Janos Follath
ef44178474
Restore P>Q in RSA key generation ( #558 )
...
The PKCS#1 standard says nothing about the relation between P and Q
but many libraries guarantee P>Q and mbed TLS did so too in earlier
versions.
This commit restores this behaviour.
2016-10-13 00:25:07 +01:00
Simon Butcher
f6e3b9e8b2
Clarified Changelog for fix #602
2016-10-12 19:52:38 +01:00
Andres AG
821da84ff9
Fix documentation for mbedtls_gcm_finish()
...
Fix implementation and documentation missmatch for the function
arguments to mbedtls_gcm_finish(). Also, removed redundant if condition
that always evaluates to true.
2016-10-12 19:49:41 +01:00
Simon Butcher
3a5e070982
Updated Changelog for fix #599
2016-10-12 16:46:48 +01:00
Andres AG
776a6fcd1a
Fix 1 byte overread in mbedtls_asn1_get_int()
2016-10-12 16:43:37 +01:00
Janos Follath
1aae658d76
Add safety check to sample mutex implementation
...
Due to inconsistent freeing strategy in pkparse.c the sample mutex
implementation in threading.c could lead to undefined behaviour by
destroying the same mutex several times.
This fix prevents mutexes from being destroyed several times in the
sample threading implementation.
2016-10-12 00:32:17 +01:00
Simon Butcher
851ae29a5d
Revise Changelog to clarify and add credit
2016-10-11 12:28:04 +01:00
Simon Butcher
b98eaff408
Revise Changelog to clarify and add credit
2016-10-11 10:13:52 +01:00
Simon Butcher
df6c3e8e48
Merge branch 'iotssl-825-double-free-quickfix'
...
Conflicts:
ChangeLog
2016-10-11 00:07:14 +01:00
Simon Butcher
f77309cb35
Update Changelog for fixes to X.509 sample apps
2016-10-10 09:05:26 +01:00
Simon Butcher
f73fd701c0
Update Changelog for fix #559
2016-10-07 11:17:44 +01:00
Simon Butcher
21c54816f5
Add CMAC to ChangeLog
2016-10-05 14:19:18 +01:00
Janos Follath
5437a75b15
Add safety check to sample mutex implementation
...
Due to inconsistent freeing strategy in pkparse.c the sample mutex
implementation in threading.c could lead to undefined behaviour by
destroying the same mutex several times.
This fix prevents mutexes from being destroyed several times in the
sample threading implementation.
2016-09-30 09:29:55 +01:00
Andres AG
7abc974ec4
Add config macro for min bytes hw entropy
2016-09-27 14:25:31 +01:00
Andres AG
f84f8926a7
Add new config.h that does not need entropy source
2016-09-27 14:25:31 +01:00
Andres AG
788aa4a812
Rename net.{c,h} to net_sockets.{c,h}
...
The library/net.c and its corresponding include/mbedtls/net.h file are
renamed to library/net_sockets.c and include/mbedtls/net_sockets.h
respectively. This is to avoid naming collisions in projects which also
have files with the common name 'net'.
2016-09-26 23:23:52 +01:00
Simon Butcher
d43fb9598a
Update for ChangeLog for fixes for cert_app
2016-09-26 20:48:56 +01:00
Andres AG
f9113194af
Allow the entry_name size to be set in config.h
...
Allow the size of the entry_name character array in x509_crt.c to be
configurable through a macro in config.h. entry_name holds a
path/filename string. The macro introduced in
MBEDTLS_X509_MAX_FILE_PATH_LEN.
2016-09-16 11:42:35 +01:00
Simon Butcher
c0d76b8255
Update ChangeLog for fix for #541 - out-of-tree CMake builds
2016-09-07 17:25:16 +03:00
Simon Butcher
cad6e93e19
Update to ChangeLog for bug #428
2016-09-05 01:48:31 +03:00
Simon Butcher
5908bccfc0
Updated ChangeLog for PR#565
...
