Log - b624520762a29f8e2279bb359c1344424a392d4f - security/mbedtls

b624520 - Tagged PolarSSL 1.2.0 by Paul Bakker · 12 years ago polarssl-1.2.0
c9c5df9 - Updated for PolarSSL 1.2.0 by Paul Bakker · 12 years ago
645ce3a - Moved ciphersuite naming scheme to IANA reserved names by Paul Bakker · 12 years ago
bb0139c - Moved to more flexible define structure by Paul Bakker · 12 years ago
35a7fe5 - Prevent compiler warning by Paul Bakker · 12 years ago
8611e73 - Fixed infinite loop by Paul Bakker · 12 years ago
b0550d9 - Added ssl_get_peer_cert() to SSL API by Paul Bakker · 12 years ago
d2c167e - And fixed order by Paul Bakker · 12 years ago
4f024b7 - Fixed for SPARC64 by Paul Bakker · 12 years ago
df2bb75 - Premaster should have a maximum of MPI size by Paul Bakker · 12 years ago
21654f3 - Smaller default values by Paul Bakker · 12 years ago
520ea91 - Fixed to support 4096 bit DHM params as well by Paul Bakker · 12 years ago
98fe5ea - Removed snprintf altogether for critical code paths by Paul Bakker · 12 years ago
331f563 - Do not use sprintf(), use snprintf() instead. by Paul Bakker · 12 years ago
5fb47f4 - Removed old contrib directory by Paul Bakker · 12 years ago
ba26e9e - Cache now only allows a maximum of entries in cache for preventing memory overrun by Paul Bakker · 12 years ago
0fd018e - Fixed preprocessor typo by Paul Bakker · 12 years ago
f1ab0ec - Changed default compiler flags to include -O2 by Paul Bakker · 12 years ago
09f097d - Added more documentation on disable / enable renegotiation by Paul Bakker · 12 years ago
67f9d53 - Removed code breaking strict-aliasing by Paul Bakker · 12 years ago
2b6af2f - Only define mpi_read_file and mpi_write_file if POLARSSL_FS_IO is present by Paul Bakker · 12 years ago
0f5281a - Enlarged buffer to fit gcm_context on all platforms by Paul Bakker · 12 years ago
81420ab - properly print minimum version by Paul Bakker · 12 years ago
c110d02 - Added extra check to prevent crash on failed memory allocation by Paul Bakker · 12 years ago
0be82f2 - Updated rsa_pkcs1_verify() and rsa_pkcs1_sign() to use appropriate buffer size for max MPIs by Paul Bakker · 12 years ago
1d56958 - Updated examples to use appropriate sizes for larger RSA keys (up to 16k) by Paul Bakker · 12 years ago
3ad34d4 - Added key_app_writer to CMakeLists.txt by Paul Bakker · 12 years ago
3fad7b3 - Changed saved value to RCF 3526 2048 MODP group by Paul Bakker · 12 years ago
5da01ca - Added warning about example use by Paul Bakker · 12 years ago
36fec23 - Updated to 1.2.0 by Paul Bakker · 12 years ago
8f387e6 - Updated trunk base version to 1.2.0 for prerelease 1 by Paul Bakker · 12 years ago
d5834bb - Added release text for 1.1.4 to ChangeLog by Paul Bakker · 12 years ago
62261d6 - Rewrote bignum type definition #ifdef tree to work better on all systems by Paul Bakker · 12 years ago
3338b79 - Fixed WIN32 version of x509parse_crtpath() by Paul Bakker · 12 years ago
d6f17b4 - Moved definition to top to prevent MS VC compiler warning by Paul Bakker · 12 years ago
9ef6e2b - Added missing int32_t definition by Paul Bakker · 12 years ago
93784e1 - Added gcm.c and ssl_cache.c by Paul Bakker · 12 years ago
e23c315 - Fixed typo by Paul Bakker · 12 years ago
5c2364c - Moved from unsigned long to uint32_t throughout code by Paul Bakker · 12 years ago
6adff74 - Fixed typo by Paul Bakker · 12 years ago
0e19e9f - Minor define change to prevent warning by Paul Bakker · 12 years ago
993d11d - Send ClientHello with 'minimal version' by Paul Bakker · 12 years ago
23f3680 - Added proper support for TLS 1.2 signature_algorithm extension on server by Paul Bakker · 12 years ago
1d29fb5 - Added option to add minimum accepted SSL/TLS protocol version by Paul Bakker · 12 years ago
5d19f86 - Added comment by Paul Bakker · 12 years ago
cbbd999 - SSL/TLS now has default group by Paul Bakker · 12 years ago
62f2dee - Set POLARSSL_DHM_RFC5114_MODP_1024_[PG] as default DHM MODP group for SSL/TLS by Paul Bakker · 12 years ago
da7e3f2 - Added RFC 3526 2048-bit and 3072-bit MODP groups by Paul Bakker · 12 years ago
915275b - Revamped x509_verify() and the SSL f_vrfy callback implementations by Paul Bakker · 12 years ago
819370c - Removed lowercasing of parameters by Paul Bakker · 12 years ago
