yuzu-emu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2024-11-23 11:55:41 +01:00
Code Issues Packages Projects Releases Wiki Activity
8a1a91f3da
mbedtls/tests
History
Simon Butcher 696f92e9b4 Add simple test for repeated IVs when using AEAD 
In a USENIX WOOT '16 paper the authors exploit implementation
mistakes that cause Initialisation Vectors (IV) to repeat. This
did not happen in mbed TLS, and this test makes sure that this
won't happen in the future either.

A new test option is introduced to ssl-opt.sh that checks the server
and client logs for a pattern and fails in case there are any
duplicates in the lines following the matching ones. (This is
necessary because of the structure of the logging)

Added a test case as well to utilise the new option. This test forces
the TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384 ciphersuite to make the
client and the server use an AEAD cipher.

Hanno Böck, Aaron Zauner, Sean Devlin, Juraj Somorovsky and Philipp
Jovanovic, "Nonce-Disrespecting Adversaries: Practical Forgery Attacks
on GCM in TLS", USENIX WOOT '16
2016-10-13 14:13:17 +01:00
..
data_files X509: Future CA among trusted: add more tests 2016-10-13 12:43:11 +01:00
scripts Fix for armcc in all.sh 2016-06-27 00:46:07 +01:00
suites Restore P>Q in RSA key generation (#558) 2016-10-13 12:54:33 +01:00
.gitignore Move some ignore patterns to subdirectories 2015-01-28 15:33:23 +00:00
CMakeLists.txt Add tests for the bug IOTSSL-619. 2016-05-18 19:58:40 +01:00
compat.sh Update default configuration 2016-04-09 00:16:40 +01:00
Descriptions.txt Add selftest program to the list of tests 2014-04-04 16:33:01 +02:00
Makefile Adds test_suite_pkcs1_v15 to tests/Makefile 2016-05-18 20:08:16 +01:00
ssl-opt.sh Add simple test for repeated IVs when using AEAD 2016-10-13 14:13:17 +01:00