Log - refs/heads/archive/mbedtls-1.3 - mirror/mbed-tls.git

d6b8ce4 Merge remote-tracking branch 'upstream-restricted/pr/413' into mbedtls-1.3-restricted by Jaeden Amero · 8 years ago
921eb59 Fix magic constant in previous commit by Manuel Pégourié-Gonnard · 8 years ago
3ea75b3 Fix SSLv3 MAC computation by Manuel Pégourié-Gonnard · 8 years ago
258bf59 Merge remote-tracking branch 'upstream-restricted/pr/426' into mbedtls-1.3-restricted by Gilles Peskine · 8 years ago
af86fb9 Merge branch 'mbedtls-1.3' into mbedtls-1.3-restricted by Gilles Peskine · 8 years ago
d3dd8d2 Merge remote-tracking branch 'upstream-restricted/pr/387' into mbedtls-1.3-restricted by Gilles Peskine · 8 years ago
0a139f9 Modify debug output by Hanno Becker · 8 years ago
251bab5 Fix heap corruption in ssl_decrypt_buf by Hanno Becker · 8 years ago
bfd0991 Fix handling of HS msgs in ssl_read if renegotiation unused by Hanno Becker · 8 years ago
268191a Swap branches accepting/refusing renegotiation in in ssl_read by Hanno Becker · 8 years ago
11f740a Use 2048-bit DHE parameters from RFC 3526 instead of 5114 by default by Hanno Becker · 8 years ago
b9ac47c Make ssl_set_hostname safe to be called multiple times by Hanno Becker · 8 years ago
a0ae1db Zeroize buffers in various modules by Andres Amaya Garcia · 8 years ago
0401a3d Ensure application data records are not kept when fully processed by Hanno Becker · 8 years ago
1bf86b7 Add hard assertion to ssl_read_record by Hanno Becker · 8 years ago
d37839e Fix mbedtls_ssl_read by Hanno Becker · 8 years ago
10699cc Simplify retaining of messages for future processing by Hanno Becker · 8 years ago
888c2fd Fix implementation of VERIFY_OPTIONAL verification mode by Hanno Becker · 8 years ago
c2b9d98 Remember suitable hash function for any signature algorithm. by Hanno Becker · 8 years ago
a697bf5 Fix for MSVC Compiler warnings by Simon B · 9 years ago
149950d Added checks for POLARSSL_SSL_CLI_C by Simon Butcher · 9 years ago
441d6f9 Remove MBEDTLS_SSL_AEAD_RANDOM_IV feature by Janos Follath · 9 years ago
f23d6c5 Merge branch 'mbedtls-1.3' into mbedtls-1.3-restricted by Manuel Pégourié-Gonnard · 10 years ago
0aaefce Actually ignore most non-fatal alerts by Manuel Pégourié-Gonnard · 10 years ago
5ca3640 Fix other int casts in bounds checking by Manuel Pégourié-Gonnard · 10 years ago
9c52176 Fix potential double-free in ssl_set_psk() by Manuel Pégourié-Gonnard · 10 years ago
36abef4 Merge multiple backported vulnerability fixes by Simon Butcher · 10 years ago
5aff029 Fix potential double-free in ssl_set_psk() by Manuel Pégourié-Gonnard · 10 years ago
c988f32 Added max length checking of hostname by Simon Butcher · 10 years ago
6512554 Fix handling of long PSK identities by Manuel Pégourié-Gonnard · 10 years ago
a67fd79 Fix -Wshadow warnings by Manuel Pégourié-Gonnard · 10 years ago
f0f399d Up default server DHM size to 2048 bits by Manuel Pégourié-Gonnard · 10 years ago
7d1e95c Add countermeasure against cache-based lucky 13 by Manuel Pégourié-Gonnard · 10 years ago
e16b62c Make results of (ext)KeyUsage accessible by Manuel Pégourié-Gonnard · 10 years ago
a2fce21 Fix potential NULL dereference on bad usage by Manuel Pégourié-Gonnard · 10 years ago
c70581c Add POLARSSL_DEPRECATED_{WARNING,REMOVED} by Manuel Pégourié-Gonnard · 10 years ago
f427f88 Stop checking key-cert match systematically by Manuel Pégourié-Gonnard · 10 years ago
fe44643 Rename website and repository by Manuel Pégourié-Gonnard · 10 years ago
f7db5e0 Avoid possible dangling pointers by Manuel Pégourié-Gonnard · 10 years ago
f45850c Fix the fix to ssl_set_psk() by Manuel Pégourié-Gonnard · 10 years ago
ac08b54 Merge remote-tracking branch 'rasp/mem-leak' into development by Manuel Pégourié-Gonnard · 10 years ago
f81088b Fix a potential memory leak found by find-mem-leak.cocci. by Mansour Moufid · 10 years ago
99b9259 Fix whitespace of 369e6c20. by Mansour Moufid · 10 years ago
c531b4a Apply the semantic patch rm-malloc-cast.cocci. by Mansour Moufid · 10 years ago
bd1d44e Fix whitespace of 369e6c20. by Mansour Moufid · 10 years ago
369e6c2 Apply the semantic patch rm-malloc-cast.cocci. by Mansour Moufid · 10 years ago
06d7519 Fix msvc warning by Manuel Pégourié-Gonnard · 10 years ago
00ab470 cleanup library and some basic tests. Includes, add guards to includes by Rich Evans · 10 years ago
860b516 Fix url again by Manuel Pégourié-Gonnard · 11 years ago
