mbedtls

yuzu/mbedtls

Fork 0

mirror of https://github.com/yuzu-emu/mbedtls.git synced 2025-07-29 02:11:11 +00:00

Commit graph

Select branches

Hide pull requests

armv8_crypto_extensions

baremetal

baremetal-test

better-cf-padding-checks

config-header-check-2.7

coverity_scan

datagram_packing_1919_CI_failure_debug

dev/buffer-resizing

dev/gilles-peskine-arm/pr_3010-7

dev/gilles-peskine-arm/pr_3010-8

dev/gilles-peskine-arm/pr_4067-2

dev/gilles-peskine-arm/travis-20200724

dev/gilles-peskine-arm/travis-20200821

dev/gilles-peskine-arm/travis-arm-experiment

dev/gilles-peskine-arm/travis-windows-20200426

dev/mbedtls-2.10.0-preview

dev/mbedtls-3.0

dev/relnotes

dev/yanesca/everest_ci_testing

development

development-psa

development-psa-big-merge-test-branch

development-psa-merged-dev-8e76332

development-psa-proposed-2

development_3.0

ecp_function_level_public_pr

feature-aria-evaluation

feature-opaque-keys

feature-opaque-keys-ECDSA

feature-opaque-keys-RSA

fi_write_user_data

iotssl-1169-pem-missing-checks

iotssl-1401-record-compression

iotssl-1401-record-compression-2.1

iotssl-2299-param-valid-cmac

iotssl-2299-param-valid-md

iotssl-2495-full-config-ssl-opt-fails

iotssl-2689-psa-tls1_2-get-key-exchange

iotssl-2690-tls-prf-generic

iotssl-2691-psa-running-handshake

iotssl-2800-remove-crypto-all.sh

iotssl-2801-generate-files-with-submodule

iotssl-2885-wait-for-proxy

iotssl-580-invalid-curves-crash

iotssl-580-invalid-curves-crash-1.3

iotssl-580-invalid-curves-crash-2.1

iotssl-602-san-ip

iotssl-683-travis-failing-intermittently-1.3

iotssl-683-travis-failing-intermittently-2.1

iotssl-683-travis-failing-intermittently-tmp

iotssl-719-ssl3-non-compliance

iotssl-784-array-entry_name-too-small-2.1

jenkinsfile

lcov

master

mbedtls-1.3

mbedtls-1.4

mbedtls-2.0

mbedtls-2.1

mbedtls-2.14

mbedtls-2.15.1

mbedtls-2.16

mbedtls-2.17

mbedtls-2.18

mbedtls-2.28-aesni-shani

mbedtls-2.3

mbedtls-2.4

mbedtls-2.5

mbedtls-2.5.2

mbedtls-2.6

mbedtls-2.7

partner-workshop-17Q2

polarssl-0.10

polarssl-0.11

polarssl-0.12

polarssl-0.13

polarssl-0.14

polarssl-1.0

polarssl-1.1

polarssl-1.2

pre-vfy-callback

psa-all-sh-fixes

psa-hash-clone

reduced-snprintf-for-trusted-firmware

regularize_k_restore

restartable-ecc-unused-variable

restartable-ecc-unused-variable-2-16

travis-coverity

beta-oob-2

beta-release

feature-opaque-keys-2.7-rc1

list

mbed-alpha3

mbed-os-beta

mbedos-16.01-release

mbedos-16.03-release

mbedos-2016q1-oob1

mbedos-2016q1-oob2

mbedos-2016q1-oob3

mbedos-release-15-11

mbedos-techcon-oob2

mbedtls-1.3.10

mbedtls-1.3.11

mbedtls-1.3.12

mbedtls-1.3.13

