Barry K. Nathan
|
35e7cb9aa6
|
Fix preprocessor checks for bn_mul PPC asm
On OS X, neither __powerpc__ nor __ppc__ is defined on PPC64, so the
asm code was only being used on PPC32.
|
2014-06-25 11:26:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
f4e1b64517
|
Fix comments about X.509 versions
|
2014-06-25 11:26:12 +02:00 |
|
Manuel Pégourié-Gonnard
|
08485cca81
|
Fix SSL_BUFFER_LEN
|
2014-06-25 11:26:12 +02:00 |
|
Manuel Pégourié-Gonnard
|
8f625632bb
|
Fix dependencies: GCM != AEAD != CCM
|
2014-06-24 15:26:28 +02:00 |
|
Paul Bakker
|
1c98ff96b5
|
Merge more test improvements and tests
Conflicts:
tests/suites/test_suite_cipher.blowfish.data
|
2014-06-24 11:12:00 +02:00 |
|
Manuel Pégourié-Gonnard
|
f3b47243df
|
Split x509_csr_parse_der() out of x509_csr_parse()
|
2014-06-23 11:54:57 +02:00 |
|
Manuel Pégourié-Gonnard
|
d77cd5d0c3
|
Add tests for x509_csr_parse
|
2014-06-23 11:52:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
81754a0c35
|
Create a 'flags' field in cipher_info
|
2014-06-23 11:33:18 +02:00 |
|
Paul Bakker
|
db20c10423
|
Add #endif comments for #endif more than 10 lines from #if / #else
|
2014-06-17 14:34:44 +02:00 |
|
Paul Bakker
|
c2ff2083ee
|
Merge parsing and verification of RSASSA-PSS in X.509 modules
|
2014-06-12 22:02:47 +02:00 |
|
Paul Bakker
|
6dade7c053
|
Fix typos and spacing
|
2014-06-12 22:02:14 +02:00 |
|
Paul Bakker
|
508e573231
|
Merge tests for asn1write, XTEA and Entropy modules
|
2014-06-12 21:26:33 +02:00 |
|
Manuel Pégourié-Gonnard
|
c7c56b2e82
|
Add more tests for the entropy module
|
2014-06-10 15:38:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
4dd73925ab
|
Add entropy_self_test()
|
2014-06-10 15:38:43 +02:00 |
|
Manuel Pégourié-Gonnard
|
d1539b1e88
|
Rename RSASSA_PSS_CERTIFICATES to X509_RSASSA_PSS_SUPPORT
|
2014-06-06 16:42:37 +02:00 |
|
Manuel Pégourié-Gonnard
|
bf696d030b
|
Make sig_opts non-optional in X509 structures
This simplifies the code.
|
2014-06-05 17:08:46 +02:00 |
|
Manuel Pégourié-Gonnard
|
dddbb1d1eb
|
Rm sig_params from various X509 structures
|
2014-06-05 17:08:46 +02:00 |
|
Manuel Pégourié-Gonnard
|
9113603b6b
|
Use sig_opts in x509_sig_alg_gets()
|
2014-06-05 15:41:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
f75f2f7c46
|
Add sig_opts member to X509 structures
|
2014-06-05 15:14:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
20422e9a3a
|
Add pk_verify_ext()
|
2014-06-05 14:02:05 +02:00 |
|
Manuel Pégourié-Gonnard
|
5ec628a2b9
|
Add rsa_rsassa_pss_verify_ext()
|
2014-06-05 14:02:05 +02:00 |
|
Manuel Pégourié-Gonnard
|
e6d1d82b66
|
Relax checks on RSA mode for public key operations
|
2014-06-04 12:09:08 +02:00 |
|
Manuel Pégourié-Gonnard
|
78117d57b0
|
Consider trailerField a constant
|
2014-06-02 16:12:46 +02:00 |
|
Manuel Pégourié-Gonnard
|
cac31eed9e
|
Factor common code for printing sig_alg