e89163c Fix bug in ssl_get_verify_result() by Manuel Pégourié-Gonnard · 11 years ago
085ab04 Fix website url to use https. by Manuel Pégourié-Gonnard · 11 years ago
9698f58 Remove maintainer line. by Manuel Pégourié-Gonnard · 11 years ago
19f6b5d Remove redundant "all rights reserved" by Manuel Pégourié-Gonnard · 11 years ago
a658a40 Update copyright by Manuel Pégourié-Gonnard · 11 years ago
967a2a5 Change name to mbed TLS in the copyright notice by Manuel Pégourié-Gonnard · 11 years ago
5b8f7ea Merge new security defaults for programs (RC4 disabled, SSL3 disabled) by Paul Bakker · 11 years ago
c82b7e2 Merge option to disable truncated hmac on the server-side by Paul Bakker · 11 years ago
a852cf4 Fix issue with non-blocking I/O & record splitting by Manuel Pégourié-Gonnard · 11 years ago
d5746b3 Fix warning by Manuel Pégourié-Gonnard · 11 years ago
f356115 Merge support for 1/n-1 record splitting by Paul Bakker · 11 years ago
f6080b8 Merge support for enabling / disabling renegotiation support at compile-time by Paul Bakker · 11 years ago
d7e2483 Merge miscellaneous fixes into development by Paul Bakker · 11 years ago
bd47a58 Add ssl_set_arc4_support() by Manuel Pégourié-Gonnard · 11 years ago
352143f Refactor for clearer correctness/security by Manuel Pégourié-Gonnard · 11 years ago
e117a8f Make truncated hmac a runtime option server-side by Manuel Pégourié-Gonnard · 11 years ago
cfa477e Allow disabling record splitting at runtime by Manuel Pégourié-Gonnard · 11 years ago
d76314c Add 1/n-1 record splitting by Manuel Pégourié-Gonnard · 11 years ago
837f0fe Make renego period configurable by Manuel Pégourié-Gonnard · 11 years ago
b445805 Auto-renegotiate before sequence number wrapping by Manuel Pégourié-Gonnard · 11 years ago
6186019 Save 48 bytes if SSLv3 is not defined by Manuel Pégourié-Gonnard · 11 years ago
615e677 Make renegotiation a compile-time option by Manuel Pégourié-Gonnard · 11 years ago
60346be Improve debugging message. by Manuel Pégourié-Gonnard · 11 years ago
2457fa0 Create ticket keys only if enabled by Manuel Pégourié-Gonnard · 11 years ago
d16d1cb Use more #ifdef's on CLI_C and SRV_C in ssl_tls.c by Manuel Pégourié-Gonnard · 11 years ago
8e4b337 Fix some more warnings in reduced configs by Manuel Pégourié-Gonnard · 11 years ago
e5b0fc1 Make malloc-init script a bit happier by Manuel Pégourié-Gonnard · 11 years ago
27e3edb Check key/cert pair in ssl_set_own_cert() by Manuel Pégourié-Gonnard · 11 years ago
d056ce0 Use seq_num as AEAD nonce by default by Manuel Pégourié-Gonnard · 11 years ago
9d7821d Fix warning in reduced config by Manuel Pégourié-Gonnard · 11 years ago
1a03473 Keep EtM state across renegotiations by Manuel Pégourié-Gonnard · 11 years ago
169dd6a Adjust minimum length for EtM by Manuel Pégourié-Gonnard · 11 years ago
08558e5 Fix for the RFC erratum by Manuel Pégourié-Gonnard · 11 years ago
313d796 Implement EtM by Manuel Pégourié-Gonnard · 11 years ago
0098e7d Preparation for EtM by Manuel Pégourié-Gonnard · 11 years ago
699cafa Implement initial negotiation of EtM by Manuel Pégourié-Gonnard · 11 years ago
ada3030 Implement extended master secret by Manuel Pégourié-Gonnard · 11 years ago
367381f Add negotiation of Extended Master Secret by Manuel Pégourié-Gonnard · 11 years ago
1cbd39d Implement FALLBACK_SCSV client-side by Manuel Pégourié-Gonnard · 11 years ago
82788fb Fix minor style issues by Paul Bakker · 11 years ago polarssl-1.3.9
a13500f Fix bug with ssl_close_notify and non-blocking I/O by Manuel Pégourié-Gonnard · 11 years ago
f07f421 Fix server-initiated renego with non-blocking I/O by Manuel Pégourié-Gonnard · 11 years ago
6591962 Allow delay on renego on client by Manuel Pégourié-Gonnard · 11 years ago
f26a1e8 ssl_read() stops returning non-application data by Manuel Pégourié-Gonnard · 11 years ago
55e4ff2 Tune comments by Manuel Pégourié-Gonnard · 11 years ago
8d4ad07 SHA-2 ciphersuites now require TLS 1.x by Manuel Pégourié-Gonnard · 11 years ago
968afaa ssl_key_cert not available in all configurations by Paul Bakker · 11 years ago
84bbeb5 Adapt cipher and MD layer with _init() and _free() by Paul Bakker · 11 years ago
accaffe Restructure ssl_handshake_init() and small fixes by Paul Bakker · 11 years ago
8f870b0 Add dhm_init() by Paul Bakker · 11 years ago
5b4af39 Add _init() and _free() for hash modules by Paul Bakker · 11 years ago