Manuel Pégourié-Gonnard
|
c55a5b7d6f
|
Add tests for cache timeout
|
2014-03-14 08:41:00 +01:00 |
|
Manuel Pégourié-Gonnard
|
4c88345f19
|
Add test for ssl_cache max_entries
|
2014-03-14 08:41:00 +01:00 |
|
Manuel Pégourié-Gonnard
|
780d671f9d
|
Add tests for renegotiation
|
2014-03-14 08:41:00 +01:00 |
|
Manuel Pégourié-Gonnard
|
2fc243d06a
|
Rearrange help messages of example cli/srv
|
2014-03-14 08:41:00 +01:00 |
|
Manuel Pégourié-Gonnard
|
c580a00e3c
|
Print protocol version in example cli/srv
|
2014-02-12 10:15:30 +01:00 |
|
Paul Bakker
|
d75ba40cc3
|
SMTP lines are officially terminated with CRLF, ssl_mail_client fixed
|
2014-01-24 16:12:18 +01:00 |
|
Paul Bakker
|
f0fc2a27b0
|
Properly put the pragma comment for the MSVC linker in defines
|
2013-12-30 15:42:43 +01:00 |
|
Paul Bakker
|
3e72f6effd
|
Only search for Pthread on Windows platforms
|
2013-12-30 15:28:46 +01:00 |
|
Paul Bakker
|
f9c4953e39
|
Added version of the SSL pthread server example
|
2013-12-30 14:55:54 +01:00 |
|
Manuel Pégourié-Gonnard
|
18d31f8e59
|
Make listening address configurable in ssl_server2
|
2013-12-17 12:00:57 +01:00 |
|
Paul Bakker
|
fdda785248
|
Removed dependency on unistd.h for MSVC in apps
|
2013-11-30 15:15:31 +01:00 |
|
Paul Bakker
|
a8239a4490
|
Removed Windows auto-spawn client code
|
2013-11-29 11:16:37 +01:00 |
|
Manuel Pégourié-Gonnard
|
6d8404d6ba
|
Server: enforce renegotiation
|
2013-10-30 16:48:10 +01:00 |
|
Manuel Pégourié-Gonnard
|
9c1e1898b6
|
Move some code around, improve documentation
|
2013-10-30 16:48:09 +01:00 |
|
Manuel Pégourié-Gonnard
|
f3dc2f6a1d
|
Add code for testing server-initiated renegotiation
|
2013-10-30 16:46:46 +01:00 |
|
Manuel Pégourié-Gonnard
|
53b3e0603b
|
Add code for testing client-initiated renegotiation
|
2013-10-30 16:46:46 +01:00 |
|
Manuel Pégourié-Gonnard
|
8a3c64d73f
|
Fix and simplify *-PSK ifdef's
|
2013-10-14 19:54:10 +02:00 |
|
Manuel Pégourié-Gonnard
|
1b62c7f93d
|
Fix dependencies and related issues
|
2013-10-14 14:02:19 +02:00 |
|
Paul Bakker
|
1337affc91
|
Buffer allocator threading support
|
2013-09-29 15:02:11 +02:00 |
|
Paul Bakker
|
1ffefaca1e
|
Introduced entropy_free()
|
2013-09-29 15:01:42 +02:00 |
|
Manuel Pégourié-Gonnard
|
a0fdf8b0a0
|
Simplify the way default certs are used
|
2013-09-25 14:05:49 +02:00 |
|
Manuel Pégourié-Gonnard
|
641de714b6
|
Use both RSA and ECDSA CA if available
|
2013-09-25 13:23:33 +02:00 |
|
Manuel Pégourié-Gonnard
|
ac8474fb1c
|
Changed default cert loading in ssl_server2
|
2013-09-25 11:35:15 +02:00 |
|
Manuel Pégourié-Gonnard
|
b095a7bf29
|
Offer both RSA and ECDSA by default in ssl_server2
|
2013-09-24 21:25:54 +02:00 |
|
Manuel Pégourié-Gonnard
|
3ebb2cdb52
|
Add support for multiple server certificates
|
2013-09-24 21:25:53 +02:00 |
|
Manuel Pégourié-Gonnard
|
abd6e02b7b
|
Rm _CRT_SECURE_NO_DEPRECATE for programs
(Already in config.h.)
