Daniel King
b8025c5826
Implement AEAD-ChaCha20-Poly1305.
...
This implementation is based off the description in RFC 7539.
The ChaCha20 code is also updated to provide a means of generating
keystream blocks with arbitrary counter values. This is used to
generated the one-time Poly1305 key in the AEAD construction.
2018-05-24 13:37:31 +02:00
Daniel King
adc32c0b50
Add Poly1305 authenticator algorithm (RFC 7539)
...
Test vectors are included from RFC 7539.
Poly1305 is also added to the benchmark program.
2018-05-24 13:37:31 +02:00
Daniel King
bd92062269
Add ChaCha20 to the Cipher module
2018-05-24 13:37:31 +02:00
Daniel King
34b822ce7b
Initial implementation of ChaCha20
2018-05-24 13:37:31 +02:00
Manuel Pégourié-Gonnard
d0f143b1c9
Update CTR doc for the 64-bit block cipher
...
- constants need adjustment
- don't mention "random nonces" as the space is too small
2018-05-24 12:01:58 +02:00
Manuel Pégourié-Gonnard
4f24e9502e
Update CTR doc for other 128-bit block ciphers
2018-05-24 11:59:30 +02:00
Manuel Pégourié-Gonnard
f5842864d8
Slightly tune ARIA CTR documentation
2018-05-24 11:51:58 +02:00
Ron Eldor
e95092d8eb
Change the value of fno-sanitize-recover
...
Change the value of `-fno-sanitize-recover` from `undefined,integer` to `all`
2018-05-24 10:15:13 +03:00
Moran Peker
a64fba41fb
Remove double declaration of mbedtls_ssl_list_ciphersuites
...
Raised by TrinityTonic. #1359
2018-05-23 18:13:05 +01:00
Simon Butcher
2f3a581567
Merge remote-tracking branch 'public/pr/1178' into development
2018-05-23 16:15:13 +01:00
Simon Butcher
f889202158
Merge remote-tracking branch 'public/pr/1434' into development
2018-05-23 16:11:32 +01:00
Manuel Pégourié-Gonnard
8a1b2c8806
Update CTR documentation
2018-05-23 13:26:22 +02:00
Andres Amaya Garcia
8c754218c5
Add no symbols warning fix to ChangeLog
2018-05-23 09:26:08 +01:00
Andres Amaya Garcia
0e98e88a22
Silence no symbols warn on apple & Makefile
2018-05-23 09:19:54 +01:00
TabascoEye
7f3ef2780c
silence "no symbols" warnings on apple clang
...
fixes #1252
2018-05-23 09:18:49 +01:00
Manuel Pégourié-Gonnard
7124fb63be
Use zeroize function from new platform_util
2018-05-22 16:05:33 +02:00
Manuel Pégourié-Gonnard
a3712beb9b
Merge branch 'development' into iotssl-1941-aria-ciphersuites
...
* development: (504 commits)
Fix minor code style issues
Add the uodate to the soversion to the ChangeLog
Fix the ChangeLog for clarity, english and credit
Update version to 2.9.0
ecp: Fix binary compatibility with group ID
Changelog entry
Change accepted ciphersuite versions when parsing server hello
Remove preprocessor directives around platform_util.h include
Fix style for mbedtls_mpi_zeroize()
Improve mbedtls_platform_zeroize() docs
mbedtls_zeroize -> mbedtls_platform_zeroize in docs
Reword config.h docs for MBEDTLS_PLATFORM_ZEROIZE_ALT
Organize CMakeLists targets in alphabetical order
Organize output objs in alfabetical order in Makefile
Regenerate errors after ecp.h updates
Update ecp.h
Change variable bytes_written to header_bytes in record decompression
Update ecp.h
Update ecp.h
Update ecp.h
...
2018-05-22 15:58:50 +02:00
Manuel Pégourié-Gonnard
0960b80d53
Move to new header style for ALT implementations
...
See https://github.com/ARMmbed/mbedtls-restricted/pull/357
2018-05-22 15:22:07 +02:00
Manuel Pégourié-Gonnard
c0893122df
Add ifdef for selftest in header file
...
