Manuel Pégourié-Gonnard
|
2a8d7fd76e
|
Add tests for parsing CSRs
|
2014-06-02 16:10:29 +02:00 |
|
Manuel Pégourié-Gonnard
|
8e42ff6bde
|
Parse CRLs signed with RSASSA-PSS
|
2014-06-02 16:10:29 +02:00 |
|
Manuel Pégourié-Gonnard
|
9df5c96214
|
Fix dependencies
|
2014-06-02 16:10:29 +02:00 |
|
Manuel Pégourié-Gonnard
|
e76b750b69
|
Finish parsing RSASSA-PSS parameters
|
2014-06-02 16:10:29 +02:00 |
|
Manuel Pégourié-Gonnard
|
f346bab139
|
Start parsing RSASSA-PSS parameters
|
2014-06-02 16:10:29 +02:00 |
|
Manuel Pégourié-Gonnard
|
59a75d5b9d
|
Basic parsing of certs signed with RSASSA-PSS
|
2014-06-02 16:10:29 +02:00 |
|
Paul Bakker
|
1ebc0c592c
|
Fix typos
|
2014-05-22 15:47:58 +02:00 |
|
Paul Bakker
|
b5212b436f
|
Merge CCM cipher mode and ciphersuites
Conflicts:
library/ssl_tls.c
|
2014-05-22 15:30:31 +02:00 |
|
Paul Bakker
|
4cdb4d9bb7
|
X509 time-related tests depend on POLARSSL_HAVE_TIME
|
2014-05-22 14:22:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
542eac5aba
|
Add tests for CCM via cipher layer
|
2014-05-20 17:26:16 +02:00 |
|
Manuel Pégourié-Gonnard
|
64bf996fd9
|
Add test vectors for Camellia-CCM
|
2014-05-14 14:10:35 +02:00 |
|
Manuel Pégourié-Gonnard
|
0f6b66dba1
|
CCM operations allow input == output
|
2014-05-14 14:10:35 +02:00 |
|
Manuel Pégourié-Gonnard
|
e8b8d01782
|
Use tighter buffers in CCM test suite
|
2014-05-07 12:13:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
87df5ba0a1
|
Add test for length checks
|
2014-05-07 12:13:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
ce77d55023
|
Implement ccm_auth_decrypt()
|
2014-05-07 12:13:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
002323340a
|
Refactor to prepare for CCM decryption
|
2014-05-07 12:13:12 +02:00 |
|
Manuel Pégourié-Gonnard
|
9322e49037
|
Add NIST CAVS 11.0 test vectors for AES-CCM
Since there are 2160 test vectors fro encryption, which is a lot,
only the first one (out of ten) for each length quadruple was kept.
|
2014-05-07 12:13:12 +02:00 |
|
Manuel Pégourié-Gonnard
|
637eb3d31d
|
Add ccm_encrypt_and_tag()
|
2014-05-07 12:13:12 +02:00 |
|
Manuel Pégourié-Gonnard
|
9fe0d13e8d
|
Add ccm_init/free()
|
2014-05-06 12:12:45 +02:00 |
|
Manuel Pégourié-Gonnard
|
a6916fada8
|
Add (placeholder) CCM module
|
2014-05-06 11:28:09 +02:00 |
|
Paul Bakker
|
da13016d84
|
Prepped for 1.3.7 release
|
2014-05-01 14:27:19 +02:00 |
|
Paul Bakker
|
2a024ac86a
|
Merge dependency fixes
|
2014-04-30 16:50:59 +02:00 |
|
Paul Bakker
|
f96f7b607a
|
On OpenBSD, use arc4random_buf() instead of rand() to prevent warnings
|
2014-04-30 16:02:38 +02:00 |
|
Paul Bakker
|
24f37ccaed
|
rsa_check_pubkey() now allows an E up to N
|
2014-04-30 13:43:51 +02:00 |
|
Paul Bakker
|
0f90d7d2b5
|
version_check_feature() added to check for compile-time options at run-time
|
2014-04-30 11:49:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
3d41370645
|
Fix hash dependencies in X.509 tests
|
2014-04-29 15:29:41 +02:00 |
|
Manuel Pégourié-Gonnard
|
edc81ff8c2
|
Fix some more curve depends in X.509 tests
|
2014-04-29 15:10:40 +02:00 |
|
Manuel Pégourié-Gonnard
|
ec4d27398a
|
Fix curve dependencies in *keyusage tests
|
2014-04-29 15:06:41 +02:00 |
|
Paul Bakker
|
c73079a78c
|
Add debug_set_threshold() and thresholding of messages
|
2014-04-25 16:58:16 +02:00 |
|
Paul Bakker
|
92478c37a6
|
Debug module only outputs full lines instead of parts
|
2014-04-25 16:58:15 +02:00 |
|
Paul Bakker
|
eaebbd5eaa
|
debug_set_log_mode() added to determine raw or full logging
|
2014-04-25 16:58:14 +02:00 |
|
Paul Bakker
|
57ffa5570d
|
Add tests for debug_print_ret() and debug_print_buf().
