TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 8199a3375f7f1c42d3d8eff3f5d4a81502511458 / ChangeLog
  1. 8199a33 Added Security note (Advisory 2013-03) in ChangeLog by Paul Bakker · 12 years ago
  2. 68514b0 Prepared for PolarSSL release 1.1.7 by Paul Bakker · 12 years ago
  3. 90f242b Fixed values for 2-key Triple DES in cipher layer by Paul Bakker · 12 years ago
  4. b5df3bf ssl_parse_certificate() now calls x509parse_crt_der() directly by Paul Bakker · 12 years ago
  5. 721f06d x509parse_crt() now better handles PEM error situations by Paul Bakker · 12 years ago
  6. 1fd0e05 Disabled the HAVEGE random generator by default by Paul Bakker · 12 years ago
  7. d3cd5c1 Prepared for PolarSSL 1.1.6 release by Paul Bakker · 12 years ago polarssl-1.1.6
  8. b5f2727 Fixed net_bind() for specified IP addresses on little endian systems by Paul Bakker · 12 years ago
  9. e73a77f Removed timing differences due to bad padding from RSA decrypt for by Paul Bakker · 12 years ago
  10. 0a971b5 Removed further timing differences during SSL message decryption in ssl_decrypt_buf() by Paul Bakker · 12 years ago
  11. 48b7cb8 Disable debug messages that can introduce a timing side channel. by Paul Bakker · 12 years ago
  12. 6a229c1 Fixed timing difference resulting from badly formatted padding. by Paul Bakker · 12 years ago
  13. cb60e7c Allow enabling of dummy error_strerror() to support some use-cases by Paul Bakker · 12 years ago
  14. 66a531b Bumped version numbers to 1.1.5 by Paul Bakker · 13 years ago polarssl-1.1.5
  15. cf45a56 Fixes for MSVC6 by Paul Bakker · 13 years ago
  16. 5f5593a Handle encryption with private key and decryption with public key as per RFC 2313 by Paul Bakker · 13 years ago
  17. c048493 Memory leak when using RSA_PKCS_V21 operations fixed by Paul Bakker · 13 years ago
  18. 144c3cc Added max length check for rsa_pkcs1_sign with PKCS#1 v2.1 by Paul Bakker · 13 years ago
  19. 0ae1f40 Allow R and A to point to same mpi in mpi_div_mpi by Paul Bakker · 13 years ago
  20. f173e0a Fixed segfault in mpi_shift_r(), Fixed memory leak in test_suite_mpi by Manuel Pégourié-Gonnard · 13 years ago
  21. d8ee844 mpi_exp_mod() now correctly handles negative base numbers (Closes ticket #52) by Paul Bakker · 13 years ago
  22. 7261cba Better checking for reading over buffer boundaries by Paul Bakker · 13 years ago
  23. 087e037 Moved mpi_inv_mod() outside POLARSSL_GENPRIME by Paul Bakker · 13 years ago
  24. bdaf68a Added bug to ChangeLog by Paul Bakker · 13 years ago
  25. 47f6261 Handle existence of OpenSSL Trust Extensions at end of X.509 DER blob by Paul Bakker · 13 years ago
  26. a4ed0c9 Fixed for SPARC64 by Paul Bakker · 13 years ago
  27. 0ea57e8 Fixed potential memory zeroization on miscrafted RSA key by Paul Bakker · 13 years ago
  28. d36da11 Version 1.1.4 by Paul Bakker · 13 years ago polarssl-1.1.4
  29. 8639578 - Correctly handle empty packets (Found by James Yonan) by Paul Bakker · 13 years ago
  30. ce30bdf - Fixed single RSA test that failed on Big Endian systems (Closes ticket #54) by Paul Bakker · 13 years ago
  31. 7f11320 - Merged 'Fixed potential heap corruption in x509_name allocation' into 1.1 branch by Paul Bakker · 13 years ago
  32. 662d168 - Fixed random MPI generation to not generate more size than requested. by Paul Bakker · 13 years ago
  33. e893b66 - Updated polarssl-1.1 branch with merged trunk patches by Paul Bakker · 13 years ago polarssl-1.1.2
  34. 145e681 - Ready for release 1.1.2 by Paul Bakker · 13 years ago
  35. 79e9477 by Paul Bakker · 13 years ago
  36. 32356ac - Fixed handling error in mpi_cmp_mpi() on longer B values (found by Hui Dong) by Paul Bakker · 13 years ago
  37. e2f8ff6 - Merged security fixes to 1.1 branch by Paul Bakker · 13 years ago
  38. e2e36d3 - Merged changes from trunk to PolarSSL 1.1 branch by Paul Bakker · 14 years ago polarssl-1.1.1
  39. d567aa2 - Merged Trunk changes for 1.1 into branch by Paul Bakker · 14 years ago polarssl-1.1.0
  40. 732e1a8 - Merged trunk into 1.1 branch by Paul Bakker · 14 years ago polarssl-1.1.0-rc1
