Rivoreo Source Code Repositories
src.rivoreo.one
/
security
/
mbedtls
/
bd51ad538d34121860373c3351df86d5d41267fa
/
library
bd51ad5
Re-ordered OID internals. Made macro for oid_XXX_from_asn1() functions
by Paul Bakker
· 11 years ago
9b5e885
PKCS#5 PBES2 now uses OID database for algorithm detection
by Paul Bakker
· 11 years ago
c5a79cc
Fixed compiler warnings for unused parameter ssl
by Paul Bakker
· 11 years ago
b9d3cfa
Split up GCM into a start/update/finish cycle
by Paul Bakker
· 11 years ago
534f82c
Made ctr_drbg_init_entropy_len() non-static and defined
by Paul Bakker
· 11 years ago
b6c5d2e
Cleanup up non-prototyped functions (static) and const-correctness
by Paul Bakker
· 11 years ago
169b7f4
Fixed gcm.c formatting (removed redundant spaces)
by Paul Bakker
· 11 years ago
bda7cb7
Fixed minor comment typo
by Paul Bakker
· 11 years ago
38b50d7
Moved PKCS#12 PBE functions to cipher / md layer where possible
by Paul Bakker
· 11 years ago
0e34235
Fixed values for 2-key Triple DES in cipher layer
by Paul Bakker
· 11 years ago
a4232a7
x509parse_crt() and x509parse_crt_der() return X509 password related codes
by Paul Bakker
· 11 years ago
7282309
Removed redundant free()s
by Paul Bakker
· 11 years ago
cf445ff
Added missing free()
by Paul Bakker
· 11 years ago
28144de
PKCS#5 v2 PBES2 support and use in PKCS#8 encrypted certificates
by Paul Bakker
· 11 years ago
b0c19a4
PKCS#5 module added. Moved PBKDF2 functionality inside and deprecated
by Paul Bakker
· 11 years ago
fc4f46f
Fixed bignum.c and bn_mul.h to support Thumb2 and LLVM compiler
by Paul Bakker
· 11 years ago
531e294
Fixed location of brackets in pkcs12.c
by Paul Bakker
· 11 years ago
2c8cdd2
x509parse_crtpath() is now reentrant and uses more portable stat()
by Paul Bakker
· 11 years ago
42c6581
Changed x509parse_crt_der() to support adding to chain.
by Paul Bakker
· 11 years ago
90995b5
Added mechanism to provide alternative cipher / hash implementations
by Paul Bakker
· 11 years ago
f1f21fe
Parsing of PKCS#8 encrypted private key files added and PKCS#12 basis
by Paul Bakker
· 11 years ago
e2f5040
Internally split up x509parse_key()
by Paul Bakker
· 11 years ago
89ecb2d
ssl_parse_certificate() now calls x509parse_crt_der() directly
by Paul Bakker
· 11 years ago
5ed3b34
x509parse_crt() now better handles PEM error situations
by Paul Bakker
· 11 years ago
00b2860
pem_read_buffer() already update use_len after header and footer are read
by Paul Bakker
· 11 years ago
3c2122f
Fixed const correctness issues that have no impact on the ABI
by Paul Bakker
· 11 years ago
2013950
Secure renegotiation extension should only be sent in case client supports secure renegotiation
by Paul Bakker
· 11 years ago
73d4431
Fixed parse error in ssl_parse_certificate_request()
by Paul Bakker
· 12 years ago
f6a19bd
Possible resource leak on FILE* removed in X509 parse
by Paul Bakker
· 12 years ago
c72d3f7
Possible resource leak on FILE* removed in CTR_DRBG
by Paul Bakker
· 12 years ago
40afb4b
Added PSK GCM, SHA256 and SHA384 ciphers from RFC5487
by Paul Bakker
· 12 years ago
a1bf92d
Added PSK NULL ciphers from RFC4785
by Paul Bakker
· 12 years ago
48f7a5d
DHE-PSK based ciphersuite support added and cleaner key exchange based
by Paul Bakker
· 12 years ago
188c8de
Only allow missing SereverKeyExchange message in bare PSK mode
by Paul Bakker
· 12 years ago
e07f41d
Introduced defines to control availability of specific SSL Key Exchange methods.
