Simon Butcher 
							
						 
						
							
							
							
							
								
							
							
								ae4cafa2a6 
								
							 
						 
						
							
							
								
								Merge remote-tracking branch 'public/pr/795' into development  
							
							
							
						 
						
							2018-06-12 16:55:47 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Hanno Becker 
							
						 
						
							
							
							
							
								
							
							
								17c3276a2e 
								
							 
						 
						
							
							
								
								Improve output on bad cmd line args in programs/x509/cert_write  
							
							
							
						 
						
							2017-10-03 14:56:04 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Hanno Becker 
							
						 
						
							
							
							
							
								
							
							
								7f3652ddf1 
								
							 
						 
						
							
							
								
								Fix error code printing in cert_write  
							
							... 
							
							
							
							Error codes can consume up to two bytes, but only one was printed so far. 
							
						 
						
							2017-09-22 15:39:02 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Hanno Becker 
							
						 
						
							
							
							
							
								
							
							
								38eff43791 
								
							 
						 
						
							
							
								
								Use X509 CRT version macros in cert_write program  
							
							
							
						 
						
							2017-09-22 15:38:20 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Hanno Becker 
							
						 
						
							
							
							
							
								
							
							
								e1b1d0af8e 
								
							 
						 
						
							
							
								
								Fix senseless comment  
							
							
							
						 
						
							2017-09-22 15:35:16 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Hanno Becker 
							
						 
						
							
							
							
							
								
							
							
								81535d0011 
								
							 
						 
						
							
							
								
								Minor style and typo corrections  
							
							
							
						 
						
							2017-09-14 07:51:54 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Hanno Becker 
							
						 
						
							
							
							
							
								
							
							
								6c13d37961 
								
							 
						 
						
							
							
								
								Extend cert_write example program by multiple cmd line options  
							
							... 
							
							
							
							This commit adds the following command line options to programs/x509/cert_write:
- version (val 1, 2, 3): Set the certificate's version (v1, v2, v3)
- authority_identifier (val 0, 1): Enable or disable the addition of the
                                   authority identifier extension.
- subject_identifier (val 0, 1): Enable or disable the addition of the
                                 subject identifier extension.
- basic_constraints (val 0, 1): Enable or disable the addition of the
                                basic constraints extension.
- md (val MD5, SHA1, SHA256, SHA512): Set the hash function used
                                      when creating the CRT. 
							
						 
						
							2017-09-13 15:42:16 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Ron Eldor 
							
						 
						
							
							
							
							
								
							
							
								0049f7857d 
								
							 
						 
						
							
							
								
								check matching issuer crt and key for all algs  
							
							... 
							
							
							
							use mbedtls_pk_check_pair to verify if issuer certificate and issuer key match,
instad of explicitely comparing RSA public component.
Raised and fix suggested by dbedev in #777  
							
						 
						
							2017-02-07 19:14:58 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Simon Butcher 
							
						 
						
							
							
							
							
								
							
							
								203a6934e7 
								
							 
						 
						
							
							
								
								Add extra compilation conditions to X.509 samples  
							
							... 
							
							
							
							The sample applications programs/pkey/cert_req.c and
programs/pkey/cert_write.c use the library functions
mbedtls_pk_write_csr_pem() and mbedtls_pk_write_crt_pem() respectively which
are dependent on the configuration option MBEDTLS_PEM_WRITE_C. If the option
isn't defined the build breaks.
This change adds the compilation condition MBEDTLS_PEM_WRITE_C to these
sample application. 
							
						 
						
							2016-10-10 09:05:26 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Andres AG 
							
						 
						
							
							
							
							
								
							
							
								788aa4a812 
								
							 
						 
						
							
							
								
								Rename net.{c,h} to net_sockets.{c,h}  
							
							... 
							
							
							
							The library/net.c and its corresponding include/mbedtls/net.h file are
renamed to library/net_sockets.c and include/mbedtls/net_sockets.h
respectively. This is to avoid naming collisions in projects which also
have files with the common name 'net'. 
							
						 
						
							2016-09-26 23:23:52 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								5e8c62f53d 
								
							 
						 
						
							
							
								
								Do not add empty cert / key in cert_app  
							
							
							
						 
						
							2016-09-26 20:30:13 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								f2b92bb25b 
								
							 
						 
						
							
							
								
								Actually apply debug_level settings in cert_app  
							
							
							
						 
						
							2016-09-26 20:30:13 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Simon Butcher 
							
						 
						
							
							
							
							
								
							
							
								b2d5dd105d 
								
							 
						 
						
							
							
								
								Fixes X509 sample app and SSL test suite  
							
							... 
							
							
							
							Fixes the X.509 cert_app and the SSL test suite for the non-default
configs which don't build with if MBEDTLS_PLATFORM_C isn't defined. 
							
						 
						
							2016-04-27 13:35:37 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								1c6f19aa47 
								
							 
						 
						
							
							
								
								Merge pull request  #317  from Inikup/fix-issue-315  
							
							... 
							
