TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 57291a7019b401232e408556bb626ef0cb0ba2cb / ChangeLog
  1. 57291a7 Work around a compiler bug on OS X. by Manuel Pégourié-Gonnard · 11 years ago
  2. 3baeb15 Update changelog for cmake changes by Manuel Pégourié-Gonnard · 11 years ago
  3. e635604 Don't try to use MIPS32 asm macros on MIPS64 by Alex Wilson · 11 years ago
  4. be04673 Forbid sequence number wrapping by Manuel Pégourié-Gonnard · 11 years ago
  5. 50a5c53 Reject certs and CRLs from the future by Paul Bakker · 11 years ago
  6. 963918b Countermeasure against "triple handshake" attack by Manuel Pégourié-Gonnard · 11 years ago
  7. 57ca570 Fixed CMake symlinking on out-of-source builds by Paul Bakker · 11 years ago
  8. 6d841c2 Fix verion-major intolerance by Manuel Pégourié-Gonnard · 11 years ago
  9. e96bfbc Fixed testing with out-of-source builds using cmake by Paul Bakker · 11 years ago
  10. c675e4b Fix bug in RSA PKCS#1 v1.5 "reversed" operations by Manuel Pégourié-Gonnard · 12 years ago
  11. af0ccc8 SMTP lines are officially terminated with CRLF, ssl_mail_client fixed by Paul Bakker · 12 years ago
  12. 0b6355d Updated ChangeLog by Paul Bakker · 11 years ago
  13. d15718c Updated ChangeLog by Paul Bakker · 11 years ago
  14. d83584e Fixed potential overflow in certificate size in ssl_write_certificate() by Paul Bakker · 12 years ago
  15. 78e8196 Added missing MPI_CHK() around some statements by Paul Bakker · 12 years ago
  16. 40cc914 Fixed x509_crt_parse_path() bug on Windows platforms by Paul Bakker · 11 years ago
  17. b9f6d50 crypt_and_hash: check MAC earlier by Manuel Pégourié-Gonnard · 12 years ago
  18. a1caf6e SSL now gracefully handles missing RNG by Paul Bakker · 12 years ago
  19. c941adb Fixed X.509 hostname comparison (with non-regular characters) by Paul Bakker · 11 years ago
  20. e46b177 Make get_pkcs_padding() constant-time by Paul Bakker · 11 years ago
  21. 9ccb211 Introduced POLARSSL_HAVE_READDIR_R for systems without it by Paul Bakker · 11 years ago
  22. 6b06502 Changed RSA blinding to a slower but thread-safe version by Paul Bakker · 12 years ago polarssl-1.2.10
  23. adace27 Prepped for 1.2.10 release by Paul Bakker · 12 years ago
  24. 178e744 Fixed MS VC project files by Paul Bakker · 12 years ago
  25. 495830d Fixed ssl_pkcs11_decrypt() prototype by Paul Bakker · 12 years ago
  26. 62087ee Fixed memory leak in rsa.c introduced in 43f9799 by Paul Bakker · 12 years ago
  27. 60ad84f Fixed release date for 1.2.9 by Paul Bakker · 12 years ago polarssl-1.2.9
  28. e45574e Prepped for 1.2.9 release by Paul Bakker · 12 years ago
  29. 43f9799 RSA blinding on CRT operations to counter timing attacks by Paul Bakker · 12 years ago
  30. 88a2264 Fixed potential file descriptor leaks by Paul Bakker · 12 years ago
  31. f65fbee x509_verify() now case insensitive for cn (RFC 6125 6.4) by Paul Bakker · 12 years ago
  32. a565ace Fixed potential memory leak when failing to resume a session by Paul Bakker · 12 years ago
  33. 78020fe Added fixes to ChangeLog by Paul Bakker · 12 years ago
  34. 21360ca ssl_write_certificate_request() can handle empty ca_chain by Paul Bakker · 12 years ago polarssl-1.2.8
  35. 016ea07 Added Security note (Advisory 2013-03) in ChangeLog by Paul Bakker · 12 years ago
  36. 1d41950 Prepared for PolarSSL release 1.2.8 by Paul Bakker · 12 years ago
