Paul Bakker
|
23f3680898
|
- Added proper support for TLS 1.2 signature_algorithm extension on server
side
- Minor const changes to other extension parsing functions
|
2012-09-28 14:15:14 +00:00 |
|
Paul Bakker
|
1d29fb5e33
|
- Added option to add minimum accepted SSL/TLS protocol version
|
2012-09-28 13:28:45 +00:00 |
|
Paul Bakker
|
eb2c658163
|
- Generalized external private key implementation handling (like PKCS#11) in SSL/TLS
|
2012-09-27 19:15:01 +00:00 |
|
Paul Bakker
|
0a59707523
|
- Added simple SSL session cache implementation
- Revamped session resumption handling
|
2012-09-25 21:55:46 +00:00 |
|
Paul Bakker
|
29b64761fd
|
- Added predefined DHM groups from RFC 5114
|
2012-09-25 09:36:44 +00:00 |
|
Paul Bakker
|
d0f6fa7bdc
|
- Sending of handshake_failures during renegotiation added
- Handle two legacy modes differently: SSL_LEGACY_BREAK_HANDSHAKE and SSL_LEGACY_NO_RENEGOTIATION
|
2012-09-17 09:18:12 +00:00 |
|
Paul Bakker
|
48916f9b67
|
- Added Secure Renegotiation (RFC 5746)
|
2012-09-16 19:57:18 +00:00 |
|
Paul Bakker
|
2770fbd651
|
- Added DEFLATE compression support as per RFC3749 (requires zlib)
|
2012-07-03 13:30:23 +00:00 |
|
Paul Bakker
|
380da53c48
|
- Abstracted checksum updating during handshake
|
2012-04-18 16:10:25 +00:00 |
|
Paul Bakker
|
ca4ab49158
|
- Added GCM ciphersuites to TLS implementation
|
2012-04-18 14:23:57 +00:00 |
|
Paul Bakker
|
10cd225962
|
- Added support for the SHA256 ciphersuites of AES and Camellia
|
2012-04-12 21:26:34 +00:00 |
|
Paul Bakker
|
bf63b36127
|
- Updated comments
|
2012-04-12 20:44:34 +00:00 |
|
Paul Bakker
|
c3f177a77b
|
- Added client side support for signature_algorithm extension and affiliated handling
|
2012-04-11 16:11:49 +00:00 |
|
Paul Bakker
|
1ef83d66dd
|
- Initial bare version of TLS 1.2
|
2012-04-11 12:09:53 +00:00 |
|
Paul Bakker
|
1504af585c
|
- Removed redundant POLARSSL_DEBUG_MSG define
|
2012-02-11 16:17:43 +00:00 |
|
Paul Bakker
|
fab5c829e7
|
- Added support for NULL cipher (POLARSSL_CIPHER_NULL_CIPHER) and weak ciphersuites (POLARSSL_ENABLE_WEAK_CIPHERSUITES). They are disabled by default!
