mbedtls

yuzu/mbedtls

Fork 0

mirror of https://github.com/yuzu-emu/mbedtls.git synced 2025-07-29 12:31:07 +00:00

Commit graph

Select branches

Hide pull requests

armv8_crypto_extensions

baremetal

baremetal-test

better-cf-padding-checks

config-header-check-2.7

coverity_scan

datagram_packing_1919_CI_failure_debug

dev/buffer-resizing

dev/gilles-peskine-arm/pr_3010-7

dev/gilles-peskine-arm/pr_3010-8

dev/gilles-peskine-arm/pr_4067-2

dev/gilles-peskine-arm/travis-20200724

dev/gilles-peskine-arm/travis-20200821

dev/gilles-peskine-arm/travis-arm-experiment

dev/gilles-peskine-arm/travis-windows-20200426

dev/mbedtls-2.10.0-preview

dev/mbedtls-3.0

dev/relnotes

dev/yanesca/everest_ci_testing

development

development-psa

development-psa-big-merge-test-branch

development-psa-merged-dev-8e76332

development-psa-proposed-2

development_3.0

ecp_function_level_public_pr

feature-aria-evaluation

feature-opaque-keys

feature-opaque-keys-ECDSA

feature-opaque-keys-RSA

fi_write_user_data

iotssl-1169-pem-missing-checks

iotssl-1401-record-compression

iotssl-1401-record-compression-2.1

iotssl-2299-param-valid-cmac

iotssl-2299-param-valid-md

iotssl-2495-full-config-ssl-opt-fails

iotssl-2689-psa-tls1_2-get-key-exchange

iotssl-2690-tls-prf-generic

iotssl-2691-psa-running-handshake

iotssl-2800-remove-crypto-all.sh

iotssl-2801-generate-files-with-submodule

iotssl-2885-wait-for-proxy

iotssl-580-invalid-curves-crash

iotssl-580-invalid-curves-crash-1.3

iotssl-580-invalid-curves-crash-2.1

iotssl-602-san-ip

iotssl-683-travis-failing-intermittently-1.3

iotssl-683-travis-failing-intermittently-2.1

iotssl-683-travis-failing-intermittently-tmp

iotssl-719-ssl3-non-compliance

iotssl-784-array-entry_name-too-small-2.1

jenkinsfile

lcov

master

mbedtls-1.3

mbedtls-1.4

mbedtls-2.0

mbedtls-2.1

mbedtls-2.14

mbedtls-2.15.1

mbedtls-2.16

mbedtls-2.17

mbedtls-2.18

mbedtls-2.28-aesni-shani

mbedtls-2.3

mbedtls-2.4

mbedtls-2.5

mbedtls-2.5.2

mbedtls-2.6

mbedtls-2.7

partner-workshop-17Q2

polarssl-0.10

polarssl-0.11

polarssl-0.12

polarssl-0.13

polarssl-0.14

polarssl-1.0

polarssl-1.1

polarssl-1.2

pre-vfy-callback

psa-all-sh-fixes

psa-hash-clone

reduced-snprintf-for-trusted-firmware

regularize_k_restore

restartable-ecc-unused-variable

restartable-ecc-unused-variable-2-16

travis-coverity

beta-oob-2

beta-release

feature-opaque-keys-2.7-rc1

list

mbed-alpha3

mbed-os-beta

mbedos-16.01-release

mbedos-16.03-release

mbedos-2016q1-oob1

mbedos-2016q1-oob2

mbedos-2016q1-oob3

mbedos-release-15-11

mbedos-techcon-oob2

mbedtls-1.3.10

mbedtls-1.3.11

mbedtls-1.3.12

mbedtls-1.3.13

mbedtls-1.3.14

mbedtls-1.3.15

mbedtls-1.3.16

mbedtls-1.3.17

mbedtls-1.3.18

mbedtls-1.3.19

mbedtls-1.3.19-rc1

mbedtls-1.3.20

mbedtls-1.3.21

mbedtls-1.3.21-rc1

mbedtls-1.3.22

mbedtls-1.3.22-rc1

mbedtls-1.4-dtls-preview

mbedtls-2.0.0

mbedtls-2.1.0

mbedtls-2.1.1

mbedtls-2.1.10

mbedtls-2.1.10-rc1

mbedtls-2.1.11

mbedtls-2.1.11-rc1

mbedtls-2.1.12

mbedtls-2.1.13

mbedtls-2.1.14

mbedtls-2.1.15

mbedtls-2.1.16

mbedtls-2.1.17

