Log - a5943858d8ebac35692fde7dbd6fbc4f2410945a - security/mbedtls

a594385 x509_verify() now case insensitive for cn (RFC 6125 6.4) by Paul Bakker · 11 years ago
9f5a3c4 Fix possible memory error. by Manuel Pégourié-Gonnard · 11 years ago
bfb355c Fix memory leak on missed session reuse by Manuel Pégourié-Gonnard · 11 years ago
bc4b7f0 Fix possible race in ssl_list_ciphersuites() by Manuel Pégourié-Gonnard · 11 years ago
d13a409 GCM ciphersuites using only cipher layer by Manuel Pégourié-Gonnard · 11 years ago
b8bd593 Restrict cipher_update() for GCM by Manuel Pégourié-Gonnard · 11 years ago
226d5da GCM ciphersuites partially using cipher layer by Manuel Pégourié-Gonnard · 11 years ago
1af50a2 Cipher: test multiple cycles by Manuel Pégourié-Gonnard · 11 years ago
45125bc Changes to handle merged enhancements by Paul Bakker · 11 years ago
c049955 Merged new cipher layer enhancements by Paul Bakker · 11 years ago
ce41125 Fix RC4 key length in cipher by Manuel Pégourié-Gonnard · 11 years ago
83f3fc0 Add AES-192-GCM by Manuel Pégourié-Gonnard · 11 years ago
43a4780 Ommit AEAD functions if GCM not defined by Manuel Pégourié-Gonnard · 11 years ago
aa9ffc5 Split tag handling out of cipher_finish() by Manuel Pégourié-Gonnard · 11 years ago
2adc40c Split cipher_update_ad() out or cipher_reset() by Manuel Pégourié-Gonnard · 11 years ago
a235b5b Fix iv_len interface. by Manuel Pégourié-Gonnard · 11 years ago
9c853b9 Split cipher_set_iv() out of cipher_reset() by Manuel Pégourié-Gonnard · 11 years ago
ea6ad3f ARC4 ciphersuites using only cipher layer by Paul Bakker · 11 years ago
eb851f6 Merged current cipher enhancements for ARC4 and AES-GCM by Paul Bakker · 11 years ago
9241be7 Change cipher prototypes for GCM by Manuel Pégourié-Gonnard · 11 years ago
cca5b81 All CBC ciphersuites via the cipher layer by Paul Bakker · 11 years ago
da02a7f AES_CBC ciphersuites now run purely via cipher layer by Paul Bakker · 11 years ago
20d6a17 Make GCM tag check "constant-time" by Manuel Pégourié-Gonnard · 11 years ago
07f8fa5 GCM in the cipher layer, step 1 by Manuel Pégourié-Gonnard · 11 years ago
b5e8588 Handle NULL as a stream cipher for more uniformity by Manuel Pégourié-Gonnard · 11 years ago
37e230c Add arc4 support in the cipher layer by Manuel Pégourié-Gonnard · 11 years ago
f451bac Blinding RSA only active when f_rng is provided by Paul Bakker · 11 years ago
48377d9 Configuration option to enable/disable POLARSSL_PKCS1_V15 operations by Paul Bakker · 11 years ago
aab30c1 RSA blinding added for CRT operations by Paul Bakker · 11 years ago
548957d Refactored RSA to have random generator in every RSA operation by Paul Bakker · 11 years ago
ca174fe Merged refactored x509write module into development by Paul Bakker · 11 years ago
9659dae Some extra code defined out by Paul Bakker · 11 years ago
c852a68 More robust selection of ctx_enc size by Manuel Pégourié-Gonnard · 11 years ago
cffe4a6 Move "constant" code outside a loop by Manuel Pégourié-Gonnard · 11 years ago
577e006 Merged ECDSA-based key-exchange and ciphersuites into development by Paul Bakker · 11 years ago
57a8783 Make more room for ciphersuites by Manuel Pégourié-Gonnard · 11 years ago
db77175 Make ecdsa_verify() return value more explicit by Manuel Pégourié-Gonnard · 11 years ago
9cc6f5c Fix some hash debugging by Manuel Pégourié-Gonnard · 11 years ago
4bd1284 Fix ECDSA hash selection bug with TLS 1.0 and 1.1 by Manuel Pégourié-Gonnard · 11 years ago
9c9812a Fix bug introduced in dbf69cf by Manuel Pégourié-Gonnard · 11 years ago
df0142b Fix some dependencies in tests by Manuel Pégourié-Gonnard · 11 years ago
2fb15f6 Un-rename ssl_set_own_cert_alt() by Manuel Pégourié-Gonnard · 11 years ago
e511ffc Allow compiling without RSA or DH by Manuel Pégourié-Gonnard · 11 years ago
ee98f8e Add EC certificates in certs.c by Manuel Pégourié-Gonnard · 11 years ago
f484282 Rm a few unneeded tests by Manuel Pégourié-Gonnard · 11 years ago
d11eb7c Fix sig_alg extension on client. by Manuel Pégourié-Gonnard · 11 years ago
bfe32ef pk_{sign,verify}() now accept hash_len = 0 by Manuel Pégourié-Gonnard · 11 years ago
a20c58c Use convert functions for SSL_SIG_* and SSL_HASH_* by Manuel Pégourié-Gonnard · 11 years ago
c40b4c3 Add configuration item for the PK module by Manuel Pégourié-Gonnard · 11 years ago
0d42049 Merge code for RSA and ECDSA in SSL by Manuel Pégourié-Gonnard · 11 years ago
070cc7f Use the new PK RSA-alt interface by Manuel Pégourié-Gonnard · 11 years ago
