1. 86f04f4 Fixed comment by Paul Bakker · 12 years ago
  2. c046350 Fixed memory leak in ssl_free() and ssl_reset() for active session by Paul Bakker · 12 years ago
  3. c7a2da4 Updated for PolarSSL 1.2.5 by Paul Bakker · 12 years ago polarssl-1.2.5
  4. 40865c8 Added sending of alert messages in case of decryption failures as per RFC by Paul Bakker · 12 years ago
  5. d66f070 Disable debug messages that can introduce a timing side channel. by Paul Bakker · 12 years ago
  6. 4582999 Fixed timing difference resulting from badly formatted padding. by Paul Bakker · 12 years ago
  7. 8fe40dc Allow enabling of dummy error_strerror() to support some use-cases by Paul Bakker · 12 years ago
  8. 14c56a3 Updated for PolarSSL 1.2.4 by Paul Bakker · 12 years ago polarssl-1.2.4
  9. 1961b70 Added ssl_handshake_step() to allow single stepping the handshake process by Paul Bakker · 12 years ago
  10. 9c94cdd Correctly handle CertificateRequest with empty DN list in <= TLS 1.1 by Paul Bakker · 12 years ago
  11. 21dca69 Handle future version properly in ssl_write_certificate_request() by Paul Bakker · 12 years ago
  12. 02303e8 Moved md_init_ctx() calls around to minimize exit points by Paul Bakker · 12 years ago
  13. 40628ba Memory leak when using RSA_PKCS_V21 operations fixed by Paul Bakker · 12 years ago
  14. fb1ba78 Updated for release 1.2.3 by Paul Bakker · 12 years ago polarssl-1.2.3
  15. bc3d984 Fixed multiple DN size by Paul Bakker · 12 years ago
  16. df5069c Updated for 1.2.2 release by Paul Bakker · 12 years ago polarssl-1.2.2
  17. 3497d8c Do not check sig on trust-ca (might not be top) by Paul Bakker · 12 years ago
  18. 769075d Fixed dependency on POLARSSL_SHA4_C in ssl modules by Paul Bakker · 12 years ago
  19. 78ce507 Fixed typo by Paul Bakker · 12 years ago
  20. 926af75 Fixed client certificate handling with TLS 1.2 by Paul Bakker · 12 years ago
  21. e44ec10 Fixed segfault in mpi_shift_r() by Manuel Pégourié-Gonnard · 12 years ago
  22. 90f309f Added proper gitignores for linux compilation by Paul Bakker · 12 years ago
  23. 43ae298 - Fixed argument types by Paul Bakker · 12 years ago
  24. 34d8dbc - Depth that the certificate verify callback receives is now numbered bottom-up (Peer cert depth is 0) by Paul Bakker · 12 years ago
  25. e0f41f3 - Updated version to 1.2.1 by Paul Bakker · 12 years ago
  26. 9daf0d0 - Added max length check for rsa_pkcs1_sign with PKCS#1 v2.1 by Paul Bakker · 12 years ago
  27. 96c4ed8 - Proper building of shared lib when SHARED defined by Paul Bakker · 12 years ago
  28. 644db38 - Added SHARED define for building with -fPIC by Paul Bakker · 12 years ago
  29. f02c564 - Allow R and A to point to same mpi in mpi_div_mpi by Paul Bakker · 12 years ago
  30. 36c4a67 - Fixed off-by-one loop by Paul Bakker · 12 years ago
  31. 096348f - Fixed comments / typos by Paul Bakker · 12 years ago
  32. fc975dc - Small Windows VC6 fixes by Paul Bakker · 12 years ago
  33. d9374b0 - Moved mpi_inv_mod() outside POLARSSL_GENPRIME by Paul Bakker · 12 years ago
  34. 7a2538e - Fixes for MSVC6 by Paul Bakker · 12 years ago
  35. 645ce3a - Moved ciphersuite naming scheme to IANA reserved names by Paul Bakker · 12 years ago
  36. bb0139c - Moved to more flexible define structure by Paul Bakker · 12 years ago
  37. 35a7fe5 - Prevent compiler warning by Paul Bakker · 12 years ago
  38. 8611e73 - Fixed infinite loop by Paul Bakker · 12 years ago
  39. b0550d9 - Added ssl_get_peer_cert() to SSL API by Paul Bakker · 12 years ago
  40. d2c167e - And fixed order by Paul Bakker · 12 years ago
  41. 98fe5ea - Removed snprintf altogether for critical code paths by Paul Bakker · 12 years ago
  42. 331f563 - Do not use sprintf(), use snprintf() instead. by Paul Bakker · 12 years ago
  43. ba26e9e - Cache now only allows a maximum of entries in cache for preventing memory overrun by Paul Bakker · 12 years ago
  44. f1ab0ec - Changed default compiler flags to include -O2 by Paul Bakker · 12 years ago
  45. 67f9d53 - Removed code breaking strict-aliasing by Paul Bakker · 12 years ago
  46. 81420ab - properly print minimum version by Paul Bakker · 12 years ago
  47. c110d02 - Added extra check to prevent crash on failed memory allocation by Paul Bakker · 12 years ago
  48. 0be82f2 - Updated rsa_pkcs1_verify() and rsa_pkcs1_sign() to use appropriate buffer size for max MPIs by Paul Bakker · 12 years ago
  49. 36fec23 - Updated to 1.2.0 by Paul Bakker · 12 years ago
  50. 62261d6 - Rewrote bignum type definition #ifdef tree to work better on all systems by Paul Bakker · 12 years ago
  51. 3338b79 - Fixed WIN32 version of x509parse_crtpath() by Paul Bakker · 12 years ago
  52. d6f17b4 - Moved definition to top to prevent MS VC compiler warning by Paul Bakker · 12 years ago