  37. 2be71fa Fixed values for 2-key Triple DES in cipher layer by Paul Bakker · 12 years ago
  38. 6fa5488 Centralized module option values in config.h by Paul Bakker · 12 years ago
  39. 19bd297 PKCS#5 module added. Moved PBKDF2 functionality inside and deprecated by Paul Bakker · 12 years ago
  40. 52b845b Fixed bignum.c and bn_mul.h to support Thumb2 and LLVM compiler by Paul Bakker · 12 years ago
  41. cbfcaa9 x509parse_crtpath() is now reentrant and uses more portable stat() by Paul Bakker · 12 years ago
  42. 4087c47 Added mechanism to provide alternative cipher / hash implementations by Paul Bakker · 12 years ago
  43. cf6e95d Parsing of PKCS#8 encrypted private key files added and PKCS#12 basis by Paul Bakker · 12 years ago
  44. 65a1909 Internally split up x509parse_key() by Paul Bakker · 12 years ago
  45. 1922a4e ssl_parse_certificate() now calls x509parse_crt_der() directly by Paul Bakker · 12 years ago
  46. 6417186 x509parse_crt() now better handles PEM error situations by Paul Bakker · 12 years ago
  47. 08f06cf Disabled the HAVEGE random generator by default by Paul Bakker · 12 years ago
  48. eae09db Fixed const correctness issues that have no impact on the ABI by Paul Bakker · 12 years ago
  49. f922630 Fixed offset for cert_type list in ssl_parse_certificate_request() by Paul Bakker · 12 years ago
  50. 7c3c389 Secure renegotiation extension should only be sent in case client supports secure renegotiation by Paul Bakker · 12 years ago
  51. 822e958 Prepared for PolarSSL 1.2.7 release by Paul Bakker · 12 years ago polarssl-1.2.7
  52. a627298 Ability to specify allowed ciphersuites based on the protocol version. by Paul Bakker · 12 years ago
  53. d4c5944 Fixed MPI assembly for ARM when -O2 is used by Paul Bakker · 12 years ago
  54. 90f042d Prepared for PolarSSL 1.2.6 release by Paul Bakker · 12 years ago polarssl-1.2.6
  55. fb1cbd3 Fixed assembly code for ARM (Thumb and regular) for some compilers by Paul Bakker · 12 years ago
  56. e81beda The SSL session cache module (ssl_cache) now also retains peer_cert information (not the entire chain) by Paul Bakker · 12 years ago
  57. a35aa54 Fixed whitespaces in ChangeLog by Paul Bakker · 12 years ago
  58. 78a8c71 Re-added support for parsing and handling SSLv2 Client Hello messages by Paul Bakker · 12 years ago
  59. 37286a5 Fixed net_bind() for specified IP addresses on little endian systems by Paul Bakker · 12 years ago
  60. 8804f69 Removed timing differences due to bad padding from RSA decrypt for by Paul Bakker · 12 years ago
  61. a43231c Added support for custom labels when using rsa_rsaes_oaep_encrypt() or rsa_rsaes_oaep_decrypt() by Paul Bakker · 12 years ago
  62. b386913 Split up the RSA PKCS#1 encrypt, decrypt, sign and verify functions by Paul Bakker · 12 years ago
  63. e3e4a59 Added bugfix line for previous fixes for MS Visual Studio by Paul Bakker · 12 years ago
  64. 3d2dc0f Corrected GCM counter incrementation to use only 32-bits instead of 128-bits by Paul Bakker · 12 years ago
  65. e47b34b Removed further timing differences during SSL message decryption in ssl_decrypt_buf() by Paul Bakker · 12 years ago
  66. c046350 Fixed memory leak in ssl_free() and ssl_reset() for active session by Paul Bakker · 12 years ago