  41. c50132d - Updated version of PolarSSL to 1.1.0 by Paul Bakker · 14 years ago
  42. c8ffbe7 - Corrected removal of leading '00:' in printing serial numbers in certificates and CRLs by Paul Bakker · 14 years ago
  43. 4f5ae80 - Fixed MS Visual C++ name clash with int64 in sha4.h by Paul Bakker · 14 years ago
  44. 508ad5a - Moved all examples programs to use the new entropy and CTR_DRBG by Paul Bakker · 14 years ago
  45. 6c0ceb3 - Added permissive certificate parsing to x509parse_crt() and x509parse_crtfile(). With permissive parsing the parsing does not stop on encountering a parse-error by Paul Bakker · 14 years ago
  46. 6083fd2 - Added a generic entropy accumulator that provides support for adding custom entropy sources and added some generic and platform dependent entropy sources by Paul Bakker · 14 years ago
  47. a3d195c - Changed the used random function pointer to more flexible format. Renamed havege_rand() to havege_random() to prevent mistakes. Lots of changes as a consequence in library code and programs by Paul Bakker · 14 years ago
  48. 0e04d0e - Added CTR_DRBG based on AES-256-CTR (NIST SP 800-90) random generator by Paul Bakker · 14 years ago
  49. 4463740 - Improved build support for s390x and sparc64 in bignum.h by Paul Bakker · 14 years ago
  50. 03c7c25 - * If certificate serial is longer than 32 octets, serial number is now appended with '....' after first 28 octets by Paul Bakker · 14 years ago
  51. fe3256e - Introduced POLARSSL_MPI_MAX_SIZE and POLARSSL_MPI_MAX_BITS for MPI size management (Closes ticket #44) by Paul Bakker · 14 years ago
  52. b6d5f08 - Added POLARSSL_MPI_WINDOW_SIZE definition to allow easier time to memory trade-off by Paul Bakker · 14 years ago
  53. 2e6d532 - Added credits! by Paul Bakker · 14 years ago
  54. cce9d77 - Lots of minimal changes to better support WINCE as a build target by Paul Bakker · 14 years ago
  55. 5e18aed - Changed the defined key-length of DES ciphers in cipher.h to include the parity bits, to prevent mistakes in copying data. (Closes ticket #33) by Paul Bakker · 14 years ago
  56. 1fe7d9b - Fixed incorrect behaviour in case of RSASSA-PSS with a salt length smaller than the hash length. (Closes ticket #41) by Paul Bakker · 14 years ago
  57. cebdf17 - Allowed X509 key usage parsing to accept 4 byte values instead of the standard 1 byte version sometimes used by Microsoft. (Closes ticket #38) by Paul Bakker · 14 years ago
  58. 03a30d3 - Added latest fix to ChangeLog by Paul Bakker · 14 years ago
  59. efc3029 - Extracted ASN.1 parsing code from the X.509 parsing code. Added new module. by Paul Bakker · 14 years ago
  60. b5a11ab - Added a separate CRL entry extension parsing function by Paul Bakker · 14 years ago
  61. fbc09f3 - Added an EXPLICIT tag number parameter to x509_get_ext() by Paul Bakker · 14 years ago
  62. 3329d1f - Fixed a bug where the CRL parser expected an EXPLICIT ASN.1 tag before version numbers by Paul Bakker · 14 years ago
  63. c4909d9 - Inceased maximum size of ASN1 length reads to 32-bits by Paul Bakker · 14 years ago
  64. fa1c592 - Fixed faulty HMAC-MD2 implementation (Fixes ticket #37) by Paul Bakker · 14 years ago
  65. d246ed3 - Fixed rsa_encrypt and rsa_decrypt example programs to use public key for encryption and private key for decryption (Fixes ticket #34) by Paul Bakker · 14 years ago
  66. ca6f3e2 - Clarified use of AES and Camellia in CFB and CTR modes by Paul Bakker · 14 years ago
  67. 490ecc8 - Added ssl_set_max_version() to set the client's maximum sent version number by Paul Bakker · 14 years ago
  68. 7eb013f - Added ssl_session_reset() to allow re-use of already set non-connection specific context information by Paul Bakker · 14 years ago
  69. 7bc05ff - Added rsa_encrypt and rsa_decrypt example programs by Paul Bakker · 14 years ago
  70. 968bc98 - Preparations for v1.0.0 release of PolarSSL by Paul Bakker · 14 years ago
  71. 42e5981 - Updated to reflect changes in error codes in the generic cipher and message digest layers by Paul Bakker · 14 years ago