|
2012-02-06 16:45:10 +00:00 |
|
Paul Bakker
|
87e5cdad5b
|
- Fixed warning for t if no debugging defined
|
2012-01-14 18:14:15 +00:00 |
|
Paul Bakker
|
55d3fd9aff
|
- Enlarged maximum size of DHM a client accepts to 512 bytes
|
2011-12-11 11:13:05 +00:00 |
|
Paul Bakker
|
a3d195c41f
|
- Changed the used random function pointer to more flexible format. Renamed havege_rand() to havege_random() to prevent mistakes. Lots of changes as a consequence in library code and programs
|
2011-11-27 21:07:34 +00:00 |
|
Paul Bakker
|
490ecc8c3e
|
- Added ssl_set_max_version() to set the client's maximum sent version number
|
2011-10-06 13:04:09 +00:00 |
|
Paul Bakker
|
5690efccc4
|
- Fixed a whole bunch of dependencies on defines between files, examples and tests
|
2011-05-26 13:16:06 +00:00 |
|
Paul Bakker
|
23986e5d5d
|
- Major type rewrite of int to size_t for most variables and arguments used for buffer lengths and loops
|
2011-04-24 08:57:21 +00:00 |
|
Paul Bakker
|
99a03afc22
|
- Fixed possible uninitialized values
|
2011-04-01 11:39:39 +00:00 |
|
Paul Bakker
|
9dcc32236b
|
- Added support for PKCS#1 v2.1 encoding and thus support for the RSAES-OAEP and RSASSA-PSS operations (enabled by POLARSSL_PKCS1_V21)
|
2011-03-08 14:16:06 +00:00 |
|
Paul Bakker
|
e2a39cc0fa
|
- Do not bail out if no client certificate specified. Try to negotiate anonymous connection (Fixes ticket #12)
|
2011-02-20 13:49:27 +00:00 |
|
Paul Bakker
|
e3166ce040
|
- Renamed ciphers member of ssl_context and cipher member of ssl_session to ciphersuites and ciphersuite respectively. This clarifies the difference with the generic cipher layer and is better naming altogether
- Adapted in the rest of using code as well
|
2011-01-27 17:40:50 +00:00 |
|
Paul Bakker
|
43b7e35b25
|
- Support for PKCS#11 through the use of the pkcs11-helper library
|
2011-01-18 15:27:19 +00:00 |
|
Paul Bakker
|
21eb2802fe
|
- Changed origins of random function and pointer in rsa_pkcs1_encrypt, rsa_init, rsa_gen_key.
Moved to parameters of function instead of context pointers as within ssl_cli, context pointer cannot be set easily.
|
2010-08-16 11:10:02 +00:00 |
|
Paul Bakker
|
2e11f7d966
|
- Added support for TLS v1.1
- Renamed some SSL defines to prevent future naming confusion
|
2010-07-25 14:24:53 +00:00 |
|
Paul Bakker
|
b96f154e51
|
- Fixed copyright message
|
2010-07-18 20:36:00 +00:00 |
|
Paul Bakker
|
84f12b76fc
|
- Updated Copyright to correct entity
|
2010-07-18 10:13:04 +00:00 |
|
Paul Bakker
|
77a43580da
|
- Added support for the SSL_EDH_RSA_AES_128_SHA and SSL_EDH_RSA_CAMELLIA_128_SHA ciphersuites
|
2010-06-15 21:32:46 +00:00 |
|
Paul Bakker
|
fc8c4360b8
|
- Updated copyright line to 2010
|
2010-03-21 17:37:16 +00:00 |
|
Paul Bakker
|
1f3c39c194
|
- Removed copyright line for Christophe Devine for clarity
|
2010-03-21 17:30:05 +00:00 |
|
Paul Bakker
|
ff60ee6c2a
|
- Added const-correctness to main codebase
|
2010-03-16 21:09:09 +00:00 |
|
Paul Bakker
|
77b385e91a
|
- Updated copyright messages on all relevant files
|
2009-07-28 17:23:11 +00:00 |
|
Paul Bakker
|
fc22c441bc
|
- Renamed RSA_RAW to SIG_RSA_RAW for consistency in the code.
|
2009-07-19 20:36:27 +00:00 |
|
Paul Bakker
|
785a9eeece
|
- Added email address to header license information
|
2009-01-25 14:15:10 +00:00 |
|
Paul Bakker
|
b5ef0bada4
|
- Added SSL_RSA_CAMELLIA_128_SHA, SSL_RSA_CAMELLIA_256_SHA, SSL_EDH_RSA_CAMELLIA_256_SHA ciphersuites to SSL
|
2009-01-11 20:25:36 +00:00 |
|
Paul Bakker
|
e0ccd0a7c3
|
- Updated Copyright notices
|
2009-01-04 16:27:10 +00:00 |
|
Paul Bakker
|
40e46940df
|
- First replacement of xyssl by polarssl where needed
|
2009-01-03 21:51:57 +00:00 |
|
Paul Bakker
|
5121ce5bdb
|
- Renamed include directory to polarssl
|
2009-01-03 21:22:43 +00:00 |
|