mbedtls-2.1.18

mbedtls-2.1.2

mbedtls-2.1.3

mbedtls-2.1.4

mbedtls-2.1.5

mbedtls-2.1.6

mbedtls-2.1.7

mbedtls-2.1.7-rc1

mbedtls-2.1.8

mbedtls-2.1.9

mbedtls-2.1.9-rc1

mbedtls-2.10.0

mbedtls-2.11.0

mbedtls-2.12.0

mbedtls-2.13.0

mbedtls-2.13.1

mbedtls-2.14.0

mbedtls-2.14.1

mbedtls-2.15.0

mbedtls-2.15.1

mbedtls-2.16.0

mbedtls-2.16.1

mbedtls-2.16.2

mbedtls-2.16.3

mbedtls-2.16.4

mbedtls-2.16.5

mbedtls-2.16.6

mbedtls-2.16.7

mbedtls-2.16.8

mbedtls-2.16.9

mbedtls-2.17.0

mbedtls-2.18.0

mbedtls-2.18.1

mbedtls-2.19.0

mbedtls-2.19.0d1

mbedtls-2.19.0d2

mbedtls-2.19.1

mbedtls-2.2.0

mbedtls-2.2.1

mbedtls-2.20.0

mbedtls-2.20.0d0

mbedtls-2.20.0d1

mbedtls-2.21.0

mbedtls-2.22.0

mbedtls-2.22.0d0

mbedtls-2.23.0

mbedtls-2.24.0

mbedtls-2.25.0

mbedtls-2.3.0

mbedtls-2.4.0

mbedtls-2.4.1

mbedtls-2.4.2

mbedtls-2.4.2-rc1

mbedtls-2.5.0

mbedtls-2.5.0-rc1

mbedtls-2.5.1

mbedtls-2.6.0

mbedtls-2.6.0-rc1

mbedtls-2.6.1

mbedtls-2.6.1-rc1

mbedtls-2.7.0

mbedtls-2.7.0-rc1

mbedtls-2.7.1

mbedtls-2.7.10

mbedtls-2.7.11

mbedtls-2.7.12

mbedtls-2.7.13

mbedtls-2.7.14

mbedtls-2.7.15

mbedtls-2.7.16

mbedtls-2.7.17

mbedtls-2.7.18

mbedtls-2.7.2

mbedtls-2.7.2-rc1

mbedtls-2.7.3

mbedtls-2.7.4

mbedtls-2.7.5

mbedtls-2.7.6

mbedtls-2.7.7

mbedtls-2.7.8

mbedtls-2.7.9

mbedtls-2.8.0

mbedtls-2.8.0-rc1

mbedtls-2.9.0

mbedtls-3.0.0p1

polarssl-0.10.0

polarssl-0.10.1

polarssl-0.11.0

polarssl-0.11.1

polarssl-0.12.0

polarssl-0.12.1

polarssl-0.13.0

polarssl-0.13.1

polarssl-0.14.0

polarssl-0.14.1

polarssl-0.14.2

polarssl-0.14.3

polarssl-0.99-pre1

polarssl-0.99-pre2

polarssl-0.99-pre3

polarssl-0.99-pre4

polarssl-0.99-pre5

polarssl-1.0.0

polarssl-1.1.0

polarssl-1.1.0-rc0

polarssl-1.1.0-rc1

polarssl-1.1.1

polarssl-1.1.2

polarssl-1.1.3

polarssl-1.1.4

polarssl-1.1.5

polarssl-1.1.6

polarssl-1.1.7

polarssl-1.1.8

polarssl-1.2.0

polarssl-1.2.0-pre1

polarssl-1.2.1

polarssl-1.2.10

polarssl-1.2.11

polarssl-1.2.12

polarssl-1.2.13

polarssl-1.2.14

polarssl-1.2.15

polarssl-1.2.16

polarssl-1.2.17

polarssl-1.2.18

polarssl-1.2.19

polarssl-1.2.2

polarssl-1.2.3

polarssl-1.2.4

polarssl-1.2.5

polarssl-1.2.6

polarssl-1.2.7

polarssl-1.2.8

polarssl-1.2.9

polarssl-1.3-alpha1

polarssl-1.3.0

polarssl-1.3.0-rc0

polarssl-1.3.1

polarssl-1.3.2

polarssl-1.3.3

polarssl-1.3.4

polarssl-1.3.5

polarssl-1.3.6

polarssl-1.3.7

polarssl-1.3.8

polarssl-1.3.9

v2.16.7

v2.16.8

v2.16.9

v2.23.0

v2.24.0

v2.25.0

v2.7.16

v2.7.17

v2.7.18

yotta-2.2.1

yotta-2.2.2

yotta-2.2.3

yotta-2.3.0

yotta-2.3.1

yotta-2.3.2

cd35803684 Changes x509_csr to x509write_csr Paul Bakker 2013-09-09 12:08:11 +0200
5f45e62afe Migrated from x509_req_name to asn1_named_data structure Paul Bakker 2013-09-09 12:02:36 +0200
c547cc992e Added generic asn1_free_named_data_list() Paul Bakker 2013-09-09 12:01:23 +0200
59ba59fa30 Generalized x509_set_extension() behaviour to asn1_store_named_data() Paul Bakker 2013-09-09 11:26:00 +0200
43aff2aec4 Moved GCM to use cipher layer instead of AES directly Paul Bakker 2013-09-09 00:10:27 +0200