  67. c7a2da4 Updated for PolarSSL 1.2.5 by Paul Bakker · 13 years ago polarssl-1.2.5
  68. 40865c8 Added sending of alert messages in case of decryption failures as per RFC by Paul Bakker · 13 years ago
  69. d66f070 Disable debug messages that can introduce a timing side channel. by Paul Bakker · 13 years ago
  70. 4582999 Fixed timing difference resulting from badly formatted padding. by Paul Bakker · 13 years ago
  71. 8fe40dc Allow enabling of dummy error_strerror() to support some use-cases by Paul Bakker · 13 years ago
  72. 14c56a3 Updated for PolarSSL 1.2.4 by Paul Bakker · 13 years ago polarssl-1.2.4
  73. 9d2bb65 Added PolarSSL 1.1.5 ChangeLog from 1.1 branch by Paul Bakker · 13 years ago
  74. 1961b70 Added ssl_handshake_step() to allow single stepping the handshake process by Paul Bakker · 13 years ago
  75. 9c94cdd Correctly handle CertificateRequest with empty DN list in <= TLS 1.1 by Paul Bakker · 13 years ago
  76. 21dca69 Handle future version properly in ssl_write_certificate_request() by Paul Bakker · 13 years ago
  77. 40628ba Memory leak when using RSA_PKCS_V21 operations fixed by Paul Bakker · 13 years ago
  78. fb1ba78 Updated for release 1.2.3 by Paul Bakker · 13 years ago polarssl-1.2.3
  79. df5069c Updated for 1.2.2 release by Paul Bakker · 13 years ago polarssl-1.2.2
  80. 7c90da9 Amended ChangeLog for client authentication fix by Paul Bakker · 13 years ago
  81. e667c98 Added p_hw_data to ssl_context for context specific hardware acceleration data by Paul Bakker · 13 years ago
  82. 1492633 Updated date for release by Paul Bakker · 13 years ago polarssl-1.2.1
  83. e44ec10 Fixed segfault in mpi_shift_r() by Manuel Pégourié-Gonnard · 13 years ago
  84. 34d8dbc - Depth that the certificate verify callback receives is now numbered bottom-up (Peer cert depth is 0) by Paul Bakker · 13 years ago
  85. b815682 - Updated Changelog for 1.2.1 by Paul Bakker · 13 years ago
  86. 9daf0d0 - Added max length check for rsa_pkcs1_sign with PKCS#1 v2.1 by Paul Bakker · 13 years ago
  87. f02c564 - Allow R and A to point to same mpi in mpi_div_mpi by Paul Bakker · 13 years ago
  88. d9374b0 - Moved mpi_inv_mod() outside POLARSSL_GENPRIME by Paul Bakker · 13 years ago
  89. 7a2538e - Fixes for MSVC6 by Paul Bakker · 13 years ago
  90. c9c5df9 - Updated for PolarSSL 1.2.0 by Paul Bakker · 13 years ago
  91. 645ce3a - Moved ciphersuite naming scheme to IANA reserved names by Paul Bakker · 13 years ago
  92. 4f024b7 - Fixed for SPARC64 by Paul Bakker · 13 years ago
  93. d5834bb - Added release text for 1.1.4 to ChangeLog by Paul Bakker · 13 years ago
  94. 5c2364c - Moved from unsigned long to uint32_t throughout code by Paul Bakker · 13 years ago
  95. 1d29fb5 - Added option to add minimum accepted SSL/TLS protocol version by Paul Bakker · 13 years ago
  96. 915275b - Revamped x509_verify() and the SSL f_vrfy callback implementations by Paul Bakker · 13 years ago
  97. 5701cdc - Added ServerName extension parsing (SNI) at server side by Paul Bakker · 13 years ago
  98. eb2c658 - Generalized external private key implementation handling (like PKCS#11) in SSL/TLS by Paul Bakker · 13 years ago
  99. 0a59707 - Added simple SSL session cache implementation by Paul Bakker · 13 years ago
  100. b00ca42 - Handle existence of OpenSSL Trust Extensions at end of X.509 DER blob by Paul Bakker · 13 years ago