Manuel Pégourié-Gonnard
|
09ceaf49d0
|
Rm multiplication using NAF
Comb method is at most 1% slower for random points,
and is way faster for fixed point (repeated).
|
2013-11-21 21:56:38 +01:00 |
|
Manuel Pégourié-Gonnard
|
c30200e4ce
|
Fix bound issues
|
2013-11-21 21:56:37 +01:00 |
|
Manuel Pégourié-Gonnard
|
d1c1ba90ca
|
First version of ecp_mul_comb()
|
2013-11-21 21:56:20 +01:00 |
|
Paul Bakker
|
f4dc186818
|
Prep for PolarSSL 1.3.2
|
2013-11-04 17:29:42 +01:00 |
|
Paul Bakker
|
d46a9f1a82
|
Added missing endif in compat-1.2.h
|
2013-10-31 14:34:19 +01:00 |
|
Paul Bakker
|
993e386a73
|
Merged renegotiation refactoring
|
2013-10-31 14:32:38 +01:00 |
|
Manuel Pégourié-Gonnard
|
31ff1d2e4f
|
Safer buffer comparisons in the SSL modules
|
2013-10-31 14:23:12 +01:00 |
|
Manuel Pégourié-Gonnard
|
6d8404d6ba
|
Server: enforce renegotiation
|
2013-10-30 16:48:10 +01:00 |
|
Manuel Pégourié-Gonnard
|
9c1e1898b6
|
Move some code around, improve documentation
|
2013-10-30 16:48:09 +01:00 |
|
Manuel Pégourié-Gonnard
|
214eed38c7
|
Make ssl_renegotiate the only interface
ssl_write_hello_request() is no private
|
2013-10-30 16:48:09 +01:00 |
|
Manuel Pégourié-Gonnard
|
caed0541a0
|
Allow ssl_renegotiate() to be called in a loop
Previously broken if waiting for network I/O in the middle of a re-handshake
initiated by the client.
|
2013-10-30 16:48:09 +01:00 |
|
Manuel Pégourié-Gonnard
|
f3dc2f6a1d
|
Add code for testing server-initiated renegotiation
|
2013-10-30 16:46:46 +01:00 |
|
Paul Bakker
|
7b0be68977
|
Support for serialNumber, postalAddress and postalCode in X509 names
|
2013-10-29 14:24:37 +01:00 |
|
Paul Bakker
|
fa6a620b75
|
Defines for UEFI environment under MSVC added
|
2013-10-29 14:05:38 +01:00 |
|
Paul Bakker
|
60b1d10131
|
Fixed spelling / typos (from PowerDNS:codespell)
|
2013-10-29 10:02:51 +01:00 |
|
Paul Bakker
|
50dc850c52
|
Const correctness
|
2013-10-28 21:19:10 +01:00 |
|
Paul Bakker
|
1642122f8b
|
Merged support for Camellia-GCM + ciphersuite and fixes to cipher layer
|
2013-10-28 14:38:35 +01:00 |
|
Paul Bakker
|
3f917e230d
|
Merged optimizations for MODP NIST curves
|
2013-10-28 14:18:26 +01:00 |
|
Manuel Pégourié-Gonnard
|
21ef42f257
|
Don't select a PSK ciphersuite if no key available
|
2013-10-28 14:00:45 +01:00 |
|
Manuel Pégourié-Gonnard
|
18dc0e2746
|
CERTS_C depends on PEM_PARSE_C
|
2013-10-28 13:59:26 +01:00 |
|
Manuel Pégourié-Gonnard
|
7c3291ea87
|
Check dependencies of protocol versions on hashes
|
2013-10-28 13:58:56 +01:00 |
|
Manuel Pégourié-Gonnard
|
3daaf3d21d
|
X509 key identifiers depend on SHA1
|
2013-10-28 13:58:32 +01:00 |
|
Manuel Pégourié-Gonnard
|
c59c9c1453
|
Fix typo in b8012fca (ECP needs at least one curve)
|
2013-10-28 13:57:39 +01:00 |
|
Paul Bakker
|
677377f472
|
Server does not send out extensions not advertised by client
|
2013-10-28 12:54:26 +01:00 |
|
Manuel Pégourié-Gonnard
|
a8a25ae1b9
|
Fix bad error codes
|
2013-10-27 13:48:15 +01:00 |
|
Manuel Pégourié-Gonnard
|
9d70373449
|
Update ciphersuite lists in config.h
|
2013-10-25 18:01:50 +02:00 |
|
Manuel Pégourié-Gonnard
|
8d01eea7af
|
Add Camellia-GCM ciphersuites
|
2013-10-25 16:46:05 +02:00 |
|
Manuel Pégourié-Gonnard
|
0b58c150d6
|
cipher layer: IV length is not always block size
|
2013-10-24 17:17:54 +02:00 |
|
Manuel Pégourié-Gonnard
|
87181d1deb
|
Add Camellia-GCM to th cipher layer
|
2013-10-24 14:02:40 +02:00 |
|
Manuel Pégourié-Gonnard
|
7bd8a99e11
|
Fix GCM dependencies
|
2013-10-24 13:39:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
cae6f3ed45
|
Reorganize code in ecp.c
|
2013-10-23 20:19:57 +02:00 |
|
Manuel Pégourié-Gonnard
|
5779cbe582
|
Make mod_p{224,256,384] a bit faster
Speedup is roughly 25%, giving a 6% speedup on ecp_mul() for these curves.