f46b6955e3 Added cipher_info_from_values() to cipher layer (Search by ID+keylen+mode) Paul Bakker 2013-09-09 00:08:26 +0200
5e0efa7ef5 Added POLARSSL_MODE_ECB to the cipher layer Paul Bakker 2013-09-08 23:04:04 +0200
9f5a3c4a0a Fix possible memory error. Manuel Pégourié-Gonnard 2013-09-07 18:09:43 +0200
bfb355c33b Fix memory leak on missed session reuse Manuel Pégourié-Gonnard 2013-09-07 17:27:43 +0200
e8ea0c0421 Fix exit value on SERVERQUIT Manuel Pégourié-Gonnard 2013-09-07 17:09:14 +0200
7669f28421 Add 'memcheck' (valgrind) target to CMake Manuel Pégourié-Gonnard 2013-09-07 16:52:42 +0200
bc4b7f08ba Fix possible race in ssl_list_ciphersuites() Manuel Pégourié-Gonnard 2013-09-07 15:04:26 +0200
055ef61658 Merged SSL refactoring changing layer to use cipher layer Paul Bakker 2013-09-08 20:06:30 +0200
2397cf3ede First certificate writing test. Full server1.crt reconstruction Paul Bakker 2013-09-08 15:58:15 +0200
9c208aabc8 Use ASN1_UTC_TIME in some cases Paul Bakker 2013-09-08 15:44:31 +0200
032c34e206 Don't use DH blinding for ephemeral DH Manuel Pégourié-Gonnard 2013-09-07 13:06:27 +0200
ce6352a791 Add benchmark for fixed-DHM with blinding Manuel Pégourié-Gonnard 2013-09-07 13:05:52 +0200
1a2012459b Fix undetected errors in benchmark Manuel Pégourié-Gonnard 2013-09-07 12:27:35 +0200
337b29c334 Test and document EC blinding overhead Manuel Pégourié-Gonnard 2013-09-07 11:52:27 +0200
15162a054a Writing of X509v3 extensions supported Paul Bakker 2013-09-06 19:27:21 +0200
329def30c5 Added asn1_write_bool() Paul Bakker 2013-09-06 16:34:38 +0200
9397dcb0e8 Base X509 certificate writing functinality Paul Bakker 2013-09-06 09:55:26 +0200
7da0a38d43 Rm some includes that are now useless Manuel Pégourié-Gonnard 2013-09-05 16:56:03 +0200
d13a4099dd GCM ciphersuites using only cipher layer Manuel Pégourié-Gonnard 2013-09-05 16:10:41 +0200
b8bd593741 Restrict cipher_update() for GCM Manuel Pégourié-Gonnard 2013-09-05 13:38:15 +0200
226d5da1fc GCM ciphersuites partially using cipher layer Manuel Pégourié-Gonnard 2013-09-05 13:19:22 +0200
1af50a240b Cipher: test multiple cycles Manuel Pégourié-Gonnard 2013-09-05 10:30:32 +0200
cac5f7d737 Update benchmarks for new prototypes Manuel Pégourié-Gonnard 2013-09-04 17:19:18 +0200
ed8a02bfae Simplify DH blinding a bit Manuel Pégourié-Gonnard 2013-09-04 16:39:03 +0200
45125bc160 Changes to handle merged enhancements Paul Bakker 2013-09-04 16:47:11 +0200
143b5028a5 Implement DH blinding Manuel Pégourié-Gonnard 2013-09-04 16:29:59 +0200
c049955b32 Merged new cipher layer enhancements Paul Bakker 2013-09-04 16:12:55 +0200
2d627649bf Change dhm_calc_secret() prototype Manuel Pégourié-Gonnard 2013-09-04 14:22:07 +0200
ce4112538c Fix RC4 key length in cipher Manuel Pégourié-Gonnard 2013-09-04 12:28:37 +0200
83f3fc0d77 Add AES-192-GCM Manuel Pégourié-Gonnard 2013-09-04 12:07:24 +0200
f7ce67f0d2 Add tests for gcm via cipher Manuel Pégourié-Gonnard 2013-09-03 20:17:35 +0200
8eccab5077 Add test vectors to the cipher test suite Manuel Pégourié-Gonnard 2013-09-03 18:31:25 +0200
