Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								9fdc58fd9e 
								
							 
						 
						
							
							
								
								Ready for release 1.2.13  
							
							
							
						 
						
							2015-02-16 15:17:32 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								d8a1ea72b1 
								
							 
						 
						
							
							
								
								Fix potential buffer overread of size 1  
							
							
							
						 
						
							2014-11-17 12:27:49 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								309c798b2b 
								
							 
						 
						
							
							
								
								Fix memory leak in PKCS#5 test suite  
							
							
							
						 
						
							2014-11-17 11:56:08 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								3c17460a1f 
								
							 
						 
						
							
							
								
								Fix warning in RSA test suite  
							
							
							
						 
						
							2014-11-17 11:52:51 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								6c28491a15 
								
							 
						 
						
							
							
								
								Backport build modes from 1.3  
							
							
							
						 
						
							2014-11-17 11:15:13 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								aec1385551 
								
							 
						 
						
							
							
								
								compat.sh exits non-zero on failure  
							
							
							
						 
						
							2014-11-17 11:12:33 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								017bf57daa 
								
							 
						 
						
							
							
								
								Forbid repeated X.509 extensions  
							
							
							
						 
						
							2014-11-17 11:01:09 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								fdec957e55 
								
							 
						 
						
							
							
								
								Fix memory leak with crafted X.509 certs  
							
							
							
						 
						
							2014-11-17 11:01:08 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								d3ae430241 
								
							 
						 
						
							
							
								
								Fix uninitialised pointer dereference  
							
							
							
						 
						
							2014-11-17 11:01:08 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								fc3697ce2b 
								
							 
						 
						
							
							
								
								Prepared for PolarSSL-1.2.12  
							
							
							
						 
						
							2014-10-24 10:42:52 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								6b44038913 
								
							 
						 
						
							
							
								
								Fix memory leak parsing some X.509 certs  
							
							
							
						 
						
							2014-10-23 14:53:46 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								695266cb51 
								
							 
						 
						
							
							
								
								Updated to version 1.2.11  
							
							
							
						 
						
							2014-07-11 11:26:03 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								1d073c59ad 
								
							 
						 
						
							
							
								
								Add static and casts to prevent compiler warnings  
							
							
							
						 
						
							2014-07-08 20:17:07 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Andre Heinecke 
							
						 
						
							
							
							
							
								
							
							
								dcbd74f699 
								
							 
						 
						
							
							
								
								Fix symlink command for cross compiling  
							
							... 
							
							
							
							Check for the host system to determine which command should be used
to create a symlink. Otherwise symlinking will fail when cross
compiling polarssl on a unix host for windows. 
							
						 
						
							2014-07-08 18:28:49 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Markus Pfeiffer 
							
						 
						
							
							
							
							
								
							
							
								55bdbc1834 
								
							 
						 
						
							
							
								
								Make compilation on DragonFly work  
							
							
							
						 
						
							2014-07-08 18:28:44 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								95a11f8c16 
								
							 
						 
						
							
							
								
								On OpenBSD, use arc4random_buf() instead of rand() to prevent warnings  
							
							
							
						 
						
							2014-07-08 18:28:40 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								b0af56334c 
								
							 
						 
						
							
							
								
								rsa_check_pubkey() now allows an E up to N  
							
							
							
						 
						
							2014-07-08 18:28:36 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								bc8984931c 
								
							 
						 
						
							
							
								
								Improvements to tests/Makefile when using shared library  
							
							
							
						 
						
							2014-07-08 11:32:12 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								0d844dd650 
								
							 
						 
						
							
							
								
								Add x509parse_time_future()  
							
							
							
						 
						
							2014-07-07 17:46:36 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								57ca5702fd 
								
							 
						 
						
							
							
								
								Fixed CMake symlinking on out-of-source builds  
							
							
							
						 
						
							2014-07-07 17:46:32 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								e96bfbc6bd 
								
							 
						 
						
							
							
								
								Fixed testing with out-of-source builds using cmake  
							
							
							
						 
						
							2014-07-07 17:46:30 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								c675e4bde5 
								
							 
						 
						
							
							
								
								Fix bug in RSA PKCS#1 v1.5 "reversed" operations  
							
							
							
						 
						
							2014-07-07 17:46:29 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								3cb407107d 
								
							 
						 
						
							
							
								
								Fix "check" mode warnings  
							
							
							
						 
						
							2014-07-07 16:05:06 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								91b05ac5ed 
								
							 
						 
						
							
							
								
								Replace expired test certificate  
							
							
							
						 
						
							2014-07-07 16:01:36 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								ec8f2ffe90 
								
							 
						 
						
							
							
								
								Fix bug in rnd_pseudo_rnd() test helper function  
							
							... 
							
							
							
							Only the first 4 bytes of the output were set, the rest was untouched. 
							
						 
						
							2014-07-07 16:01:13 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								26e281831e 
								
							 
						 
						
							
							
								
								Renamed test_offset to prevent clash with one in ctr_drbg.c  
							
							
							
						 
						
							2014-07-07 14:36:30 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								adace27ec9 
								
							 
						 
						
							
							
								
								Prepped for 1.2.10 release  
							
							
							
						 
						
							2013-10-04 17:07:26 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								e45574e7de 
								
							 
						 
						
							
							
								
								Prepped for 1.2.9 release  
							
							
							
						 
						
							2013-09-25 18:42:42 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								43f9799ce6 
								
							 
						 
						
							
							
								
								RSA blinding on CRT operations to counter timing attacks  
							
							
							
						 
						
							2013-09-23 11:23:31 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								f65fbee52b 
								
							 
						 
						
							
							
								
								x509_verify() now case insensitive for cn (RFC 6125 6.4)  
							
							... 
							
