Rivoreo Source Code Repositories
src.rivoreo.one
/
security
/
mbedtls
/
a503a63b8578fd2b8fec1809a0e11088edc04027
a503a63
Made session tickets support configurable from config.h
by Paul Bakker
· 11 years ago
56dc9e8
Authenticate session tickets.
by Manuel Pégourié-Gonnard
· 11 years ago
990c51a
Encrypt session tickets
by Manuel Pégourié-Gonnard
· 11 years ago
779e429
Start adding ticket keys (only key_name for now)
by Manuel Pégourié-Gonnard
· 11 years ago
aa0d4d1
Add ssl_set_session_tickets()
by Manuel Pégourié-Gonnard
· 11 years ago
306827e
Prepare ticket structure for securing
by Manuel Pégourié-Gonnard
· 11 years ago
06650f6
Fix reusing session more than once
by Manuel Pégourié-Gonnard
· 11 years ago
cf2e97e
ssl_client2: allow reconnecting twice
by Manuel Pégourié-Gonnard
· 11 years ago
593058e
Don't renew ticket when the current one is OK
by Manuel Pégourié-Gonnard
· 11 years ago
c086cce
Don't cache empty session ID nor resumed session
by Manuel Pégourié-Gonnard
· 11 years ago
7cd5924
Rework NewSessionTicket handling in state machine
by Manuel Pégourié-Gonnard
· 11 years ago
3ffa3db
Fix server session ID handling with ticket
by Manuel Pégourié-Gonnard
· 11 years ago
72882b2
Relax limit on ClientHello size
by Manuel Pégourié-Gonnard
· 11 years ago
609bc81
ssl_srv: read & write ticket, unsecure for now
by Manuel Pégourié-Gonnard
· 11 years ago
94f6a79
Auxiliary functions to (de)serialize ssl_session
by Manuel Pégourié-Gonnard
· 11 years ago
7a358b8
ssl_srv: write & parse session ticket ext & msg
by Manuel Pégourié-Gonnard
· 11 years ago
6377e41
Complete client support for session tickets
by Manuel Pégourié-Gonnard
· 11 years ago
a5cc602
Parse NewSessionTicket message
by Manuel Pégourié-Gonnard
· 11 years ago
60182ef
ssl_cli: write & parse session ticket extension
by Manuel Pégourié-Gonnard
· 11 years ago
75d4401
Introduce ticket field in session structure
by Manuel Pégourié-Gonnard
· 11 years ago
5f280cc
Implement saving peer cert as part of session.
by Manuel Pégourié-Gonnard
· 11 years ago
aaa1eab
Add an option to reconnect in ssl_client2
by Manuel Pégourié-Gonnard
· 11 years ago
7471803
Add ssl_get_session() to save session on client
by Manuel Pégourié-Gonnard
· 11 years ago
a834239
Merge branch 'padding' into development
by Paul Bakker
· 11 years ago
da4d1c3
Updated Changelog to reflect feature addition
by Paul Bakker
· 11 years ago
48e93c8
Made padding modes configurable from config.h
by Paul Bakker
· 11 years ago
1a45d91
Restructured cipher_set_padding_mode() to use switch statement
by Paul Bakker
· 11 years ago
ebdc413
Add 'no padding' mode
by Manuel Pégourié-Gonnard
· 11 years ago
0e7d2c0
Add zero padding
by Manuel Pégourié-Gonnard
· 11 years ago
8d4291b
Add zeros-and-length (ANSI X.923) padding
by Manuel Pégourié-Gonnard
· 11 years ago
679f9e9
Add one-and-zeros (ISO/IEC 7816-4) padding
by Manuel Pégourié-Gonnard
· 11 years ago
6c97899
Adapt cipher tests to configurable padding
by Manuel Pégourié-Gonnard
· 11 years ago
b7d24bc
Fix bug in get_pkcs_padding(): cannot be 0-length
by Manuel Pégourié-Gonnard
· 11 years ago
a640849