43a4780b03 Ommit AEAD functions if GCM not defined Manuel Pégourié-Gonnard 2013-09-03 16:35:53 +0200
aa9ffc5e98 Split tag handling out of cipher_finish() Manuel Pégourié-Gonnard 2013-09-03 16:19:22 +0200
2adc40c346 Split cipher_update_ad() out or cipher_reset() Manuel Pégourié-Gonnard 2013-09-03 13:54:12 +0200
a235b5b5bd Fix iv_len interface. Manuel Pégourié-Gonnard 2013-09-03 13:25:52 +0200
9c853b910c Split cipher_set_iv() out of cipher_reset() Manuel Pégourié-Gonnard 2013-09-03 13:04:44 +0200
07de4b1d08 Implement randomized coordinates in ecp_mul() Manuel Pégourié-Gonnard 2013-09-02 16:26:04 +0200
c75c56fef7 Fix off-by-one error in ecdsa_write_signature() Manuel Pégourié-Gonnard 2013-09-02 16:25:37 +0200
ea6ad3f6e5 ARC4 ciphersuites using only cipher layer Paul Bakker 2013-09-02 14:57:01 +0200
e09d2f8261 Change ecp_mul() prototype to allow randomization Manuel Pégourié-Gonnard 2013-09-02 14:29:09 +0200
eb851f6cd5 Merged current cipher enhancements for ARC4 and AES-GCM Paul Bakker 2013-09-01 15:49:38 +0200
9241be7ac5 Change cipher prototypes for GCM Manuel Pégourié-Gonnard 2013-08-31 17:31:03 +0200
cca5b81d18 All CBC ciphersuites via the cipher layer Paul Bakker 2013-08-31 17:40:26 +0200
da02a7f45e AES_CBC ciphersuites now run purely via cipher layer Paul Bakker 2013-08-31 17:25:14 +0200
20d6a17af9 Make GCM tag check "constant-time" Manuel Pégourié-Gonnard 2013-08-31 16:37:46 +0200
07f8fa5a69 GCM in the cipher layer, step 1 Manuel Pégourié-Gonnard 2013-08-30 18:34:08 +0200
b5e85885de Handle NULL as a stream cipher for more uniformity Manuel Pégourié-Gonnard 2013-08-28 16:36:14 +0200
37e230c022 Add arc4 support in the cipher layer Manuel Pégourié-Gonnard 2013-08-28 13:50:42 +0200
f451bac000 Blinding RSA only active when f_rng is provided Paul Bakker 2013-08-30 15:37:02 +0200
48377d9834 Configuration option to enable/disable POLARSSL_PKCS1_V15 operations Paul Bakker 2013-08-30 12:06:24 +0200
aab30c130c RSA blinding added for CRT operations Paul Bakker 2013-08-30 11:00:25 +0200
548957dd49 Refactored RSA to have random generator in every RSA operation Paul Bakker 2013-08-30 10:30:02 +0200
ca174fef80 Merged refactored x509write module into development Paul Bakker 2013-08-28 16:31:30 +0200
9659dae046 Some extra code defined out Paul Bakker 2013-08-28 16:21:34 +0200
c852a68b96 More robust selection of ctx_enc size Manuel Pégourié-Gonnard 2013-08-20 23:03:51 +0200
cffe4a65bd Move "constant" code outside a loop Manuel Pégourié-Gonnard 2013-08-23 16:47:30 +0200
c8676784ff Amended ChangeLog for ECDSA-ciphersuites Paul Bakker 2013-08-28 12:15:11 +0200
577e006c2f Merged ECDSA-based key-exchange and ciphersuites into development Paul Bakker 2013-08-28 11:57:20 +0200
a0f07478ee Rm redundant dependencies in test files Manuel Pégourié-Gonnard 2013-08-23 16:35:32 +0200
70064fd721 compat.sh: report results Manuel Pégourié-Gonnard 2013-08-27 22:00:47 +0200
7ebaf376f9 Add ECDSA suites to compat.sh Manuel Pégourié-Gonnard 2013-08-27 21:03:33 +0200
dfc8d5accc Small adjustments in compat.sh Manuel Pégourié-Gonnard 2013-08-27 20:48:40 +0200
9791a4043e Refactor compat.sh to prepare for ECDSA Manuel Pégourié-Gonnard 2013-08-27 19:57:15 +0200