mbedtls-1.3.14

mbedtls-1.3.15

mbedtls-1.3.16

mbedtls-1.3.17

mbedtls-1.3.18

mbedtls-1.3.19

mbedtls-1.3.19-rc1

mbedtls-1.3.20

mbedtls-1.3.21

mbedtls-1.3.21-rc1

mbedtls-1.3.22

mbedtls-1.3.22-rc1

mbedtls-1.4-dtls-preview

mbedtls-2.0.0

mbedtls-2.1.0

mbedtls-2.1.1

mbedtls-2.1.10

mbedtls-2.1.10-rc1

mbedtls-2.1.11

mbedtls-2.1.11-rc1

mbedtls-2.1.12

mbedtls-2.1.13

mbedtls-2.1.14

mbedtls-2.1.15

mbedtls-2.1.16

mbedtls-2.1.17

mbedtls-2.1.18

mbedtls-2.1.2

mbedtls-2.1.3

mbedtls-2.1.4

mbedtls-2.1.5

mbedtls-2.1.6

mbedtls-2.1.7

mbedtls-2.1.7-rc1

mbedtls-2.1.8

mbedtls-2.1.9

mbedtls-2.1.9-rc1

mbedtls-2.10.0

mbedtls-2.11.0

mbedtls-2.12.0

mbedtls-2.13.0

mbedtls-2.13.1

mbedtls-2.14.0

mbedtls-2.14.1

mbedtls-2.15.0

mbedtls-2.15.1

mbedtls-2.16.0

mbedtls-2.16.1

mbedtls-2.16.2

mbedtls-2.16.3

mbedtls-2.16.4

mbedtls-2.16.5

mbedtls-2.16.6

mbedtls-2.16.7

mbedtls-2.16.8

mbedtls-2.16.9

mbedtls-2.17.0

mbedtls-2.18.0

mbedtls-2.18.1

mbedtls-2.19.0

mbedtls-2.19.0d1

mbedtls-2.19.0d2

mbedtls-2.19.1

mbedtls-2.2.0

mbedtls-2.2.1

mbedtls-2.20.0

mbedtls-2.20.0d0

mbedtls-2.20.0d1

mbedtls-2.21.0

mbedtls-2.22.0

mbedtls-2.22.0d0

mbedtls-2.23.0

mbedtls-2.24.0

mbedtls-2.25.0

mbedtls-2.3.0

mbedtls-2.4.0

mbedtls-2.4.1

mbedtls-2.4.2

mbedtls-2.4.2-rc1

mbedtls-2.5.0

mbedtls-2.5.0-rc1

mbedtls-2.5.1

mbedtls-2.6.0

mbedtls-2.6.0-rc1

mbedtls-2.6.1

mbedtls-2.6.1-rc1

mbedtls-2.7.0

mbedtls-2.7.0-rc1

mbedtls-2.7.1

mbedtls-2.7.10

mbedtls-2.7.11

mbedtls-2.7.12

mbedtls-2.7.13

mbedtls-2.7.14

mbedtls-2.7.15

mbedtls-2.7.16

mbedtls-2.7.17

mbedtls-2.7.18

mbedtls-2.7.2

mbedtls-2.7.2-rc1

mbedtls-2.7.3

mbedtls-2.7.4

mbedtls-2.7.5

mbedtls-2.7.6

mbedtls-2.7.7

mbedtls-2.7.8

mbedtls-2.7.9

mbedtls-2.8.0

mbedtls-2.8.0-rc1

mbedtls-2.9.0

mbedtls-3.0.0p1

polarssl-0.10.0

polarssl-0.10.1

polarssl-0.11.0

polarssl-0.11.1

polarssl-0.12.0

polarssl-0.12.1

polarssl-0.13.0

polarssl-0.13.1

polarssl-0.14.0

polarssl-0.14.1

polarssl-0.14.2

polarssl-0.14.3

polarssl-0.99-pre1

polarssl-0.99-pre2

polarssl-0.99-pre3

polarssl-0.99-pre4

polarssl-0.99-pre5

polarssl-1.0.0

polarssl-1.1.0

polarssl-1.1.0-rc0

polarssl-1.1.0-rc1

polarssl-1.1.1

polarssl-1.1.2

polarssl-1.1.3

polarssl-1.1.4

polarssl-1.1.5

polarssl-1.1.6

polarssl-1.1.7

polarssl-1.1.8

polarssl-1.2.0

polarssl-1.2.0-pre1

polarssl-1.2.1

polarssl-1.2.10

polarssl-1.2.11

polarssl-1.2.12

polarssl-1.2.13

polarssl-1.2.14

polarssl-1.2.15

polarssl-1.2.16

polarssl-1.2.17

polarssl-1.2.18

polarssl-1.2.19

polarssl-1.2.2

polarssl-1.2.3

polarssl-1.2.4

polarssl-1.2.5

polarssl-1.2.6

polarssl-1.2.7

polarssl-1.2.8

polarssl-1.2.9

