Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								5ad68e42e5 
								
							 
						 
						
							
							
								
								Mutex x509_crt_parse_path() when pthreads is used  
							
							
							
						 
						
							2013-11-28 18:07:39 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								964bf9b92f 
								
							 
						 
						
							
							
								
								Quit using readdir_r()  
							
							... 
							
							
							
							Prone to buffer overflows on some platforms. 
							
						 
						
							2013-11-28 18:07:39 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								fbae2a1f53 
								
							 
						 
						
							
							
								
								Add tests for x509_crt_parse_path()  
							
							
							
						 
						
							2013-11-28 18:07:39 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								76f03118c4 
								
							 
						 
						
							
							
								
								Only compile with -Wmissing-declarations and -Wmissing-prototypes in  
							
							... 
							
							
							
							library, not tests and programs 
							
						 
						
							2013-11-28 17:20:04 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								3ddfa663a5 
								
							 
						 
						
							
							
								
								Renamed test_offset to prevent clash with one in ctr_drbg.c  
							
							
							
						 
						
							2013-11-26 17:45:20 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								7aa0375b78 
								
							 
						 
						
							
							
								
								Updated ChangeLog to reflect recent changes  
							
							
							
						 
						
							2013-11-26 17:37:31 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								88cd22646c 
								
							 
						 
						
							
							
								
								Merged ciphersuite version improvements  
							
							
							
						 
						
							2013-11-26 15:22:19 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								0f2eacbd09 
								
							 
						 
						
							
							
								
								crypt_and_hash: check MAC earlier  
							
							
							
						 
						
							2013-11-26 15:19:57 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								da1ff38715 
								
							 
						 
						
							
							
								
								Don't accept CertificateRequest with PSK suites  
							
							
							
						 
						
							2013-11-26 15:19:57 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								dc953e8c41 
								
							 
						 
						
							
							
								
								Add missing defines/cases for RSA_PSK key exchange  
							
							
							
						 
						
							2013-11-26 15:19:57 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								3eaa8e7005 
								
							 
						 
						
							
							
								
								Clarify comments of mpi_mul_int()  
							
							
							
						 
						
							2013-11-26 15:19:56 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								c57b654a3e 
								
							 
						 
						
							
							
								
								Use t_uint rather than uintXX_t when appropriate  
							
							
							
						 
						
							2013-11-26 15:19:56 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								3209ce3692 
								
							 
						 
						
							
							
								
								Merged ECP improvements  
							
							
							
						 
						
							2013-11-26 15:19:17 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								20b9af7998 
								
							 
						 
						
							
							
								
								Fix min_version (TLS 1.0) for ECDHE-PSK suites  
							
							
							
						 
						
							2013-11-26 14:31:44 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								c6f03faeaf 
								
							 
						 
						
							
							
								
								Update compat.sh ciphersuite versions  
							
							
							
						 
						
							2013-11-26 14:29:13 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								a5bdfcde53 
								
							 
						 
						
							
							
								
								Relax some SHA2 ciphersuite's version requirements  
							
							... 
							
							
							
							Changed:
- PSK ciphersuites (RFC 5487, section 3)
- ECDHE-PSK ciphersuites (RFC 5489, section 3)
- Additional Camellia ciphersuites (RFC 6367, sec 3.3)
Unchanged:
- all GCM ciphersuites
- Camellia ciphersuites from RFC 5932 (sec. 3.3.2)
- ECC-SHA2 ciphersuites from RFC 5289 (unclear)
- SHA2 from RFC 5246 (TLS 1.2, no precision) 
							
						 
						
							2013-11-26 13:59:43 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								96c7a92b08 
								
							 
						 
						
							
							
								
								Change mpi_safe_cond_assign() for more const-ness  
							
							
							
						 
						
							2013-11-25 18:28:53 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								e4c71f0e11 
								
							 
						 
						
							
							
								
								Merged Prime generation improvements  
							
							
							
						 
						
							2013-11-25 14:27:28 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								45f457d872 
								
							 
						 
						
							
							
								
								Reverted API change for mpi_is_prime()  
							
							
							
						 
						
							2013-11-25 14:26:52 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								7d2c0c4eda 
								
							 
						 
						
							
							
								
								Added Check and CheckFull options to CMakeLists  
							
							
							
						 
						
							2013-11-25 13:30:11 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								8fc30b178c 
								
							 
						 
						
							
							
								
								Various const fixes  
							
							
							
						 
						
							2013-11-25 13:29:43 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								5e1e61124a 
								
							 
						 
						
							
							
								
								Insert warning about time in dh_genprime  
							
							
							
						 
						
