645 Added conversion to int for a t_uint value to prevent compiler warnings by Paul Bakker · 12 years ago
  64. 3d2dc0f Corrected GCM counter incrementation to use only 32-bits instead of 128-bits by Paul Bakker · 12 years ago
  65. e47b34b Removed further timing differences during SSL message decryption in ssl_decrypt_buf() by Paul Bakker · 12 years ago
  66. 2ca8ad1 Made x509parse.c also work with missing hash header files by Paul Bakker · 12 years ago
  67. 86f04f4 Fixed comment by Paul Bakker · 12 years ago
  68. c046350 Fixed memory leak in ssl_free() and ssl_reset() for active session by Paul Bakker · 12 years ago
  69. f35b739 Add a few check for context validity. by Manuel Pégourié-Gonnard · 12 years ago
  70. 424fda5 Add ecdh_calc_secret() by Manuel Pégourié-Gonnard · 12 years ago
  71. 5cceb41 Add ecdh_{make,read}_public() by Manuel Pégourié-Gonnard · 12 years ago
  72. 854fbd7 Add ecdh_read_params(). by Manuel Pégourié-Gonnard · 12 years ago
  73. 1372476 Add ecdh_make_server_params (untested yet) by Manuel Pégourié-Gonnard · 12 years ago
  74. 63533e4 Create ecdh_context structure by Manuel Pégourié-Gonnard · 12 years ago
  75. 98f5181 Fix ecp_tls_read_point's signature by Manuel Pégourié-Gonnard · 12 years ago
  76. 7c145c6 Fix ecp_tls_read_group's signature by Manuel Pégourié-Gonnard · 12 years ago
  77. 46106a9 Add tests for (and fix bug in) ecp_tls_write_group by Manuel Pégourié-Gonnard · 12 years ago
  78. 420f1eb Fix ecp_tls_write_point's signature by Manuel Pégourié-Gonnard · 12 years ago
  79. b325887 Add ecp_tls_write_group() by Manuel Pégourié-Gonnard · 12 years ago
  80. 7e86025 Rename ecp_*_binary to ecp_point_*_binary by Manuel Pégourié-Gonnard · 12 years ago
  81. d84895d Supress 'format' argument to ecp_read_binary. by Manuel Pégourié-Gonnard · 12 years ago
  82. 0079405 Add functions for read/write ECPoint records by Manuel Pégourié-Gonnard · 12 years ago
  83. 1a96728 Add function parsing a TLS ECParameters record by Manuel Pégourié-Gonnard · 12 years ago
  84. c7a2da4 Updated for PolarSSL 1.2.5 by Paul Bakker · 12 years ago polarssl-1.2.5
  85. 40865c8 Added sending of alert messages in case of decryption failures as per RFC by Paul Bakker · 12 years ago
  86. d66f070 Disable debug messages that can introduce a timing side channel. by Paul Bakker · 12 years ago
  87. 4582999 Fixed timing difference resulting from badly formatted padding. by Paul Bakker · 12 years ago
  88. 8fe40dc Allow enabling of dummy error_strerror() to support some use-cases by Paul Bakker · 12 years ago
  89. 3aeb5a7 Add ECDSA signature primitive. by Manuel Pégourié-Gonnard · 12 years ago
  90. b309ab2 Add ECDSA sign primitive by Manuel Pégourié-Gonnard · 12 years ago
  91. 2aea141 Add skeleton ecdsa.[ch] by Manuel Pégourié-Gonnard · 12 years ago
  92. 6545ca7 Add ECDH primitives by Manuel Pégourié-Gonnard · 12 years ago
  93. 0bad5c2 Add skeleton ecdh.[ch] by Manuel Pégourié-Gonnard · 12 years ago
  94. 45a035a Add ecp_gen_keypair() by Manuel Pégourié-Gonnard · 12 years ago
  95. 14c56a3 Updated for PolarSSL 1.2.4 by Paul Bakker · 12 years ago polarssl-1.2.4
  96. 1961b70 Added ssl_handshake_step() to allow single stepping the handshake process by Paul Bakker · 12 years ago
  97. 9c94cdd Correctly handle CertificateRequest with empty DN list in <= TLS 1.1 by Paul Bakker · 12 years ago
  98. cf4365f Updated error codes for ECP by Paul Bakker · 12 years ago
  99. a95919b Added ECP files to Makefiles as well by Paul Bakker · 12 years ago
  100. 5e402d8 Added ecp_read_binary(). by Manuel Pégourié-Gonnard · 12 years ago