polarssl-1.3-alpha1

polarssl-1.3.0

polarssl-1.3.0-rc0

polarssl-1.3.1

polarssl-1.3.2

polarssl-1.3.3

polarssl-1.3.4

polarssl-1.3.5

polarssl-1.3.6

polarssl-1.3.7

polarssl-1.3.8

polarssl-1.3.9

v2.16.7

v2.16.8

v2.16.9

v2.23.0

v2.24.0

v2.25.0

v2.7.16

v2.7.17

v2.7.18

yotta-2.2.1

yotta-2.2.2

yotta-2.2.3

yotta-2.3.0

yotta-2.3.1

yotta-2.3.2

51e73135ec Fixed expected test result case for unknown padding modes Paul Bakker 2013-08-15 11:41:39 +0200
f0e39acb58 Fixed unitialized n when resuming a session Paul Bakker 2013-08-15 11:40:48 +0200
5994adc749 Merge branch 'session_tickets' into development Paul Bakker 2013-08-14 14:27:12 +0200
936539ad4b Updated Changelog to reflect addition of session tickets Paul Bakker 2013-08-14 13:49:20 +0200
a503a63b85 Made session tickets support configurable from config.h Paul Bakker 2013-08-14 13:48:06 +0200
56dc9e8bba Authenticate session tickets. Manuel Pégourié-Gonnard 2013-08-03 17:16:31 +0200
990c51a557 Encrypt session tickets Manuel Pégourié-Gonnard 2013-08-03 15:37:58 +0200
779e42982c Start adding ticket keys (only key_name for now) Manuel Pégourié-Gonnard 2013-08-03 13:50:48 +0200
aa0d4d1aff Add ssl_set_session_tickets() Manuel Pégourié-Gonnard 2013-08-03 13:02:31 +0200
306827e3bc Prepare ticket structure for securing Manuel Pégourié-Gonnard 2013-08-02 18:05:14 +0200
06650f6a37 Fix reusing session more than once Manuel Pégourié-Gonnard 2013-08-02 15:34:52 +0200
cf2e97eae2 ssl_client2: allow reconnecting twice Manuel Pégourié-Gonnard 2013-08-02 15:04:36 +0200
593058e35e Don't renew ticket when the current one is OK Manuel Pégourié-Gonnard 2013-08-02 14:55:46 +0200
c086cce3d3 Don't cache empty session ID nor resumed session Manuel Pégourié-Gonnard 2013-08-02 14:13:02 +0200
7cd5924cec Rework NewSessionTicket handling in state machine Manuel Pégourié-Gonnard 2013-08-02 13:24:41 +0200
3ffa3db80b Fix server session ID handling with ticket Manuel Pégourié-Gonnard 2013-08-02 11:59:05 +0200
72882b2079 Relax limit on ClientHello size Manuel Pégourié-Gonnard 2013-08-02 13:36:00 +0200
609bc81a76 ssl_srv: read & write ticket, unsecure for now Manuel Pégourié-Gonnard 2013-08-01 15:08:40 +0200
94f6a79cde Auxiliary functions to (de)serialize ssl_session Manuel Pégourié-Gonnard 2013-08-01 14:33:49 +0200
7a358b8580 ssl_srv: write & parse session ticket ext & msg Manuel Pégourié-Gonnard 2013-08-01 11:47:56 +0200
6377e41ef5 Complete client support for session tickets Manuel Pégourié-Gonnard 2013-07-31 16:31:33 +0200
a5cc6025e7 Parse NewSessionTicket message Manuel Pégourié-Gonnard 2013-07-31 12:58:16 +0200
60182ef989 ssl_cli: write & parse session ticket extension Manuel Pégourié-Gonnard 2013-08-02 14:44:54 +0200
