TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / 43f9799ce61c6392a014d0a2ea136b4b3a9ee194 / library
  1. 43f9799 RSA blinding on CRT operations to counter timing attacks by Paul Bakker · 12 years ago
  2. 88a2264 Fixed potential file descriptor leaks by Paul Bakker · 12 years ago
  3. f65fbee x509_verify() now case insensitive for cn (RFC 6125 6.4) by Paul Bakker · 12 years ago
  4. a565ace Fixed potential memory leak when failing to resume a session by Paul Bakker · 12 years ago
  5. a13d744 Fixed potential heap buffer overflow on large hostname setting by Paul Bakker · 12 years ago
  6. fe7c24c Fixed potential negative value misinterpretation in load_file() by Paul Bakker · 12 years ago
  7. 433fad2 Removed errant printf in x509parse_self_test() by Paul Bakker · 12 years ago
  8. 21360ca ssl_write_certificate_request() can handle empty ca_chain by Paul Bakker · 12 years ago polarssl-1.2.8
  9. 1d41950 Prepared for PolarSSL release 1.2.8 by Paul Bakker · 12 years ago
  10. da7fdbd Fixed minor comment typo by Paul Bakker · 12 years ago
  11. 14a222c Moved PKCS#12 PBE functions to cipher / md layer where possible by Paul Bakker · 12 years ago
  12. 2be71fa Fixed values for 2-key Triple DES in cipher layer by Paul Bakker · 12 years ago
  13. b495d3a x509parse_crt() and x509parse_crt_der() return X509 password related codes by Paul Bakker · 12 years ago
  14. 1fc7dfe Removed redundant free()s by Paul Bakker · 12 years ago
  15. ff3a4b0 Added missing free() by Paul Bakker · 12 years ago
  16. 1fd4321 PKCS#5 v2 PBES2 support and use in PKCS#8 encrypted certificates by Paul Bakker · 12 years ago
  17. 19bd297 PKCS#5 module added. Moved PBKDF2 functionality inside and deprecated by Paul Bakker · 12 years ago
  18. 52b845b Fixed bignum.c and bn_mul.h to support Thumb2 and LLVM compiler by Paul Bakker · 12 years ago
  19. 67812d3 Fixed location of brackets in pkcs12.c by Paul Bakker · 12 years ago
  20. cbfcaa9 x509parse_crtpath() is now reentrant and uses more portable stat() by Paul Bakker · 12 years ago
  21. d6d4109 Changed x509parse_crt_der() to support adding to chain. by Paul Bakker · 12 years ago
  22. 4087c47 Added mechanism to provide alternative cipher / hash implementations by Paul Bakker · 12 years ago
  23. cf6e95d Parsing of PKCS#8 encrypted private key files added and PKCS#12 basis by Paul Bakker · 12 years ago
  24. 65a1909 Internally split up x509parse_key() by Paul Bakker · 12 years ago
  25. 1922a4e ssl_parse_certificate() now calls x509parse_crt_der() directly by Paul Bakker · 12 years ago
  26. 6417186 x509parse_crt() now better handles PEM error situations by Paul Bakker · 12 years ago
  27. 9255e83 pem_read_buffer() already update use_len after header and footer are read by Paul Bakker · 12 years ago
  28. eae09db Fixed const correctness issues that have no impact on the ABI by Paul Bakker · 12 years ago
  29. f922630 Fixed offset for cert_type list in ssl_parse_certificate_request() by Paul Bakker · 12 years ago
  30. 7c3c389 Secure renegotiation extension should only be sent in case client supports secure renegotiation by Paul Bakker · 12 years ago
  31. 822e958 Prepared for PolarSSL 1.2.7 release by Paul Bakker · 12 years ago polarssl-1.2.7
  32. f42e5cc Cleanup of the GCM code by Paul Bakker · 12 years ago
