Manuel Pégourié-Gonnard
|
4cf0686d6d
|
Remove spurious '+ 3' in ecdsa_write_signature()
|
2013-09-18 14:34:33 +02:00 |
|
Paul Bakker
|
c559c7a680
|
Renamed x509_cert structure to x509_crt for consistency
|
2013-09-18 14:32:52 +02:00 |
|
Paul Bakker
|
ddf26b4e38
|
Renamed x509parse_* functions to new form
e.g. x509parse_crtfile -> x509_crt_parse_file
|
2013-09-18 13:46:23 +02:00 |
|
Paul Bakker
|
369d2eb2a2
|
Introduced x509_crt_init(), x509_crl_init() and x509_csr_init()
|
2013-09-18 12:01:43 +02:00 |
|
Paul Bakker
|
86d0c1949e
|
Generalized function names of x509 functions not parse-specific
x509parse_serial_gets -> x509_serial_gets
x509parse_dn_gets -> x509_dn_gets
x509parse_time_expired -> x509_time_expired
|
2013-09-18 12:01:42 +02:00 |
|
Paul Bakker
|
7fc7fa630f
|
cert_write application also works without POLARSSL_X509_CSR_PARSE_C
|
2013-09-17 14:44:00 +02:00 |
|
Paul Bakker
|
36713e8ed9
|
Fixed bunch of X509_PARSE related defines / dependencies
|
2013-09-17 13:25:29 +02:00 |
|
Paul Bakker
|
30520d1776
|
Moved rsa_sign_pss / rsa_verify_pss to use PK for key reading
|
2013-09-17 11:39:31 +02:00 |
|
Paul Bakker
|
1525495330
|
Key app updated to support pk_context / ECP keypairs
|
2013-09-17 11:24:56 +02:00 |
|
Paul Bakker
|
7504d7f806
|
Fixed X509 define in selftest.c
|
2013-09-16 22:56:18 +02:00 |
|
Paul Bakker
|
7c6b2c320e
|
Split up X509 files into smaller modules
|
2013-09-16 21:41:54 +02:00 |
|
Paul Bakker
|
ace02867f6
|
Do not lowercase key values in arguments in cert_app.c
|
2013-09-16 21:40:34 +02:00 |
|
Paul Bakker
|
40ce79f1e6
|
Moved DHM parsing from X509 module to DHM module
|
2013-09-15 17:43:54 +02:00 |
|
Paul Bakker
|
9a97c5d894
|
Fixed warnings in case application dependencies are not met
|
2013-09-15 17:07:33 +02:00 |
|
Paul Bakker
|
c7bb02be77
|
Moved PK key writing from X509 module to PK module
|
2013-09-15 14:54:56 +02:00 |
|
Paul Bakker
|
1a7550ac67
|
Moved PK key parsing from X509 module to PK module
|
2013-09-15 13:47:30 +02:00 |
|
Manuel Pégourié-Gonnard
|
92cb1d3a91
|
Make CBC an option, step 3: individual ciphers
|
2013-09-13 17:25:43 +02:00 |
|
Paul Bakker
|
9013af76a3
|
Merged major refactoring of x509write module into development
This refactoring adds support for proper CSR writing and X509
certificate generation / signing
|
2013-09-12 11:58:04 +02:00 |
|
Manuel Pégourié-Gonnard
|
26b4d45f49
|
Fix key_app_writer
|
2013-09-12 11:57:02 +02:00 |
|
Manuel Pégourié-Gonnard
|
31e59400d2
|
Add missing f_rng/p_rng arguments to x509write_crt
|
2013-09-12 11:57:02 +02:00 |
|
Manuel Pégourié-Gonnard
|
f38e71afd5
|
Convert x509write_crt interface to PK
|
2013-09-12 11:57:02 +02:00 |
|
Manuel Pégourié-Gonnard
|
ee73179b2f
|
Adapt x509write_csr prototypes for PK
|
2013-09-12 11:57:00 +02:00 |
|
Paul Bakker
|
8f0423afbc
|
Fix for benchmark app after GCM refactoring merge
|
2013-09-10 14:51:50 +02:00 |
|
Paul Bakker
|
c0dcf0ceb1
|
Merged blinding additions for EC, RSA and DHM into development
|
2013-09-10 14:44:27 +02:00 |
|
Paul Bakker
|
b2d7f23592
|
Ability to selfsign certificates added to cert_write app
|
2013-09-09 16:24:18 +02:00 |
|
Paul Bakker
|
4122f3eacf
