Andrzej Kurek
cd9286f1ca
Remove crypto-only related components from all.sh
2019-04-08 05:49:08 -04:00
Ron Eldor
21cb3c34a3
Remove ssl_cert_test sample app
...
Remove the ssl_cert_test sample application, as it uses
hardcoded certificates that moved, and is redundant with the x509
tests and applications. Fixes #1905 .
2019-04-07 16:49:18 +03:00
Janos Follath
4031b314ed
Make CRT callback tests more robust
2019-04-05 16:50:39 +01:00
Janos Follath
ae13beb1d9
Rename constant in client2.c
2019-04-05 16:50:39 +01:00
Janos Follath
846ae7a70d
Document and test flags in x509_verify
2019-04-05 16:45:01 +01:00
Janos Follath
d7ecbd6914
Fix style issues and a typo
2019-04-05 16:44:42 +01:00
Jaeden Amero
aa3402018e
Merge remote-tracking branch 'origin/pr/2535' into development
...
* origin/pr/2535:
Add Wisun Fan device extended key usage
2019-04-05 14:36:08 +01:00
Jaeden Amero
bc5de0f12f
Merge remote-tracking branch 'origin/pr/2368' into development
...
Move ChangeLog entry to BugFix section.
* origin/pr/2368:
Fix default port number information
2019-04-05 14:23:48 +01:00
Jaeden Amero
7c1e6193af
Merge remote-tracking branch 'origin/pr/2464' into development
...
* origin/pr/2464:
Allow main() to lack a docstring.
Silence pylint
check-files.py: readability improvement in permission check
check-files.py: use class fields for class-wide constants
check-files.py: clean up class structure
abi_check.py: Document more methods
check-files.py: document some classes and methods
Fix pylint errors going uncaught
Call pylint3, not pylint
New, documented pylint configuration
2019-04-05 14:19:09 +01:00
Jaeden Amero
d192ba4ef1
Merge remote-tracking branch 'origin/pr/2463' into development
...
* origin/pr/2463:
Fix a rebase error
Wrap lines at 80 columns
Add NIST keywrap as a cipher mode
Fix errors in AEAD test function
2019-04-05 14:15:40 +01:00
Jaeden Amero
62ab1f9961
Merge remote-tracking branch 'origin/pr/2405' into development
...
* origin/pr/2405:
Fix ChangeLog entry ordering
Fix typo
Add non-regression test for buffer overflow
Improve documentation of mbedtls_mpi_write_string()
Adapt ChangeLog
Fix 1-byte buffer overflow in mbedtls_mpi_write_string()
2019-04-05 14:08:49 +01:00
Darryl Green
383d1fa6a5
Add --internal option to list-identifiers.sh
...
When doing ABI/API checking, its useful to have a list of all the
identifiers that are defined in the internal header files, as we
do not promise compatibility for them. This option allows for a
simple method of getting them for use with the ABI checking script.
2019-04-05 13:59:52 +01:00
Jaeden Amero
c7acf56504
Merge remote-tracking branch 'origin/pr/2366' into development
...
* origin/pr/2366:
Change Perl to Python in test builds
2019-04-05 13:53:56 +01:00
Jaeden Amero
3d8144731f
Merge remote-tracking branch 'origin/pr/2192' into development
...
* origin/pr/2192:
Increase okm_hex buffer to contain null character
Minor modifications to hkdf test
Add explanation for okm_string size
Update ChangeLog
Reduce buffer size of okm
Reduce Stack usage of hkdf test function
2019-04-05 13:53:14 +01:00
Jaeden Amero
6fc099d550
Merge remote-tracking branch 'origin/pr/2189' into development
...
* origin/pr/2189:
Remove Circle CI script
2019-04-05 13:51:17 +01:00
Jaeden Amero
1b86e4c881
Merge remote-tracking branch 'origin/pr/2106' into development
...
* origin/pr/2106:
x509.c: Fix potential memory leak in X.509 self test
2019-04-05 13:47:06 +01:00
Andrzej Kurek
92f91fc9ff
Add an option to use crypto source files in generated visual c project
2019-04-05 05:49:53 -04:00
Andrzej Kurek
b4b1ae193b
Add description of generate_query_config.pl argument
2019-04-05 04:16:12 -04:00
Andrzej Kurek
79369cd8d9
Add crypto includes when generating features in generate_features.pl
...
Adjusted generate_features to have a configuration option of including crypto
config. Turned on by default.
2019-04-05 04:07:40 -04:00
Andrzej Kurek
ef907604f8
Include crypto config when generating query config
...
Adjusted generate_query_config.pl to have a configuration option
of including the crypto config. Turned on by default.