|
2014-04-25 16:58:13 +02:00 |
|
Paul Bakker
|
2b34657b39
|
Updated Debug test suite data
|
2014-04-25 16:58:12 +02:00 |
|
Paul Bakker
|
8a0c0a9ed9
|
Check additional return values in some test cases
|
2014-04-17 17:24:23 +02:00 |
|
Paul Bakker
|
94b916c7b5
|
Split assignment and assert check into seperate lines in tests
|
2014-04-17 16:07:20 +02:00 |
|
Paul Bakker
|
dd0aae92e0
|
Replaced strcpy() with strncpy() in tests suites
|
2014-04-17 16:06:37 +02:00 |
|
Paul Bakker
|
b6487dade9
|
Fixed result for test case in test_suite_x509parse
|
2014-04-17 16:04:33 +02:00 |
|
Paul Bakker
|
784b04ff9a
|
Prepared for version 1.3.6
|
2014-04-11 15:33:59 +02:00 |
|
Paul Bakker
|
d8b0c5ef01
|
Fixed typo
|
2014-04-11 15:31:33 +02:00 |
|
Paul Bakker
|
52c5af7d2d
|
Merge support for verifying the extendedKeyUsage extension in X.509
|
2014-04-11 13:58:57 +02:00 |
|
Paul Bakker
|
1630058dde
|
Potential buffer overwrite in pem_write_buffer() fixed
Length indication when given a too small buffer was off.
Added regression test in test_suite_pem to detect this.
|
2014-04-11 13:58:05 +02:00 |
|
Manuel Pégourié-Gonnard
|
add05d7125
|
Fix some dependency declarations in X.509 tests
|
2014-04-11 11:12:40 +02:00 |
|
Manuel Pégourié-Gonnard
|
7afb8a0dca
|
Add x509_crt_check_extended_key_usage()
|
2014-04-11 11:09:00 +02:00 |
|
Paul Bakker
|
5c986f5244
|
Make test suite checks dependent on POLARSSL_X509_CHECK_KEY_USAGE
|
2014-04-09 16:58:51 +02:00 |
|
Manuel Pégourié-Gonnard
|
99d4f19111
|
Add keyUsage checking for CAs
|
2014-04-09 15:50:58 +02:00 |
|
Manuel Pégourié-Gonnard
|
603116c570
|
Add x509_crt_check_key_usage()
|
2014-04-09 15:50:57 +02:00 |
|
Manuel Pégourié-Gonnard
|
0148875cfc
|
Add tests and fix bugs for RSA-alt contexts
|
2014-04-04 17:46:46 +02:00 |
|
Manuel Pégourié-Gonnard
|
edb242fb2f
|
Minimally test md_process and associated wrappers
|
2014-04-04 16:42:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
f8708ddc95
|
Also test shax_hmac_reset in test_suite_hmac_shax
|
2014-04-04 16:42:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
9ce7e8414a
|
Add test for des_key_check_weak()
|
2014-04-04 16:42:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
3fec220a33
|
Add test for dhm_parse_dhmfile
|
2014-04-04 16:42:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
66dfc5a689
|
Add test for cipher_list()
|
2014-04-04 16:42:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
f3013830cc
|
Tests for MD info functions
|
2014-04-04 16:42:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
5819db1384
|
Test RIPEMD160 via MD layer more completely
|
2014-04-04 16:34:37 +02:00 |
|
Manuel Pégourié-Gonnard
|
59ba4e983b
|
Test generic md_hmac_reset()
|
2014-04-04 16:34:37 +02:00 |
|
Manuel Pégourié-Gonnard
|
58319e7f5c
|
Test mdX_hmax_reset() functions
|
2014-04-04 16:34:37 +02:00 |
|
Manuel Pégourié-Gonnard
|
7afdb88216
|
Test and fix x509_oid functions
|
2014-04-04 16:34:30 +02:00 |
|
Manuel Pégourié-Gonnard
|
6c1a73e061
|
Improve x509xrite_csr testing: extensions, version
|
2014-04-04 16:33:01 +02:00 |
|
Manuel Pégourié-Gonnard
|
c5ce83a3b8
|
Improve x509xrite_csr testing: extensions, ECDSA
|
2014-04-04 16:33:01 +02:00 |
|
Manuel Pégourié-Gonnard
|
52a555cd7d
|
Also test backwards compat strerror() function
|
2014-04-04 16:33:00 +02:00 |
|
Manuel Pégourié-Gonnard
|
