Paul Bakker
|
8b817dc47e
|
Merged support for multiple certificate/key pairs in SSL into
development
|
2013-09-25 18:05:16 +02:00 |
|
Manuel Pégourié-Gonnard
|
a0fdf8b0a0
|
Simplify the way default certs are used
|
2013-09-25 14:05:49 +02:00 |
|
Manuel Pégourié-Gonnard
|
cb99bdb27e
|
Client: if no cert, send empty cert list
|
2013-09-25 13:30:56 +02:00 |
|
Manuel Pégourié-Gonnard
|
641de714b6
|
Use both RSA and ECDSA CA if available
|
2013-09-25 13:23:33 +02:00 |
|
Manuel Pégourié-Gonnard
|
420edcaf1d
|
Clean up config-suite-b.h thanks to new certs
|
2013-09-25 11:52:38 +02:00 |
|
Manuel Pégourié-Gonnard
|
ac8474fb1c
|
Changed default cert loading in ssl_server2
|
2013-09-25 11:35:15 +02:00 |
|
Manuel Pégourié-Gonnard
|
8372454615
|
Rework SNI to fix memory issues
|
2013-09-24 22:30:56 +02:00 |
|
Manuel Pégourié-Gonnard
|
b095a7bf29
|
Offer both RSA and ECDSA by default in ssl_server2
|
2013-09-24 21:25:54 +02:00 |
|
Manuel Pégourié-Gonnard
|
482a2828e4
|
Offer both EC and RSA in certs.c, RSA first
|
2013-09-24 21:25:54 +02:00 |
|
Manuel Pégourié-Gonnard
|
4618459fa1
|
Update EC certificates in certs.c
|
2013-09-24 21:25:54 +02:00 |
|
Manuel Pégourié-Gonnard
|
cc648d19dc
|
Adapt test cases to new certs and file names
|
2013-09-24 21:25:54 +02:00 |
|
Manuel Pégourié-Gonnard
|
6a987f4a90
|
Update EC certs to use NIST-256 and NIST-384
|
2013-09-24 21:25:54 +02:00 |
|
Manuel Pégourié-Gonnard
|
705fcca409
|
Adapt support for SNI to recent changes
|
2013-09-24 21:25:54 +02:00 |
|
Manuel Pégourié-Gonnard
|
d09453c88c
|
Check our ECDSA cert(s) against supported curves
|
2013-09-24 21:25:53 +02:00 |
|
Manuel Pégourié-Gonnard
|
f24b4a7316
|
Interface change in ECP info functions
ecp_named_curve_from_grp_id() -> ecp_curve_info_from_grp_id()
ecp_grp_id_from_named_curve() -> ecp_curve_info_from_tls_id()
|
2013-09-24 21:25:53 +02:00 |
|
Manuel Pégourié-Gonnard
|
f71e587c5e
|
Fix memory leak in ssl cipher usage
|
2013-09-24 21:25:53 +02:00 |
|
Manuel Pégourié-Gonnard
|
3ebb2cdb52
|
Add support for multiple server certificates
|
2013-09-24 21:25:53 +02:00 |
|
Manuel Pégourié-Gonnard
|
834ea8587f
|
Change internal structs for multi-cert support
|
2013-09-24 21:25:53 +02:00 |
|
Manuel Pégourié-Gonnard
|
cbf3ef3861
|
RSA and ECDSA key exchanges don't depend on CRL
|
2013-09-24 21:25:53 +02:00 |
|
Manuel Pégourié-Gonnard
|
dfe0ea9f02
|
Add missing VS files for programs
|
2013-09-23 23:01:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
164d894b9a
|
Fix: session start time wasn't set server side
|
2013-09-23 23:00:50 +02:00 |
|
Paul Bakker
|
ee0844adb9
|
Updated VS project files for X509 changes
|
2013-09-23 15:20:01 +02:00 |
|
Paul Bakker
|
c2148753df
|
Added missing uint32_t def for Windows in gcm.h
|
2013-09-23 15:11:46 +02:00 |
|
Paul Bakker
|
3cf63edc44
|
Typo in Windows error code in x509_crt.c
|
2013-09-23 15:10:16 +02:00 |
|
Paul Bakker
|
c27c4e2efb
|
Support faulty X509 v1 certificates with extensions
(POLARSSL_X509_ALLOW_EXTENSIONS_NON_V3)
|
2013-09-23 15:01:36 +02:00 |
|
Paul Bakker
|
15b9b3a7e0
|
Key generation tool
|
2013-09-23 13:25:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
649854004b
|
New script for testing standard configurations
|
2013-09-20 17:08:53 +02:00 |
|
Manuel Pégourié-Gonnard
|
684e9dc52e
|
Add custom configurations with activation script
|
2013-09-20 16:51:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
fe28646f72
|
Fix references to x509parse in config.h
|
2013-09-20 16:51:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
09fff7ee25
|
Cosmetics in config.h
|
2013-09-20 16:51:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
abd6e02b7b
|
Rm _CRT_SECURE_NO_DEPRECATE for programs
(Already in config.h.)
