Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								cd35803684 
								
							 
						 
						
							
							
								
								Changes x509_csr to x509write_csr  
							
							
							
						 
						
							2013-09-09 12:38:45 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								15162a054a 
								
							 
						 
						
							
							
								
								Writing of X509v3 extensions supported  
							
							... 
							
							
							
							Standard extensions already in: basicConstraints, subjectKeyIdentifier
and authorityKeyIdentifier 
							
						 
						
							2013-09-06 19:27:21 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								9397dcb0e8 
								
							 
						 
						
							
							
								
								Base X509 certificate writing functinality  
							
							
							
						 
						
							2013-09-06 10:36:28 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								548957dd49 
								
							 
						 
						
							
							
								
								Refactored RSA to have random generator in every RSA operation  
							
							... 
							
							
							
							Primarily so that rsa_private() receives an RNG for blinding purposes. 
							
						 
						
							2013-08-30 10:30:02 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								ca174fef80 
								
							 
						 
						
							
							
								
								Merged refactored x509write module into development  
							
							
							
						 
						
							2013-08-28 16:32:51 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								577e006c2f 
								
							 
						 
						
							
							
								
								Merged ECDSA-based key-exchange and ciphersuites into development  
							
							... 
							
							
							
							Conflicts:
	include/polarssl/config.h
	library/ssl_cli.c
	library/ssl_srv.c
	library/ssl_tls.c 
							
						 
						
							2013-08-28 11:58:40 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								ac75523593 
								
							 
						 
						
							
							
								
								Adapt ssl_set_own_cert() to generic keys  
							
							
							
						 
						
							2013-08-27 22:21:20 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								0be444a8b1 
								
							 
						 
						
							
							
								
								Ability to disable server_name extension (RFC 6066)  
							
							
							
						 
						
							2013-08-27 21:55:01 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								f3df61ad10 
								
							 
						 
						
							
							
								
								Generalized PEM writing in x509write module for RSA keys as well  
							
							
							
						 
						
							2013-08-26 17:37:18 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								135f1e9c70 
								
							 
						 
						
							
							
								
								Move PEM conversion of DER data to x509write module  
							
							
							
						 
						
							2013-08-26 17:37:18 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								57be6e22cf 
								
							 
						 
						
							
							
								
								cert_req now supports key_usage and ns_cert_type command line options  
							
							
							
						 
						
							2013-08-26 17:37:18 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								38d1eba3b5 
								
							 
						 
						
							
							
								
								Move verify_result from ssl_context to session  
							
							
							
						 
						
							2013-08-26 14:26:02 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								8adf13bd92 
								
							 
						 
						
							
							
								
								Added pem2der utility application  
							
							
							
						 
						
							2013-08-26 10:38:54 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								82e2945ed2 
								
							 
						 
						
							
							
								
								Changed naming and prototype convention for x509write functions  
							
							... 
							
							
							
							CSR writing functions now start with x509write_csr_*()
DER writing functions now have the context at the start instead of the
end conforming to other modules. 
							
						 
						
							2013-08-25 11:01:31 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								384d4351ce 
								
							 
						 
						
							
							
								
								Added cert_req to CMakeLists.txt  
							
							
							
						 
						
							2013-08-25 10:51:18 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								8eabfc1461 
								
							 
						 
						
							
							
								
								Rewrote x509 certificate request writing to use structure for storing  
							
							
							
						 
						
							2013-08-25 10:51:18 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								7e56de1671 
								
							 
						 
						
							
							
								
								Adapt ssl_cert_test to changes in PK  
							
							
							
						 
						
							2013-08-20 20:46:04 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								bf3109fd41 
								
							 
						 
						
							
							
								
								Add forgotten ecdsa_free() in ecdsa example  
							
							
							
						 
						
							2013-08-20 20:08:29 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								e09631b7c4 
								
							 
						 
						
							
							
								
								Create ecp_group_copy() and use it  
							
							
							
						 
						
							2013-08-20 20:08:29 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								aa431613b3 
								
							 
						 
						
							
							
								
								Add ecdsa example program  
							
							
							
						 
						
							2013-08-20 20:08:29 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								1f2bc6238b 
								
							 
						 
						
							
							
								
								Made support for the truncated_hmac extension configurable  
							
							
							
						 
						
							2013-08-15 13:45:55 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								05decb24c3 
								
							 
						 
						
							
							
								
								Made support for the max_fragment_length extension configurable  
							
							
							
						 
						
							2013-08-15 13:33:48 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								a503a63b85 
								
							 
						 
						
							
							
								
								Made session tickets support configurable from config.h  
							
							
							
						 
						
							2013-08-14 14:26:03 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								aa0d4d1aff 
								
							 
						 
						
							
							
								
								Add ssl_set_session_tickets()  
							
							
							
						 
						
							2013-08-14 14:08:06 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								06650f6a37 
								
							 
						 
						
							
							
								
								Fix reusing session more than once  
							
							
							
						 
						
							2013-08-14 14:08:06 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								cf2e97eae2 
								
							 
						 
						
							
							
								
								ssl_client2: allow reconnecting twice  
							
							
							
						 
						
							2013-08-14 14:08:06 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								aaa1eab55a 
								
							 
						 
						
							
							
								
								Add an option to reconnect in ssl_client2  
							
							... 
							
