Paul Bakker
|
c7ea99af4f
|
Add _init() and _free() for cipher modules
|
2014-07-09 10:19:22 +02:00 |
|
Manuel Pégourié-Gonnard
|
d27680bd5e
|
Clarify code using PSK callback
|
2014-07-08 14:20:26 +02:00 |
|
Manuel Pégourié-Gonnard
|
0698f7c21a
|
Rm duplicate entry in oid_md_alg
|
2014-07-08 14:20:26 +02:00 |
|
Manuel Pégourié-Gonnard
|
14beb08542
|
Fix missing const
|
2014-07-08 14:20:26 +02:00 |
|
Manuel Pégourié-Gonnard
|
ba782bbc4b
|
Save some space in ECP curve tables
|
2014-07-08 14:20:26 +02:00 |
|
Manuel Pégourié-Gonnard
|
67dbe1ef44
|
Better length checking in ecp_point_read_binary()
|
2014-07-08 14:20:26 +02:00 |
|
Manuel Pégourié-Gonnard
|
08e81e0c8f
|
Change selection of hash algorithm for TLS 1.2
|
2014-07-08 14:20:26 +02:00 |
|
Manuel Pégourié-Gonnard
|
bd77254b18
|
md_list() starting with strongest hash
|
2014-07-08 13:03:02 +02:00 |
|
Paul Bakker
|
8fb99abaac
|
Merge changes for leaner memory footprint
|
2014-07-04 15:02:19 +02:00 |
|
Paul Bakker
|
b9e08b086b
|
Merge server-side enforced renegotiation requests
|
2014-07-04 15:01:37 +02:00 |
|
Paul Bakker
|
d598318661
|
Fix base64_decode() to return and check length correctly
|
2014-07-04 15:01:00 +02:00 |
|
Manuel Pégourié-Gonnard
|
481fcfde93
|
Make PSK_LEN configurable and adjust PMS size
|
2014-07-04 14:59:08 +02:00 |
|
Manuel Pégourié-Gonnard
|
dfc7df0bec
|
Add SSL_CIPHERSUITES config option
|
2014-07-04 14:59:02 +02:00 |
|
Manuel Pégourié-Gonnard
|
a9964dbcd5
|
Add ssl_set_renegotiation_enforced()
|
2014-07-04 14:16:07 +02:00 |
|
Manuel Pégourié-Gonnard
|
791684c058
|
Save RAM when only a few ciphersuites are defined
|
2014-06-30 19:07:01 +02:00 |
|
Manuel Pégourié-Gonnard
|
31855456f9
|
Fix clang's check mode again
|
2014-06-25 15:59:50 +02:00 |
|
Manuel Pégourié-Gonnard
|
bee8ded03a
|
Fix warning depending on configuration
|
2014-06-25 12:22:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
01edb1044c
|
Add POLARSSL_REMOVE_RC4_CIPHERSUITES
|
2014-06-25 11:27:59 +02:00 |
|
Paul Bakker
|
2a45d1c8bb
|
Merge changes to config examples and configuration issues
|
2014-06-25 11:27:00 +02:00 |
|
Manuel Pégourié-Gonnard
|
dd0c0f33c0
|
Better usage of dhm_calc_secret in SSL
|
2014-06-25 11:26:14 +02:00 |
|
Manuel Pégourié-Gonnard
|
8df68632e8
|
Fix bug in DHE-PSK PMS computation
|
2014-06-25 11:26:14 +02:00 |
|
Manuel Pégourié-Gonnard
|
5c1f032653
|
Abort handshake if no point format in common
|
2014-06-25 11:26:14 +02:00 |
|
Manuel Pégourié-Gonnard
|
fd35af1579
|
Fix off-by-one error in point format parsing
|
2014-06-25 11:26:14 +02:00 |
|
Manuel Pégourié-Gonnard
|
87a8ffeaba
|
Padlock asm using \n\t too
|
2014-06-25 11:26:14 +02:00 |
|
Manuel Pégourié-Gonnard
|
0534fd4c1a
|
Change asm format to \n\t in aesni.c too
|
2014-06-25 11:26:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
03576887c2
|
Remove misplaced debugging message
|
2014-06-25 11:26:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
42b5374523
|
Switch CCM and GCM in default suite order
The upcoming BCP document recommends GCM as the default.
