mbedtls/library
Paul Bakker 8f4ddaeea9 Ability to specify allowed ciphersuites based on the protocol version.
The ciphersuites parameter in the ssl_session structure changed from
'int *' to 'int *[4]'.

The new function ssl_set_ciphersuite_for_version() sets specific entries
inside this array. ssl_set_ciphersuite() sets all entries to the same
value.
(cherry picked from commit a62729888b9d8eafbfa952fca63a04100ed90f69)

Conflicts:
	ChangeLog
	library/ssl_srv.c
	library/ssl_tls.c
2013-04-16 18:09:45 +02:00
..
.gitignore Added proper gitignores for linux compilation 2012-11-17 00:04:49 +01:00
aes.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
arc4.c - Major type rewrite of int to size_t for most variables and arguments used for buffer lengths and loops 2011-04-24 08:57:21 +00:00
asn1parse.c - Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. 2011-12-10 21:55:01 +00:00
asn1write.c Const correctness added for asn1write functions 2013-04-07 13:11:31 +02:00
base64.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
bignum.c Added conversion to int for a t_uint value to prevent compiler warnings 2013-03-06 18:00:54 +01:00
blowfish.c - Moved definition to top to prevent MS VC compiler warning 2012-10-01 20:58:19 +00:00
camellia.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
certs.c - Re-added removed dhm test values 2011-03-08 13:58:16 +00:00
cipher_wrap.c Blowfish has default of 128-bit keysize in cipher layer 2013-04-07 22:35:44 +02:00
cipher.c Moved to advanced ciphersuite representation and more dynamic SSL code 2013-03-13 14:48:32 +01:00
CMakeLists.txt OID functionality moved to a separate module. 2013-04-07 22:00:46 +02:00
ctr_drbg.c - Fixed off-by-one loop 2012-11-09 15:30:07 +00:00
debug.c Added Ephemeral Elliptic Curve Diffie Hellman ciphersuites to SSL/TLS 2013-03-20 14:39:14 +01:00
des.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
dhm.c - Extra sanity check for input added 2012-09-16 15:07:49 +00:00
ecdh.c Added Ephemeral Elliptic Curve Diffie Hellman ciphersuites to SSL/TLS 2013-03-20 14:39:14 +01:00
ecdsa.c Add ECDSA signature primitive. 2013-01-26 19:11:28 +01:00
ecp.c Fixed compiler warning for possible uninitialized ret 2013-04-08 13:40:17 +02:00
entropy_poll.c - Fixes for MSVC6 2012-11-02 10:59:36 +00:00
entropy.c - Added option to prevent default entropy sources from loading (POLARSSL_NO_DEFAULT_ENTROPY_SOURCES) 2011-12-15 20:11:16 +00:00
error.c OID functionality moved to a separate module. 2013-04-07 22:00:46 +02:00
gcm.c Cleanup of the GCM code 2013-04-09 11:36:42 +02:00
havege.c - Changed the used random function pointer to more flexible format. Renamed havege_rand() to havege_random() to prevent mistakes. Lots of changes as a consequence in library code and programs 2011-11-27 21:07:34 +00:00
Makefile OID functionality moved to a separate module. 2013-04-07 22:00:46 +02:00
md2.c Added md_process() to MD layer for generic internal access to hash 2013-03-13 10:26:44 +01:00
md4.c Added md_process() to MD layer for generic internal access to hash 2013-03-13 10:26:44 +01:00
md5.c Removed further timing differences during SSL message decryption in ssl_decrypt_buf() 2013-02-27 14:48:00 +01:00
md_wrap.c Functions inside md_wrap.c now marked static 2013-03-13 10:31:31 +01:00
md.c Added md_process() to MD layer for generic internal access to hash 2013-03-13 10:26:44 +01:00
net.c Fixed net_bind() for specified IP addresses on little endian systems 2013-03-06 18:01:03 +01:00
oid.c OID functionality moved to a separate module. 2013-04-07 22:00:46 +02:00
padlock.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
pbkdf2.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
pem.c - Added permissive certificate parsing to x509parse_crt() and x509parse_crtfile(). With permissive parsing the parsing does not stop on encountering a parse-error 2011-12-04 12:24:18 +00:00
pkcs11.c - Fixed argument types 2012-11-14 12:14:19 +00:00
rsa.c OID functionality moved to a separate module. 2013-04-07 22:00:46 +02:00
sha1.c Removed further timing differences during SSL message decryption in ssl_decrypt_buf() 2013-02-27 14:48:00 +01:00
sha2.c Removed further timing differences during SSL message decryption in ssl_decrypt_buf() 2013-02-27 14:48:00 +01:00
sha4.c Added md_process() to MD layer for generic internal access to hash 2013-03-13 10:26:44 +01:00
ssl_cache.c The SSL session cache module (ssl_cache) now also retains peer_cert information (not the entire chain) 2013-03-06 18:01:03 +01:00
ssl_ciphersuites.c Added Camellia ECDHE-based CBC ciphersuites 2013-04-07 23:07:12 +02:00
ssl_cli.c Ability to specify allowed ciphersuites based on the protocol version. 2013-04-16 18:09:45 +02:00
ssl_srv.c Ability to specify allowed ciphersuites based on the protocol version. 2013-04-16 18:09:45 +02:00
ssl_tls.c Ability to specify allowed ciphersuites based on the protocol version. 2013-04-16 18:09:45 +02:00
timing.c - Moved to more flexible define structure 2012-10-31 09:53:08 +00:00
version.c - Fixed copyright message 2010-07-18 20:36:00 +00:00
x509parse.c OID functionality moved to a separate module. 2013-04-07 22:00:46 +02:00
x509write.c OID functionality moved to a separate module. 2013-04-07 22:00:46 +02:00
xtea.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00