  33. 8a4ec44 Blowfish has default of 128-bit keysize in cipher layer by Paul Bakker · 12 years ago
  34. a627298 Ability to specify allowed ciphersuites based on the protocol version. by Paul Bakker · 12 years ago
  35. 90f042d Prepared for PolarSSL 1.2.6 release by Paul Bakker · 12 years ago polarssl-1.2.6
  36. e81beda The SSL session cache module (ssl_cache) now also retains peer_cert information (not the entire chain) by Paul Bakker · 12 years ago
  37. 78a8c71 Re-added support for parsing and handling SSLv2 Client Hello messages by Paul Bakker · 12 years ago
  38. 37286a5 Fixed net_bind() for specified IP addresses on little endian systems by Paul Bakker · 12 years ago
  39. 926c8e4 Fixed possible NULL pointer exception in ssl_get_ciphersuite() by Paul Bakker · 12 years ago
  40. 8804f69 Removed timing differences due to bad padding from RSA decrypt for by Paul Bakker · 12 years ago
  41. a43231c Added support for custom labels when using rsa_rsaes_oaep_encrypt() or rsa_rsaes_oaep_decrypt() by Paul Bakker · 12 years ago
  42. b386913 Split up the RSA PKCS#1 encrypt, decrypt, sign and verify functions by Paul Bakker · 12 years ago
  43. 8ddb645 Added conversion to int for a t_uint value to prevent compiler warnings by Paul Bakker · 12 years ago
  44. 3d2dc0f Corrected GCM counter incrementation to use only 32-bits instead of 128-bits by Paul Bakker · 12 years ago
  45. e47b34b Removed further timing differences during SSL message decryption in ssl_decrypt_buf() by Paul Bakker · 12 years ago
  46. 2ca8ad1 Made x509parse.c also work with missing hash header files by Paul Bakker · 12 years ago
  47. 86f04f4 Fixed comment by Paul Bakker · 12 years ago
  48. c046350 Fixed memory leak in ssl_free() and ssl_reset() for active session by Paul Bakker · 12 years ago
  49. c7a2da4 Updated for PolarSSL 1.2.5 by Paul Bakker · 13 years ago polarssl-1.2.5
  50. 40865c8 Added sending of alert messages in case of decryption failures as per RFC by Paul Bakker · 13 years ago
  51. d66f070 Disable debug messages that can introduce a timing side channel. by Paul Bakker · 13 years ago
  52. 4582999 Fixed timing difference resulting from badly formatted padding. by Paul Bakker · 13 years ago
  53. 8fe40dc Allow enabling of dummy error_strerror() to support some use-cases by Paul Bakker · 13 years ago
  54. 14c56a3 Updated for PolarSSL 1.2.4 by Paul Bakker · 13 years ago polarssl-1.2.4
  55. 1961b70 Added ssl_handshake_step() to allow single stepping the handshake process by Paul Bakker · 13 years ago
  56. 9c94cdd Correctly handle CertificateRequest with empty DN list in <= TLS 1.1 by Paul Bakker · 13 years ago
  57. 21dca69 Handle future version properly in ssl_write_certificate_request() by Paul Bakker · 13 years ago
  58. 02303e8 Moved md_init_ctx() calls around to minimize exit points by Paul Bakker · 13 years ago
  59. 40628ba Memory leak when using RSA_PKCS_V21 operations fixed by Paul Bakker · 13 years ago
  60. fb1ba78 Updated for release 1.2.3 by Paul Bakker · 13 years ago polarssl-1.2.3
  61. bc3d984 Fixed multiple DN size by Paul Bakker · 13 years ago
  62. df5069c Updated for 1.2.2 release by Paul Bakker · 13 years ago polarssl-1.2.2
  63. 3497d8c Do not check sig on trust-ca (might not be top) by Paul Bakker · 13 years ago