|
2014-06-25 11:26:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
d249b7ab9a
|
Restore ability to trust non-CA selfsigned EE cert
|
2014-06-25 11:26:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
c4eff16516
|
Restore ability to use v1 CA if trusted locally
|
2014-06-25 11:26:12 +02:00 |
|
Manuel Pégourié-Gonnard
|
eaa76f7e20
|
Fix computation of minlen for encrypted packets
|
2014-06-25 11:26:12 +02:00 |
|
Manuel Pégourié-Gonnard
|
e800cd81d7
|
Re-arrange some code in ssl_derive_keys()
|
2014-06-25 11:26:11 +02:00 |
|
Manuel Pégourié-Gonnard
|
b46e6adb9c
|
Check input lengths in GCM
|
2014-06-25 11:26:11 +02:00 |
|
Manuel Pégourié-Gonnard
|
0bcc4e1df7
|
Fix length checking for AEAD ciphersuites
|
2014-06-25 11:26:10 +02:00 |
|
Manuel Pégourié-Gonnard
|
66e20c6318
|
Fix warning and typo->error.
|
2014-06-24 17:47:40 +02:00 |
|
Manuel Pégourié-Gonnard
|
ac2ccf897c
|
Fix CCM ciphersuites definition: PSK <-> DHE-PSK!
|
2014-06-24 15:48:01 +02:00 |
|
Manuel Pégourié-Gonnard
|
8f625632bb
|
Fix dependencies: GCM != AEAD != CCM
|
2014-06-24 15:26:28 +02:00 |
|
Manuel Pégourié-Gonnard
|
5bfd968e01
|
Fix warning with TLS 1.2 without RSA or ECDSA
|
2014-06-24 15:18:11 +02:00 |
|
Paul Bakker
|
1c98ff96b5
|
Merge more test improvements and tests
Conflicts:
tests/suites/test_suite_cipher.blowfish.data
|
2014-06-24 11:12:00 +02:00 |
|
Paul Bakker
|
91c301abbe
|
Zeroize values in PKCS#12 operations
|
2014-06-24 11:09:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
398c57b0b3
|
Blowfish accepts variable key len in cipher layer
|
2014-06-24 11:01:33 +02:00 |
|
Manuel Pégourié-Gonnard
|
f3b47243df
|
Split x509_csr_parse_der() out of x509_csr_parse()
|
2014-06-23 11:54:57 +02:00 |
|
Manuel Pégourié-Gonnard
|
4d2a8eb6ff
|
SSL modules now using x509_crt_parse_der()
Avoid uselessly trying to decode PEM.
|
2014-06-23 11:54:57 +02:00 |
|
Manuel Pégourié-Gonnard
|
b912616081
|
Rm unused functions in cipher_wrap
You can't initialise a context with DES_CFB or DES_CTR.
|
2014-06-23 11:54:57 +02:00 |
|
Manuel Pégourié-Gonnard
|
1c082f34f3
|
Update description and references for X.509 files
|
2014-06-23 11:52:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
edc3ab20e2
|
Small cleanup: less side-effects
pkcs5_parse_pbkdf2_params() used to modify params.p, which does not look
clean, even if the function is static and params.p isn't use afterwards.
|
2014-06-23 11:52:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
90dac90f53
|
Small code simplification in pkcs5_pbes2()
|
2014-06-23 11:52:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
66aca931bc
|
Add tests for pkcs5_pbes2
|
2014-06-23 11:52:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
2a8afa98e2
|
pkcs5_self_test depends on SHA1
|
2014-06-23 11:52:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
f3e5c22f4d
|
Refactor x509_string_to_names(): data in a table
|
2014-06-23 11:52:58 +02:00 |
|
Manuel Pégourié-Gonnard
|
81754a0c35
|
Create a 'flags' field in cipher_info
|
2014-06-23 11:33:18 +02:00 |
|