3c6409b066
CMake: allow to build both shared and static at once
...
This allows for more fine-grained control. Possible combinations:
* static off, shared on
* static on, shared off
* static on, shared on
The static library is always called "libpolarssl.a" and is only used
for linking of tests and internal programs if the shared lib is
not being built.
Default is: only build static lib.
2014-03-13 19:25:06 +01:00
9a6e93e7a4
Reserve -1 as an error code (used in programs)
2014-03-13 19:25:06 +01:00
844a4c0aef
Fix RSASSA-PSS example programs
2014-03-13 19:25:06 +01:00
83cdffc437
Forbid sequence number wrapping
2014-03-13 19:25:06 +01:00
3c599f11b0
Avoid possible segfault on bad server ciphersuite
2014-03-13 19:25:06 +01:00
9533765b25
Reject certs and CRLs from the future
2014-03-13 19:25:06 +01:00
6304f786e0
Add x509_time_future()
2014-03-13 19:25:06 +01:00
29dcc0b93c
Fix depend issues in test suites for cipher modes
2014-03-13 19:25:06 +01:00
1ec220b002
Add missing #ifdefs in aes.h
2014-03-13 19:25:06 +01:00
648656a628
Fix error code in dhm_selftest()
2014-03-13 19:25:06 +01:00
796c6f3aff
Countermeasure against "triple handshake" attack
2014-03-13 19:25:06 +01:00
fdf3f0e671
Avoid "unreachable code" warning
2014-03-11 13:47:05 +01:00
2a2ae642d8
Fix forgotten curves in #ifdef
2014-02-24 10:29:21 +01:00
6b1e207081
Fix verion-major intolerance
2014-02-12 10:14:54 +01:00
c9093085ed
Revert "Merged RSA-PSS support in Certificate, CSR and CRL"
...
This reverts commit ab50d8d30ce31b1d992a
2014-02-12 09:39:59 +01:00
6df09578bb
Revert "Mutex call in x509_crt.c depended on PTHREAD specific instead of generic"
...
This reverts commit 9eae7aae80
2014-02-12 09:29:05 +01:00
f2561b3f69
Ability to provide alternate timing implementation
2014-02-06 15:32:26 +01:00
47703a0a80
More entropy functions made thread-safe (add_source, update_manual, gather)
2014-02-06 15:01:20 +01:00
9eae7aae80
Mutex call in x509_crt.c depended on PTHREAD specific instead of generic
...
threading
2014-02-06 14:51:53 +01:00
6a28e722c9
Merged platform compatibility layer
2014-02-06 13:44:19 +01:00
0910f32ee3
Fixed compile warning (in test-ref-configs)
2014-02-06 13:41:18 +01:00
119602bdde
Typo fix in memory_buffer_alloc.c
2014-02-06 13:20:19 +01:00
defc0ca337
Migrated the Memory layer to the Platform layer
...
Deprecated POLARSSL_MEMORY_C and placed placeholder for memory.h to make
sure current code will not break on new version.
2014-02-06 13:20:17 +01:00
7dc4c44267
Library files moved to use platform layer
2014-02-06 13:20:16 +01:00
747a83a0f7
Platform abstraction layer for memory, printf and fprintf
2014-02-06 13:15:25 +01:00
ab50d8d30c
Merged RSA-PSS support in Certificate, CSR and CRL
2014-02-06 13:14:56 +01:00
f07031aa98
debug_ecp: don't print Z, always 1
2014-02-06 10:28:38 +01:00
f6dc5e1d16
Remove temporary debug code
2014-02-06 10:28:38 +01:00
c3f6b62ccc
Print curve name instead of size in debugging
...
Also refactor server-side curve selection
2014-02-06 10:28:38 +01:00
ab24010b54
Enforce our choice of allowed curves.
2014-02-06 10:28:38 +01:00
7f38ed0bfa
ssl_set_curves is no longer ECDHE only
2014-02-06 10:28:38 +01:00
cd49f76898
Make ssl_set_curves() work client-side too.
2014-02-06 10:28:38 +01:00
ac7194133e
Renamings and other fixes
2014-02-06 10:28:38 +01:00
e40c469ad3
The default ECDH curve list will be dynamically built in the ecp module based on ecp_supported_curves[].
2014-02-06 10:28:38 +01:00
de05390c85
Rename ecdh_curve_list to curve_list
2014-02-06 10:28:38 +01:00
5de2580563
Make ssl_set_ecdh_curves() a compile-time option
2014-02-06 10:28:38 +01:00
987bfb510b
Added the possibility to define the allowed curves for ECDHE handshake. It also defines the preference of the curves.
2014-02-06 10:28:38 +01:00
fbf0915404
Fix bug in RSA PKCS#1 v1.5 "reversed" operations
2014-02-05 17:01:24 +01:00
5fb8efe71e
Merged HMAC-DRBG code
2014-02-05 15:55:18 +01:00
6e8e34d61e
Fix ecp_gen_keypair()
...
Too few tries caused failures for some curves (esp. secp224k1)
2014-02-05 15:53:45 +01:00
b05db2a6aa
Save memory by not storing the HMAC key
2014-02-01 11:38:05 +01:00
cf38367f45
Fix HMAC_DRBG and RIPEMD160 error codes
2014-02-01 10:24:53 +01:00
446ee6618f
Add LCOV_EXCLUDE_LINE on some IO errors
2014-02-01 10:08:26 +01:00
b3b205e081
Clean up details in ctr_drbg_selftest()
2014-01-31 12:04:06 +01:00
79afaa0551
Add hmac_drbg_selftest()
2014-01-31 11:52:14 +01:00
48bc3e81da
Add hmac_drbg_{write,update}_seed_file()
2014-01-30 23:17:33 +01:00
efc8d8078b
Use safer names for macros
2014-01-30 23:17:33 +01:00
6e897c2a59
Add more checks and references
2014-01-30 23:17:33 +01:00
d742a032f4
Use md_hmac_reset() when possible
2014-01-30 23:17:33 +01:00
658dbed080
Add automatic periodic reseeding
2014-01-30 23:17:33 +01:00
