Brian Murray
fe9ff01c49
Fixed some build warnings
2016-10-13 13:51:10 +01:00
Brian Murray
4e067035b7
Do not zeroize null pointer
2016-10-13 13:51:10 +01:00
Brian Murray
cdd1f6d96c
Removed unneed memsets and fixed spacing
2016-10-13 13:51:10 +01:00
Brian Murray
6eae89bb6f
No CMAC minimum tag length is specified by NIST SP800-38B A
...
Minor Typo Changes
2016-10-13 13:51:10 +01:00
Brian Murray
e260feacbe
cmac.c whitespace cleanup
2016-10-13 13:51:10 +01:00
Brian Murray
db5c70e080
better handling of failed calloc
2016-10-13 13:51:10 +01:00
Brian Murray
86ff986884
selftest supports cmac if only MBEDTLS_DES_C is defined
...
Other minor typo fixes
2016-10-13 13:51:10 +01:00
Brian Murray
3d3c9b8be7
More cleanup of CMAC self tests
2016-10-13 13:51:09 +01:00
Brian Murray
afdb60f84f
Only compile AES CMAC PRF support if MBEDTLS_AES_C is defined and other cleanups
2016-10-13 13:51:09 +01:00
Brian Murray
d666eb5c11
More cleanup of CMAC selftests
2016-10-13 13:51:09 +01:00
Brian Murray
3c0412a443
Fixed CMAC tag length
2016-10-13 13:51:09 +01:00
Brian Murray
029d79bf25
Updated comments for CMAC in config.h
2016-10-13 13:51:09 +01:00
Brian Murray
7c6476c330
CMAC support for cipher with 64bit blocks (DES/3DES)
2016-10-13 13:51:09 +01:00
Brian Murray
5a8c004f79
Added cmac.o to libary/Makefile
2016-10-13 13:51:09 +01:00
Manuel Pégourié-Gonnard
2b0e21f130
cmac: more cosmetic changes
2016-10-13 13:51:09 +01:00
Manuel Pégourié-Gonnard
a878d3b6e3
cmac: avoid useless wrapping of function
...
probably a leftover from an earlier stage
2016-10-13 13:51:09 +01:00
Manuel Pégourié-Gonnard
5f8639fea2
cmac: reduce visibility of macros
...
The #undef is usefull for people who want to to amalgamated releases
2016-10-13 13:51:09 +01:00
Manuel Pégourié-Gonnard
59ae4bad18
cmac: some more padding-related tune-ups
...
- use one less temporary buffer
- pedantic: in_len + 15 was a potential overflow
- use a more explicit name instead of 'flag'
- Mn was a bit misleading
2016-10-13 13:51:08 +01:00
Manuel Pégourié-Gonnard
da8724fbc6
cmac: clean up padding function and comments
2016-10-13 13:51:08 +01:00
Manuel Pégourié-Gonnard
89b8d83723
cmac: make subkey gen more constant-time
...
The previous version had secret-dependent memory accesses. While it was
probably not an issue in practice cause the two bytes of the array are
probably on the same cache line anyway, as a matter of principle this should
be avoided.
2016-10-13 13:51:08 +01:00
Manuel Pégourié-Gonnard
28ea791521
cmac: zeroize sensitive intermediate values
2016-10-13 13:51:08 +01:00
Manuel Pégourié-Gonnard
756bcf7631
cmac: factor multiply by u to its own function
...
We're doing exactly the same operation for K1 and K2.
2016-10-13 13:51:08 +01:00
Manuel Pégourié-Gonnard
a4dfa0550f
cmac: fix whitespace/codingstyle issues
2016-10-13 13:51:08 +01:00
Manuel Pégourié-Gonnard
9c83eebe67
cmac: improve argument order and naming
...