by Paul Bakker
· 12 years ago
ed27a04
More granular define selections within code to allow for smaller code sizes
by Paul Bakker
· 12 years ago
73a899a
Changed error code message to also cover missing pre-shared key
by Paul Bakker
· 12 years ago
fbb1780
Added pre-shared key handling for the server side of SSL / TLS
by Paul Bakker
· 12 years ago
70df2fb
Split parts of ssl_parse_client_key_exchange() into separate functions
by Paul Bakker
· 12 years ago
d4a56ec
Added pre-shared key handling for the client side of SSL / TLS
by Paul Bakker
· 12 years ago
f7abd42
Removed extra spaces on end of lines
by Paul Bakker
· 12 years ago
29e1f12
split parts of ssl_parse_server_key_exchange() into separate functions
by Paul Bakker
· 12 years ago
8f4ddae
Ability to specify allowed ciphersuites based on the protocol version.
by Paul Bakker
· 12 years ago
0ecdb23
Cleanup of the GCM code
by Paul Bakker
· 12 years ago
a280d0f
Fixed compiler warning for possible uninitialized ret
by Paul Bakker
· 12 years ago
27714b1
Added Camellia ECDHE-based CBC ciphersuites
by Paul Bakker
· 12 years ago
bfe671f
Blowfish has default of 128-bit keysize in cipher layer
by Paul Bakker
· 12 years ago
c70b982
OID functionality moved to a separate module.
by Paul Bakker
· 12 years ago
37de6be
Const correctness added for asn1write functions
by Paul Bakker
· 12 years ago
3b6a07b
Prevented compiler warning on uninitialized end
by Paul Bakker
· 12 years ago
d3edc86
Moved writing of client extensions to separate functions in ssl_cli.c
by Paul Bakker
· 12 years ago
a54e493
Added ECDHE-based SHA256 and SHA384 ciphersuites
by Paul Bakker
· 12 years ago
b7149bc
Corrected behaviour for CBC-based suites using the SHA384 MAC and PRF
by Paul Bakker
· 12 years ago
41c83d3
Added Ephemeral Elliptic Curve Diffie Hellman ciphersuites to SSL/TLS
by Paul Bakker
· 12 years ago
00c1f43
Merge branch 'ecc-devel-mpg' into development
by Paul Bakker
· 12 years ago
d589a0d
Modified Makefiles to include new files and and config.h to PolarSSL standard
by Paul Bakker
· 12 years ago
68884e3
Moved to advanced ciphersuite representation and more dynamic SSL code
by Paul Bakker
· 12 years ago
c9118b4
Renamed hash structures to ctx
by Paul Bakker
· 12 years ago
09d6725
Modified to work in-place
by Paul Bakker
· 12 years ago
92be97b
Align data with future location based on IV size
by Paul Bakker
· 12 years ago
07eb38b
Update ssl_hw_record_init() to receive keylen, ivlen and maclen as well
by Paul Bakker
· 12 years ago
c787811
Do not set done in case of a fall-through
by Paul Bakker
· 12 years ago
5bd4229
Reverted commit 186751d9dd28082d4b19e69a2c15fd432d366133 and made out_hdr and out_msg back-to-back again
by Paul Bakker
· 12 years ago
fae35f0
Functions in cipher_wrap.c marked static
by Paul Bakker
· 12 years ago
d1df02a
Functions inside md_wrap.c now marked static
by Paul Bakker
· 12 years ago
ac0fba5
Added missing header for MD2 and made code compile with missing header files
by Paul Bakker
· 12 years ago
1bd3ae8
Added md_process() to MD layer for generic internal access to hash
by Paul Bakker
· 12 years ago
90f042d
Prepared for PolarSSL 1.2.6 release
by Paul Bakker