57a8783364 Make more room for ciphersuites Manuel Pégourié-Gonnard 2013-08-27 16:13:54 +0200
acc7505a35 Temporary fix for size of cipher contexts Manuel Pégourié-Gonnard 2013-08-27 15:48:03 +0200
db77175e99 Make ecdsa_verify() return value more explicit Manuel Pégourié-Gonnard 2013-08-27 15:11:23 +0200
9cc6f5c61b Fix some hash debugging Manuel Pégourié-Gonnard 2013-08-27 14:29:44 +0200
4bd1284f59 Fix ECDSA hash selection bug with TLS 1.0 and 1.1 Manuel Pégourié-Gonnard 2013-08-27 13:31:28 +0200
9c9812a299 Fix bug introduced in dbf69cf Manuel Pégourié-Gonnard 2013-08-23 12:18:46 +0200
df0142bd17 Fix some dependencies in tests Manuel Pégourié-Gonnard 2013-08-22 18:29:07 +0200
2fb15f694c Un-rename ssl_set_own_cert_alt() Manuel Pégourié-Gonnard 2013-08-22 17:54:20 +0200
c6b6803dcf Add forgotten "inline" keyword Manuel Pégourié-Gonnard 2013-08-22 17:36:45 +0200
e511ffca50 Allow compiling without RSA or DH Manuel Pégourié-Gonnard 2013-08-22 17:33:21 +0200
ee98f8e7a3 Add EC certificates in certs.c Manuel Pégourié-Gonnard 2013-08-22 16:44:58 +0200
f484282e96 Rm a few unneeded tests Manuel Pégourié-Gonnard 2013-08-22 16:03:41 +0200
d11eb7c789 Fix sig_alg extension on client. Manuel Pégourié-Gonnard 2013-08-22 15:57:15 +0200
bfe32efb9b pk_{sign,verify}() now accept hash_len = 0 Manuel Pégourié-Gonnard 2013-08-22 14:55:30 +0200
a20c58c6f1 Use convert functions for SSL_SIG_* and SSL_HASH_* Manuel Pégourié-Gonnard 2013-08-22 13:52:48 +0200
51be559c53 Fix PKCS#11 deps: now goes through PK Manuel Pégourié-Gonnard 2013-08-22 13:35:53 +0200
c40b4c3708 Add configuration item for the PK module Manuel Pégourié-Gonnard 2013-08-22 13:29:31 +0200
0d42049440 Merge code for RSA and ECDSA in SSL Manuel Pégourié-Gonnard 2013-08-21 16:14:26 +0200
070cc7fd21 Use the new PK RSA-alt interface Manuel Pégourié-Gonnard 2013-08-21 15:09:31 +0200
12c1ff0ecb Add RSA-alt to the PK layer Manuel Pégourié-Gonnard 2013-08-21 12:28:31 +0200
a2d3f22007 Add and use pk_encrypt(), pk_decrypt() Manuel Pégourié-Gonnard 2013-08-21 11:51:08 +0200
8df2769178 Introduce pk_sign() and use it in ssl Manuel Pégourié-Gonnard 2013-08-21 10:34:38 +0200
583b608401 Fix some return values Manuel Pégourié-Gonnard 2013-08-20 16:58:13 +0200
76c18a1a77 Add client support for ECDSA client auth Manuel Pégourié-Gonnard 2013-08-20 16:50:40 +0200
abae74c4a0 Add server support for ECDHE_ECDSA key exchange Manuel Pégourié-Gonnard 2013-08-20 13:53:44 +0200
ac75523593 Adapt ssl_set_own_cert() to generic keys Manuel Pégourié-Gonnard 2013-08-19 14:10:16 +0200
09edda888e Check key type against selected key exchange Manuel Pégourié-Gonnard 2013-08-19 13:50:33 +0200
20846b1a50 Add client support for ECDHE_ECDSA key exchange Manuel Pégourié-Gonnard 2013-08-19 12:32:12 +0200
efebb0a394 Refactor ssl_parse_server_key_exchange() a bit Manuel Pégourié-Gonnard 2013-08-19 12:06:38 +0200
32ea60a127 Declare ECDSA key exchange and ciphersuites Manuel Pégourié-Gonnard 2013-08-17 17:39:04 +0200
0b03200e96 Add server-side support for ECDSA client auth Manuel Pégourié-Gonnard 2013-08-17 13:01:41 +0200