Denys Vlasenko
|
3a4d5a73a8
tls: prepare for ECDH_anon ciphers
|
6 years ago |
Denys Vlasenko
|
c67ff8a1b0
tls: fix a potential (currently "disabled" by a macro) SHA1-related bug
|
6 years ago |
Denys Vlasenko
|
63bfe0e4c0
tls: if !ENABLE_FEATURE_TLS_SHA1, tls->MAC_size is always SHA256_OUTSIZE for AES-CBC
|
6 years ago |
Denys Vlasenko
|
71fa5b0a4c
tls: introduce FEATURE_TLS_SHA1 to make SHA1 code optional
|
6 years ago |
Denys Vlasenko
|
dffc8ff6a6
tls: add ECDHE_PSK and remove ARIA cipher ids
|
6 years ago |
Denys Vlasenko
|
8a46c74f8d
tls: add _anon_ cipher definitions
|
6 years ago |
Denys Vlasenko
|
2eb04290f9
tls: enable TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 cipher
|
6 years ago |
Denys Vlasenko
|
60f784027e
tls: cipher 009D is not yet supported, don't test for it
|
6 years ago |
Denys Vlasenko
|
d9f6c3b091
tls: speed up prf_hmac_sha256()
|
6 years ago |
Denys Vlasenko
|
d4681c7293
tls: simplify hmac_begin()
|
6 years ago |
Denys Vlasenko
|
ca7cdd4b03
tls: add support for 8 more cipher ids - all tested to work
|
6 years ago |
Denys Vlasenko
|
838b88c044
tls: fix comments
|
6 years ago |
Denys Vlasenko
|
330d7f53f7
tls: add a comment on expanding list of supported ciphers
|
6 years ago |
Denys Vlasenko
|
a6192f347f
tls: do not leak RSA key
|
6 years ago |
Denys Vlasenko
|
eb53d01be5
tls: code shrink
|
6 years ago |
Denys Vlasenko
|
a33b008240
tls: code shrink
|
6 years ago |
Denys Vlasenko
|
be5ca42e8d
tls: code shrink
|
6 years ago |
Denys Vlasenko
|
ab3c5e4c44
tls: actually fill in CIPHER_ID3 value in hello message
|
6 years ago |
Denys Vlasenko
|
d2923b3d23
tls: fix is.gd again, fix AES-CBC using decrypt key instead of encrypt
|
6 years ago |
Denys Vlasenko
|
03569bc50f
tls: speed up xor'ing of aligned 16-byte buffers
|
6 years ago |
Denys Vlasenko
|
941440cf16
tls: in AES-GCM decoding, avoid memmove
|
6 years ago |
Denys Vlasenko
|
624066f0cc
tls: make tls_get_random() FAST_FUNC
|
6 years ago |
Denys Vlasenko
|
219c9d4b5d
tls: code shrink
|
6 years ago |
Denys Vlasenko
|
ecc9090cfc
tls: simplify aesgcm_GHASH()
|
6 years ago |
Denys Vlasenko
|
5e4236d226
tls: in AES-CBC code, do not set key for every record - do it once
|
6 years ago |
Denys Vlasenko
|
83e5c627e1
tls: add support for TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher
|
6 years ago |
Denys Vlasenko
|
4e46b98a45
tls: add comment, no code changes
|
6 years ago |
Denys Vlasenko
|
d5a0405a6f
tls: code shrink
|
6 years ago |
Denys Vlasenko
|
de7b5bb59a
tls: tidy up recently added ECDSA code
|
6 years ago |
Denys Vlasenko
|
bddb6545a9
tls: add support for ECDHE-ECDSA-AES-128-CBC-SHA and x25519 curve
|
6 years ago |