yuzu-emu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2024-11-23 19:35:42 +01:00
Code Issues Packages Projects Releases Wiki Activity
6d3e3389e5
mbedtls/tests
History
Janos Follath 6d3e3389e5 Add simple test for repeated IVs when using AEAD 
In a USENIX WOOT '16 paper the authors exploit implementation
mistakes that cause Initialisation Vectors (IV) to repeat. This
did not happen in mbed TLS, and this test makes sure that this
won't happen in the future either.

A new test option is introduced to ssl-opt.sh that checks the server
and client logs for a pattern and fails in case there are any
duplicates in the lines following the matching ones. (This is
necessary because of the structure of the logging)

Added a test case as well to utilise the new option. This test forces
the TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384 ciphersuite to make the
client and the server use an AEAD cipher.

Hanno Böck, Aaron Zauner, Sean Devlin, Juraj Somorovsky and Philipp
Jovanovic, "Nonce-Disrespecting Adversaries: Practical Forgery Attacks
on GCM in TLS", USENIX WOOT '16
2016-10-13 10:26:58 +01:00
..
data_files X509: Future CA among trusted: add more tests 2016-07-14 12:02:56 +01:00
scripts Adapt SSLv3 test configuration for new default 2016-03-15 20:39:52 +00:00
suites Add test for bounds in X509 DER write funcs 2016-10-11 16:52:06 +01:00
.gitignore Move some ignore patterns to subdirectories 2015-01-28 15:33:23 +00:00
CMakeLists.txt Add tests for the bug IOTSSL-619. 2016-05-18 19:30:09 +01:00
compat.sh Adapt SSLv3 test configuration for new default 2016-03-15 20:39:52 +00:00
Descriptions.txt
Makefile Cosmetics in Makefiles 2015-07-08 22:12:06 +01:00
ssl-opt.sh Add simple test for repeated IVs when using AEAD 2016-10-13 10:26:58 +01:00