TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / refs/heads/polarssl-1.1 / ChangeLog
  1. 9345ad1 Fixed release date for 1.1.8 by Paul Bakker · 12 years ago archive/polarssl-1.1 polarssl-1.1 polarssl-1.1.8
  2. 62dfcf0 Prepped for 1.1.8 release by Paul Bakker · 12 years ago
  3. 3513868 Fixed potential file descriptor leaks by Paul Bakker · 12 years ago
  4. 3081ba1 Fixed potential heap buffer overflow on large hostname setting by Paul Bakker · 12 years ago
  5. df177ba Fixed potential memory leak when failing to resume a session by Paul Bakker · 12 years ago
  6. 16e5f81 Fixed potential negative value misinterpretation in load_file() by Paul Bakker · 12 years ago
  7. 8648f04 Potential buffer-overflow for ssl_read_record() by Paul Bakker · 12 years ago
  8. 3f5b753 ssl_write_certificate_request() can handle empty ca_chain by Paul Bakker · 12 years ago polarssl-1.1.7
  9. 8199a33 Added Security note (Advisory 2013-03) in ChangeLog by Paul Bakker · 12 years ago
  10. 68514b0 Prepared for PolarSSL release 1.1.7 by Paul Bakker · 12 years ago
  11. 90f242b Fixed values for 2-key Triple DES in cipher layer by Paul Bakker · 12 years ago
  12. b5df3bf ssl_parse_certificate() now calls x509parse_crt_der() directly by Paul Bakker · 12 years ago
  13. 721f06d x509parse_crt() now better handles PEM error situations by Paul Bakker · 12 years ago
  14. 1fd0e05 Disabled the HAVEGE random generator by default by Paul Bakker · 12 years ago
  15. d3cd5c1 Prepared for PolarSSL 1.1.6 release by Paul Bakker · 12 years ago polarssl-1.1.6
  16. b5f2727 Fixed net_bind() for specified IP addresses on little endian systems by Paul Bakker · 12 years ago
  17. e73a77f Removed timing differences due to bad padding from RSA decrypt for by Paul Bakker · 12 years ago
  18. 0a971b5 Removed further timing differences during SSL message decryption in ssl_decrypt_buf() by Paul Bakker · 12 years ago
  19. 48b7cb8 Disable debug messages that can introduce a timing side channel. by Paul Bakker · 12 years ago
  20. 6a229c1 Fixed timing difference resulting from badly formatted padding. by Paul Bakker · 12 years ago
  21. cb60e7c Allow enabling of dummy error_strerror() to support some use-cases by Paul Bakker · 12 years ago
  22. 66a531b Bumped version numbers to 1.1.5 by Paul Bakker · 13 years ago polarssl-1.1.5
  23. cf45a56 Fixes for MSVC6 by Paul Bakker · 13 years ago
  24. 5f5593a Handle encryption with private key and decryption with public key as per RFC 2313 by Paul Bakker · 13 years ago
  25. c048493 Memory leak when using RSA_PKCS_V21 operations fixed by Paul Bakker · 13 years ago
  26. 144c3cc Added max length check for rsa_pkcs1_sign with PKCS#1 v2.1 by Paul Bakker · 13 years ago
  27. 0ae1f40 Allow R and A to point to same mpi in mpi_div_mpi by Paul Bakker · 13 years ago
  28. f173e0a Fixed segfault in mpi_shift_r(), Fixed memory leak in test_suite_mpi by Manuel Pégourié-Gonnard · 13 years ago
  29. d8ee844 mpi_exp_mod() now correctly handles negative base numbers (Closes ticket #52) by Paul Bakker · 13 years ago
  30. 7261cba Better checking for reading over buffer boundaries by Paul Bakker · 13 years ago
  31. 087e037 Moved mpi_inv_mod() outside POLARSSL_GENPRIME by Paul Bakker · 13 years ago
  32. bdaf68a Added bug to ChangeLog by Paul Bakker · 13 years ago
  33. 47f6261 Handle existence of OpenSSL Trust Extensions at end of X.509 DER blob by Paul Bakker · 13 years ago
  34. a4ed0c9 Fixed for SPARC64 by Paul Bakker · 13 years ago
  35. 0ea57e8 Fixed potential memory zeroization on miscrafted RSA key by Paul Bakker · 13 years ago
  36. d36da11 Version 1.1.4 by Paul Bakker · 13 years ago polarssl-1.1.4
  37. 8639578 - Correctly handle empty packets (Found by James Yonan) by Paul Bakker · 13 years ago
  38. ce30bdf - Fixed single RSA test that failed on Big Endian systems (Closes ticket #54) by Paul Bakker · 13 years ago
