Paul Bakker 
							
						 
					 
					
						
						
							
						
						93c32b21b3 
					 
					
						
						
							
							Allow ssl_client to pad request to SSL_MAX_CONTENT_LEN  
						
						
						
						
					 
					
						2014-04-25 16:58:12 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						1bd2281260 
					 
					
						
						
							
							Add an alpn option to ssl_client2 and ssl_server2  
						
						
						
						
					 
					
						2014-04-05 14:51:42 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						6b0d268bc9 
					 
					
						
						
							
							Add ssl_close_notify() to servers that missed it  
						
						
						
						
					 
					
						2014-03-31 11:28:11 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						00d538f8f9 
					 
					
						
						
							
							Disable renegotiation by default in example cli/srv  
						
						
						
						
					 
					
						2014-03-31 11:03:06 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						a4b0343edf 
					 
					
						
						
							
							Merged massive SSL Testing improvements  
						
						
						
						
					 
					
						2014-03-14 16:30:36 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						84fd6877c6 
					 
					
						
						
							
							Use ssl_client2 to terminate ssl_server2  
						
						
						
						
					 
					
						2014-03-14 08:41:02 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						5b2d776d2a 
					 
					
						
						
							
							GnuTLS in compat.sh: server-side  
						
						
						
						
					 
					
						2014-03-14 08:41:02 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						3e1b178ba2 
					 
					
						
						
							
							Add options for no certificates in test srv/cli  
						
						
						
						
					 
					
						2014-03-14 08:41:02 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						5575316385 
					 
					
						
						
							
							Add options for non-blocking I/O in test cli & srv  
						
						
						
						
					 
					
						2014-03-14 08:41:01 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						0d8780b2cd 
					 
					
						
						
							
							Add a server_adrr option to ssl_client2  
						
						
						
						
					 
					
						2014-03-14 08:41:01 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						c55a5b7d6f 
					 
					
						
						
							
							Add tests for cache timeout  
						
						
						
						
					 
					
						2014-03-14 08:41:00 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						780d671f9d 
					 
					
						
						
							
							Add tests for renegotiation  
						
						
						
						
					 
					
						2014-03-14 08:41:00 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						2fc243d06a 
					 
					
						
						
							
							Rearrange help messages of example cli/srv  
						
						
						
						
					 
					
						2014-03-14 08:41:00 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						fcf2fc2960 
					 
					
						
						
							
							Make auth_mode=required the default in ssl_client2  
						
						
						
						
					 
					
						2014-03-13 19:25:07 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						c580a00e3c 
					 
					
						
						
							
							Print protocol version in example cli/srv  
						
						
						
						
					 
					
						2014-02-12 10:15:30 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						9c1e1898b6 
					 
					
						
						
							
							Move some code around, improve documentation  
						
						
						
						
					 
					
						2013-10-30 16:48:09 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						53b3e0603b 
					 
					
						
						
							
							Add code for testing client-initiated renegotiation  
						
						
						
						
					 
					
						2013-10-30 16:46:46 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						8a3c64d73f 
					 
					
						
						
							
							Fix and simplify *-PSK ifdef's  
						
						
						
						
					 
					
						2013-10-14 19:54:10 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						1b62c7f93d 
					 
					
						
						
							
							Fix dependencies and related issues  
						
						
						
						
					 
					
						2013-10-14 14:02:19 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						1ffefaca1e 
					 
					
						
						
							
							Introduced entropy_free()  
						
						
						
						
					 
					
						2013-09-29 15:01:42 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						641de714b6 
					 
					
						
						
							
							Use both RSA and ECDSA CA if available  
						
						
						
						
					 
					
						2013-09-25 13:23:33 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						abd6e02b7b 
					 
					
						
						
							
							Rm _CRT_SECURE_NO_DEPRECATE for programs  
						
						... 
						
						
						
						(Already in config.h.) 
						
						
					 
					
						2013-09-20 16:51:13 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						c559c7a680 
					 
					
						
						
							
							Renamed x509_cert structure to x509_crt for consistency  
						
						
						
						
					 
					
						2013-09-18 14:32:52 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						ddf26b4e38 
					 
					
						
						
							
							Renamed x509parse_* functions to new form  
						
						... 
						
						
						
						e.g. x509parse_crtfile -> x509_crt_parse_file 
						
						
					 
					
						2013-09-18 13:46:23 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						369d2eb2a2 
					 
					
						
						
							
							Introduced x509_crt_init(), x509_crl_init() and x509_csr_init()  
						
						
						
						
					 
					
						2013-09-18 12:01:43 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						36713e8ed9 
					 
					
						
						
							
							Fixed bunch of X509_PARSE related defines / dependencies  
						
						
						
						
					 
					
						2013-09-17 13:25:29 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						1a7550ac67 
					 
					
						
						
							
							Moved PK key parsing from X509 module to PK module  
						
						
						
						
					 
					
						2013-09-15 13:47:30 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						e8ea0c0421 
					 
					
						
						
							
							Fix exit value on SERVERQUIT  
						
						
						
						
					 
					
						2013-09-08 20:08:24 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						577e006c2f 
					 
					
						
						
							
							Merged ECDSA-based key-exchange and ciphersuites into development  
						
						... 
						