12c1ff0 Add RSA-alt to the PK layer by Manuel Pégourié-Gonnard · 11 years ago
a2d3f22 Add and use pk_encrypt(), pk_decrypt() by Manuel Pégourié-Gonnard · 11 years ago
8df2769 Introduce pk_sign() and use it in ssl by Manuel Pégourié-Gonnard · 11 years ago
583b608 Fix some return values by Manuel Pégourié-Gonnard · 11 years ago
76c18a1 Add client support for ECDSA client auth by Manuel Pégourié-Gonnard · 11 years ago
abae74c Add server support for ECDHE_ECDSA key exchange by Manuel Pégourié-Gonnard · 11 years ago
ac75523 Adapt ssl_set_own_cert() to generic keys by Manuel Pégourié-Gonnard · 11 years ago
09edda8 Check key type against selected key exchange by Manuel Pégourié-Gonnard · 11 years ago
20846b1 Add client support for ECDHE_ECDSA key exchange by Manuel Pégourié-Gonnard · 11 years ago
efebb0a Refactor ssl_parse_server_key_exchange() a bit by Manuel Pégourié-Gonnard · 11 years ago
32ea60a Declare ECDSA key exchange and ciphersuites by Manuel Pégourié-Gonnard · 11 years ago
0b03200 Add server-side support for ECDSA client auth by Manuel Pégourié-Gonnard · 11 years ago
0be444a Ability to disable server_name extension (RFC 6066) by Paul Bakker · 11 years ago
d2f068e Ability to enable / disable SSL v3 / TLS 1.0 / TLS 1.1 / TLS 1.2 individually by Paul Bakker · 11 years ago
fb08fd2 Entropy collector and CTR-DRBG now also work on SHA-256 if SHA-512 not available by Paul Bakker · 11 years ago
9852d00 Moved asn1write funtions to use asn1_write_raw_buffer() by Paul Bakker · 11 years ago
7accbce Doxygen documentation added to asn1write.h by Paul Bakker · 11 years ago
f3df61a Generalized PEM writing in x509write module for RSA keys as well by Paul Bakker · 11 years ago
135f1e9 Move PEM conversion of DER data to x509write module by Paul Bakker · 11 years ago
624d03a Fixed length of key_usage bitstring to 7 bits by Paul Bakker · 11 years ago
1c0e550 Added support for Netscape Certificate Types in CSR writing by Paul Bakker · 11 years ago
e5eae76 Generalized the x509write_csr_set_key_usage() function and key_usage storage by Paul Bakker · 11 years ago
6db915b Added asn1_write_raw_buffer() by Paul Bakker · 11 years ago
0a20171 Fix compiler warning from gcc -Os by Manuel Pégourié-Gonnard · 11 years ago
70f1768 Make two format strings literal by Manuel Pégourié-Gonnard · 11 years ago
c6554aa Check length of session tickets we write by Manuel Pégourié-Gonnard · 11 years ago
38d1eba Move verify_result from ssl_context to session by Manuel Pégourié-Gonnard · 11 years ago
fde4270 Added support for writing key_usage extension by Paul Bakker · 11 years ago
598e450 Added asn1_write_bitstring() and asn1_write_octet_string() by Paul Bakker · 11 years ago
0e06c0f Assigned error codes to the error defines by Paul Bakker · 11 years ago
82e2945 Changed naming and prototype convention for x509write functions by Paul Bakker · 11 years ago
2130796 Switched order of storing x509_req_names to match inputed order by Paul Bakker · 11 years ago
8eabfc1 Rewrote x509 certificate request writing to use structure for storing by Paul Bakker · 11 years ago
fff80f8 PK: use NULL for unimplemented operations by Manuel Pégourié-Gonnard · 11 years ago
f73da02 PK: change pk_verify arguments (md_info "optional") by Manuel Pégourié-Gonnard · 11 years ago
ab46694 Change pk_set_type to pk_init_ctx for consistency by Manuel Pégourié-Gonnard · 11 years ago
ac4cd36 PK rsa_verify: check signature length by Manuel Pégourié-Gonnard · 11 years ago
1569938 Small PK cleanups by Manuel Pégourié-Gonnard · 11 years ago
3fb5c5e PK: rename members for consistency CIPHER, MD by Manuel Pégourié-Gonnard · 11 years ago
09162dd PK: reuse some eckey functions for ecdsa by Manuel Pégourié-Gonnard · 11 years ago
c6ac887 Nicer interface between PK and debug. by Manuel Pégourié-Gonnard · 11 years ago
b3d9187 PK: add nice interface functions by Manuel Pégourié-Gonnard · 11 years ago
765db07 PK: use alloc and free function pointers by Manuel Pégourié-Gonnard · 11 years ago
3053f5b Get rid of pk_wrap_rsa() by Manuel Pégourié-Gonnard · 11 years ago
f8c948a Add name and get_size() members in PK by Manuel Pégourié-Gonnard · 11 years ago
835eb59 PK: fix support for ECKEY_DH by Manuel Pégourié-Gonnard · 11 years ago
f18c3e0 Add a PK can_do() method and simplify code by Manuel Pégourié-Gonnard · 11 years ago
d73b3c1 PK: use wrappers and function pointers for verify by Manuel Pégourié-Gonnard · 11 years ago
f499993 Add ecdsa_from_keypair() by Manuel Pégourié-Gonnard · 11 years ago