7b30cfc5b0
|
x509_crt_info() list output cosmectics
|
2014-04-04 14:01:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
f6f4ab40d3
|
Print extended key usage in x509_crt_info()
|
2014-04-04 14:01:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
65c2ddc318
|
Print key_usage in x509_crt_info()
|
2014-04-04 14:01:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
bce2b30855
|
Print subject alt name in x509_crt_info()
|
2014-04-04 14:01:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
919f8f5829
|
Print NS Cert Type in x509_crt_info()
|
2014-04-04 14:01:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
b28487db1f
|
Start printing extensions in x509_crt_info()
|
2014-04-04 14:01:39 +02:00 |
|
Paul Bakker
|
96d5265315
|
Made ready for release 1.3.5
|
2014-03-26 16:55:50 +01:00 |
|
Manuel Pégourié-Gonnard
|
c042cf0013
|
Fix broken tests due to changed error code
Introduced in 5246ee5c59
|
2014-03-26 14:12:20 +01:00 |
|
Manuel Pégourié-Gonnard
|
a11a77f316
|
Add test for SpecifiedECDomain
|
2014-03-19 16:50:59 +01:00 |
|
Manuel Pégourié-Gonnard
|
c7a88a960d
|
Fix more depend issues on specific curves
|
2014-03-13 19:25:06 +01:00 |
|
Manuel Pégourié-Gonnard
|
9533765b25
|
Reject certs and CRLs from the future
|
2014-03-13 19:25:06 +01:00 |
|
Manuel Pégourié-Gonnard
|
6304f786e0
|
Add x509_time_future()
|
2014-03-13 19:25:06 +01:00 |
|
Manuel Pégourié-Gonnard
|
29dcc0b93c
|
Fix depend issues in test suites for cipher modes
|
2014-03-13 19:25:06 +01:00 |
|
Manuel Pégourié-Gonnard
|
c9093085ed
|
Revert "Merged RSA-PSS support in Certificate, CSR and CRL"
This reverts commit ab50d8d30c , reversing
changes made to e31b1d992a .
|
2014-02-12 09:39:59 +01:00 |
|
Paul Bakker
|
ab50d8d30c
|
Merged RSA-PSS support in Certificate, CSR and CRL
|
2014-02-06 13:14:56 +01:00 |
|
Manuel Pégourié-Gonnard
|
fbf0915404
|
Fix bug in RSA PKCS#1 v1.5 "reversed" operations
|
2014-02-05 17:01:24 +01:00 |
|
Manuel Pégourié-Gonnard
|
c4919bc528
|
Add tests for rsa_copy()
|
2014-02-05 17:00:39 +01:00 |
|
Manuel Pégourié-Gonnard
|
725afd8b55
|
Fix the 'error' test suite
|
2014-02-01 11:54:28 +01:00 |
|
Manuel Pégourié-Gonnard
|
e6cdbbd40b
|
Add tests for th init_buf() variant of HMAC_DRBG
|
2014-02-01 11:30:03 +01:00 |
|
Manuel Pégourié-Gonnard
|
7575daa1f2
|
Expand CTR_DRBG test coverage
|
2014-01-31 12:16:54 +01:00 |
|
Manuel Pégourié-Gonnard
|
b3b205e081
|
Clean up details in ctr_drbg_selftest()
|
2014-01-31 12:04:06 +01:00 |
|
Manuel Pégourié-Gonnard
|
79afaa0551
|
Add hmac_drbg_selftest()
|
2014-01-31 11:52:14 +01:00 |
|
Manuel Pégourié-Gonnard
|
62273b88ab
|
Add NIST validation tests for HMAC_DRBG pr=true
|
2014-01-31 10:19:05 +01:00 |
|
Manuel Pégourié-Gonnard
|
24600b7c8a
|
Add NIST validation tests for HMAC_DRBG nopr
|
2014-01-31 09:58:12 +01:00 |
|
Manuel Pégourié-Gonnard
|
4f880a5dc2
|
Add misc tests for HMAC_DRBG
|
2014-01-30 23:17:33 +01:00 |
|
Manuel Pégourié-Gonnard
|
48bc3e81da
|
Add hmac_drbg_{write,update}_seed_file()
|
2014-01-30 23:17:33 +01:00 |
|
Manuel Pégourié-Gonnard
|
6801f39397
|
Add NIST no_reseed validation tests for HMAC_DRBG
|
2014-01-30 23:17:33 +01:00 |
|
Paul Bakker
|
2aca241425
|
Ready for release 1.3.4
|
2014-01-27 11:59:30 +01:00 |
|
Paul Bakker
|
42099c3155
|
Revert "Add pk_rsa_set_padding() and rsa_set_padding()"
This reverts commit b4fae579e8 .