· 12 years ago
polarssl-1.2.6
e81beda
The SSL session cache module (ssl_cache) now also retains peer_cert information (not the entire chain)
by Paul Bakker
· 12 years ago
78a8c71
Re-added support for parsing and handling SSLv2 Client Hello messages
by Paul Bakker
· 12 years ago
37286a5
Fixed net_bind() for specified IP addresses on little endian systems
by Paul Bakker
· 12 years ago
926c8e4
Fixed possible NULL pointer exception in ssl_get_ciphersuite()
by Paul Bakker
· 12 years ago
8804f69
Removed timing differences due to bad padding from RSA decrypt for
by Paul Bakker
· 12 years ago
a43231c
Added support for custom labels when using rsa_rsaes_oaep_encrypt() or rsa_rsaes_oaep_decrypt()
by Paul Bakker
· 12 years ago
b386913
Split up the RSA PKCS#1 encrypt, decrypt, sign and verify functions
by Paul Bakker
· 12 years ago
8ddb645
Added conversion to int for a t_uint value to prevent compiler warnings
by Paul Bakker
· 12 years ago
3d2dc0f
Corrected GCM counter incrementation to use only 32-bits instead of 128-bits
by Paul Bakker
· 12 years ago
e47b34b
Removed further timing differences during SSL message decryption in ssl_decrypt_buf()
by Paul Bakker
· 12 years ago
2ca8ad1
Made x509parse.c also work with missing hash header files
by Paul Bakker
· 12 years ago
86f04f4
Fixed comment
by Paul Bakker
· 12 years ago
c046350
Fixed memory leak in ssl_free() and ssl_reset() for active session
by Paul Bakker
· 12 years ago
f35b739
Add a few check for context validity.
by Manuel Pégourié-Gonnard
· 12 years ago
424fda5
Add ecdh_calc_secret()
by Manuel Pégourié-Gonnard
· 12 years ago
5cceb41
Add ecdh_{make,read}_public()
by Manuel Pégourié-Gonnard
· 12 years ago
854fbd7
Add ecdh_read_params().
by Manuel Pégourié-Gonnard
· 12 years ago
1372476
Add ecdh_make_server_params (untested yet)
by Manuel Pégourié-Gonnard
· 12 years ago
63533e4
Create ecdh_context structure
by Manuel Pégourié-Gonnard
· 12 years ago
98f5181
Fix ecp_tls_read_point's signature
by Manuel Pégourié-Gonnard
· 12 years ago
7c145c6
Fix ecp_tls_read_group's signature
by Manuel Pégourié-Gonnard
· 12 years ago
46106a9
Add tests for (and fix bug in) ecp_tls_write_group
by Manuel Pégourié-Gonnard
· 12 years ago
420f1eb
Fix ecp_tls_write_point's signature
by Manuel Pégourié-Gonnard
· 12 years ago
b325887
Add ecp_tls_write_group()
by Manuel Pégourié-Gonnard
· 12 years ago
7e86025
Rename ecp_*_binary to ecp_point_*_binary
by Manuel Pégourié-Gonnard
· 12 years ago
d84895d
Supress 'format' argument to ecp_read_binary.
by Manuel Pégourié-Gonnard
· 12 years ago
0079405
Add functions for read/write ECPoint records
by Manuel Pégourié-Gonnard
· 12 years ago
1a96728
Add function parsing a TLS ECParameters record
by Manuel Pégourié-Gonnard
· 12 years ago
c7a2da4
Updated for PolarSSL 1.2.5
by Paul Bakker
· 12 years ago
polarssl-1.2.5
40865c8
Added sending of alert messages in case of decryption failures as per RFC
by Paul Bakker
· 12 years ago
d66f070
Disable debug messages that can introduce a timing side channel.
by Paul Bakker
· 12 years ago
4582999
Fixed timing difference resulting from badly formatted padding.
by Paul Bakker
· 12 years ago
Next »