  39. 7f11320 - Merged 'Fixed potential heap corruption in x509_name allocation' into 1.1 branch by Paul Bakker · 13 years ago
  40. 662d168 - Fixed random MPI generation to not generate more size than requested. by Paul Bakker · 13 years ago
  41. e893b66 - Updated polarssl-1.1 branch with merged trunk patches by Paul Bakker · 13 years ago polarssl-1.1.2
  42. 145e681 - Ready for release 1.1.2 by Paul Bakker · 13 years ago
  43. 79e9477 by Paul Bakker · 13 years ago
  44. 32356ac - Fixed handling error in mpi_cmp_mpi() on longer B values (found by Hui Dong) by Paul Bakker · 13 years ago
  45. e2f8ff6 - Merged security fixes to 1.1 branch by Paul Bakker · 13 years ago
  46. e2e36d3 - Merged changes from trunk to PolarSSL 1.1 branch by Paul Bakker · 14 years ago polarssl-1.1.1
  47. d567aa2 - Merged Trunk changes for 1.1 into branch by Paul Bakker · 14 years ago polarssl-1.1.0
  48. 732e1a8 - Merged trunk into 1.1 branch by Paul Bakker · 14 years ago polarssl-1.1.0-rc1
  49. c50132d - Updated version of PolarSSL to 1.1.0 by Paul Bakker · 14 years ago
  50. c8ffbe7 - Corrected removal of leading '00:' in printing serial numbers in certificates and CRLs by Paul Bakker · 14 years ago
  51. 4f5ae80 - Fixed MS Visual C++ name clash with int64 in sha4.h by Paul Bakker · 14 years ago
  52. 508ad5a - Moved all examples programs to use the new entropy and CTR_DRBG by Paul Bakker · 14 years ago
  53. 6c0ceb3 - Added permissive certificate parsing to x509parse_crt() and x509parse_crtfile(). With permissive parsing the parsing does not stop on encountering a parse-error by Paul Bakker · 14 years ago
  54. 6083fd2 - Added a generic entropy accumulator that provides support for adding custom entropy sources and added some generic and platform dependent entropy sources by Paul Bakker · 14 years ago
  55. a3d195c - Changed the used random function pointer to more flexible format. Renamed havege_rand() to havege_random() to prevent mistakes. Lots of changes as a consequence in library code and programs by Paul Bakker · 14 years ago
  56. 0e04d0e - Added CTR_DRBG based on AES-256-CTR (NIST SP 800-90) random generator by Paul Bakker · 14 years ago
  57. 4463740 - Improved build support for s390x and sparc64 in bignum.h by Paul Bakker · 14 years ago
  58. 03c7c25 - * If certificate serial is longer than 32 octets, serial number is now appended with '....' after first 28 octets by Paul Bakker · 14 years ago
  59. fe3256e - Introduced POLARSSL_MPI_MAX_SIZE and POLARSSL_MPI_MAX_BITS for MPI size management (Closes ticket #44) by Paul Bakker · 14 years ago
  60. b6d5f08 - Added POLARSSL_MPI_WINDOW_SIZE definition to allow easier time to memory trade-off by Paul Bakker · 14 years ago
  61. 2e6d532 - Added credits! by Paul Bakker · 14 years ago
  62. cce9d77 - Lots of minimal changes to better support WINCE as a build target by Paul Bakker · 14 years ago
  63. 5e18aed - Changed the defined key-length of DES ciphers in cipher.h to include the parity bits, to prevent mistakes in copying data. (Closes ticket #33) by Paul Bakker · 14 years ago
  64. 1fe7d9b - Fixed incorrect behaviour in case of RSASSA-PSS with a salt length smaller than the hash length. (Closes ticket #41) by Paul Bakker · 14 years ago
  65. cebdf17 - Allowed X509 key usage parsing to accept 4 byte values instead of the standard 1 byte version sometimes used by Microsoft. (Closes ticket #38) by Paul Bakker · 14 years ago
  66. 03a30d3 - Added latest fix to ChangeLog by Paul Bakker · 14 years ago
  67. efc3029 - Extracted ASN.1 parsing code from the X.509 parsing code. Added new module. by Paul Bakker · 14 years ago
  68. b5a11ab - Added a separate CRL entry extension parsing function by Paul Bakker · 14 years ago
  69. fbc09f3 - Added an EXPLICIT tag number parameter to x509_get_ext() by Paul Bakker · 14 years ago
  70. 3329d1f - Fixed a bug where the CRL parser expected an EXPLICIT ASN.1 tag before version numbers by Paul Bakker · 14 years ago