75d440192c Introduce ticket field in session structure Manuel Pégourié-Gonnard 2013-08-02 14:44:04 +0200
5f280cc6cf Implement saving peer cert as part of session. Manuel Pégourié-Gonnard 2013-07-30 16:58:14 +0200
aaa1eab55a Add an option to reconnect in ssl_client2 Manuel Pégourié-Gonnard 2013-07-30 13:43:43 +0200
747180391d Add ssl_get_session() to save session on client Manuel Pégourié-Gonnard 2013-07-30 12:41:56 +0200
a8342398c8 Merge branch 'padding' into development Paul Bakker 2013-08-14 14:03:59 +0200
da4d1c35d1 Updated Changelog to reflect feature addition Paul Bakker 2013-08-14 12:24:34 +0200
48e93c84b7 Made padding modes configurable from config.h Paul Bakker 2013-08-14 12:21:18 +0200
1a45d91cf2 Restructured cipher_set_padding_mode() to use switch statement Paul Bakker 2013-08-14 12:04:26 +0200
ebdc413f44 Add 'no padding' mode Manuel Pégourié-Gonnard 2013-07-26 16:50:44 +0200
0e7d2c0f95 Add zero padding Manuel Pégourié-Gonnard 2013-07-26 16:05:14 +0200
8d4291b52a Add zeros-and-length (ANSI X.923) padding Manuel Pégourié-Gonnard 2013-07-26 14:55:18 +0200
679f9e90ad Add one-and-zeros (ISO/IEC 7816-4) padding Manuel Pégourié-Gonnard 2013-07-26 12:46:02 +0200
6c9789932e Adapt cipher tests to configurable padding Manuel Pégourié-Gonnard 2013-07-26 13:20:42 +0200
b7d24bc7ca Fix bug in get_pkcs_padding(): cannot be 0-length Manuel Pégourié-Gonnard 2013-07-26 10:58:48 +0200
a640849b55 Add tests for get_padding() (PKCS#7) Manuel Pégourié-Gonnard 2013-07-26 10:55:02 +0200
725680ffd2 Make cipher tests less dependant on padding size Manuel Pégourié-Gonnard 2013-07-25 15:26:54 +0200
ac56a1aec4 Make cipher_set_padding() actually work Manuel Pégourié-Gonnard 2013-07-25 12:31:10 +0200
d5fdcaf9e5 Add cipher_set_padding() (no effect yet) Manuel Pégourié-Gonnard 2013-07-24 18:05:00 +0200
0f2f0bfc87 CAMELLIA-based PSK and DHE-PSK ciphersuites added Paul Bakker 2013-07-26 15:03:31 +0200
b548d773b3 Fixed memory leak in ecdh_compute_shared() in case of error Paul Bakker 2013-07-26 14:21:34 +0200
cca998a4c5 Fixed memory leak in ecdsa_sign() / ecdsa_verify() in case of error Paul Bakker 2013-07-26 14:20:53 +0200
1e6a175362 Support for AIX header locations in net.c module Paul Bakker 2013-07-26 14:10:22 +0200
66c4810ffe Better handling of ciphersuite version range and forced version in ssl_client2 Paul Bakker 2013-07-26 14:05:32 +0200
6c85279719 Newline fixes in help text for ssl_client2 / ssl_server2 Paul Bakker 2013-07-26 14:02:13 +0200
52cf16caeb Fixed multiple use of GCM-context bug due to split-up of GCM functions Paul Bakker 2013-07-26 13:55:38 +0200