Updated ChangeLog for pull request #565 - Remove unused consts from oid lists
2016-09-04 15:14:38 +01:00
Simon Butcher
327d66520e
Update ChangeLog for fix to crypt_and_hash #441
2016-09-02 21:53:50 +01:00
Simon Butcher
cf8c1f4ddb
Update ChangeLog to include the most recent fixes
2016-09-02 21:29:39 +03:00
Simon Butcher
46125fbb73
Updates ChangeLog with final changes for release
2016-06-27 19:43:55 +01:00
Simon Butcher
9c22e7311c
Merge branch 'development'
2016-05-24 13:25:46 +01:00
Paul Bakker
dc08545395
Update ChangeLog to reflect
2016-05-23 14:29:32 +01:00
Paul Bakker
456fea0000
Amended ChangeLog
2016-05-23 14:29:31 +01:00
Janos Follath
c6dab2b029
Fix non compliance SSLv3 in server extension handling.
...
The server code parses the client hello extensions even when the
protocol is SSLv3 and this behaviour is non compliant with rfc6101.
Also the server sends extensions in the server hello and omitting
them may prevent interoperability problems.
2016-05-23 14:27:02 +01:00
Simon Butcher
94bafdf834
Merge branch 'development'
2016-05-18 18:40:46 +01:00
Paul Bakker
f8e3794792
Update ChangeLog to reflect
2016-05-13 10:50:41 +01:00
Paul Bakker
8f0e4c263a
Amended ChangeLog
2016-05-12 16:38:27 +01:00
Simon Butcher
f8935075dc
Update ChangeLog for bug #429 in ssl_fork_server
2016-05-03 15:43:52 +01:00
Simon Butcher
45732c7cac
Update ChangeLog for bug #429 in ssl_fork_server
2016-04-29 00:12:53 +01:00
Simon Butcher
e4a46f696f
Merge branch 'development'
2016-04-27 18:44:37 +01:00
Simon Butcher
3fe6cd3a2d
Fixes time() abstraction for custom configs
...
Added platform abstraction of time() to ChangeLog, version features, and fixed the build for dynamic configuration.
2016-04-26 19:51:29 +01:00
Simon Butcher
a543d11d3a
Fixes mbedtls_mpi_zeroize() function name in ChangeLog
2016-04-26 12:51:37 +01:00
Simon Butcher
d7e9ad7d83
Updates ChangeLog with faster MPI zeroize fix
...
Added optimised mbedtls_mpi_zeroise() credit to ChangeLog.
2016-04-25 16:07:12 +01:00
Janos Follath
8a3170571e
Fix bug in ssl_write_supported_elliptic_curves_ext
...
Passing invalid curves to mbedtls_ssl_conf_curves potentially could caused a
crash later in ssl_write_supported_elliptic_curves_ext. #373
2016-04-22 00:41:54 +01:00
Simon Butcher
2300776816
Merge branch 'development'
2016-04-19 10:39:36 +01:00
Janos Follath
1ed9f99ef3
Fix null pointer dereference in the RSA module.
...
Introduced null pointer checks in mbedtls_rsa_rsaes_pkcs1_v15_encrypt
2016-04-19 10:16:31 +01:00
Simon Butcher
3f5c875654
Adds test for odd bit length RSA key size
...
Also tidy up ChangeLog following review.
2016-04-15 19:06:59 +01:00
Janos Follath
10c575be3e
Fix odd bitlength RSA key generation
...
Fix issue that caused a hang up when generating RSA keys of odd
bitlength.
2016-04-15 18:49:13 +01:00
Simon Butcher
cd0ee5e499
Fixes following review of 'iotssl-682-selftest-ci-break'
2016-03-21 22:54:37 +00:00
Janos Follath
9194744595
Add exit value macros to platform abstraction layer.
2016-03-18 14:05:28 +00:00
Simon Butcher
de69b1664b
Fix ChangeLog after merge of IOTSSL-628
2016-03-17 11:13:48 +00:00
Simon Butcher
078bcdd6f6
Merge branch 'IOTSSL-628-BufferOverread'
2016-03-16 22:53:11 +00:00
Simon Butcher
184990c1d4
Merge development into development-restricted
2016-03-16 13:56:00 +00:00
Simon Butcher
4b852db299
Merge branch 'iotssl-629-der-trailing-bytes'
...
Fixes bug in mbedtls_x509_crt_parse that caused trailing extra data in the
buffer following DER certificates to be included in the raw representation.
2016-03-12 23:28:26 +00:00
Manuel Pégourié-Gonnard
8ddc93f07a
Add precision about exploitability in ChangeLog
...
Also fix some whitespace while at it.
2016-03-09 21:06:20 +00:00
Janos Follath
e43b81ae68
Add Changelog entry for current branch
2016-03-09 21:06:20 +00:00