| 
							
							
								 Manuel Pégourié-Gonnard | a310459f5c | Fix a few things that broke with RSA compiled out | 2013-09-18 15:37:44 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 51451f8d26 | Replace EC flag with ssl_ciphersuite_uses_ec() | 2013-09-18 14:35:56 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 15d5de1969 | Simplify usage of DHM blinding | 2013-09-18 14:35:55 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 568c9cf878 | Add ecp_supported_curves and simplify some code | 2013-09-18 14:34:34 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 7038039f2e | Dissociate TLS and internal EC curve identifiers Allows to add new curves before they get a TLS number | 2013-09-18 14:34:34 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | a97c015f89 | Rm useless/wrong DHM lenght test | 2013-09-18 14:34:33 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | b6b0956631 | Rm of memset instead of x509_crt_init() | 2013-09-18 14:32:52 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | c559c7a680 | Renamed x509_cert structure to x509_crt for consistency | 2013-09-18 14:32:52 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | ddf26b4e38 | Renamed x509parse_* functions to new form e.g. x509parse_crtfile -> x509_crt_parse_file | 2013-09-18 13:46:23 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | 7c6b2c320e | Split up X509 files into smaller modules | 2013-09-16 21:41:54 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | 2292d1fad0 | Fixed warnings in case POLARSSL_X509_PARSE_C is not defined | 2013-09-15 17:06:49 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | c0dcf0ceb1 | Merged blinding additions for EC, RSA and DHM into development | 2013-09-10 14:44:27 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 9f5a3c4a0a | Fix possible memory error. | 2013-09-08 20:08:59 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 032c34e206 | Don't use DH blinding for ephemeral DH | 2013-09-07 13:06:27 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 2d627649bf | Change dhm_calc_secret() prototype | 2013-09-04 14:22:07 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | e09d2f8261 | Change ecp_mul() prototype to allow randomization (Also improve an error code while at it.) | 2013-09-02 14:29:09 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | 9659dae046 | Some extra code defined out | 2013-08-28 16:21:34 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | 577e006c2f | Merged ECDSA-based key-exchange and ciphersuites into development Conflicts:
	include/polarssl/config.h
	library/ssl_cli.c
	library/ssl_srv.c
	library/ssl_tls.c | 2013-08-28 11:58:40 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 9cc6f5c61b | Fix some hash debugging | 2013-08-27 22:21:21 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 4bd1284f59 | Fix ECDSA hash selection bug with TLS 1.0 and 1.1 | 2013-08-27 22:21:21 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | e511ffca50 | Allow compiling without RSA or DH Only library and programs now, need to check test suites later. | 2013-08-27 22:21:21 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | f484282e96 | Rm a few unneeded tests | 2013-08-27 22:21:21 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | d11eb7c789 | Fix sig_alg extension on client. Temporary solution on server. | 2013-08-27 22:21:21 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | bfe32efb9b | pk_{sign,verify}() now accept hash_len = 0 | 2013-08-27 22:21:21 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | a20c58c6f1 | Use convert functions for SSL_SIG_* and SSL_HASH_* | 2013-08-27 22:21:20 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 0d42049440 | Merge code for RSA and ECDSA in SSL | 2013-08-27 22:21:20 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 070cc7fd21 | Use the new PK RSA-alt interface | 2013-08-27 22:21:20 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | a2d3f22007 | Add and use pk_encrypt(), pk_decrypt() | 2013-08-27 22:21:20 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 8df2769178 | Introduce pk_sign() and use it in ssl | 2013-08-27 22:21:20 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 583b608401 | Fix some return values | 2013-08-27 22:21:20 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | abae74c4a0 | Add server support for ECDHE_ECDSA key exchange | 2013-08-27 22:21:20 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 32ea60a127 | Declare ECDSA key exchange and ciphersuites Also fix bug in ssl_list_ciphersuites().
For now, disable it on server.
Client will offer it but fail if server selects it. | 2013-08-27 22:21:19 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 0b03200e96 | Add server-side support for ECDSA client auth | 2013-08-27 22:21:19 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | 0be444a8b1 | Ability to disable server_name extension (RFC 6066) | 2013-08-27 21:55:01 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | d2f068e071 | Ability to enable / disable SSL v3 / TLS 1.0 / TLS 1.1 / TLS 1.2 individually | 2013-08-27 21:19:20 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 0a20171d52 | Fix compiler warning from gcc -Os | 2013-08-26 14:31:43 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | c6554aab3d | Check length of session tickets we write | 2013-08-26 14:26:33 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | b3d9187cea | PK: add nice interface functions Also fix a const-corectness issue. | 2013-08-20 20:46:04 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | 5fd4917d97 | Add missing ifdefs in ssl modules | 2013-08-19 13:30:28 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 0b2726732e | Fix ifdef conditions for EC-related extensions. Was alternatively ECP_C and ECDH_C. | 2013-08-16 13:56:17 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 5734b2d358 | Actually use the point format selected for ECDH | 2013-08-16 13:56:16 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 7b19c16b74 | Handle suported_point_formats in ServerHello | 2013-08-16 13:56:16 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | 1f2bc6238b | Made support for the truncated_hmac extension configurable | 2013-08-15 13:45:55 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | 05decb24c3 | Made support for the max_fragment_length extension configurable | 2013-08-15 13:33:48 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | 606b4ba20f | Session ticket expiration checked on server | 2013-08-15 11:42:48 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | f0e39acb58 | Fixed unitialized n when resuming a session | 2013-08-15 11:40:48 +02:00 |  | 
			
				
					| 
							
							
								 Paul Bakker | a503a63b85 | Made session tickets support configurable from config.h | 2013-08-14 14:26:03 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 56dc9e8bba | Authenticate session tickets. | 2013-08-14 14:08:07 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 990c51a557 | Encrypt session tickets | 2013-08-14 14:08:07 +02:00 |  | 
			
				
					| 
							
							
								 Manuel Pégourié-Gonnard | 779e42982c | Start adding ticket keys (only key_name for now) | 2013-08-14 14:08:06 +02:00 |  |