|
2014-06-02 16:12:46 +02:00 |
|
Manuel Pégourié-Gonnard
|
cf975a3857
|
Factor out some common code
|
2014-06-02 16:12:46 +02:00 |
|
Manuel Pégourié-Gonnard
|
39868ee301
|
Parse CSRs signed with RSASSA-PSS
|
2014-06-02 16:10:30 +02:00 |
|
Manuel Pégourié-Gonnard
|
8e42ff6bde
|
Parse CRLs signed with RSASSA-PSS
|
2014-06-02 16:10:29 +02:00 |
|
Manuel Pégourié-Gonnard
|
9df5c96214
|
Fix dependencies
|
2014-06-02 16:10:29 +02:00 |
|
Manuel Pégourié-Gonnard
|
e76b750b69
|
Finish parsing RSASSA-PSS parameters
|
2014-06-02 16:10:29 +02:00 |
|
Manuel Pégourié-Gonnard
|
f346bab139
|
Start parsing RSASSA-PSS parameters
|
2014-06-02 16:10:29 +02:00 |
|
Manuel Pégourié-Gonnard
|
59a75d5b9d
|
Basic parsing of certs signed with RSASSA-PSS
|
2014-06-02 16:10:29 +02:00 |
|
Paul Bakker
|
911c5dcfeb
|
Add Second Oakley Group to dhm.h
|
2014-05-28 11:48:00 +02:00 |
|
Paul Bakker
|
b5212b436f
|
Merge CCM cipher mode and ciphersuites
Conflicts:
library/ssl_tls.c
|
2014-05-22 15:30:31 +02:00 |
|
Paul Bakker
|
64a96ea281
|
Fix typo in a6916fa
|
2014-05-22 15:13:02 +02:00 |
|
Manuel Pégourié-Gonnard
|
4d8db4ab10
|
Fix typo in a config.h #define
|
2014-05-22 13:52:48 +02:00 |
|
Manuel Pégourié-Gonnard
|
6768da9438
|
Register CCM ciphersuites (not implemented yet)
|
2014-05-14 14:10:36 +02:00 |
|
Manuel Pégourié-Gonnard
|
41936957b3
|
Add AES-CCM and CAMELLIA-CCM to the cipher layer
|
2014-05-14 14:10:36 +02:00 |
|
Manuel Pégourié-Gonnard
|
4562ffe2e6
|
Add cipher_auth_{en,de}crypt()
|
2014-05-14 14:10:36 +02:00 |
|
Manuel Pégourié-Gonnard
|
3c1d150b3d
|
Add cipher_crypt()
|
2014-05-14 14:10:35 +02:00 |
|
Manuel Pégourié-Gonnard
|
0f6b66dba1
|
CCM operations allow input == output
|
2014-05-14 14:10:35 +02:00 |
|
Manuel Pégourié-Gonnard
|
002323340a
|
Refactor to prepare for CCM decryption
|
2014-05-07 12:13:12 +02:00 |
|
Manuel Pégourié-Gonnard
|
637eb3d31d
|
Add ccm_encrypt_and_tag()
|
2014-05-07 12:13:12 +02:00 |
|
Manuel Pégourié-Gonnard
|
9fe0d13e8d
|
Add ccm_init/free()
|
2014-05-06 12:12:45 +02:00 |
|
Manuel Pégourié-Gonnard
|
a6916fada8
|
Add (placeholder) CCM module
|
2014-05-06 11:28:09 +02:00 |
|
Barry K. Nathan
|
79e69f94d6
|
Fix minor comment typo
|
2014-05-06 11:25:18 +02:00 |
|
Paul Bakker
|
770268f2b3
|
Fix deprecated references to POLARSSL_CONFIG_OPTIONS
|
2014-05-05 11:40:14 +02:00 |
|
Paul Bakker
|
da13016d84
|
Prepped for 1.3.7 release
|
2014-05-01 14:27:19 +02:00 |
|
Paul Bakker
|
b9e4e2c97a
|
Fix formatting: fix some 'easy' > 80 length lines
|
2014-05-01 14:18:25 +02:00 |
|
Paul Bakker
|
9af723cee7
|
Fix formatting: remove trailing spaces, #endif with comments (> 10 lines)
|
2014-05-01 13:03:14 +02:00 |
|
Paul Bakker
|
2a024ac86a
|
Merge dependency fixes
|
2014-04-30 16:50:59 +02:00 |
|
Paul Bakker
|
790e395729
|
Fixed to the features check
|
2014-04-30 16:48:32 +02:00 |
