Commit Graph

991 Commits

Author SHA1 Message Date
Manuel Pégourié-Gonnard
be04673c49 Forbid sequence number wrapping 2014-07-08 11:04:19 +02:00
Paul Bakker
50a5c53398 Reject certs and CRLs from the future 2014-07-08 10:59:10 +02:00
Paul Bakker
0d844dd650 Add x509parse_time_future() 2014-07-07 17:46:36 +02:00
Manuel Pégourié-Gonnard
963918b88f Countermeasure against "triple handshake" attack 2014-07-07 17:46:35 +02:00
Manuel Pégourié-Gonnard
397858b81d Avoid "unreachable code" warning 2014-07-07 17:46:33 +02:00
Paul Bakker
57ca5702fd Fixed CMake symlinking on out-of-source builds 2014-07-07 17:46:32 +02:00
Manuel Pégourié-Gonnard
6d841c2c5c Fix verion-major intolerance 2014-07-07 17:46:31 +02:00
Paul Bakker
e96bfbc6bd Fixed testing with out-of-source builds using cmake 2014-07-07 17:46:30 +02:00
Paul Bakker
44e8b23462 Fixed file descriptor leak in generic_sum 2014-07-07 17:46:30 +02:00
Manuel Pégourié-Gonnard
c675e4bde5 Fix bug in RSA PKCS#1 v1.5 "reversed" operations 2014-07-07 17:46:29 +02:00
Paul Bakker
af0ccc8fa0 SMTP lines are officially terminated with CRLF, ssl_mail_client fixed 2014-07-07 17:46:29 +02:00
Paul Bakker
1e7c3d2500 net_is_block() renamed to net_would_block() and corrected behaviour on
non-blocking sockets

net_would_block() now does not return 1 if the socket is blocking.
2014-07-07 17:46:28 +02:00
Paul Bakker
1dc45f15a6 Added MPI_CHK around unguarded mpi calls 2014-07-07 17:46:25 +02:00
Manuel Pégourié-Gonnard
3cb407107d Fix "check" mode warnings 2014-07-07 16:05:06 +02:00
Paul Bakker
0ed42d6159 Minor fixes to o_p_test.c (CMakeLists.txt and includes) 2014-07-07 16:04:16 +02:00
Manuel Pégourié-Gonnard
7214f5437d Disable unused-function warning for clang-check 2014-07-07 16:03:57 +02:00
Paul Bakker
0b6355d088 Updated ChangeLog 2014-07-07 16:01:53 +02:00
Manuel Pégourié-Gonnard
91b05ac5ed Replace expired test certificate 2014-07-07 16:01:36 +02:00
Paul Bakker
7837026b91 Remove a few dead stores 2014-07-07 16:01:34 +02:00
Manuel Pégourié-Gonnard
d220f8b709 Fix potential memory leak in bignum selftest 2014-07-07 16:01:33 +02:00
Manuel Pégourié-Gonnard
7fd620b331 Fix misplaced initialisation.
If one of the calls to mpi_grow() before setting Apos would fail, then
mpi_free( &Apos ) would be executed without Apos being initialised.
2014-07-07 16:01:31 +02:00
Manuel Pégourié-Gonnard
b55f578982 Fix missing error checking in gcm 2014-07-07 16:01:30 +02:00
Paul Bakker
4091141368 Add a length check in ssl_derive_keys() 2014-07-07 16:01:28 +02:00
Manuel Pégourié-Gonnard
511d809dd1 Enable cmake tests with Clang too 2014-07-07 16:01:27 +02:00
Paul Bakker
4181be06c1 Included GCM in API documentation for Enc/Dec 2014-07-07 16:01:25 +02:00
Paul Bakker
d15718cbe0 Updated ChangeLog 2014-07-07 16:01:23 +02:00
Manuel Pégourié-Gonnard
13d087b97c Fix asm format for alpha 2014-07-07 16:01:22 +02:00
Manuel Pégourié-Gonnard
5dcd22c8e9 Fix asm format for tricore 2014-07-07 16:01:21 +02:00
Manuel Pégourié-Gonnard
5b30cc191b Fix asm format for microblaze 2014-07-07 16:01:19 +02:00
Manuel Pégourié-Gonnard
4239c03358 Fix asm format for MC68020 2014-07-07 16:01:18 +02:00
Manuel Pégourié-Gonnard
c6f563ce4c Fix BN ASM for PowerPC 2014-07-07 16:01:17 +02:00
Manuel Pégourié-Gonnard
986b7db937 Fix bignum's ASM format for MIPS 2014-07-07 16:01:15 +02:00
Manuel Pégourié-Gonnard
68c96e48ce Fix bignum ASM format for X86-64 2014-07-07 16:01:14 +02:00
Manuel Pégourié-Gonnard
ec8f2ffe90 Fix bug in rnd_pseudo_rnd() test helper function
Only the first 4 bytes of the output were set, the rest was untouched.
2014-07-07 16:01:13 +02:00
Paul Bakker
d83584e9aa Fixed potential overflow in certificate size in ssl_write_certificate() 2014-07-07 16:01:11 +02:00
Paul Bakker
78e819698b Added missing MPI_CHK() around some statements 2014-07-07 16:01:10 +02:00
Paul Bakker
b5296b7f78 Add CHECK flags in CMakeLists.txt 2014-07-07 16:01:09 +02:00
Paul Bakker
2ad45598eb Support for CLANG compiler in CMakeLists.txt 2014-07-07 16:01:08 +02:00
Paul Bakker
40cc914567 Fixed x509_crt_parse_path() bug on Windows platforms 2014-07-07 16:01:08 +02:00
Paul Bakker
238be3a207 Removed dependency on unistd.h for MSVC in apps 2014-07-07 16:01:07 +02:00
Paul Bakker
0748895b68 Explicit conversions to int from size_t for MSVC (64-bit) in apps 2014-07-07 16:01:06 +02:00
Paul Bakker
256a4afb57 Removed making commandline arguments case insensitive 2014-07-07 15:54:04 +02:00
Manuel Pégourié-Gonnard
9975c5d217 Check PKCS 1.5 padding in a more constant-time way
(Avoid branches that depend on secret data.)
2014-07-07 14:38:09 +02:00
Manuel Pégourié-Gonnard
d237d261e5 Check OAEP padding in a more constant-time way 2014-07-07 14:37:56 +02:00
Manuel Pégourié-Gonnard
3411464a64 RSA-OAEP decrypt: reorganise code 2014-07-07 14:37:39 +02:00
Paul Bakker
a91d41e7a4 Removed Windows auto-spawn client code 2014-07-07 14:37:05 +02:00
Paul Bakker
26e281831e Renamed test_offset to prevent clash with one in ctr_drbg.c 2014-07-07 14:36:30 +02:00
Manuel Pégourié-Gonnard
b9f6d507dd crypt_and_hash: check MAC earlier 2014-07-07 14:35:02 +02:00
Manuel Pégourié-Gonnard
7ab2d5daf5 Clarify comments of mpi_mul_int() 2014-07-07 14:34:06 +02:00
Paul Bakker
a1caf6e1e8 SSL now gracefully handles missing RNG 2014-07-07 14:20:52 +02:00