|
Removed POLARSSL_ERROR_C define and added as requirement defing for
cert_req and cert_write apps
|
2013-09-09 16:01:46 +02:00 |
|
Paul Bakker
|
80d44fee2e
|
Moved 'define handling code' to top
|
2013-09-09 15:59:20 +02:00 |
|
Paul Bakker
|
e2673fb34b
|
cert_write app now parses presented CSR for subject name and key
|
2013-09-09 15:56:09 +02:00 |
|
Paul Bakker
|
f9f377e652
|
CSR Parsing (without attributes / extensions) implemented
|
2013-09-09 15:35:10 +02:00 |
|
Paul Bakker
|
8693274219
|
Small typo in usage of cert_req app
|
2013-09-09 14:09:42 +02:00 |
|
Paul Bakker
|
1014e95775
|
Use issuer_name from the issuer_certificate in cert_write app
|
2013-09-09 13:59:42 +02:00 |
|
Paul Bakker
|
52be08c299
|
Added support for writing Key Usage and NS Cert Type extensions
|
2013-09-09 12:38:45 +02:00 |
|
Paul Bakker
|
cd35803684
|
Changes x509_csr to x509write_csr
|
2013-09-09 12:38:45 +02:00 |
|
Manuel Pégourié-Gonnard
|
e8ea0c0421
|
Fix exit value on SERVERQUIT
|
2013-09-08 20:08:24 +02:00 |
|
Manuel Pégourié-Gonnard
|
ce6352a791
|
Add benchmark for fixed-DHM with blinding
|
2013-09-07 13:05:52 +02:00 |
|
Manuel Pégourié-Gonnard
|
1a2012459b
|
Fix undetected errors in benchmark
dhm_calc_secret() was exiting early, leading to wrong results
|
2013-09-07 12:27:35 +02:00 |
|
Manuel Pégourié-Gonnard
|
337b29c334
|
Test and document EC blinding overhead
|
2013-09-07 11:52:27 +02:00 |
|
Paul Bakker
|
15162a054a
|
Writing of X509v3 extensions supported
Standard extensions already in: basicConstraints, subjectKeyIdentifier
and authorityKeyIdentifier
|
2013-09-06 19:27:21 +02:00 |
|
Paul Bakker
|
9397dcb0e8
|
Base X509 certificate writing functinality
|
2013-09-06 10:36:28 +02:00 |
|
Manuel Pégourié-Gonnard
|
cac5f7d737
|
Update benchmarks for new prototypes
|
2013-09-04 17:19:18 +02:00 |
|
Manuel Pégourié-Gonnard
|
2d627649bf
|
Change dhm_calc_secret() prototype
|
2013-09-04 14:22:07 +02:00 |
|
Manuel Pégourié-Gonnard
|
aa9ffc5e98
|
Split tag handling out of cipher_finish()
|
2013-09-03 19:20:55 +02:00 |
|
Manuel Pégourié-Gonnard
|
2adc40c346
|
Split cipher_update_ad() out or cipher_reset()
|
2013-09-03 19:20:55 +02:00 |
|
Manuel Pégourié-Gonnard
|
9c853b910c
|
Split cipher_set_iv() out of cipher_reset()
|
2013-09-03 13:04:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
9241be7ac5
|
Change cipher prototypes for GCM
|
2013-08-31 18:07:42 +02:00 |
|
Paul Bakker
|
548957dd49
|
Refactored RSA to have random generator in every RSA operation
Primarily so that rsa_private() receives an RNG for blinding purposes.
|
2013-08-30 10:30:02 +02:00 |
|
Paul Bakker
|
ca174fef80
|
Merged refactored x509write module into development
|
2013-08-28 16:32:51 +02:00 |
|
Paul Bakker
|
577e006c2f
|
Merged ECDSA-based key-exchange and ciphersuites into development
Conflicts:
include/polarssl/config.h
library/ssl_cli.c
library/ssl_srv.c
library/ssl_tls.c
|
2013-08-28 11:58:40 +02:00 |
|
Manuel Pégourié-Gonnard
|
ac75523593
|
Adapt ssl_set_own_cert() to generic keys
|
2013-08-27 22:21:20 +02:00 |
|
Paul Bakker
|
0be444a8b1
|
Ability to disable server_name extension (RFC 6066)
|
2013-08-27 21:55:01 +02:00 |
|