						
						
						Conflicts:
	include/polarssl/config.h
	library/ssl_cli.c
	library/ssl_srv.c
	library/ssl_tls.c 
						
						
					 
					
						2013-08-28 11:58:40 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						ac75523593 
					 
					
						
						
							
							Adapt ssl_set_own_cert() to generic keys  
						
						
						
						
					 
					
						2013-08-27 22:21:20 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						0be444a8b1 
					 
					
						
						
							
							Ability to disable server_name extension (RFC 6066)  
						
						
						
						
					 
					
						2013-08-27 21:55:01 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						38d1eba3b5 
					 
					
						
						
							
							Move verify_result from ssl_context to session  
						
						
						
						
					 
					
						2013-08-26 14:26:02 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						1f2bc6238b 
					 
					
						
						
							
							Made support for the truncated_hmac extension configurable  
						
						
						
						
					 
					
						2013-08-15 13:45:55 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						05decb24c3 
					 
					
						
						
							
							Made support for the max_fragment_length extension configurable  
						
						
						
						
					 
					
						2013-08-15 13:33:48 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						a503a63b85 
					 
					
						
						
							
							Made session tickets support configurable from config.h  
						
						
						
						
					 
					
						2013-08-14 14:26:03 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						aa0d4d1aff 
					 
					
						
						
							
							Add ssl_set_session_tickets()  
						
						
						
						
					 
					
						2013-08-14 14:08:06 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						06650f6a37 
					 
					
						
						
							
							Fix reusing session more than once  
						
						
						
						
					 
					
						2013-08-14 14:08:06 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						cf2e97eae2 
					 
					
						
						
							
							ssl_client2: allow reconnecting twice  
						
						
						
						
					 
					
						2013-08-14 14:08:06 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						aaa1eab55a 
					 
					
						
						
							
							Add an option to reconnect in ssl_client2  
						
						... 
						
						
						
						Purpose: test resuming sessions. 
						
						
					 
					
						2013-08-14 14:08:04 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						66c4810ffe 
					 
					
						
						
							
							Better handling of ciphersuite version range and forced version in  
						
						... 
						
						
						
						ssl_client2 
						
						
					 
					
						2013-07-26 14:05:32 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						6c85279719 
					 
					
						
						
							
							Newline fixes in help text for ssl_client2 / ssl_server2  
						
						
						
						
					 
					
						2013-07-26 14:02:13 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						dbd79ca617 
					 
					
						
						
							
							ssl_client2 and ssl_server2 now exit with 1 on errors (shell  
						
						... 
						
						
						
						limitations) 
						
						
					 
					
						2013-07-24 16:28:35 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						8c1ede655f 
					 
					
						
						
							
							Changed prototype for ssl_set_truncated_hmac() to allow disabling  
						
						
						
						
					 
					
						2013-07-19 14:51:47 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						e980a994f0 
					 
					
						
						
							
							Add interface for truncated hmac  
						
						
						
						
					 
					
						2013-07-19 14:51:47 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						e048b67d0a 
					 
					
						
						
							
							Misc minor fixes  
						
						... 
						
						
						
						- avoid "multi-line comment" warning in ssl_client2.c
- rm useless initialisation of mfl_code in ssl_init()
- const-correctness of ssl_parse_*_ext()
- a code formating issue 
						
						
					 
					
						2013-07-19 12:56:08 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						0c017a55e0 
					 
					
						
						
							
							Add max_frag_len option in ssl_server2  
						
						... 
						
						
						
						Also reformat code and output more information in ssl_client2 
						
						
					 
					
						2013-07-18 14:07:36 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						787b658bb3 
					 
					
						
						
							
							Implement max_frag_len write restriction  
						
						
						
						
					 
					
						2013-07-18 11:18:14 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						0df6b1f068 
					 
					
						
						
							
							ssl_client2: add max_frag_len option  
						
						
						
						
					 
					
						2013-07-18 11:18:13 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						ba4878aa64 
					 
					
						
						
							
							Rename x509parse_key & co with _rsa suffix  
						
						
						
						
					 
					
						2013-07-08 15:31:18 +02:00 
						 
				 
			
				
					
						
							
							
								Paul Bakker 
							
						 
					 
					
						
						
							
						
						03a8a79516 
					 
					
						
						
							
							Programs adapted to use polarssl_strerror() instead of error_strerror()  
						
						
						
						
					 
					
						2013-06-30 12:18:08 +02:00