Add tests for get_padding() (PKCS#7)
by Manuel Pégourié-Gonnard
· 11 years ago
725680f
Make cipher tests less dependant on padding size
by Manuel Pégourié-Gonnard
· 11 years ago
ac56a1a
Make cipher_set_padding() actually work
by Manuel Pégourié-Gonnard
· 11 years ago
d5fdcaf
Add cipher_set_padding() (no effect yet)
by Manuel Pégourié-Gonnard
· 11 years ago
0f2f0bf
CAMELLIA-based PSK and DHE-PSK ciphersuites added
by Paul Bakker
· 11 years ago
b548d77
Fixed memory leak in ecdh_compute_shared() in case of error
by Paul Bakker
· 11 years ago
cca998a
Fixed memory leak in ecdsa_sign() / ecdsa_verify() in case of error
by Paul Bakker
· 11 years ago
1e6a175
Support for AIX header locations in net.c module
by Paul Bakker
· 11 years ago
66c4810
Better handling of ciphersuite version range and forced version in ssl_client2
by Paul Bakker
· 11 years ago
6c85279
Newline fixes in help text for ssl_client2 / ssl_server2
by Paul Bakker
· 11 years ago
52cf16c
Fixed multiple use of GCM-context bug due to split-up of GCM functions
by Paul Bakker
· 11 years ago
d6f41c5
Fixed size of ctx_enc / ctx_dec in ssl for gcm_context size
by Paul Bakker
· 11 years ago
524691c
Added --modes option to tests/compat.sh
by Paul Bakker
· 11 years ago
f16db18
Fixed header file comments on ciphersuites
by Paul Bakker
· 11 years ago
d9ca94a
Updated merged pk.c and x509parse.c changes with new memory allocation functions
by Paul Bakker
· 11 years ago
dbd79ca
ssl_client2 and ssl_server2 now exit with 1 on errors (shell limitations)
by Paul Bakker
· 11 years ago
f85778e
Updated Changelog for EC Key / Cert and RFC 6066 extensions
by Paul Bakker
· 11 years ago
872c29b
Merge branch 'truncated-hmac' into development
by Paul Bakker
· 11 years ago
8c1ede6
Changed prototype for ssl_set_truncated_hmac() to allow disabling
by Paul Bakker
· 11 years ago
277f7f2
Implement hmac truncation
by Manuel Pégourié-Gonnard
· 11 years ago
57c2852
Added truncated hmac negociation (without effect)
by Manuel Pégourié-Gonnard
· 11 years ago
e980a99
Add interface for truncated hmac
by Manuel Pégourié-Gonnard
· 11 years ago
5b55b79
Better handling of ciphersuite version range and forced version in ssl_server2
by Paul Bakker
· 11 years ago
bd5fd4d
RFC6229 ARC4 test vectors added to testsuite
by Paul Bakker
· 11 years ago
accd4eb
compat.sh now has -f command-line option to filter used ciphersuites
by Paul Bakker
· 11 years ago
a7eaba5
Merge branch 'maximum-fragment-length' into development
by Paul Bakker
· 11 years ago
e048b67
Misc minor fixes
by Manuel Pégourié-Gonnard
· 11 years ago
0c017a5
Add max_frag_len option in ssl_server2
by Manuel Pégourié-Gonnard
· 11 years ago
ed4af8b
Move negotiated max fragment length to session
by Manuel Pégourié-Gonnard
· 11 years ago
581e6b6
Prepare migrating max fragment length to session
by Manuel Pégourié-Gonnard
· 11 years ago
8e714d7
Modified LONG_RESPONSE and comments in ssl_server2
by Paul Bakker
· 11 years ago
bd7ce63
Adapt ssl_server2 to test sending long messages
by Manuel Pégourié-Gonnard
· 11 years ago
6b4f237
Forbid setting max_frag_len > MAX_CONTENT_LEN
by Manuel Pégourié-Gonnard
