Commits · 03a8a79516715a29b79677d9afea80f5066a74a0 · BC / public / external / mbedtls

30 Jun, 2013 1 commit
- Programs adapted to use polarssl_strerror() instead of error_strerror() · 03a8a795
  Paul Bakker authored Jun 30, 2013
  
  03a8a795
29 Jun, 2013 11 commits
- Cleaned up ECP error codes · fd3eac57
  Paul Bakker authored Jun 29, 2013
  
  fd3eac57
- Made supported curves configurable · 5dc6b5fb
  Paul Bakker authored Jun 29, 2013
  
  5dc6b5fb
- Renamed error_strerror() to the less conflicting polarssl_strerror() · e2ab84f4
  Paul Bakker authored Jun 29, 2013
```
Ability to keep old function error_strerror() as well with
POLARSSL_ERROR_STRERROR_BC. Also works with
POLARSSL_ERROR_STRERROR_DUMMY.
```
  e2ab84f4
- compat.sh modified to support new ssl_server2 and ssl_client2 · 89fe7f43
  Paul Bakker authored Jun 29, 2013
```
capabilities
```
  89fe7f43
- ssl_server2 and ssl_client2 adapted to support maximum protocol version · c1516be9
  Paul Bakker authored Jun 29, 2013
  
  c1516be9
- Client and server now filter sent and accepted ciphersuites on minimum · 2fbefde1
  Paul Bakker authored Jun 29, 2013
```
and maximum protocol version
```
  2fbefde1
- SSL v2 handshake should also handle dynamic ciphersuites · 59c28a27
  Paul Bakker authored Jun 29, 2013
  
  59c28a27
- Made asn1_get_alg() and asn1_get_alg_null() as generic functions · f8d018a2
  Paul Bakker authored Jun 29, 2013
```
A generic function for retrieving the AlgorithmIdentifier structure with
its parameters and adapted X509, PKCS#5 and PKCS#12 to use them.
```
  f8d018a2
- Macro-ized the final internal OID functions · ce6ae233
  Paul Bakker authored Jun 28, 2013
  
  ce6ae233
- Defines around module-dependent OIDs · 47fce02b
  Paul Bakker authored Jun 28, 2013
  
  47fce02b
- Moved PKCS#12 cipher layer based PBE detection to use OID database · 7749a229
  Paul Bakker authored Jun 28, 2013
  
  7749a229
28 Jun, 2013 4 commits
- Macro-ized single and double attribute functions in OID database · dd1150e8
  Paul Bakker authored Jun 28, 2013
  
  dd1150e8
- Re-ordered OID internals. Made macro for oid_XXX_from_asn1() functions · bd51ad53
  Paul Bakker authored Jun 28, 2013
  
  bd51ad53
- PKCS#5 PBES2 now uses OID database for algorithm detection · 9b5e8856
  Paul Bakker authored Jun 28, 2013
  
  9b5e8856
- Updated README with simple formatting · 6d72f334
  Paul Bakker authored Jun 28, 2013
  
  6d72f334
27 Jun, 2013 1 commit
- Moved __cplusplus extern statement to include struct definitions as well. · 407a0da1
  Paul Bakker authored Jun 27, 2013
  
  407a0da1
26 Jun, 2013 2 commits
- Fixed compiler warnings for unused parameter ssl · c5a79cca
  Paul Bakker authored Jun 26, 2013
  
  c5a79cca
- Split up GCM into a start/update/finish cycle · b9d3cfa1
  Paul Bakker authored Jun 26, 2013
  
  b9d3cfa1
25 Jun, 2013 21 commits

Made ctr_drbg_init_entropy_len() non-static and defined · 534f82c7
Paul Bakker authored Jun 25, 2013

534f82c7
Cleanup up non-prototyped functions (static) and const-correctness in programs · 3c5ef713
Paul Bakker authored Jun 25, 2013

3c5ef713

Cleanup up non-prototyped functions (static) and const-correctness · b6c5d2e1

Paul Bakker authored Jun 25, 2013

More fixes based on the compiler directives -Wcast-qual -Wwrite-strings
-Wmissing-prototypes -Wmissing-declarations. Not everything with regards
to -Wcast-qual has been fixed as some have unwanted consequences for the
rest of the code.

b6c5d2e1

Fixed gcm.c formatting (removed redundant spaces) · 169b7f4a
Paul Bakker authored Jun 25, 2013

169b7f4a
Fixed minor comment typo · bda7cb76
Paul Bakker authored Jun 24, 2013
```
(cherry picked from commit da7fdbd5)
```
bda7cb76
Updated PKCS#12 define dependencies · b0713c7e
Paul Bakker authored Jun 24, 2013
```
(cherry picked from commit 602c31be)
```
b0713c7e
Made x509parse PKCS#12 and PKCS#5 tests dependent on defines · f67edd9d
Paul Bakker authored Jun 24, 2013
```
(cherry picked from commit db7ea6f1)
```
f67edd9d

Moved PKCS#12 PBE functions to cipher / md layer where possible · 38b50d73

Paul Bakker authored Jun 24, 2013

The 3-key and 2-key Triple DES PBE functions have been replaced with a
single pkcs12_pbe() function that handles both situations (and more).