							
							
							cert_write : fix "Destination buffer is too small" error 
							
						 
						
							2015-11-02 05:52:26 +09:00 
							
								 
							
						 
					 
				
					
						
							
							
								Jonathan Leroy 
							
						 
						
							
							
								
								
							
							
							
								
							
							
								bbc75d9791 
								
							 
						 
						
							
							
								
								cert_write : fix "Destination buffer is too small" error  
							
							... 
							
							
							
							This commit fixes the `Destination buffer is too small` error returned
by `mbedtls_cert_write` command when the values of `subject_name` or
`issuer_name` parameters exceed 128 characters.
I have increased the size of these varaibles from 128 to 256 characters,
but I don't know if it's the best way to solve this issue...
Fixes  #315 . 
							
						 
						
							2015-10-10 21:58:07 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Jonathan Leroy 
							
						 
						
							
							
								
								
							
							
							
								
							
							
								81962c36e3 
								
							 
						 
						
							
							
								
								Fix help message for cert_req/cert_write programs  
							
							... 
							
							
							
							In cert_req and cert_write programs, "key_certificate_sign" is not an
allowed velue for "key_usage" parameter. The correct value is
"key_cert_sign".
See https://github.com/ARMmbed/mbedtls/blob/development/programs/x509/cert_req.c#L208 
and https://github.com/ARMmbed/mbedtls/blob/development/programs/x509/cert_write.c#L323 . 
							
						 
						
							2015-10-10 21:42:29 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								37ff14062e 
								
							 
						 
						
							
							
								
								Change main license to Apache 2.0  
							
							
							
						 
						
							2015-09-04 14:21:07 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								d73896581b 
								
							 
						 
						
							
							
								
								Fix typos (found by Francesco Pompò)  
							
							... 
							
							
							
							Manually merging as the pull requests are based on an old branch.
closes  #215 
closes  #216  
							
						 
						
							2015-08-06 18:22:26 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								6fb8187279 
								
							 
						 
						
							
							
								
								Update date in copyright line  
							
							
							
						 
						
							2015-07-28 17:11:58 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								3d7d00ad23 
								
							 
						 
						
							
							
								
								Rename mbedtls_net_close() to mbedtls_net_free()  
							
							... 
							
							
							
							close() may be more meaningful, but free() is symmetric with _init(), and more
consistent with all other modules 
							
						 
						
							2015-06-30 16:50:37 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								5db64328ab 
								
							 
						 
						
							
							
								
								Adapt programs to the new NET API  
							
							
							
						 
						
							2015-06-30 16:48:17 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								216a1831de 
								
							 
						 
						
							
							
								
								Fix whitespace in CMakeLists.txt  
							
							... 
							
							
							
							- all spaces no tabs
- indent with 4 spaces everywhere 
							
						 
						
							2015-06-25 10:59:57 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								61ee351af4 
								
							 
						 
						
							
							
								
								Adapt programs to the new debug API  
							
							
							
						 
						
							2015-06-23 23:30:16 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								c0d749418b 
								
							 
						 
						
							
							
								
								Make 'port' a string in NET module  
							
							... 
							
							
							
							- avoids dependency on snprintf
- allows using "smtps" instead of "456" if desired 
							
						 
						
							2015-06-23 13:09:11 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								b31c5f68b1 
								
							 
						 
						
							
							
								
								Add SSL presets.  
							
							... 
							
							
							
							No need to use a separate profile as in X.509, everything we need is already
in ssl_config. Just load appropriate values. 
							
						 
						
							2015-06-17 14:59:27 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								e6ef16f98c 
								
							 
						 
						
							
							
								
								Change X.509 verify flags to uint32_t  
							
							
							
						 
						
							2015-05-11 19:54:43 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								06939cebef 
								
							 
						 
						
							
							
								
								Fix order of ssl_conf vs ssl_setup in programs  
							
							... 
							
							
							
							Except ssl_phtread_server that will be done later 
							
						 
						
							2015-05-11 14:35:42 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								6729e79482 
								
							 
						 
						
							
							
								
								Rename ssl_set_xxx() to ssl_conf_xxx()  
							
							
							
						 
						
							2015-05-11 14:35:41 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								17a40cd255 
								
							 
						 
						
							
							
								
								Change ssl_own_cert to work on ssl_config  
							
							
							
						 
						
							2015-05-11 14:35:41 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								750e4d7769 
								
							 
						 
						
							
							
								
								Move ssl_set_rng() to act on config  
							
							
							
						 
						
							2015-05-11 12:33:27 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								8836994f6b 
								
							 
						 
						
							
							
								
								Move WANT_READ/WANT_WRITE codes to SSL  
							
							
							
						 
						
							2015-05-11 12:33:26 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								1b511f93c6 
								
							 
						 
						
							
							
								
								Rename ssl_set_bio_timeout() to set_bio()  
							
							... 
							
							
							
							Initially thought it was best to keep the old function around and add a new
one, but this so many ssl_set_xxx() functions are changing anyway... 
							