- always use the pattern "buffer, length"
- avoid using unqualified "length" as a name when there are more than one
2016-10-13 13:51:08 +01:00
Robert Cragie
9bf1e5dd3b
Line endings wrong
2016-10-13 13:51:08 +01:00
Robert Cragie
468320d6f5
Bad code in function documentation
2016-10-13 13:51:08 +01:00
Robert Cragie
9518e88fa0
Use autogenerated version_features.c
2016-10-13 13:51:07 +01:00
Robert Cragie
2fa11cd197
Added CMAC as proper low-level module and changed error returns
2016-10-13 13:51:07 +01:00
Robert Cragie
c45554448c
Added MBEDTLS_CMAC_C
2016-10-13 13:51:07 +01:00
Robert Cragie
45feb6ef20
Add support for AES-128-CMAC and AES-CMAC-PRF-128
2016-10-13 13:51:07 +01:00
Janos Follath
0be2b01a6b
Add safety check to sample mutex implementation
...
Due to inconsistent freeing strategy in pkparse.c the sample mutex
implementation in threading.c could lead to undefined behaviour by
destroying the same mutex several times.
This fix prevents mutexes from being destroyed several times in the
sample threading implementation.
2016-10-13 13:51:07 +01:00
Andres AG
42547d0cf7
Set selftest verbose flag to boost coverage
2016-10-13 13:48:48 +01:00
Andres AG
84c46db746
Fix scripts to support multiple openssl and gnutls
2016-10-13 13:48:48 +01:00
Andres AG
94d73b0b0a
Add config macro for min bytes hw entropy
2016-10-13 13:48:48 +01:00
Andres AG
ba66e8958d
Add new config.h that does not need entropy source
2016-10-13 13:48:48 +01:00
Andres AG
3616f6f261
Rename net.{c,h} to net_sockets.{c,h}
...
The library/net.c and its corresponding include/mbedtls/net.h file are
renamed to library/net_sockets.c and include/mbedtls/net_sockets.h
respectively. This is to avoid naming collisions in projects which also
have files with the common name 'net'.
2016-10-13 13:48:48 +01:00
Simon Butcher
77d779e8bb
Update for ChangeLog for fixes for cert_app
2016-10-13 13:48:48 +01:00
Paul Bakker
2d6599284f
Do not add empty cert / key in cert_app
2016-10-13 13:46:04 +01:00
Paul Bakker
e9bdaa251f
Actually apply debug_level settings in cert_app
2016-10-13 13:46:04 +01:00
Andres AG
4bdbe09f90
Fix sig->tag update in mbedtls_x509_get_sig()
2016-09-19 17:09:45 +01:00
Andres AG
c49b808ae4
Add missing dependency to check in Makefile
...
The main makefile check target does not depend on tests. When running
make with the -j option it could happen that the tests are build twice
and concurrently, which causes errors.
2016-09-16 15:08:34 +01:00
Andres AG
f9113194af
Allow the entry_name size to be set in config.h
...
Allow the size of the entry_name character array in x509_crt.c to be
configurable through a macro in config.h. entry_name holds a
path/filename string. The macro introduced in
MBEDTLS_X509_MAX_FILE_PATH_LEN.
2016-09-16 11:42:35 +01:00
Simon Butcher
40122e015a
Remove list numbering in output_env.sh
2016-09-15 20:45:53 +01:00
Simon Butcher
41eeccf76b
Fix merge of OpenSSL/GNUTLS version options in all.sh
2016-09-15 20:45:53 +01:00
Andres AG
7a63eaf2de
Add version printing for all.sh env vars
2016-09-15 20:45:53 +01:00
Andres AG
f181e25e5b
Remove specific GnuTLS and OpenSSL version requirements
2016-09-15 20:45:53 +01:00
Andres AG
f07314e787
Allow cmake 'out-of-source' builds
...
Allow mbed TLS to be build in a subdirectory. Also add a test in
all.sh
2016-09-15 20:45:53 +01:00
Andres AG
d9eba4ba3d
Allow alternate openssl and gnutls in all.sh
...
Allow the user to specify alternative openssl, gnutls-cli and
gnutls-serv binaries to execute legacy tests in all.sh.
2016-09-15 20:45:53 +01:00
Simon Butcher
669c635ec0
Fix unused variable warnings for null entropy config
2016-09-15 18:57:34 +01:00
Simon Butcher
b7f45c54a7
Fixes for entropy test suite for some configurations
...
Changes to allow the entropy tests to work for configurations without an
entropy seed file (MBEDTLS_ENTROPY_NV_SEED), and with no entropy sources
configured (MBEDTLS_TEST_NULL_ENTROPY).
2016-09-15 18:42:26 +01:00