|
2013-09-20 16:51:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
3bd2aae5a5
|
Add forgotten initializations
|
2013-09-20 16:51:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
eb1714e9c8
|
Fix certs/psk arguments in compat.sh
|
2013-09-20 12:44:08 +02:00 |
|
Manuel Pégourié-Gonnard
|
7831b0cb3c
|
A few more issues with small configurations
|
2013-09-20 12:30:21 +02:00 |
|
Manuel Pégourié-Gonnard
|
1a483833b3
|
SSL_TLS doesn't depend on PK any more
(But PK does depend on RSA or ECP.)
|
2013-09-20 12:29:15 +02:00 |
|
Manuel Pégourié-Gonnard
|
34ced2dffe
|
Fix mis-sized buffer
Reported by rgacogne on twitter.
Also spotted by gcc-4.8 with -O2
|
2013-09-20 11:37:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
a7496f00ff
|
Fix a few more warnings in small configurations
|
2013-09-20 11:29:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
4fee79b885
|
Fix some more depend issues
|
2013-09-20 10:58:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
387a211fad
|
Fix some dependencies in tests
|
2013-09-20 10:58:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
92e5b59355
|
Fix some dependencies/warnings in programs
|
2013-09-20 10:58:58 +02:00 |
|
Manuel Pégourié-Gonnard
|
1032c1d3ec
|
Fix some dependencies and warnings in small config
|
2013-09-19 10:49:00 +02:00 |
|
Paul Bakker
|
5ad403f5b5
|
Prepared for 1.3.0 RC0
|
2013-09-18 21:21:30 +02:00 |
|
Paul Bakker
|
eaed9dffb7
|
Added --soversion to help in bump_version.sh
|
2013-09-18 21:19:35 +02:00 |
|
Paul Bakker
|
6db455e6e3
|
PSK callback added to SSL server
|
2013-09-18 21:14:58 +02:00 |
|
Manuel Pégourié-Gonnard
|
ff29f9c825
|
Compute public key if absent when reading EC key
|
2013-09-18 16:13:02 +02:00 |
|
Paul Bakker
|
4fc090af9c
|
Minor typos in pk.h
|
2013-09-18 15:43:25 +02:00 |
|
Manuel Pégourié-Gonnard
|
da179e4870
|
Add ecp_curve_list(), hide ecp_supported_curves
|
2013-09-18 15:37:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
dace82f805
|
Refactor cipher information management
|
2013-09-18 15:37:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
a310459f5c
|
Fix a few things that broke with RSA compiled out
|
2013-09-18 15:37:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
161ef968db
|
Cache pre-computed points for ecp_mul()
Up to 1.25 speedup on ECDSA sign for small curves, but mainly useful as a
preparation for fixed-point mult (a few prototypes changed in constness).
|
2013-09-18 15:37:44 +02:00 |
|