Conflicts:
library/pk.c
tests/suites/test_suite_pk.data
tests/suites/test_suite_pk.function
|
2014-01-27 11:59:29 +01:00 |
|
Manuel Pégourié-Gonnard
|
41cae8e1f9
|
Parse CSRs signed with RSASSA-PSS
|
2014-01-25 12:48:58 +01:00 |
|
Manuel Pégourié-Gonnard
|
d4fd57dda4
|
Add tests for parsing CSRs
|
2014-01-25 12:48:58 +01:00 |
|
Manuel Pégourié-Gonnard
|
5eeb32b552
|
Parse CRLs signed with RSASSA-PSS
|
2014-01-25 12:48:58 +01:00 |
|
Manuel Pégourié-Gonnard
|
ce7c6fd433
|
Fix dependencies
|
2014-01-25 12:48:58 +01:00 |
|
Manuel Pégourié-Gonnard
|
3c1e8b539c
|
Finish parsing RSASSA-PSS parameters
|
2014-01-25 12:48:58 +01:00 |
|
Manuel Pégourié-Gonnard
|
d9fd87be33
|
Start parsing RSASSA-PSS parameters
|
2014-01-25 12:48:58 +01:00 |
|
Manuel Pégourié-Gonnard
|
b1d4eb16e4
|
Basic parsing of certs signed with RSASSA-PSS
|
2014-01-25 12:48:58 +01:00 |
|
Paul Bakker
|
556efba51c
|
Added AES CFB8 mode
|
2014-01-24 15:38:12 +01:00 |
|
Manuel Pégourié-Gonnard
|
a56d363724
|
Fix missing dependency declaration in test
|
2014-01-23 17:50:56 +01:00 |
|
Manuel Pégourié-Gonnard
|
027a7cb800
|
Rm now useless test helper function
|
2014-01-23 17:00:33 +01:00 |
|
Manuel Pégourié-Gonnard
|
544416aa99
|
Fix failing ECDH test (test vectors misuse)
|
2014-01-23 16:55:18 +01:00 |
|
Paul Bakker
|
bf98c3dd11
|
Merged deterministic ECDSA
Conflicts:
library/ecdsa.c
|
2014-01-23 15:48:01 +01:00 |
|
Manuel Pégourié-Gonnard
|
2d5f142dc6
|
Fix warning in main_test
|
2014-01-22 16:01:17 +01:00 |
|
Manuel Pégourié-Gonnard
|
dfab4c1193
|
Add forgotten #ifdef and depends_on
|
2014-01-22 16:01:06 +01:00 |
|
Manuel Pégourié-Gonnard
|
e707eb6df3
|
Fix unused variable in test case
|
2014-01-22 14:57:36 +01:00 |
|
Paul Bakker
|
5862eee4ca
|
Merged RIPEMD-160 support
|
2014-01-22 14:18:34 +01:00 |
|
Paul Bakker
|
61b699ed1b
|
Renamed RMD160 to RIPEMD160
|
2014-01-22 14:17:31 +01:00 |
|
Paul Bakker
|
0ac99ca7bc
|
Merged support for secp224k1, secp192k1 and secp25k1
|
2014-01-22 13:10:48 +01:00 |
|
Manuel Pégourié-Gonnard
|
b4fae579e8
|
Add pk_rsa_set_padding() and rsa_set_padding()
|
2014-01-22 13:03:27 +01:00 |
|
Manuel Pégourié-Gonnard
|
ea499a7321
|
Add support for secp192k1
|
2014-01-17 21:41:39 +01:00 |
|
Manuel Pégourié-Gonnard
|
18e3ec9b4d
|
Add support for secp224k1
|
2014-01-17 21:41:39 +01:00 |
|
Manuel Pégourié-Gonnard
|
e4d47a655b
|
Add RIPEMD-160 to the generic MD layer
|
2014-01-17 20:41:32 +01:00 |
|
Manuel Pégourié-Gonnard
|
ff40c3ac34
|
Add HMAC support to RIPEMD-160
|
2014-01-17 20:04:59 +01:00 |
|
Manuel Pégourié-Gonnard
|
130fe97055
|
Tighten sizes in mdx.function
|
2014-01-17 14:23:48 +01:00 |
|
Manuel Pégourié-Gonnard
|
df2437d156
|