|
2013-09-20 16:51:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
3bd2aae5a5
|
Add forgotten initializations
|
2013-09-20 16:51:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
68821da01e
|
Fix clang warnings in applications
Some fd would be used uninitialized if we goto exit early.
|
2013-09-18 14:34:33 +02:00 |
|
Paul Bakker
|
c559c7a680
|
Renamed x509_cert structure to x509_crt for consistency
|
2013-09-18 14:32:52 +02:00 |
|
Paul Bakker
|
ddf26b4e38
|
Renamed x509parse_* functions to new form
e.g. x509parse_crtfile -> x509_crt_parse_file
|
2013-09-18 13:46:23 +02:00 |
|
Paul Bakker
|
369d2eb2a2
|
Introduced x509_crt_init(), x509_crl_init() and x509_csr_init()
|
2013-09-18 12:01:43 +02:00 |
|
Paul Bakker
|
36713e8ed9
|
Fixed bunch of X509_PARSE related defines / dependencies
|
2013-09-17 13:25:29 +02:00 |
|
Paul Bakker
|
9a97c5d894
|
Fixed warnings in case application dependencies are not met
|
2013-09-15 17:07:33 +02:00 |
|
Paul Bakker
|
1a7550ac67
|
Moved PK key parsing from X509 module to PK module
|
2013-09-15 13:47:30 +02:00 |
|
Manuel Pégourié-Gonnard
|
e8ea0c0421
|
Fix exit value on SERVERQUIT
|
2013-09-08 20:08:24 +02:00 |
|
Paul Bakker
|
577e006c2f
|
Merged ECDSA-based key-exchange and ciphersuites into development
Conflicts:
include/polarssl/config.h
library/ssl_cli.c
library/ssl_srv.c
library/ssl_tls.c
|
2013-08-28 11:58:40 +02:00 |
|
Manuel Pégourié-Gonnard
|
ac75523593
|
Adapt ssl_set_own_cert() to generic keys
|
2013-08-27 22:21:20 +02:00 |
|
Paul Bakker
|
0be444a8b1
|
Ability to disable server_name extension (RFC 6066)
|
2013-08-27 21:55:01 +02:00 |
|
Manuel Pégourié-Gonnard
|
38d1eba3b5
|
Move verify_result from ssl_context to session
|
2013-08-26 14:26:02 +02:00 |
|
Paul Bakker
|
1f2bc6238b
|
Made support for the truncated_hmac extension configurable
|
2013-08-15 13:45:55 +02:00 |
|
Paul Bakker
|
05decb24c3
|
Made support for the max_fragment_length extension configurable
|
2013-08-15 13:33:48 +02:00 |
|
Paul Bakker
|
a503a63b85
|
Made session tickets support configurable from config.h
|
2013-08-14 14:26:03 +02:00 |
|
Manuel Pégourié-Gonnard
|
aa0d4d1aff
|
Add ssl_set_session_tickets()
|
2013-08-14 14:08:06 +02:00 |
|
Manuel Pégourié-Gonnard
|
06650f6a37
|
Fix reusing session more than once
|
2013-08-14 14:08:06 +02:00 |
|
Manuel Pégourié-Gonnard
|
cf2e97eae2
|
ssl_client2: allow reconnecting twice
|
2013-08-14 14:08:06 +02:00 |
|
Manuel Pégourié-Gonnard
|
aaa1eab55a
|
Add an option to reconnect in ssl_client2
Purpose: test resuming sessions.
|
2013-08-14 14:08:04 +02:00 |
|
Paul Bakker
|
66c4810ffe
|
Better handling of ciphersuite version range and forced version in
ssl_client2
|
2013-07-26 14:05:32 +02:00 |
|
Paul Bakker
|
6c85279719
|
Newline fixes in help text for ssl_client2 / ssl_server2
|
2013-07-26 14:02:13 +02:00 |
|
Paul Bakker
|
dbd79ca617
|
ssl_client2 and ssl_server2 now exit with 1 on errors (shell
limitations)
|
2013-07-24 16:28:35 +02:00 |
|
Paul Bakker
|
8c1ede655f
|
Changed prototype for ssl_set_truncated_hmac() to allow disabling
|
2013-07-19 14:51:47 +02:00 |
|