  71. c4909d9 - Inceased maximum size of ASN1 length reads to 32-bits by Paul Bakker · 14 years ago
  72. fa1c592 - Fixed faulty HMAC-MD2 implementation (Fixes ticket #37) by Paul Bakker · 14 years ago
  73. d246ed3 - Fixed rsa_encrypt and rsa_decrypt example programs to use public key for encryption and private key for decryption (Fixes ticket #34) by Paul Bakker · 14 years ago
  74. ca6f3e2 - Clarified use of AES and Camellia in CFB and CTR modes by Paul Bakker · 14 years ago
  75. 490ecc8 - Added ssl_set_max_version() to set the client's maximum sent version number by Paul Bakker · 14 years ago
  76. 7eb013f - Added ssl_session_reset() to allow re-use of already set non-connection specific context information by Paul Bakker · 14 years ago
  77. 7bc05ff - Added rsa_encrypt and rsa_decrypt example programs by Paul Bakker · 14 years ago
  78. 968bc98 - Preparations for v1.0.0 release of PolarSSL by Paul Bakker · 14 years ago
  79. 42e5981 - Updated to reflect changes in error codes in the generic cipher and message digest layers by Paul Bakker · 14 years ago
  80. 343a870 - Expanded generic cipher layer with support for CTR and CFB128 modes of operation. by Paul Bakker · 14 years ago
  81. 887bd50 - Undid fix for ssl_write that introduced a true bug when buffers are running full. by Paul Bakker · 14 years ago
  82. 828acb2 - Updated for release 0.99-pre5 by Paul Bakker · 14 years ago
  83. 1496d38 - Added the ssl_mail_client example application by Paul Bakker · 14 years ago
  84. 2f5947e - Added mpi_get_bit() and mpi_set_bit() individual bit setter/getter functions. by Paul Bakker · 14 years ago
  85. 831a755 - Changed behaviour of net_recv(), ssl_fetch_input() and ssl_read(). net_recv() now returns 0 on EOF instead of POLARSSL_ERR_NET_CONN_RESET. ssl_fetch_input() returns POLARSSL_ERR_SSL_CONN_EOF on an EOF from its f_recv() function. ssl_read() returns 0 if a POLARSSL_ERR_SSL_CONN_EOF is received after the handshake. by Paul Bakker · 14 years ago
  86. 9d78140 - A error_strerror function() has been added to translate between error codes and their description. by Paul Bakker · 14 years ago
  87. 6c591fa - mpi_init() and mpi_free() only accept a single argument and do not accept variable arguments anymore. This prevents unexpected memory corruption in a number of use cases. by Paul Bakker · 14 years ago
  88. 335db3f - Functions requiring File System functions can now be disables by undefining POLARSSL_FS_IO by Paul Bakker · 14 years ago
  89. a755ca1 - Renamed t_s_int, t_int and t_dbl to respectively t_sint, t_uint and t_udbl for clarity by Paul Bakker · 14 years ago
  90. 23986e5 - Major type rewrite of int to size_t for most variables and arguments used for buffer lengths and loops by Paul Bakker · 14 years ago
  91. b6ecaf5 - Added additional (configurable) cipher block modes. AES-CTR, Camellia-CTR, XTEA-CBC by Paul Bakker · 14 years ago
  92. 3efa575 - Ready for release 0.99-pre4 by Paul Bakker · 14 years ago
  93. 287781a - Added mpi_fill_random() for centralized filling of big numbers with random data (Fixed ticket #10) by Paul Bakker · 14 years ago
  94. 9867549 - Added information about changed behaviour of x509parse_key() by Paul Bakker · 14 years ago
  95. e77db2e - Added bugfix info for previous checkin by Paul Bakker · 14 years ago
  96. 1fd00bf - Fixed bug in ssl_write() when flushing old data (Fixes ticket #18) by Paul Bakker · 14 years ago
  97. be4e7dc - Debug print of MPI now removes leading zero octets and displays actual bit size of the value by Paul Bakker · 14 years ago
  98. 9dcc322 - Added support for PKCS#1 v2.1 encoding and thus support for the RSAES-OAEP and RSASSA-PSS operations (enabled by POLARSSL_PKCS1_V21) by Paul Bakker · 14 years ago
  99. 345a6fe - Replaced function that fixes man-in-the-middle attack by Paul Bakker · 14 years ago
  100. 1946e42 - Made ready for 0.99-pre2 release by Paul Bakker · 14 years ago