· 11 years ago
30dc7ef
Reset max_fragment_length in ssl_session_reset()
by Manuel Pégourié-Gonnard
· 11 years ago
7bb7899
Send max_fragment_length extension (server)
by Manuel Pégourié-Gonnard
· 11 years ago
f11a6d7
Rework server extensions writing
by Manuel Pégourié-Gonnard
· 11 years ago
de600e5
Read max_fragment_length extension (client)
by Manuel Pégourié-Gonnard
· 11 years ago
a052849
Send max_fragment_length extension (client)
by Manuel Pégourié-Gonnard
· 11 years ago
48f8d0d
Read max_fragment_length extension (server)
by Manuel Pégourié-Gonnard
· 11 years ago
787b658
Implement max_frag_len write restriction
by Manuel Pégourié-Gonnard
· 11 years ago
0df6b1f
ssl_client2: add max_frag_len option
by Manuel Pégourié-Gonnard
· 11 years ago
8b46459
Add ssl_set_max_frag_len()
by Manuel Pégourié-Gonnard
· 11 years ago
de9f9ef
Merge branch 'parse-ec-crt' into development
by Paul Bakker
· 11 years ago
c2c9003
Fix pk_set_type() behaviour for unkown type
by Manuel Pégourié-Gonnard
· 11 years ago
14d8564
Fix overflow check in oid_get_numeric_string()
by Manuel Pégourié-Gonnard
· 11 years ago
4f47538
Fix some 'depends' in tests
by Manuel Pégourié-Gonnard
· 11 years ago
fd5164e
Fix some more ifdef's RSA/EC, in pk and debug
by Manuel Pégourié-Gonnard
· 11 years ago
ab2d983
Fix some ifdef's in x509parse
by Manuel Pégourié-Gonnard
· 11 years ago
96f3a4e
Rm ecp_keypair.alg
by Manuel Pégourié-Gonnard
· 11 years ago
8b863cd
Merge EC & RSA versions of x509_parse_key()
by Manuel Pégourié-Gonnard
· 11 years ago
6e88202
Merge EC & RSA versions of parse_pkcs8_unencrypted
by Manuel Pégourié-Gonnard
· 11 years ago
a2d4e64
Some more EC pubkey parsing refactoring
by Manuel Pégourié-Gonnard
· 11 years ago
1c808a0
Refactor some EC key parsing code
by Manuel Pégourié-Gonnard
· 11 years ago
be50680
Fix use of x509_cert.rsa in programs
by Manuel Pégourié-Gonnard
· 11 years ago
991d0f5
Remove rsa member from x509_cert structure
by Manuel Pégourié-Gonnard
· 11 years ago
ff56da3
Fix direct uses of x509_cert.rsa, now use pk_rsa()
by Manuel Pégourié-Gonnard
· 11 years ago
893879a
Adapt debug_print_crt() for EC keys
by Manuel Pégourié-Gonnard
· 11 years ago
a3c86c3
Certificates with EC key and/or sig parsed
by Manuel Pégourié-Gonnard
· 11 years ago
5b18fb0
Fix bug in x509_get_{ecpubkey,subpubkey}()
by Manuel Pégourié-Gonnard
· 11 years ago
360a583
Adapt x509parse_cert_info() for EC
by Manuel Pégourié-Gonnard
· 11 years ago
674b224
Prepare transition from x509_cert.rsa to pk
by Manuel Pégourié-Gonnard
· 11 years ago
a155513
Rationalize use of x509_get_alg variants
by Manuel Pégourié-Gonnard
· 11 years ago
7a287c4
Rename x509_get_algid() to x509_get_pk_alg()
by Manuel Pégourié-Gonnard
· 11 years ago
7c5819e
Fix warnings (enum value missing from switch/case)
by Manuel Pégourié-Gonnard
· 11 years ago
72ef0b7
Add test certificate signed with ECDSA
by Manuel Pégourié-Gonnard
· 11 years ago
2692a30
Relax ifdef's in pk.h by analogy with md.h
by Manuel Pégourié-Gonnard
· 11 years ago
1e60cd0
Expand oid_get_sig_alg() for ECDSA-based algs
by Manuel Pégourié-Gonnard
· 11 years ago
Next »