In addition this allows for some PASSWORD_MISMATCH checking
(cherry picked from commit 14a222ce)

38b50d73

Fixed values for 2-key Triple DES in cipher layer · 0e342356
Paul Bakker authored Jun 24, 2013
```
(cherry picked from commit 2be71faa)
```
0e342356

x509parse_crt() and x509parse_crt_der() return X509 password related codes · a4232a7c

Paul Bakker authored Jun 24, 2013

POLARSSL_ERR_X509_PASSWORD_MISMATCH is returned instead of
POLARSSL_ERR_PEM_PASSWORD_MISMATCH and
POLARSSL_ERR_X509_PASSWORD_REQUIRED instead of
POLARSSL_ERR_PEM_PASSWORD_REQUIRED

Rationale: For PKCS#8 encrypted keys the same are returned
(cherry picked from commit b495d3a2)

a4232a7c

Removed redundant free()s · 72823091
Paul Bakker authored Jun 24, 2013
```
(cherry picked from commit 1fc7dfe2)
```
72823091
Added missing free() · cf445ffc
Paul Bakker authored Jun 24, 2013
```
(cherry picked from commit ff3a4b01)
```
cf445ffc

Centralized module option values in config.h · 9bcf16c5

Paul Bakker authored Jun 24, 2013

Allow user-defined settings without editing header files by using
POLARSSL_CONFIG_OPTIONS in config.h
(cherry picked from commit 6fa54887)

Conflicts:
	include/polarssl/config.h

9bcf16c5

PKCS#5 v2 PBES2 support and use in PKCS#8 encrypted certificates · 28144dec

Paul Bakker authored Jun 24, 2013

The error code POLARSSL_ERR_X509_PASSWORD_MISMATCH is now properly
returned in case of an encryption failure in the padding. The
POLARSSL_ERR_X509_PASSWORD_REQUIRED error code is only returned for PEM
formatted private keys as for DER formatted ones it is impossible to
distinguish if a DER blob is PKCS#8 encrypted or not.
(cherry picked from commit 1fd4321b)

Conflicts:
	include/polarssl/error.h
	scripts/generate_errors.pl

28144dec

PKCS#5 module added. Moved PBKDF2 functionality inside and deprecated · b0c19a4b

Paul Bakker authored Jun 24, 2013

old PBKDF2 module.
(cherry picked from commit 19bd297d)

Conflicts:
	include/polarssl/error.h
	scripts/generate_errors.pl

b0c19a4b

Fixed bignum.c and bn_mul.h to support Thumb2 and LLVM compiler · fc4f46fa
Paul Bakker authored Jun 24, 2013
```
(cherry picked from commit 52b845be)
```
fc4f46fa
Fixed location of brackets in pkcs12.c · 531e2943
Paul Bakker authored Jun 24, 2013
```
(cherry picked from commit 67812d39)
```
531e2943

x509parse_crtpath() is now reentrant and uses more portable stat() · 2c8cdd20

Paul Bakker authored Jun 24, 2013

Moved from readdir() to readdir_r() and use stat instead of the less
portable d_type from struct dirent.
(cherry picked from commit cbfcaa92)

2c8cdd20

Changed x509parse_crt_der() to support adding to chain. · 42c65811

Paul Bakker authored Jun 24, 2013

Removed chain functionality from x509parse_crt() as x509parse_crt_der()
now handles that much cleaner.
(cherry picked from commit d6d4109a)

42c65811

Added mechanism to provide alternative cipher / hash implementations · 90995b5c

Paul Bakker authored Jun 24, 2013

All symmetric cipher algorithms and hash algorithms now include support
for a POLARSSL_XXX_ALT flag that prevents the definition of the
algorithm context structure and all 'core' functions.
(cherry picked from commit 4087c470)

90995b5c

Make sure polarssl/config.h is included at the start · 28837ff2
Paul Bakker authored Jun 24, 2013
```
(cherry picked from commit 9691bbe9)
```
28837ff2