Rivoreo Source Code Repositories
src.rivoreo.one
/
security
/
mbedtls
/
e3e4a5962272561967363a21265528ba7877ccc3
/
library
8ddb645
Added conversion to int for a t_uint value to prevent compiler warnings
by Paul Bakker
· 12 years ago
3d2dc0f
Corrected GCM counter incrementation to use only 32-bits instead of 128-bits
by Paul Bakker
· 12 years ago
e47b34b
Removed further timing differences during SSL message decryption in ssl_decrypt_buf()
by Paul Bakker
· 12 years ago
2ca8ad1
Made x509parse.c also work with missing hash header files
by Paul Bakker
· 12 years ago
86f04f4
Fixed comment
by Paul Bakker
· 12 years ago
c046350
Fixed memory leak in ssl_free() and ssl_reset() for active session
by Paul Bakker
· 12 years ago
c7a2da4
Updated for PolarSSL 1.2.5
by Paul Bakker
· 12 years ago
polarssl-1.2.5
40865c8
Added sending of alert messages in case of decryption failures as per RFC
by Paul Bakker
· 12 years ago
d66f070
Disable debug messages that can introduce a timing side channel.
by Paul Bakker
· 12 years ago
4582999
Fixed timing difference resulting from badly formatted padding.
by Paul Bakker
· 12 years ago
8fe40dc
Allow enabling of dummy error_strerror() to support some use-cases
by Paul Bakker
· 12 years ago
14c56a3
Updated for PolarSSL 1.2.4
by Paul Bakker
· 12 years ago
polarssl-1.2.4
1961b70
Added ssl_handshake_step() to allow single stepping the handshake process
by Paul Bakker
· 12 years ago
9c94cdd
Correctly handle CertificateRequest with empty DN list in <= TLS 1.1
by Paul Bakker
· 12 years ago
21dca69
Handle future version properly in ssl_write_certificate_request()
by Paul Bakker
· 12 years ago
02303e8
Moved md_init_ctx() calls around to minimize exit points
by Paul Bakker
· 12 years ago
40628ba
Memory leak when using RSA_PKCS_V21 operations fixed
by Paul Bakker
· 12 years ago
fb1ba78
Updated for release 1.2.3
by Paul Bakker
· 12 years ago
polarssl-1.2.3
bc3d984
Fixed multiple DN size
by Paul Bakker
· 12 years ago
df5069c
Updated for 1.2.2 release
by Paul Bakker
· 12 years ago
polarssl-1.2.2
3497d8c
Do not check sig on trust-ca (might not be top)
by Paul Bakker
· 12 years ago
769075d
Fixed dependency on POLARSSL_SHA4_C in ssl modules
by Paul Bakker
· 12 years ago
78ce507
Fixed typo
by Paul Bakker
· 12 years ago
926af75
Fixed client certificate handling with TLS 1.2
by Paul Bakker
· 12 years ago
e44ec10
Fixed segfault in mpi_shift_r()
by Manuel Pégourié-Gonnard
· 12 years ago
90f309f
Added proper gitignores for linux compilation
by Paul Bakker
· 12 years ago
43ae298
- Fixed argument types
by Paul Bakker
· 12 years ago
34d8dbc
- Depth that the certificate verify callback receives is now numbered bottom-up (Peer cert depth is 0)
by Paul Bakker
· 12 years ago
e0f41f3
- Updated version to 1.2.1
by Paul Bakker
· 12 years ago
9daf0d0
- Added max length check for rsa_pkcs1_sign with PKCS#1 v2.1
by Paul Bakker
· 12 years ago
96c4ed8
- Proper building of shared lib when SHARED defined
by Paul Bakker
· 12 years ago
644db38
- Added SHARED define for building with -fPIC
by Paul Bakker
· 12 years ago
f02c564
- Allow R and A to point to same mpi in mpi_div_mpi
by Paul Bakker
· 12 years ago
36c4a67
- Fixed off-by-one loop
by Paul Bakker
· 12 years ago
096348f
- Fixed comments / typos
by Paul Bakker
· 12 years ago
fc975dc
- Small Windows VC6 fixes
by Paul Bakker
· 12 years ago
d9374b0
- Moved mpi_inv_mod() outside POLARSSL_GENPRIME
by Paul Bakker
· 12 years ago
7a2538e
- Fixes for MSVC6
by Paul Bakker
· 12 years ago
645ce3a
- Moved ciphersuite naming scheme to IANA reserved names
by Paul Bakker
· 12 years ago
bb0139c
- Moved to more flexible define structure
by Paul Bakker
· 12 years ago
35a7fe5
- Prevent compiler warning
by Paul Bakker
· 12 years ago
8611e73
- Fixed infinite loop
by Paul Bakker
· 12 years ago
b0550d9
- Added ssl_get_peer_cert() to SSL API
by Paul Bakker
· 12 years ago
d2c167e
- And fixed order
by Paul Bakker
· 12 years ago
98fe5ea
- Removed snprintf altogether for critical code paths
by Paul Bakker
· 12 years ago
331f563
- Do not use sprintf(), use snprintf() instead.