Rm redundant "depends" in mdx.data
|
2014-01-17 14:09:46 +01:00 |
|
Manuel Pégourié-Gonnard
|
cab4a8807c
|
Add RIPEMD-160 (core functions)
|
2014-01-17 14:04:25 +01:00 |
|
Manuel Pégourié-Gonnard
|
f51c8fc353
|
Add support for secp256k1 arithmetic
|
2014-01-10 18:17:18 +01:00 |
|
Manuel Pégourié-Gonnard
|
937340bce0
|
Add ecdsa_write_signature_det()
|
2014-01-06 15:29:03 +01:00 |
|
Manuel Pégourié-Gonnard
|
4daaef7e27
|
Add ecdsa_sign_det() with test vectors
|
2014-01-06 15:29:03 +01:00 |
|
Manuel Pégourié-Gonnard
|
fae079e4c5
|
Adapt ECDSA tests to new ecp_gen_keypair()
|
2014-01-06 11:01:24 +01:00 |
|
Manuel Pégourié-Gonnard
|
217a29c844
|
Fix bug in rnd_pseudo_rnd() test helper function
Only the first 4 bytes of the output were set, the rest was untouched.
|
2014-01-03 12:19:19 +01:00 |
|
Paul Bakker
|
5bc07a3d30
|
Prepped for 1.3.3
|
2013-12-31 10:57:44 +01:00 |
|
Paul Bakker
|
3a8cb6ff8e
|
Proper const modifier in test_suite_x509_csr_check()
|
2013-12-30 20:41:54 +01:00 |
|
Paul Bakker
|
a5320904bf
|
Fixed dependency on POLARSSL_GENPRIME in PK tests
|
2013-12-19 17:29:52 +01:00 |
|
Paul Bakker
|
474c2ce05f
|
Fixed dependencies for some tests
|
2013-12-19 16:40:30 +01:00 |
|
Manuel Pégourié-Gonnard
|
a60fe8943d
|
Add mpi_safe_cond_swap()
|
2013-12-05 15:58:38 +01:00 |
|
Manuel Pégourié-Gonnard
|
357ff65a51
|
Details in ecp_mul_mxz()
|
2013-12-05 15:58:38 +01:00 |
|
Manuel Pégourié-Gonnard
|
fe0af405f9
|
Adapt ecp_gen_keypair() to Curve25519
|
2013-12-05 15:58:38 +01:00 |
|
Manuel Pégourié-Gonnard
|
9a4a5ac4de
|
Fix bug in mpi_set_bit
|
2013-12-05 15:58:38 +01:00 |
|
Manuel Pégourié-Gonnard
|
a0179b8c4a
|
Change ecp_mul to handle Curve25519 too
|
2013-12-05 15:58:38 +01:00 |
|
Manuel Pégourié-Gonnard
|
312d2e8ea2
|
Adapt key checking functions for Curve25519
|
2013-12-05 15:58:38 +01:00 |
|
Paul Bakker
|
76af736a47
|
Merged splitting off curves from ecp.c into ecp_curves.c
|
2013-12-02 22:01:26 +01:00 |
|
Paul Bakker
|
a2ffccd09f
|
Fixed memory leak in new x509parse test
|
2013-12-02 21:56:37 +01:00 |
|
Manuel Pégourié-Gonnard
|
a0d758b917
|
Fix typo in test dependency
|
2013-12-02 16:34:24 +01:00 |
|
Paul Bakker
|
c680405135
|
Removed test for empty data_files/dir0
dir0 is not in git (empty directories cannot be added to git)
|
2013-12-02 15:26:02 +01:00 |
|
Paul Bakker
|
014f143c2a
|
Merged EC key generation support
|
2013-12-02 14:55:09 +01:00 |
|
Manuel Pégourié-Gonnard
|
0267e3dc9b
|
Add ecp_curve_info_from_name()
|
2013-11-30 15:10:14 +01:00 |
|
Manuel Pégourié-Gonnard
|
104ee1d1f6
|
Add ecp_genkey(), prettier wrapper
|
2013-11-30 14:35:07 +01:00 |
|
Manuel Pégourié-Gonnard
|
fbae2a1f53
|
Add tests for x509_crt_parse_path()
|