|
Manuel Pégourié-Gonnard
|
14d55951ef
|
Split config checks to separate file
|
2014-04-30 16:40:24 +02:00 |
|
Manuel Pégourié-Gonnard
|
cef4ad2509
|
Adapt sources to configurable config.h name
|
2014-04-30 16:40:20 +02:00 |
|
Paul Bakker
|
6384440b13
|
Better support for the different Attribute Types from IETF PKIX (RFC 5280)
|
2014-04-30 15:34:12 +02:00 |
|
Paul Bakker
|
0f90d7d2b5
|
version_check_feature() added to check for compile-time options at run-time
|
2014-04-30 11:49:44 +02:00 |
|
Paul Bakker
|
8394684dd3
|
Clearer description for version_get_string_full() regarding 18 bytes
|
2014-04-30 10:21:51 +02:00 |
|
Manuel Pégourié-Gonnard
|
e26389f26f
|
Document that Curve25519 can't be the only curve
|
2014-04-29 15:32:53 +02:00 |
|
Paul Bakker
|
c73079a78c
|
Add debug_set_threshold() and thresholding of messages
|
2014-04-25 16:58:16 +02:00 |
|
Paul Bakker
|
eaebbd5eaa
|
debug_set_log_mode() added to determine raw or full logging
|
2014-04-25 16:58:14 +02:00 |
|
Paul Bakker
|
088c5c5f18
|
POLARSSL_CONFIG_OPTIONS has been removed. Values are set individually
For the Platform module this requires the introduction of
POLARSSL_PLATFORM_NO_STD_FUNCTIONS to allow not performing the default
assignments.
|
2014-04-25 11:11:10 +02:00 |
|
Paul Bakker
|
03b6a46353
|
Properly comment two defines in config.h
|
2014-04-17 17:24:28 +02:00 |
|
Paul Bakker
|
784b04ff9a
|
Prepared for version 1.3.6
|
2014-04-11 15:33:59 +02:00 |
|
Paul Bakker
|
d2c2c1c46b
|
Doxygen typo in ripemd160.h
|
2014-04-11 15:28:52 +02:00 |
|
Manuel Pégourié-Gonnard
|
7afb8a0dca
|
Add x509_crt_check_extended_key_usage()
|
2014-04-11 11:09:00 +02:00 |
|
Paul Bakker
|
043a2e26d0
|
Merge verification of the keyUsage extension in X.509 certificates
|
2014-04-09 15:55:08 +02:00 |
|
Paul Bakker
|
02ff5ce594
|
Fixed typo
|
2014-04-09 15:53:09 +02:00 |
|
Manuel Pégourié-Gonnard
|
7f2a07d7b2
|
Check keyUsage in SSL client and server
|
2014-04-09 15:50:57 +02:00 |
|
Manuel Pégourié-Gonnard
|
603116c570
|
Add x509_crt_check_key_usage()
|
2014-04-09 15:50:57 +02:00 |
|
Manuel Pégourié-Gonnard
|
2abed84225
|
Specific return code for PK sig length mismatch
|
2014-04-09 15:50:00 +02:00 |
|
Manuel Pégourié-Gonnard
|
35e95ddca4
|
Add special return code for ecdsa length mismatch
|
2014-04-09 15:49:59 +02:00 |
|
Paul Bakker
|
75342a65e4
|
Fixed typos in code
|
2014-04-09 15:49:57 +02:00 |
|
Paul Bakker
|
17b85cbd69
|
Merged additional tests and improved code coverage
Conflicts:
ChangeLog
|
2014-04-08 14:38:48 +02:00 |
|
Paul Bakker
|
0763a401a7
|
Merged support for the ALPN extension
|
2014-04-08 14:37:12 +02:00 |
|
Paul Bakker
|
27e36d342c
|
Support for the ALPN SSL extension (re-enabled in config.h)
|
2014-04-08 12:33:37 +02:00 |
|
Shuo Chen
|
95a0d118a9
|
Fix compile error when POLARSSL_ERROR_STRERROR_BC is undefined.