by Paul Bakker
· 12 years ago
ba26e9e
- Cache now only allows a maximum of entries in cache for preventing memory overrun
by Paul Bakker
· 12 years ago
f1ab0ec
- Changed default compiler flags to include -O2
by Paul Bakker
· 12 years ago
67f9d53
- Removed code breaking strict-aliasing
by Paul Bakker
· 12 years ago
81420ab
- properly print minimum version
by Paul Bakker
· 12 years ago
c110d02
- Added extra check to prevent crash on failed memory allocation
by Paul Bakker
· 12 years ago
0be82f2
- Updated rsa_pkcs1_verify() and rsa_pkcs1_sign() to use appropriate buffer size for max MPIs
by Paul Bakker
· 12 years ago
36fec23
- Updated to 1.2.0
by Paul Bakker
· 12 years ago
62261d6
- Rewrote bignum type definition #ifdef tree to work better on all systems
by Paul Bakker
· 12 years ago
3338b79
- Fixed WIN32 version of x509parse_crtpath()
by Paul Bakker
· 12 years ago
d6f17b4
- Moved definition to top to prevent MS VC compiler warning
by Paul Bakker
· 12 years ago
5c2364c
- Moved from unsigned long to uint32_t throughout code
by Paul Bakker
· 12 years ago
0e19e9f
- Minor define change to prevent warning
by Paul Bakker
· 12 years ago
993d11d
- Send ClientHello with 'minimal version'
by Paul Bakker
· 12 years ago
23f3680
- Added proper support for TLS 1.2 signature_algorithm extension on server
by Paul Bakker
· 12 years ago
1d29fb5
- Added option to add minimum accepted SSL/TLS protocol version
by Paul Bakker
· 12 years ago
62f2dee
- Set POLARSSL_DHM_RFC5114_MODP_1024_[PG] as default DHM MODP group for SSL/TLS
by Paul Bakker
· 12 years ago
915275b
- Revamped x509_verify() and the SSL f_vrfy callback implementations
by Paul Bakker
· 12 years ago
5701cdc
- Added ServerName extension parsing (SNI) at server side
by Paul Bakker
· 12 years ago
eb2c658
- Generalized external private key implementation handling (like PKCS#11) in SSL/TLS
by Paul Bakker
· 12 years ago
321df6f
- Expanded rsa_check_privkey() to check DP, DQ and QP as well
by Paul Bakker
· 12 years ago
5531c6d
- Change buffer size on mpi_write_file() to cover larger size MPIs
by Paul Bakker
· 12 years ago
49d7567
- Support INTEGRITY OS
by Paul Bakker
· 12 years ago
d14277d
- Added PBKDF2 error code
by Paul Bakker
· 12 years ago
0a59707
- Added simple SSL session cache implementation
by Paul Bakker
· 12 years ago
b00ca42
- Handle existence of OpenSSL Trust Extensions at end of X.509 DER blob
by Paul Bakker
· 12 years ago
29b6476
- Added predefined DHM groups from RFC 5114
by Paul Bakker
· 12 years ago
d0f6fa7
- Sending of handshake_failures during renegotiation added
by Paul Bakker
· 12 years ago
2d319fd
- Fixed bug in mpi_add_abs with adding a small number to a large mpi with carry rollover.
by Paul Bakker
· 12 years ago
48916f9
- Added Secure Renegotiation (RFC 5746)
by Paul Bakker
· 12 years ago
b5b20f1
- Extra sanity check for input added
by Paul Bakker
· 12 years ago
5f70b25
- Correctly handle SHA256 ciphersuites in SSLv3
by Paul Bakker
· 12 years ago
ec636f3
- Removed handling for SSLv2 Client Hello (as per RFC 5246 recommendation)
by Paul Bakker
· 12 years ago
94a6796
- Correctly handle MS certificate's key usage bits
by Paul Bakker
· 12 years ago
f518b16
- Added PKCS#5 PBKDF2 key derivation function
by Paul Bakker
· 12 years ago
535e97d
- Better checking for reading over buffer boundaries
by Paul Bakker
· 12 years ago
b68cad6
- Made cipersuites in ssl context const (no intention to modify)
by Paul Bakker
· 12 years ago
bb51f0c
- Only include md.h if needed by POLARSSL_PKCS1_V21
by Paul Bakker
· 12 years ago
6a2f857
- Added DragonflyBSD support
by Paul Bakker
· 12 years ago
3c16db9
- Fixed potential memory zeroization on miscrafted RSA key
by Paul Bakker
· 12 years ago
6132d0a
- Added Blowfish to generic cipher layer
by Paul Bakker
· 12 years ago
83f00bb
- Updated strerror codes for SSL Compression and Blowfish
by Paul Bakker
· 12 years ago
a9379c0
- Added base blowfish algorithm
by Paul Bakker
· 12 years ago
2770fbd
- Added DEFLATE compression support as per RFC3749 (requires zlib)
by Paul Bakker
· 12 years ago
cefb396
- Handle empty certificate subject names
by Paul Bakker
· 12 years ago
e4791f3
- Bugfix for Windows in cert path handling
by Paul Bakker
· 12 years ago
67820bd
- Only include padlock header when POLARSSL_PADLOCK_C is defined
by Paul Bakker
· 12 years ago
8d91458
- Added X509 CA Path support
by Paul Bakker
· 12 years ago
e6ee41f
- Added OpenSSL / PolarSSL compatibility script (tests/compat.sh) and example application (programs/ssl/o_p_test) (Requires OpenSSL)
by Paul Bakker
· 13 years ago
5054692
- Moved to prevent uninitialized exit var
by Paul Bakker
· 13 years ago
f6198c1
- mpi_exp_mod() now correctly handles negative base numbers (Closes ticket #52)
by Paul Bakker
· 13 years ago
2a5c7a8
- Add Windows required library
by Paul Bakker
· 13 years ago
62f88dc
Makefile more compatible with WINDOWS environment
by Paul Bakker
· 13 years ago
cd5b529
- Added automatic WINDOWS define in Makefile
by Paul Bakker
· 13 years ago
4d2c124
- Changed certificate verify behaviour to comply with RFC 6125 section 6.3 to not match CN if subjectAltName extension is present.
by Paul Bakker
· 13 years ago
Next »