							
							
							Purpose: test resuming sessions. 
							
						 
						
							2013-08-14 14:08:04 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								66c4810ffe 
								
							 
						 
						
							
							
								
								Better handling of ciphersuite version range and forced version in  
							
							... 
							
							
							
							ssl_client2 
							
						 
						
							2013-07-26 14:05:32 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								6c85279719 
								
							 
						 
						
							
							
								
								Newline fixes in help text for ssl_client2 / ssl_server2  
							
							
							
						 
						
							2013-07-26 14:02:13 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								dbd79ca617 
								
							 
						 
						
							
							
								
								ssl_client2 and ssl_server2 now exit with 1 on errors (shell  
							
							... 
							
							
							
							limitations) 
							
						 
						
							2013-07-24 16:28:35 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								8c1ede655f 
								
							 
						 
						
							
							
								
								Changed prototype for ssl_set_truncated_hmac() to allow disabling  
							
							
							
						 
						
							2013-07-19 14:51:47 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								e980a994f0 
								
							 
						 
						
							
							
								
								Add interface for truncated hmac  
							
							
							
						 
						
							2013-07-19 14:51:47 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								5b55b79021 
								
							 
						 
						
							
							
								
								Better handling of ciphersuite version range and forced version in  
							
							... 
							
							
							
							ssl_server2 
							
						 
						
							2013-07-19 14:51:31 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								e048b67d0a 
								
							 
						 
						
							
							
								
								Misc minor fixes  
							
							... 
							
							
							
							- avoid "multi-line comment" warning in ssl_client2.c
- rm useless initialisation of mfl_code in ssl_init()
- const-correctness of ssl_parse_*_ext()
- a code formating issue 
							
						 
						
							2013-07-19 12:56:08 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								0c017a55e0 
								
							 
						 
						
							
							
								
								Add max_frag_len option in ssl_server2  
							
							... 
							
							
							
							Also reformat code and output more information in ssl_client2 
							
						 
						
							2013-07-18 14:07:36 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								8e714d7aca 
								
							 
						 
						
							
							
								
								Modified LONG_RESPONSE and comments in ssl_server2  
							
							
							
						 
						
							2013-07-18 11:23:48 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								bd7ce63115 
								
							 
						 
						
							
							
								
								Adapt ssl_server2 to test sending long messages  
							
							
							
						 
						
							2013-07-18 11:23:48 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								787b658bb3 
								
							 
						 
						
							
							
								
								Implement max_frag_len write restriction  
							
							
							
						 
						
							2013-07-18 11:18:14 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								0df6b1f068 
								
							 
						 
						
							
							
								
								ssl_client2: add max_frag_len option  
							
							
							
						 
						
							2013-07-18 11:18:13 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								be50680a8c 
								
							 
						 
						
							
							
								
								Fix use of x509_cert.rsa in programs  
							
							
							
						 
						
							2013-07-17 15:59:43 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								82024bf7b9 
								
							 
						 
						
							
							
								
								ssl_server2 now uses alloc_buffer if present and can be 'SERVERQUIT'  
							
							
							
						 
						
							2013-07-16 17:48:58 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								ba4878aa64 
								
							 
						 
						
							
							
								
								Rename x509parse_key & co with _rsa suffix  
							
							
							
						 
						
							2013-07-08 15:31:18 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								44618dd798 
								
							 
						 
						
							
							
								
								SSL Test and Benchmark now handle missing POLARSSL_TIMING_C  
							
							
							
						 
						
							2013-07-04 11:30:32 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								fa9b10050b 
								
							 
						 
						
							
							
								
								Also compiles / runs without time-based functions in OS  
							
							... 
							
							
							
							Can now run without need of time() / localtime() and gettimeofday() 
							
						 
						
							2013-07-03 17:22:32 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								6e339b52e8 
								
							 
						 
						
							
							
								
								Memory-allocation abstraction layer and buffer-based allocator added  
							
							
							
						 
						
							2013-07-03 17:22:31 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								d2681d82e2 
								
							 
						 
						
							
							
								
								Renamed sha2.{c,h} to sha256.{c,h} and sha4.{c,h} to sha512.{c,h}  
							
							
							
						 
						
							2013-06-30 14:49:12 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								9e36f0475f 
								
							 
						 
						
							
							
								
								SHA2 renamed to SHA256, SHA4 renamed to SHA512 and functions accordingly  
							
							... 
							
							
							
							The SHA4 name was not clear with regards to the new SHA-3 standard. So
SHA2 and SHA4 have been renamed to better represent what they are:
SHA256 and SHA512 modules. 
							
						 
						
							2013-06-30 14:34:05 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								62534dd1d8 
								
							 
						 
						
							
							
								
								programs/util/strerror now handles decimal and hexidecimal input  
							
							
							
						 
						
							2013-06-30 12:45:07 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								03a8a79516 
								
							 
						 
						
							
							
								
								Programs adapted to use polarssl_strerror() instead of error_strerror()  
							
							
							
						 
						
							2013-06-30 12:18:08 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								5dc6b5fb05 
								
							 
						 
						
							
							
								
								Made supported curves configurable  
							
							
							
						 
						
							2013-06-29 23:26:34 +02:00