|
2013-10-23 20:17:00 +02:00 |
|
Manuel Pégourié-Gonnard
|
c04c530a98
|
Make NIST curves optimisation an option
|
2013-10-23 16:11:52 +02:00 |
|
Manuel Pégourié-Gonnard
|
a47e7058ea
|
mod_p224 now endian-neutral
|
2013-10-23 13:24:55 +02:00 |
|
Paul Bakker
|
5c17ccdf2a
|
Bumped version to 1.3.1
|
2013-10-15 13:12:41 +02:00 |
|
Paul Bakker
|
f34673e37b
|
Merged RSA-PSK key-exchange and ciphersuites
|
2013-10-15 12:46:41 +02:00 |
|
Paul Bakker
|
376e8153a0
|
Merged ECDHE-PSK ciphersuites
|
2013-10-15 12:45:36 +02:00 |
|
Paul Bakker
|
a7ea6a5a18
|
config.h is more script-friendly
|
2013-10-15 11:55:10 +02:00 |
|
Manuel Pégourié-Gonnard
|
8a3c64d73f
|
Fix and simplify *-PSK ifdef's
|
2013-10-14 19:54:10 +02:00 |
|
Manuel Pégourié-Gonnard
|
0fae60bb71
|
Implement RSA-PSK key exchange
|
2013-10-14 19:34:48 +02:00 |
|
Paul Bakker
|
be089b0483
|
Introduced POLARSSL_HAVE_READDIR_R for systems without it
|
2013-10-14 15:51:50 +02:00 |
|
Paul Bakker
|
b9cfaa0c7f
|
Explicit conversions and minor changes to prevent MSVC compiler warnings
|
2013-10-14 15:50:40 +02:00 |
|
Manuel Pégourié-Gonnard
|
057e0cf263
|
Fix ciphersuites dependencies on MD5 and SHA1
|
2013-10-14 14:26:04 +02:00 |
|
Manuel Pégourié-Gonnard
|
1b62c7f93d
|
Fix dependencies and related issues
|
2013-10-14 14:02:19 +02:00 |
|
Manuel Pégourié-Gonnard
|
bd1ae24449
|
Factor PSK pms computation to ssl_tls.c
|
2013-10-14 13:17:36 +02:00 |
|
Manuel Pégourié-Gonnard
|
225d6aa786
|
Add ECDHE_PSK ciphersuites
|
2013-10-11 19:07:56 +02:00 |
|
Manuel Pégourié-Gonnard
|
3ce3bbdc00
|
Add support for ECDHE_PSK key exchange
|
2013-10-11 18:16:35 +02:00 |
|
Paul Bakker
|
4aa40d4f51
|
Better support for MSVC
|
2013-10-11 10:49:24 +02:00 |
|
Paul Bakker
|
b799dec4c0
|
Merged support for Brainpool curves and ciphersuites
|
2013-10-11 10:05:43 +02:00 |
|
Paul Bakker
|
1677033bc8
|
TLS compression only allocates working buffer once
|
2013-10-11 09:59:44 +02:00 |
|