							
							
							(cherry picked from commit a5943858d8 
							
						 
						
							2013-09-11 13:31:55 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								1d419500b0 
								
							 
						 
						
							
							
								
								Prepared for PolarSSL release 1.2.8  
							
							
							
						 
						
							2013-06-19 11:48:04 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								db7ea6f162 
								
							 
						 
						
							
							
								
								Made x509parse PKCS#12 and PKCS#5 tests dependent on defines  
							
							
							
						 
						
							2013-06-18 16:47:59 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								14a222cef2 
								
							 
						 
						
							
							
								
								Moved PKCS#12 PBE functions to cipher / md layer where possible  
							
							... 
							
							
							
							The 3-key and 2-key Triple DES PBE functions have been replaced with a
single pkcs12_pbe() function that handles both situations (and more).
In addition this allows for some PASSWORD_MISMATCH checking 
							
						 
						
							2013-06-18 16:35:48 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								b495d3a2c7 
								
							 
						 
						
							
							
								
								x509parse_crt() and x509parse_crt_der() return X509 password related codes  
							
							... 
							
							
							
							POLARSSL_ERR_X509_PASSWORD_MISMATCH is returned instead of
POLARSSL_ERR_PEM_PASSWORD_MISMATCH and
POLARSSL_ERR_X509_PASSWORD_REQUIRED instead of
POLARSSL_ERR_PEM_PASSWORD_REQUIRED
Rationale: For PKCS#8 encrypted keys the same are returned 
							
						 
						
							2013-06-17 15:58:04 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								1fd4321ba2 
								
							 
						 
						
							
							
								
								PKCS#5 v2 PBES2 support and use in PKCS#8 encrypted certificates  
							
							... 
							
							
							
							The error code POLARSSL_ERR_X509_PASSWORD_MISMATCH is now properly
returned in case of an encryption failure in the padding. The
POLARSSL_ERR_X509_PASSWORD_REQUIRED error code is only returned for PEM
formatted private keys as for DER formatted ones it is impossible to
distinguish if a DER blob is PKCS#8 encrypted or not. 
							
						 
						
							2013-06-17 15:14:42 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								19bd297dc8 
								
							 
						 
						
							
							
								
								PKCS#5 module added. Moved PBKDF2 functionality inside and deprecated  
							
							... 
							
							
							
							old PBKDF2 module. 
							
						 
						
							2013-06-14 12:06:45 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								9691bbe9b3 
								
							 
						 
						
							
							
								
								Make sure polarssl/config.h is included at the start  
							
							
							
						 
						
							2013-06-12 16:33:17 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								cf6e95d9a8 
								
							 
						 
						
							
							
								
								Parsing of PKCS#8 encrypted private key files added and PKCS#12 basis  
							
							... 
							
							
							
							PKCS#8 encrypted key file support has been added to x509parse_key() with
support for some PCKS#12 PBE functions (pbeWithSHAAnd128BitRC4,
pbeWithSHAAnd3-KeyTripleDES-CBC and pbeWithSHAAnd2-KeyTripleDES-CBC) 
							
						 
						
							2013-06-12 13:18:15 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								65a1909dc6 
								
							 
						 
						
							
							
								
								Internally split up x509parse_key()  
							
							... 
							
							
							
							Split up x509parse_key() into a (PEM) handler function and specific
DER parser functions for the PKCS#1 (x509parse_key_pkcs1_der()) and
unencrypted PKCS#8 (x509parse_key_pkcs8_unencrypted_der()) private
key formats. 
							
						 
						
							2013-06-06 21:17:08 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								e0225e4d7f 
								
							 
						 
						
							
							
								
								Fixed const correctness issues in programs and tests  
							
							
							
						 
						
							2013-06-06 12:58:12 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								822e958bb2 
								
							 
						 
						
							
							
								
								Prepared for PolarSSL 1.2.7 release  
							
							
							
						 
						
							2013-04-13 11:56:17 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								d68703b17f 
								
							 
						 
						
							
							
								
								Split up largest test suite data files into smaller chunks  
							
							... 
							
							
							
							(cherry picked from commit 286bf3c501 
							
						 
						
							2013-04-12 13:20:30 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								90f042d4cb 
								
							 
						 
						
							
							
								
								Prepared for PolarSSL 1.2.6 release  
							
							
							
						 
						
							2013-03-11 11:38:44 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								c7a2da437e 
								
							 
						 
						
							
							
								
								Updated for PolarSSL 1.2.5  
							
							
							
						 
						
							2013-02-02 19:23:57 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								14c56a3378 
								
							 
						 
						
							
							
								
								Updated for PolarSSL 1.2.4  
							
							
							
						 
						
							2013-01-25 17:11:37 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								58ef6ec613 
								
							 
						 
						
							
							
								
								Cleaner test-memory cleanups  
							
							
							
						 
						
							2013-01-03 11:33:48 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								fb1ba781b3 
								
							 
						 
						
							
							
								
								Updated for release 1.2.3  
							
							
							
						 
						
							2012-11-26 16:28:25 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								df5069cb97 
								
							 
						 
						
							
							
								
								Updated for 1.2.2 release  
							
							
							
						 
						
							2012-11-24 12:20:19 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								1eeceaeac8 
								
							 
						 
						
							
							
								
								More expansive testing  
							
							
							
						 
						
							2012-11-23 14:25:34 +01:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								e44ec108be 
								
							 
						 
						
							
							
								
								Fixed segfault in mpi_shift_r()  
							
							... 
							
							
							
							Fixed memory leak in test_suite_mpi
Amended ChangeLog 
							
						 
						
							2012-11-18 23:15:02 +01:00