d6f41c5bcd Fixed size of ctx_enc / ctx_dec in ssl for gcm_context size Paul Bakker 2013-07-25 17:01:54 +0200
524691c0a0 Added --modes option to tests/compat.sh Paul Bakker 2013-07-25 17:01:20 +0200
f16db18c55 Fixed header file comments on ciphersuites Paul Bakker 2013-07-25 11:30:31 +0200
d9ca94a677 Updated merged pk.c and x509parse.c changes with new memory allocation functions Paul Bakker 2013-07-25 11:25:09 +0200
dbd79ca617 ssl_client2 and ssl_server2 now exit with 1 on errors (shell limitations) Paul Bakker 2013-07-24 16:28:35 +0200
f85778efb0 Updated Changelog for EC Key / Cert and RFC 6066 extensions Paul Bakker 2013-07-19 14:55:25 +0200
872c29b705 Merge branch 'truncated-hmac' into development Paul Bakker 2013-07-19 14:52:07 +0200
8c1ede655f Changed prototype for ssl_set_truncated_hmac() to allow disabling Paul Bakker 2013-07-19 14:14:37 +0200
277f7f23e2 Implement hmac truncation Manuel Pégourié-Gonnard 2013-07-19 12:19:21 +0200
57c2852807 Added truncated hmac negociation (without effect) Manuel Pégourié-Gonnard 2013-07-19 11:41:43 +0200
e980a994f0 Add interface for truncated hmac Manuel Pégourié-Gonnard 2013-07-19 11:08:52 +0200
5b55b79021 Better handling of ciphersuite version range and forced version in ssl_server2 Paul Bakker 2013-07-19 13:43:43 +0200
bd5fd4d1da RFC6229 ARC4 test vectors added to testsuite Paul Bakker 2013-07-19 13:43:15 +0200
accd4eb665 compat.sh now has -f command-line option to filter used ciphersuites Paul Bakker 2013-07-19 13:41:51 +0200
a7eaba5ef9 Merge branch 'maximum-fragment-length' into development Paul Bakker 2013-07-19 14:00:29 +0200
e048b67d0a Misc minor fixes Manuel Pégourié-Gonnard 2013-07-19 12:47:00 +0200
0c017a55e0 Add max_frag_len option in ssl_server2 Manuel Pégourié-Gonnard 2013-07-18 14:07:36 +0200
ed4af8b57c Move negotiated max fragment length to session Manuel Pégourié-Gonnard 2013-07-18 14:07:09 +0200
581e6b6d6c Prepare migrating max fragment length to session Manuel Pégourié-Gonnard 2013-07-18 12:32:27 +0200
8e714d7aca Modified LONG_RESPONSE and comments in ssl_server2 Paul Bakker 2013-07-18 11:05:13 +0200
bd7ce63115 Adapt ssl_server2 to test sending long messages Manuel Pégourié-Gonnard 2013-07-17 15:34:17 +0200
6b4f237f6a Forbid setting max_frag_len > MAX_CONTENT_LEN Manuel Pégourié-Gonnard 2013-07-17 14:33:38 +0200
30dc7ef3ad Reset max_fragment_length in ssl_session_reset() Manuel Pégourié-Gonnard 2013-07-17 14:03:42 +0200
7bb7899121 Send max_fragment_length extension (server) Manuel Pégourié-Gonnard 2013-07-17 13:50:08 +0200
f11a6d78c7 Rework server extensions writing Manuel Pégourié-Gonnard 2013-07-17 11:17:14 +0200
de600e571a Read max_fragment_length extension (client) Manuel Pégourié-Gonnard 2013-07-17 10:14:38 +0200