						 
						
							2015-05-11 12:33:26 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								97fd52c529 
								
							 
						 
						
							
							
								
								Split ssl_set_read_timeout() out of bio_timeout()  
							
							
							
						 
						
							2015-05-11 12:33:26 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								bc2b771af4 
								
							 
						 
						
							
							
								
								Move ssl_set_ca_chain() to work on config  
							
							
							
						 
						
							2015-05-11 12:33:26 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								d36e33fc07 
								
							 
						 
						
							
							
								
								Move easy ssl_set_xxx() functions to work on conf  
							
							... 
							
							
							
							mbedtls_ssl_set_alpn_protocols
mbedtls_ssl_set_arc4_support
mbedtls_ssl_set_authmode
mbedtls_ssl_set_ciphersuites
mbedtls_ssl_set_ciphersuites_for_version
mbedtls_ssl_set_curves
mbedtls_ssl_set_dbg
mbedtls_ssl_set_dh_param
mbedtls_ssl_set_dh_param_ctx
mbedtls_ssl_set_dtls_anti_replay
mbedtls_ssl_set_dtls_badmac_limit
mbedtls_ssl_set_dtls_cookies
mbedtls_ssl_set_encrypt_then_mac
mbedtls_ssl_set_endpoint
mbedtls_ssl_set_extended_master_secret
mbedtls_ssl_set_handshake_timeout
mbedtls_ssl_legacy_renegotiation
mbedtls_ssl_set_max_version
mbedtls_ssl_set_min_version
mbedtls_ssl_set_psk_cb
mbedtls_ssl_set_renegotiation
mbedtls_ssl_set_renegotiation_enforced
mbedtls_ssl_set_renegotiation_period
mbedtls_ssl_set_session_cache
mbedtls_ssl_set_session_ticket_lifetime
mbedtls_ssl_set_sni
mbedtls_ssl_set_transport
mbedtls_ssl_set_truncated_hmac
mbedtls_ssl_set_verify 
							
						 
						
							2015-05-07 10:19:13 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								419d5ae419 
								
							 
						 
						
							
							
								
								Make endpoint+transport args of config_defaults()  
							
							
							
						 
						
							2015-05-07 10:19:13 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								def0bbe3ab 
								
							 
						 
						
							
							
								
								Allocate ssl_config out of ssl_setup()  
							
							
							
						 
						
							2015-05-07 10:19:13 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								41d479e7df 
								
							 
						 
						
							
							
								
								Split ssl_init() -> ssl_setup()  
							
							
							
						 
						
							2015-04-29 02:08:34 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								ec160c0f53 
								
							 
						 
						
							
							
								
								Update ctr_drbg_init() usage in programs  
							
							
							
						 
						
							2015-04-29 02:08:34 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								7cfbaf05b3 
								
							 
						 
						
							
							
								
								Merge branch 'mbedtls-1.3' into development  
							
							... 
							
							
							
							* mbedtls-1.3:
  Fix bugs in programs displaying verify flags
Conflicts:
	programs/test/ssl_cert_test.c
	programs/x509/cert_app.c 
							
						 
						
							2015-04-24 14:10:04 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								9ce1bdc151 
								
							 
						 
						
							
							
								
								Fix bugs in programs displaying verify flags  
							
							
							
						 
						
							2015-04-24 14:07:07 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								e6028c93f5 
								
							 
						 
						
							
							
								
								Fix some X509 macro names  
							
							... 
							
							
							
							For some reason, during the great renaming, some names that should have been
prefixed with MBEDTLS_X509_ have only been prefixed with MBEDTLS_ 
							
						 
						
							2015-04-20 12:19:02 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								89addc43db 
								
							 
						 
						
							
							
								
								manually merge  0c6ce2f use x509_crt_verify_info()  
							
							
							
						 
						
							2015-04-20 11:23:11 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								0c6ce2f536 
								
							 
						 
						
							
							
								
								Use x509_crt_verify_info() in programs  
							
							
							
						 
						
							2015-04-17 19:57:21 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								2cf5a7c98e 
								
							 
						 
						
							
							
								
								The Great Renaming  
							
							... 
							
							
							
							A simple execution of tmp/invoke-rename.pl 
							
						 
						
							2015-04-08 13:25:31 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								932e3934bd 
								
							 
						 
						
							
							
								
								Fix typos & Co  
							
							
							
						 
						
							2015-04-03 18:46:55 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								26c9f90cae 
								
							 
						 
						
							
							
								
								Merge branch 'mbedtls-1.3' into development  
							
							... 
							
							
							
							* mbedtls-1.3:
  Add missing depends in x509 programs
  Simplify ifdef checks in programs/x509
  Fix thread safety issue in RSA operations
  Add test certificate for bitstring in DN
  Add support for X.520 uniqueIdentifier
  Accept bitstrings in X.509 names 
							
						 
						
							2015-03-31 17:56:15 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								0878a0d884 
								
							 
						 
						
							
							
								
								Add missing depends in x509 programs  
							
							
							
						 
						
							2015-03-31 15:14:37 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								8d649c66b3 
								
							 
						 
						
							
							
								
								Simplify ifdef checks in programs/x509  
							
							
							
						 
						
							2015-03-31 15:10:03 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								aeab252fef 
								
							 
						 
						
							
							
								
								Quit using deprecated ssl_set_bio() in programs  
							
							
							
						 
						
							2015-03-25 20:21:29 +01:00