See https://github.com/ARMmbed/mbedtls/pull/975
2018-05-22 15:17:20 +02:00
Manuel Pégourié-Gonnard
2df4bfe803
Fix typo in comments
2018-05-22 13:39:01 +02:00
Manuel Pégourié-Gonnard
565e4e0fb2
Use more appropriate type for local variable
2018-05-22 13:30:28 +02:00
Manuel Pégourié-Gonnard
08c337d058
Remove useless parameter from function
2018-05-22 13:18:01 +02:00
Manuel Pégourié-Gonnard
89924ddc7e
Wipe sensitive info from the stack
2018-05-22 13:07:07 +02:00
Manuel Pégourié-Gonnard
12e2fbdf29
Style adjustments
2018-05-22 13:01:09 +02:00
Manuel Pégourié-Gonnard
d418b0dcba
Fix typo in comment
2018-05-22 12:56:11 +02:00
Manuel Pégourié-Gonnard
9d410733c2
Fix typos from copy-pasting
2018-05-22 12:49:22 +02:00
Darryl Green
4d393b9835
Add check-files.py to travis.yml
2018-05-21 11:59:28 +01:00
Darryl Green
2699de3370
Add check-files.py to pre-push.sh
2018-05-21 11:41:18 +01:00
Darryl Green
a07039cfe2
Add check-files.py to all.sh
2018-05-21 11:41:04 +01:00
Darryl Green
10d9ce332f
Add script for source integrity checking
2018-05-21 11:39:49 +01:00
Jaeden Amero
c4bd8ec5ed
Merge remote-tracking branch 'upstream-public/pr/1446' into development
2018-05-17 11:46:13 +01:00
Darryl Green
11999bb72e
Fix minor code style issues
2018-05-15 09:21:57 +01:00
Jaeden Amero
cdd97fd632
Merge remote-tracking branch 'upstream-public/pr/1433' into development
2018-05-11 10:48:15 +01:00
Manuel Pégourié-Gonnard
707e9624e0
Update visualc project files
2018-05-09 10:57:04 +02:00
Philippe Antoine
6087f200bf
Fix memory leak in mbedtls_x509_csr_parse
2018-05-09 07:54:12 +02:00
Jaeden Amero
a331e0f0af
Merge remote-tracking branch 'upstream-restricted/pr/421' into development-proposed
2018-05-04 14:39:24 +01:00
Jaeden Amero
fb19399f41
Merge remote-tracking branch 'upstream-public/pr/1498' into development-proposed
2018-05-04 11:09:14 +01:00
Jaeden Amero
09c4e7ef5a
Merge remote-tracking branch 'upstream-public/pr/1486' into development-proposed
2018-05-04 11:03:16 +01:00
Andres Amaya Garcia
54306c14f6
Add more SNI/DTLS tests
...
Run the normal SNI/TLS tests over DTLS in ssl-opt.sh for greater
coverage.
2018-05-01 20:27:37 +01:00
Andres Amaya Garcia
f77d3d31d6
Rename SNI/DTLS tests in ssl-opt.sh script
2018-05-01 20:26:47 +01:00
Jaeden Amero
070e356476
Merge remote-tracking branch 'upstream-restricted/pr/481' into development-restricted
2018-05-01 15:28:18 +01:00
Simon Butcher
e6a2a1aa97
Add the uodate to the soversion to the ChangeLog
2018-05-01 14:02:24 +01:00
Mohammad Azim Khan
0b3f00c3cf
Avoid -Wformat-truncation warning on gcc7
2018-05-01 10:17:48 +01:00
Jaeden Amero
78d2f7d5df
Merge remote-tracking branch 'upstream-restricted/pr/478' into development-restricted
2018-04-30 17:37:42 +01:00
Simon Butcher
b03120ad41
Fix the ChangeLog for clarity, english and credit
2018-04-30 17:13:42 +01:00
Gilles Peskine
276b9a650c
ssl_server2: get op_name from context in ssl_async_resume as well
2018-04-30 16:39:35 +02:00
Gilles Peskine
9ceae8b4f6
Clarify "as directed here" in SSL async callback documentation
2018-04-30 16:37:03 +02:00
Gilles Peskine
ea5fab829c
SSL async callbacks documentation: clarify resource cleanup
...
Clarify when resume must clean up resources and when cancel is called.
2018-04-30 13:58:09 +02:00
Gilles Peskine
26d01bcb5c
Async callback: use mbedtls_pk_check_pair to compare keys
...
In the current test code, the object that is used as a public key in
the certificate also contains a private key. However this is because
of the way the stest code is built and does not demonstrate the API in
a useful way. Use mbedtls_pk_check_pair, which is not what real-world
code would do (since the private key would typically be in an external
cryptoprocessor) but is a more representative placeholder.
2018-04-30 12:07:56 +02:00
Gilles Peskine
1febfef561
Rename mbedtls_ssl_async_{get,set}_data for clarity
...
Rename to mbedtls_ssl_get_async_operation_data and
mbedtls_ssl_set_async_operation_data so that they're about
"async operation data" and not about some not-obvious "data".
2018-04-30 11:54:39 +02:00