a052849640 Send max_fragment_length extension (client) Manuel Pégourié-Gonnard 2013-07-16 17:26:28 +0200
48f8d0dbbd Read max_fragment_length extension (server) Manuel Pégourié-Gonnard 2013-07-17 10:25:37 +0200
787b658bb3 Implement max_frag_len write restriction Manuel Pégourié-Gonnard 2013-07-16 15:43:17 +0200
0df6b1f068 ssl_client2: add max_frag_len option Manuel Pégourié-Gonnard 2013-07-16 13:39:57 +0200
8b46459ae5 Add ssl_set_max_frag_len() Manuel Pégourié-Gonnard 2013-07-16 12:45:26 +0200
de9f9efc2e Merge branch 'parse-ec-crt' into development Paul Bakker 2013-07-17 16:00:33 +0200
c2c90031ec Fix pk_set_type() behaviour for unkown type Manuel Pégourié-Gonnard 2013-07-15 11:04:58 +0200
14d8564402 Fix overflow check in oid_get_numeric_string() Manuel Pégourié-Gonnard 2013-07-15 11:01:14 +0200
4f47538ad8 Fix some 'depends' in tests Manuel Pégourié-Gonnard 2013-07-11 16:47:11 +0200
fd5164e283 Fix some more ifdef's RSA/EC, in pk and debug Manuel Pégourié-Gonnard 2013-07-11 16:39:05 +0200
ab2d9836b4 Fix some ifdef's in x509parse Manuel Pégourié-Gonnard 2013-07-11 16:17:23 +0200
96f3a4e1b3 Rm ecp_keypair.alg Manuel Pégourié-Gonnard 2013-07-11 15:55:14 +0200
8b863cd641 Merge EC & RSA versions of x509_parse_key() Manuel Pégourié-Gonnard 2013-07-11 15:32:03 +0200
6e88202a95 Merge EC & RSA versions of parse_pkcs8_unencrypted Manuel Pégourié-Gonnard 2013-07-11 14:55:43 +0200
a2d4e644ac Some more EC pubkey parsing refactoring Manuel Pégourié-Gonnard 2013-07-11 13:59:02 +0200
1c808a011c Refactor some EC key parsing code Manuel Pégourié-Gonnard 2013-07-11 13:17:43 +0200
be50680a8c Fix use of x509_cert.rsa in programs Manuel Pégourié-Gonnard 2013-07-11 13:17:21 +0200
991d0f5aca Remove rsa member from x509_cert structure Manuel Pégourié-Gonnard 2013-07-11 11:14:55 +0200
ff56da3a26 Fix direct uses of x509_cert.rsa, now use pk_rsa() Manuel Pégourié-Gonnard 2013-07-11 10:46:21 +0200
893879adbd Adapt debug_print_crt() for EC keys Manuel Pégourié-Gonnard 2013-07-11 10:31:57 +0200
a3c86c334c Certificates with EC key and/or sig parsed Manuel Pégourié-Gonnard 2013-07-10 16:54:29 +0200
5b18fb04ca Fix bug in x509_get_{ecpubkey,subpubkey}() Manuel Pégourié-Gonnard 2013-07-10 16:07:25 +0200
360a583029 Adapt x509parse_cert_info() for EC Manuel Pégourié-Gonnard 2013-07-10 14:56:36 +0200
674b2243eb Prepare transition from x509_cert.rsa to pk Manuel Pégourié-Gonnard 2013-07-10 14:32:58 +0200
a155513e7b Rationalize use of x509_get_alg variants Manuel Pégourié-Gonnard 2013-07-10 13:18:41 +0200
7a287c409e Rename x509_get_algid() to x509_get_pk_alg() Manuel Pégourié-Gonnard 2013-07-10 12:55:08 +0200