5701cdc - Added ServerName extension parsing (SNI) at server side by Paul Bakker · 12 years ago
f918310 - Autosize POLARSSL_MPI_RW_BUFFER_SIZE at compile time by Paul Bakker · 12 years ago
31417a7 - Fixed tests for enhanced rsa_check_privkey() by Paul Bakker · 12 years ago
eb2c658 - Generalized external private key implementation handling (like PKCS#11) in SSL/TLS by Paul Bakker · 12 years ago
321df6f - Expanded rsa_check_privkey() to check DP, DQ and QP as well by Paul Bakker · 12 years ago
5ef9db2 - Added rsa_check_privkey() check to rsa_sign by Paul Bakker · 12 years ago
db2509c - Added password and password_file options for reading private keys by Paul Bakker · 12 years ago
5531c6d - Change buffer size on mpi_write_file() to cover larger size MPIs by Paul Bakker · 12 years ago
49d7567 - Support INTEGRITY OS by Paul Bakker · 12 years ago
d14277d - Added PBKDF2 error code by Paul Bakker · 12 years ago
d432410 - Removed clutter from my_dhm values by Paul Bakker · 12 years ago
a864f2e - Removed trailing semicolon by Paul Bakker · 12 years ago
0a59707 - Added simple SSL session cache implementation by Paul Bakker · 12 years ago
1a0f552 - Fixed test for 'trust extension' change by Paul Bakker · 12 years ago
b00ca42 - Handle existence of OpenSSL Trust Extensions at end of X.509 DER blob by Paul Bakker · 12 years ago
4811b56 - Added util/CMakelists.txt by Paul Bakker · 12 years ago
29b6476 - Added predefined DHM groups from RFC 5114 by Paul Bakker · 12 years ago
b60b95f - Added first version of ssl_server2 example application by Paul Bakker · 12 years ago
995a215 - Added credits by Paul Bakker · 12 years ago
0f409a1 - Added missing subdirectory line for util by Paul Bakker · 12 years ago
d0f6fa7 - Sending of handshake_failures during renegotiation added by Paul Bakker · 12 years ago
17a9790 - Added regression check for latest mpi_add_abs() issue by Paul Bakker · 12 years ago
d4c2bd7 - Added bug by Paul Bakker · 12 years ago
2d319fd - Fixed bug in mpi_add_abs with adding a small number to a large mpi with carry rollover. by Paul Bakker · 12 years ago
48916f9 - Added Secure Renegotiation (RFC 5746) by Paul Bakker · 12 years ago
b5b20f1 - Extra sanity check for input added by Paul Bakker · 12 years ago
0c93d12 - Ability to define openssl at top by Paul Bakker · 12 years ago
5f70b25 - Correctly handle SHA256 ciphersuites in SSLv3 by Paul Bakker · 12 years ago
ec636f3 - Removed handling for SSLv2 Client Hello (as per RFC 5246 recommendation) by Paul Bakker · 12 years ago
68b6d88 - Clear all memory by Paul Bakker · 12 years ago
94a6796 - Correctly handle MS certificate's key usage bits by Paul Bakker · 12 years ago
f518b16 - Added PKCS#5 PBKDF2 key derivation function by Paul Bakker · 12 years ago
535e97d - Better checking for reading over buffer boundaries by Paul Bakker · 12 years ago
9195662 - Added test for no-subject certificates with altSubjectNames by Paul Bakker · 12 years ago
894dece - Cleaner return value (for C++) by Paul Bakker · 12 years ago
b68cad6 - Made cipersuites in ssl context const (no intention to modify) by Paul Bakker · 12 years ago
835b29e - Should not be debug_level 5 in repo (reset to 0) by Paul Bakker · 12 years ago
bb51f0c - Only include md.h if needed by POLARSSL_PKCS1_V21 by Paul Bakker · 12 years ago
6a2f857 - Added DragonflyBSD support by Paul Bakker · 12 years ago
3c16db9 - Fixed potential memory zeroization on miscrafted RSA key by Paul Bakker · 12 years ago
5552c8c - Updated documentation by Paul Bakker · 12 years ago
3d58fe8 - Added Blowfish to benchmarks by Paul Bakker · 12 years ago
6132d0a - Added Blowfish to generic cipher layer by Paul Bakker · 12 years ago
26c4e3c - Made crypt_and_cipher more robust with other ciphers / hashes by Paul Bakker · 12 years ago
83f00bb - Updated strerror codes for SSL Compression and Blowfish by Paul Bakker · 12 years ago
a9379c0 - Added base blowfish algorithm by Paul Bakker · 12 years ago
92eeea4 - Modified CMakeLists to support zlib by Paul Bakker · 12 years ago
2770fbd - Added DEFLATE compression support as per RFC3749 (requires zlib) by Paul Bakker · 12 years ago
4f9a7bb - Added Thumb assembly optimizations by Paul Bakker · 12 years ago
cefb396 - Handle empty certificate subject names by Paul Bakker · 12 years ago