  72. 343a870 - Expanded generic cipher layer with support for CTR and CFB128 modes of operation. by Paul Bakker · 14 years ago
  73. 887bd50 - Undid fix for ssl_write that introduced a true bug when buffers are running full. by Paul Bakker · 14 years ago
  74. 828acb2 - Updated for release 0.99-pre5 by Paul Bakker · 14 years ago
  75. 1496d38 - Added the ssl_mail_client example application by Paul Bakker · 14 years ago
  76. 2f5947e - Added mpi_get_bit() and mpi_set_bit() individual bit setter/getter functions. by Paul Bakker · 14 years ago
  77. 831a755 - Changed behaviour of net_recv(), ssl_fetch_input() and ssl_read(). net_recv() now returns 0 on EOF instead of POLARSSL_ERR_NET_CONN_RESET. ssl_fetch_input() returns POLARSSL_ERR_SSL_CONN_EOF on an EOF from its f_recv() function. ssl_read() returns 0 if a POLARSSL_ERR_SSL_CONN_EOF is received after the handshake. by Paul Bakker · 14 years ago
  78. 9d78140 - A error_strerror function() has been added to translate between error codes and their description. by Paul Bakker · 14 years ago
  79. 6c591fa - mpi_init() and mpi_free() only accept a single argument and do not accept variable arguments anymore. This prevents unexpected memory corruption in a number of use cases. by Paul Bakker · 14 years ago
  80. 335db3f - Functions requiring File System functions can now be disables by undefining POLARSSL_FS_IO by Paul Bakker · 14 years ago
  81. a755ca1 - Renamed t_s_int, t_int and t_dbl to respectively t_sint, t_uint and t_udbl for clarity by Paul Bakker · 14 years ago
  82. 23986e5 - Major type rewrite of int to size_t for most variables and arguments used for buffer lengths and loops by Paul Bakker · 14 years ago
  83. b6ecaf5 - Added additional (configurable) cipher block modes. AES-CTR, Camellia-CTR, XTEA-CBC by Paul Bakker · 14 years ago
  84. 3efa575 - Ready for release 0.99-pre4 by Paul Bakker · 14 years ago
  85. 287781a - Added mpi_fill_random() for centralized filling of big numbers with random data (Fixed ticket #10) by Paul Bakker · 14 years ago
  86. 9867549 - Added information about changed behaviour of x509parse_key() by Paul Bakker · 14 years ago
  87. e77db2e - Added bugfix info for previous checkin by Paul Bakker · 14 years ago
  88. 1fd00bf - Fixed bug in ssl_write() when flushing old data (Fixes ticket #18) by Paul Bakker · 14 years ago
  89. be4e7dc - Debug print of MPI now removes leading zero octets and displays actual bit size of the value by Paul Bakker · 14 years ago
  90. 9dcc322 - Added support for PKCS#1 v2.1 encoding and thus support for the RSAES-OAEP and RSASSA-PSS operations (enabled by POLARSSL_PKCS1_V21) by Paul Bakker · 14 years ago
  91. 345a6fe - Replaced function that fixes man-in-the-middle attack by Paul Bakker · 14 years ago
  92. 1946e42 - Made ready for 0.99-pre2 release by Paul Bakker · 14 years ago
  93. e2a39cc - Do not bail out if no client certificate specified. Try to negotiate anonymous connection (Fixes ticket #12) by Paul Bakker · 14 years ago
  94. 400ff6f - Corrected parsing of UTCTime dates before 1990 and after 1950 by Paul Bakker · 14 years ago
  95. a9507c0 - Added crl_app program to allow easy reading and printing of X509 CRLs from file by Paul Bakker · 14 years ago
  96. 96743fc - Parsing of PEM files moved to separate module (Fixes ticket #13). Also possible to remove PEM support for systems only using DER encoding by Paul Bakker · 14 years ago
  97. 9fc4659 - Preparing for Release of 0.99 prerelease 1 by Paul Bakker · 15 years ago
  98. e3166ce - Renamed ciphers member of ssl_context and cipher member of ssl_session to ciphersuites and ciphersuite respectively. This clarifies the difference with the generic cipher layer and is better naming altogether by Paul Bakker · 15 years ago
  99. 20a7808 - Addec crypt_and_hash example program of the generic hash and cipher layers by Paul Bakker · 15 years ago
  100. 43b7e35 - Support for PKCS#11 through the use of the pkcs11-helper library by Paul Bakker · 15 years ago