mbedtls

mirror of https://github.com/yuzu-emu/mbedtls.git synced 2024-11-24 00:45:50 +01:00

Author	SHA1	Message	Date
Paul Bakker	a16e7f24f0	Proper initialization and checks for rare cases	2014-07-09 14:58:11 +02:00
Paul Bakker	d6d1f410e6	Cleaner initialization (values did not matter, but were uninitialized)	2014-07-08 18:28:31 +02:00
Paul Bakker	a2eabadb07	Actually increment the loop counter to quit in ssl_fork_server	2014-07-08 18:28:31 +02:00
Paul Bakker	3914840d78	Cleaned up location of init and free for some programs to prevent memory leaks on incorrect arguments	2014-07-08 18:28:30 +02:00
Paul Bakker	3cbaf1e379	Add ssl_close_notify() to servers that missed it	2014-07-08 14:30:35 +02:00
Paul Bakker	875548ce67	Disable renegotiation by default in example cli/srv	2014-07-08 12:21:41 +02:00
Manuel Pégourié-Gonnard	516eb623df	Make auth_mode=required the default in ssl_client2	2014-07-08 11:13:15 +02:00
Paul Bakker	af0ccc8fa0	SMTP lines are officially terminated with CRLF, ssl_mail_client fixed	2014-07-07 17:46:29 +02:00
Paul Bakker	238be3a207	Removed dependency on unistd.h for MSVC in apps	2014-07-07 16:01:07 +02:00
Paul Bakker	a91d41e7a4	Removed Windows auto-spawn client code	2014-07-07 14:37:05 +02:00
Paul Bakker	e0225e4d7f	Fixed const correctness issues in programs and tests	2013-06-06 12:58:12 +02:00
Paul Bakker	91ebfb5272	Made auth_mode as an command line option	2012-11-23 14:04:08 +01:00
Paul Bakker	1f9d02dc90	Added more notes / comments on own_cert, trust_ca purposes	2012-11-20 10:30:55 +01:00
Paul Bakker	75242c30fb	Added checking of CA peer cert to ssl_client1 as sane default	2012-11-17 00:03:46 +01:00
Paul Bakker	645ce3a2b4	- Moved ciphersuite naming scheme to IANA reserved names	2012-10-31 12:32:41 +00:00
Paul Bakker	b0550d90c9	- Added ssl_get_peer_cert() to SSL API	2012-10-30 07:51:03 +00:00
Paul Bakker	1d29fb5e33	- Added option to add minimum accepted SSL/TLS protocol version	2012-09-28 13:28:45 +00:00
Paul Bakker	5d19f86fdd	- Added comment	2012-09-28 07:33:00 +00:00
Paul Bakker	cbbd9998da	- SSL/TLS now has default group	2012-09-28 07:32:06 +00:00
Paul Bakker	915275ba78	- Revamped x509_verify() and the SSL f_vrfy callback implementations	2012-09-28 07:10:55 +00:00
Paul Bakker	819370c7b7	- Removed lowercasing of parameters	2012-09-28 07:04:41 +00:00
Paul Bakker	d43241060b	- Removed clutter from my_dhm values	2012-09-26 08:29:38 +00:00
Paul Bakker	0a59707523	- Added simple SSL session cache implementation - Revamped session resumption handling	2012-09-25 21:55:46 +00:00
Paul Bakker	29b64761fd	- Added predefined DHM groups from RFC 5114	2012-09-25 09:36:44 +00:00
Paul Bakker	b60b95fd7f	- Added first version of ssl_server2 example application	2012-09-25 09:05:17 +00:00
Paul Bakker	d0f6fa7bdc	- Sending of handshake_failures during renegotiation added - Handle two legacy modes differently: SSL_LEGACY_BREAK_HANDSHAKE and SSL_LEGACY_NO_RENEGOTIATION	2012-09-17 09:18:12 +00:00
Paul Bakker	48916f9b67	- Added Secure Renegotiation (RFC 5746)	2012-09-16 19:57:18 +00:00
Paul Bakker	835b29e7c3	- Should not be debug_level 5 in repo (reset to 0)	2012-08-23 08:31:59 +00:00
Paul Bakker	92eeea4627	- Modified CMakeLists to support zlib	2012-07-03 15:10:33 +00:00
Paul Bakker	2770fbd651	- Added DEFLATE compression support as per RFC3749 (requires zlib)	2012-07-03 13:30:23 +00:00
Paul Bakker	8d914583f3	- Added X509 CA Path support	2012-06-04 12:46:42 +00:00
Paul Bakker	4248823f43	- Updated to handle x509parse_crtfile() positive return values	2012-05-16 08:21:05 +00:00
Paul Bakker	4d2c1243b1	- Changed certificate verify behaviour to comply with RFC 6125 section 6.3 to not match CN if subjectAltName extension is present.	2012-05-10 14:12:46 +00:00
Paul Bakker	ca4ab49158	- Added GCM ciphersuites to TLS implementation	2012-04-18 14:23:57 +00:00
Paul Bakker	0b22e3e989	- Print return codes properly	2012-04-18 14:23:29 +00:00
Paul Bakker	6f3578cfc8	- Report proper error number	2012-04-16 06:46:01 +00:00
Paul Bakker	10cd225962	- Added support for the SHA256 ciphersuites of AES and Camellia	2012-04-12 21:26:34 +00:00
Paul Bakker	570267f01a	- print error string in useful format	2012-04-10 08:22:46 +00:00
Paul Bakker	92101f2d02	- Keep requests for future use	2012-02-16 14:09:31 +00:00
Paul Bakker	57b12982b3	- Multi-domain certificates support wildcards as well	2012-02-11 17:38:38 +00:00
Paul Bakker	a8cd239d6b	- Added support for wildcard certificates - Added support for multi-domain certificates through the X509 Subject Alternative Name extension	2012-02-11 16:09:32 +00:00
Paul Bakker	fab5c829e7	- Added support for NULL cipher (POLARSSL_CIPHER_NULL_CIPHER) and weak ciphersuites (POLARSSL_ENABLE_WEAK_CIPHERSUITES). They are disabled by default!	2012-02-06 16:45:10 +00:00
Paul Bakker	13eb9f01cf	- Added error exit code	2012-02-06 15:35:10 +00:00
Paul Bakker	b1dee1cfd2	- Changed commands to lowercase where it was not the case	2011-12-11 11:29:51 +00:00
Paul Bakker	69e095cc15	- Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. - As a consequence all error code that were positive were changed. A lot of MALLOC_FAILED and FILE_IO_ERROR error codes added for different modules. - Programs and tests were adapted accordingly	2011-12-10 21:55:01 +00:00
Paul Bakker	508ad5ab6d	- Moved all examples programs to use the new entropy and CTR_DRBG	2011-12-04 17:09:26 +00:00
Paul Bakker	4dc6457274	- Added public key of server1.key	2011-12-04 17:09:08 +00:00
Paul Bakker	6c0ceb3f9a	- Added permissive certificate parsing to x509parse_crt() and x509parse_crtfile(). With permissive parsing the parsing does not stop on encountering a parse-error	2011-12-04 12:24:18 +00:00
Paul Bakker	a3d195c41f	- Changed the used random function pointer to more flexible format. Renamed havege_rand() to havege_random() to prevent mistakes. Lots of changes as a consequence in library code and programs	2011-11-27 21:07:34 +00:00
Paul Bakker	cce9d77745	- Lots of minimal changes to better support WINCE as a build target	2011-11-18 14:26:47 +00:00

1 2 3

105 Commits