  64. 769075d Fixed dependency on POLARSSL_SHA4_C in ssl modules by Paul Bakker · 13 years ago
  65. 78ce507 Fixed typo by Paul Bakker · 13 years ago
  66. 926af75 Fixed client certificate handling with TLS 1.2 by Paul Bakker · 13 years ago
  67. e44ec10 Fixed segfault in mpi_shift_r() by Manuel Pégourié-Gonnard · 13 years ago
  68. 90f309f Added proper gitignores for linux compilation by Paul Bakker · 13 years ago
  69. 43ae298 - Fixed argument types by Paul Bakker · 13 years ago
  70. 34d8dbc - Depth that the certificate verify callback receives is now numbered bottom-up (Peer cert depth is 0) by Paul Bakker · 13 years ago
  71. e0f41f3 - Updated version to 1.2.1 by Paul Bakker · 13 years ago
  72. 9daf0d0 - Added max length check for rsa_pkcs1_sign with PKCS#1 v2.1 by Paul Bakker · 13 years ago
  73. 96c4ed8 - Proper building of shared lib when SHARED defined by Paul Bakker · 13 years ago
  74. 644db38 - Added SHARED define for building with -fPIC by Paul Bakker · 13 years ago
  75. f02c564 - Allow R and A to point to same mpi in mpi_div_mpi by Paul Bakker · 13 years ago
  76. 36c4a67 - Fixed off-by-one loop by Paul Bakker · 13 years ago
  77. 096348f - Fixed comments / typos by Paul Bakker · 13 years ago
  78. fc975dc - Small Windows VC6 fixes by Paul Bakker · 13 years ago
  79. d9374b0 - Moved mpi_inv_mod() outside POLARSSL_GENPRIME by Paul Bakker · 13 years ago
  80. 7a2538e - Fixes for MSVC6 by Paul Bakker · 13 years ago
  81. 645ce3a - Moved ciphersuite naming scheme to IANA reserved names by Paul Bakker · 13 years ago
  82. bb0139c - Moved to more flexible define structure by Paul Bakker · 13 years ago
  83. 35a7fe5 - Prevent compiler warning by Paul Bakker · 13 years ago
  84. 8611e73 - Fixed infinite loop by Paul Bakker · 13 years ago
  85. b0550d9 - Added ssl_get_peer_cert() to SSL API by Paul Bakker · 13 years ago
  86. d2c167e - And fixed order by Paul Bakker · 13 years ago
  87. 98fe5ea - Removed snprintf altogether for critical code paths by Paul Bakker · 13 years ago
  88. 331f563 - Do not use sprintf(), use snprintf() instead. by Paul Bakker · 13 years ago
  89. ba26e9e - Cache now only allows a maximum of entries in cache for preventing memory overrun by Paul Bakker · 13 years ago
  90. f1ab0ec - Changed default compiler flags to include -O2 by Paul Bakker · 13 years ago
  91. 67f9d53 - Removed code breaking strict-aliasing by Paul Bakker · 13 years ago
  92. 81420ab - properly print minimum version by Paul Bakker · 13 years ago
  93. c110d02 - Added extra check to prevent crash on failed memory allocation by Paul Bakker · 13 years ago
  94. 0be82f2 - Updated rsa_pkcs1_verify() and rsa_pkcs1_sign() to use appropriate buffer size for max MPIs by Paul Bakker · 13 years ago
  95. 36fec23 - Updated to 1.2.0 by Paul Bakker · 13 years ago
  96. 62261d6 - Rewrote bignum type definition #ifdef tree to work better on all systems by Paul Bakker · 13 years ago
  97. 3338b79 - Fixed WIN32 version of x509parse_crtpath() by Paul Bakker · 13 years ago
  98. d6f17b4 - Moved definition to top to prevent MS VC compiler warning by Paul Bakker · 13 years ago
  99. 5c2364c - Moved from unsigned long to uint32_t throughout code by Paul Bakker · 13 years ago
  100. 0e19e9f - Minor define change to prevent warning by Paul Bakker · 13 years ago