  53. 5c2364c - Moved from unsigned long to uint32_t throughout code by Paul Bakker · 12 years ago
  54. 0e19e9f - Minor define change to prevent warning by Paul Bakker · 12 years ago
  55. 993d11d - Send ClientHello with 'minimal version' by Paul Bakker · 12 years ago
  56. 23f3680 - Added proper support for TLS 1.2 signature_algorithm extension on server by Paul Bakker · 12 years ago
  57. 1d29fb5 - Added option to add minimum accepted SSL/TLS protocol version by Paul Bakker · 12 years ago
  58. 62f2dee - Set POLARSSL_DHM_RFC5114_MODP_1024_[PG] as default DHM MODP group for SSL/TLS by Paul Bakker · 12 years ago
  59. 915275b - Revamped x509_verify() and the SSL f_vrfy callback implementations by Paul Bakker · 12 years ago
  60. 5701cdc - Added ServerName extension parsing (SNI) at server side by Paul Bakker · 12 years ago
  61. eb2c658 - Generalized external private key implementation handling (like PKCS#11) in SSL/TLS by Paul Bakker · 12 years ago
  62. 321df6f - Expanded rsa_check_privkey() to check DP, DQ and QP as well by Paul Bakker · 12 years ago
  63. 5531c6d - Change buffer size on mpi_write_file() to cover larger size MPIs by Paul Bakker · 12 years ago
  64. 49d7567 - Support INTEGRITY OS by Paul Bakker · 12 years ago
  65. d14277d - Added PBKDF2 error code by Paul Bakker · 12 years ago
  66. 0a59707 - Added simple SSL session cache implementation by Paul Bakker · 12 years ago
  67. b00ca42 - Handle existence of OpenSSL Trust Extensions at end of X.509 DER blob by Paul Bakker · 12 years ago
  68. 29b6476 - Added predefined DHM groups from RFC 5114 by Paul Bakker · 12 years ago
  69. d0f6fa7 - Sending of handshake_failures during renegotiation added by Paul Bakker · 12 years ago
  70. 2d319fd - Fixed bug in mpi_add_abs with adding a small number to a large mpi with carry rollover. by Paul Bakker · 12 years ago
  71. 48916f9 - Added Secure Renegotiation (RFC 5746) by Paul Bakker · 12 years ago
  72. b5b20f1 - Extra sanity check for input added by Paul Bakker · 12 years ago
  73. 5f70b25 - Correctly handle SHA256 ciphersuites in SSLv3 by Paul Bakker · 12 years ago
  74. ec636f3 - Removed handling for SSLv2 Client Hello (as per RFC 5246 recommendation) by Paul Bakker · 12 years ago
  75. 94a6796 - Correctly handle MS certificate's key usage bits by Paul Bakker · 12 years ago
  76. f518b16 - Added PKCS#5 PBKDF2 key derivation function by Paul Bakker · 12 years ago
  77. 535e97d - Better checking for reading over buffer boundaries by Paul Bakker · 12 years ago
  78. b68cad6 - Made cipersuites in ssl context const (no intention to modify) by Paul Bakker · 12 years ago
  79. bb51f0c - Only include md.h if needed by POLARSSL_PKCS1_V21 by Paul Bakker · 12 years ago
  80. 6a2f857 - Added DragonflyBSD support by Paul Bakker · 12 years ago
  81. 3c16db9 - Fixed potential memory zeroization on miscrafted RSA key by Paul Bakker · 12 years ago
  82. 6132d0a - Added Blowfish to generic cipher layer by Paul Bakker · 12 years ago
  83. 83f00bb - Updated strerror codes for SSL Compression and Blowfish by Paul Bakker · 12 years ago
  84. a9379c0 - Added base blowfish algorithm by Paul Bakker · 12 years ago
  85. 2770fbd - Added DEFLATE compression support as per RFC3749 (requires zlib) by Paul Bakker · 12 years ago
  86. cefb396 - Handle empty certificate subject names by Paul Bakker · 12 years ago
  87. e4791f3 - Bugfix for Windows in cert path handling by Paul Bakker · 12 years ago
  88. 67820bd - Only include padlock header when POLARSSL_PADLOCK_C is defined by Paul Bakker · 12 years ago
  89. 8d91458 - Added X509 CA Path support by Paul Bakker · 12 years ago
  90. e6ee41f - Added OpenSSL / PolarSSL compatibility script (tests/compat.sh) and example application (programs/ssl/o_p_test) (Requires OpenSSL) by Paul Bakker · 13 years ago
  91. 5054692 - Moved to prevent uninitialized exit var by Paul Bakker · 13 years ago
  92. f6198c1 - mpi_exp_mod() now correctly handles negative base numbers (Closes ticket #52) by Paul Bakker · 13 years ago
  93. 2a5c7a8 - Add Windows required library by Paul Bakker · 13 years ago
  94. 62f88dc Makefile more compatible with WINDOWS environment by Paul Bakker · 13 years ago
  95. cd5b529 - Added automatic WINDOWS define in Makefile by Paul Bakker · 13 years ago
  96. 4d2c124 - Changed certificate verify behaviour to comply with RFC 6125 section 6.3 to not match CN if subjectAltName extension is present. by Paul Bakker · 13 years ago
  97. 7e2c728 - Updated to support NetBSD by Paul Bakker · 13 years ago
  98. 186751d - Moved out_msg to out_hdr + 32 to support hardware acceleration by Paul Bakker · 13 years ago
  99. 3aac1da - Added exception error parsing when FATAL ssl message is received by Paul Bakker · 13 years ago
  100. 6b906e5 - Const correctness mpi_get_bit() - Documentation mpi_lsb(), mpi_msb() by Paul Bakker · 13 years ago