2019-04-05 03:56:27 -04:00
Jack Lloyd
274024f3d5
Fix a rebase error
2019-04-04 07:59:41 -07:00
Ron Eldor
80d0419189
Add guards for MBEDTLS_X509_CRL_PARSE_C in sample
...
Add checks in `ssl_server2` that `MBEDTLS_X509_CRL_PARSE_C` is defined
to fix compilation issue. Fixes #560 .
2019-04-04 15:05:18 +03:00
Janos Follath
924270f769
Fix typo
2019-04-04 12:49:44 +01:00
Janos Follath
ee11be6572
Add test for configuration specific CRT callback
2019-04-04 12:03:30 +01:00
Hanno Becker
f345bafd30
Fix doxygen documentation of mbedtls_ssl_set_verify()
2019-04-03 13:43:15 +01:00
Hanno Becker
efb440afec
Add test exercising context-specific CRT callback to ssl-opt.sh
2019-04-03 13:11:20 +01:00
Hanno Becker
bb425dbb1b
Add cmd to use context-specific CRT callback in ssl_client2
2019-04-03 13:11:15 +01:00
Hanno Becker
8927c83312
Implement context-specific verification callbacks
2019-04-03 12:53:28 +01:00
Hanno Becker
726c97a825
Add context-specific CRT verification callbacks
2019-04-03 12:52:35 +01:00
Hanno Becker
7b58fb1d1c
Improve documentation of mbedtls_ssl_conf_verify()
2019-04-03 12:52:21 +01:00
Ron Eldor
b6dc105456
Add Wisun Fan device extended key usage
...
Add the Wisun extended key usage oid and tests.
2019-04-03 13:48:50 +03:00
Jack Lloyd
5f28999433
Wrap lines at 80 columns
2019-04-02 10:07:28 -07:00
Jack Lloyd
ffdf28851d
Add NIST keywrap as a cipher mode
...
Closes #2003 see also #1658
2019-04-02 10:02:55 -07:00
Jack Lloyd
1dbc5a257f
Fix errors in AEAD test function
...
It was failing to set the key in the ENCRYPT direction before encrypting.
This just happened to work for GCM and CCM.
After re-encrypting, compare the length to the expected ciphertext
length not the plaintext length. Again this just happens to work for
GCM and CCM since they do not perform any kind of padding.
2019-04-02 10:02:55 -07:00
Jarno Lamsa
9822c0d2f1
Fix name to function call
2019-04-01 16:59:48 +03:00
Jarno Lamsa
dfd22c4dbd
Address comments for x509 tests
2019-04-01 15:18:53 +03:00
Jarno Lamsa
f7a7f9ee43
Address review comments regarding ssl_client2 and ssl tests
2019-04-01 15:11:54 +03:00
Jarno Lamsa
2ee67a66f4
Remove mbedtls_ from the static function name
2019-04-01 14:59:33 +03:00
Jarno Lamsa
f49fedc345
Change docs according to review comments
2019-04-01 14:58:30 +03:00
Jarno Lamsa
31d9db6195
Change the verify function naming
...
Change the naming to reflect that the function uses a new ca callback
feature to distinguish different callbacks.
2019-04-01 14:33:49 +03:00
Hanno Becker
d6d100beb7
Fix ssl_client2 and ssl_server2 if !PLATFORM_C
...
The CA callback changes introduce mbedtls_calloc() and
mbedtls_free() to ssl_client2 and ssl_server2, which
wasn't defined unless MBEDTLS_PLATFORM_C was set.
2019-03-30 06:27:43 +00:00
Hanno Becker
1bac87c5dc
Correct placement of usage macro in ssl_client2
2019-03-29 12:02:26 +00:00
Hanno Becker
fed5d9d1e9
Update version_features.c
2019-03-28 17:07:12 +00:00
Hanno Becker
3f932bbc5d
Remove trailing whitespace in test_suite_x509parse.function
2019-03-28 17:06:47 +00:00
Hanno Becker
fa738d148d
Update query_config.c
2019-03-28 17:06:04 +00:00
Hanno Becker
746aaf3f38
Add ssl-opt.sh tests for trusted CA callbacks
2019-03-28 16:13:44 +00:00
Hanno Becker
0350d56286
Only run X.509 CRT verification tests with CA callback tests if !CRL
2019-03-28 16:13:44 +00:00
Hanno Becker
cbb590369c
Minor fixes to CA callback tests
2019-03-28 16:13:44 +00:00
Hanno Becker
e15dae7fcf
Declare CA callback type even if feature is disabled
2019-03-28 16:13:44 +00:00
Hanno Becker
f53893b00c
Implement X.509 CRT verification using CA callback
2019-03-28 16:13:44 +00:00