							2013-11-22 21:16:10 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								ddf7615d49 
								
							 
						 
						
							
							
								
								gen_prime: check small primes early (3x speed-up)  
							
							
							
						 
						
							2013-11-22 19:58:22 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								378fb4b70a 
								
							 
						 
						
							
							
								
								Split mpi_is_prime() and make its first arg const  
							
							
							
						 
						
							2013-11-22 19:40:32 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								0160eacc82 
								
							 
						 
						
							
							
								
								gen_prime: ensure X = 2 mod 3 -> 2.5x speedup  
							
							
							
						 
						
							2013-11-22 17:54:59 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								711507a726 
								
							 
						 
						
							
							
								
								gen_prime: ensure X = 3 mod 4 always (2x speed-up)  
							
							
							
						 
						
							2013-11-22 17:35:28 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								3e3d2b818c 
								
							 
						 
						
							
							
								
								Fix bug in mpi_safe_cond_assign()  
							
							
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								918148193d 
								
							 
						 
						
							
							
								
								Enhance ecp_selftest  
							
							
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								d728350cee 
								
							 
						 
						
							
							
								
								Make memory access pattern constant  
							
							
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								aade42fd88 
								
							 
						 
						
							
							
								
								Change method for making M odd in ecp_mul()  
							
							... 
							
							
							
							- faster
- avoids M >= N (if m = N-1 or N-2) 
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								36daa13d76 
								
							 
						 
						
							
							
								
								Misc details  
							
							
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								469a209334 
								
							 
						 
						
							
							
								
								Rm subtraction from ecp_add_mixed()  
							
							
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								01fca5e882 
								
							 
						 
						
							
							
								
								Do point inversion without leaking information  
							
							
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								71c2c21601 
								
							 
						 
						
							
							
								
								Add mpi_safe_cond_assign()  
							
							
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								44aab79022 
								
							 
						 
						
							
							
								
								Update bibliographic references  
							
							
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								7f762319ad 
								
							 
						 
						
							
							
								
								Use mpi_shrink() in ecp_precompute()  
							
							
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								5868163e07 
								
							 
						 
						
							
							
								
								Add mpi_shrink()  
							
							
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								e282012219 
								
							 
						 
						
							
							
								
								Spare some memory  
							
							
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								edc1a1f482 
								
							 
						 
						
							
							
								
								Small code cleanups  
							
							
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								ff27b7c968 
								
							 
						 
						
							
							
								
								Tighten ecp_mul() validity checks  
							
							
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								09ceaf49d0 
								
							 
						 
						
							
							
								
								Rm multiplication using NAF  
							
							... 
							
							
							
							Comb method is at most 1% slower for random points,
and is way faster for fixed point (repeated). 
							
						 
						
							2013-11-21 21:56:38 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								04a0225388 
								
							 
						 
						
							
							
								
								Optimize w in the comb method  
							
							
							
						 
						
							2013-11-21 21:56:37 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								70c14372c6 
								
							 
						 
						
							
							
								
								Add coordinate randomization back  
							
							
							
						 
						
							2013-11-21 21:56:37 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								c30200e4ce 
								
							 
						 
						
							
							
								
								Fix bound issues  
							
							
							
						 
						
							2013-11-21 21:56:37 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								101a39f55f 
								
							 
						 
						
							
							
								
								Improve comb method (less precomputed points)  
							
							
							
						 
						
							2013-11-21 21:56:37 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								d1c1ba90ca 
								
							 
						 
						
							
							
								
								First version of ecp_mul_comb()  
							
							
							
						 
						
							2013-11-21 21:56:20 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								17d99fc6f2 
								
							 
						 
						
							
							
								
								Fixed error.fmt to match active error.c code  
							
							
							
						 
						
							2013-11-21 17:34:13 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								a9a028ebd0 
								
							 
						 
						
							
							
								
								SSL now gracefully handles missing RNG  
							
							
							
						 
						
							2013-11-21 17:31:06 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								f2b4d86452 
								
							 
						 
						
							
							
								
								Fixed X.509 hostname comparison (with non-regular characters)  
							
							... 
							
							
							
							In situations with 'weird' certificate names or hostnames (containing
non-western allowed names) the check would falsely report a name or
wildcard match. 
							
						 
						
							2013-11-21 17:30:23 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Steffan Karger 
							
						 
						
							
							
							
							
								
							
							
								c245834bc4 
								
							 
						 
						
							
							
								
								Link against ZLIB when zlib is used  
							
							... 
							
							
							
							Signed-off-by: Paul Bakker <p.j.bakker@polarssl.org> 
							
						 
						
							2013-11-20 16:45:48 +01:00