Merge commit '36adc36' into dtls

* commit '36adc36': Add support for getrandom() Use library default for trunc-hmac in ssl_client2 Make truncated hmac a runtime option server-side Fix portability issue in script Specific error for suites in common but none good Prefer SHA-1 certificates for pre-1.2 clients Some more refactoring/tuning. Minor refactoring Conflicts: include/polarssl/error.h include/polarssl/ssl.h library/error.c
2026-01-07 15:09:28 +01:00 · 2015-01-21 13:48:45 +00:00 · 2015-01-21 13:48:45 +00:00 · bfccdd3c92
commit bfccdd3c92
parent 0017c2be48 36adc3631c
11 changed files with 262 additions and 63 deletions
--- a/9
+++ b/9
@ -39,6 +39,10 @@ Features
     length of an X.509 verification chain.
   * Support for renegotiation can now be disabled at compile-time
   * Support for 1/n-1 record splitting, a countermeasure against BEAST.
+   * Certificate selection based on signature hash, prefering SHA-1 over SHA-2
+     for pre-1.2 clients when multiple certificates are available.
+   * Add support for getrandom() syscall on recent Linux kernels with Glibc or
+     a compatible enough libc (eg uClibc).

 Bugfix
   * Stack buffer overflow if ctr_drbg_update() is called with too large
@ -61,6 +65,11 @@ Changes
   * debug_print_buf() now prints a text view in addition to hexadecimal.
   * Skip writing and parsing signature_algorithm extension if none of the
     key exchanges enabled needs certificates.
+   * A specific error is now returned when there are ciphersuites in common
+     but none of them is usable due to external factors such as no certificate
+     with a suitable (extended)KeyUsage or curve or no PSK set.
+   * It is now possible to disable neogtiation of truncated HMAC server-side
+     at runtime with ssl_set_truncated_hmac().

 = PolarSSL 1.3.9 released 2014-10-20
 Security