|
2014-04-08 10:53:51 +02:00 |
|
Manuel Pégourié-Gonnard
|
83d8c73c91
|
Disable ALPN by default
|
2014-04-07 13:24:21 +02:00 |
|
Manuel Pégourié-Gonnard
|
89e35798ae
|
Implement ALPN server-side
|
2014-04-07 12:26:35 +02:00 |
|
Manuel Pégourié-Gonnard
|
0b874dc580
|
Implement ALPN client-side
|
2014-04-07 10:57:45 +02:00 |
|
Manuel Pégourié-Gonnard
|
0148875cfc
|
Add tests and fix bugs for RSA-alt contexts
|
2014-04-04 17:46:46 +02:00 |
|
Manuel Pégourié-Gonnard
|
7e250d4812
|
Add ALPN interface
|
2014-04-04 17:10:40 +02:00 |
|
Manuel Pégourié-Gonnard
|
7afdb88216
|
Test and fix x509_oid functions
|
2014-04-04 16:34:30 +02:00 |
|
Manuel Pégourié-Gonnard
|
13a1ef8600
|
Misc selftest adjustements
|
2014-04-04 16:33:01 +02:00 |
|
Manuel Pégourié-Gonnard
|
470fc935b5
|
Add timing_self_test() with consistency tests
|
2014-04-04 16:33:01 +02:00 |
|
Manuel Pégourié-Gonnard
|
b28487db1f
|
Start printing extensions in x509_crt_info()
|
2014-04-04 14:01:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
887aa5b381
|
Fix include path in ecdsa.h
|
2014-04-04 13:57:20 +02:00 |
|
Manuel Pégourié-Gonnard
|
e442111e29
|
Fix typo which broke ENTROPY_FORCE_SHA256
|
2014-04-02 13:50:05 +02:00 |
|
Manuel Pégourié-Gonnard
|
a27cd4c62e
|
Fix ENTROPY_LEN check
|
2014-04-02 13:46:29 +02:00 |
|
Manuel Pégourié-Gonnard
|
eb82a74ed2
|
Fix header issue with default malloc()
|
2014-04-02 13:43:48 +02:00 |
|
Manuel Pégourié-Gonnard
|
dd75c3183b
|
Remove potential timing leak in ecdsa_sign()
|
2014-03-31 11:55:42 +02:00 |
|
Paul Bakker
|
96d5265315
|
Made ready for release 1.3.5
|
2014-03-26 16:55:50 +01:00 |
|
Manuel Pégourié-Gonnard
|
7a2aba8d81
|
Deprecate some non-PK compatibility functions
(Should have been deprecated in 1.3.0 already.)
|
2014-03-26 12:58:52 +01:00 |
|
Paul Bakker
|
66ff70dd48
|
Support for seed file writing and reading in Entropy
|
2014-03-26 11:58:07 +01:00 |
|
Paul Bakker
|
766a5d0206
|
Updated documentation for seed functions w.r.t. return values
|
2014-03-26 11:51:25 +01:00 |
|
Manuel Pégourié-Gonnard
|
6fac3515d0
|
Make support for SpecifiedECDomain optional
|
2014-03-19 16:50:59 +01:00 |
|
Manuel Pégourié-Gonnard
|
5246ee5c59
|
Work around compressed EC public key in some cases
|
2014-03-19 16:50:59 +01:00 |
|
Manuel Pégourié-Gonnard
|
eab20d2a9c
|
Implement parsing SpecifiedECParameters
|
2014-03-19 15:51:12 +01:00 |
|
Paul Bakker
|
a4b0343edf
|
Merged massive SSL Testing improvements
|
2014-03-14 16:30:36 +01:00 |
|
Manuel Pégourié-Gonnard
|
a612b44cc5
|
Fix typo in doc
|
2014-03-14 08:41:01 +01:00 |
|
Manuel Pégourié-Gonnard
|
5d917ff6a8
|
Add a 'sni' option to ssl_server2
|
2014-03-14 08:41:01 +01:00 |
|
Manuel Pégourié-Gonnard
|
274a12e17c
|
Fix bug with ssl_cache and max_entries=0
|
2014-03-14 08:41:00 +01:00 |
|