2013-11-28 18:07:39 +01:00 |
|
Paul Bakker
|
3ddfa663a5
|
Renamed test_offset to prevent clash with one in ctr_drbg.c
|
2013-11-26 17:45:20 +01:00 |
|
Paul Bakker
|
3209ce3692
|
Merged ECP improvements
|
2013-11-26 15:19:17 +01:00 |
|
Paul Bakker
|
e4c71f0e11
|
Merged Prime generation improvements
|
2013-11-25 14:27:28 +01:00 |
|
Paul Bakker
|
8fc30b178c
|
Various const fixes
|
2013-11-25 13:29:43 +01:00 |
|
Manuel Pégourié-Gonnard
|
378fb4b70a
|
Split mpi_is_prime() and make its first arg const
|
2013-11-22 19:40:32 +01:00 |
|
Manuel Pégourié-Gonnard
|
3e3d2b818c
|
Fix bug in mpi_safe_cond_assign()
|
2013-11-21 21:56:38 +01:00 |
|
Manuel Pégourié-Gonnard
|
71c2c21601
|
Add mpi_safe_cond_assign()
|
2013-11-21 21:56:38 +01:00 |
|
Manuel Pégourié-Gonnard
|
5868163e07
|
Add mpi_shrink()
|
2013-11-21 21:56:38 +01:00 |
|
Manuel Pégourié-Gonnard
|
ff27b7c968
|
Tighten ecp_mul() validity checks
|
2013-11-21 21:56:38 +01:00 |
|
Paul Bakker
|
f4dc186818
|
Prep for PolarSSL 1.3.2
|
2013-11-04 17:29:42 +01:00 |
|
Paul Bakker
|
60b1d10131
|
Fixed spelling / typos (from PowerDNS:codespell)
|
2013-10-29 10:02:51 +01:00 |
|
Paul Bakker
|
7bc745b6a1
|
Merged constant-time padding checks
|
2013-10-28 14:40:26 +01:00 |
|
Paul Bakker
|
1642122f8b
|
Merged support for Camellia-GCM + ciphersuite and fixes to cipher layer
|
2013-10-28 14:38:35 +01:00 |
|
Paul Bakker
|
3f917e230d
|
Merged optimizations for MODP NIST curves
|
2013-10-28 14:18:26 +01:00 |
|
Paul Bakker
|
08bb187bb6
|
Merged Public Key framwork tests
|
2013-10-28 14:11:09 +01:00 |
|
Manuel Pégourié-Gonnard
|
3daaf3d21d
|
X509 key identifiers depend on SHA1
|
2013-10-28 13:58:32 +01:00 |
|
Manuel Pégourié-Gonnard
|
f8669dabf2
|
Fix error.c test suite relying on old name
|
2013-10-28 13:58:10 +01:00 |
|
Manuel Pégourié-Gonnard
|
7446833626
|
Fix endianness issue in test helper function
|
2013-10-28 13:02:20 +01:00 |
|
Manuel Pégourié-Gonnard
|
f8ab069d6a
|
Make get_pkcs_padding() constant-time
|
2013-10-27 17:25:57 +01:00 |
|
Manuel Pégourié-Gonnard
|
c2bd7a2f2f
|
Add test vectors for Camellia-GCM via cipher layer
|
2013-10-24 16:49:51 +02:00 |
|
Manuel Pégourié-Gonnard
|
0684f74023
|
Add failing test vectors for Camellia-GCM auth
|
2013-10-24 16:19:30 +02:00 |
|
Manuel Pégourié-Gonnard
|
2009718fbe
|
Add tests for AES-{192,256}-GCM in cipher layer
|
2013-10-24 16:02:02 +02:00 |
|
Manuel Pégourié-Gonnard
|
87181d1deb
|
Add Camellia-GCM to th cipher layer
|
2013-10-24 14:02:40 +02:00 |
|
Manuel Pégourié-Gonnard
|
7bd8a99e11
|
Fix GCM dependencies
|
2013-10-24 13:39:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
13e0d449f7
|
Add Camellia-GCM test vectors
https://tools.ietf.org/html/draft-kato-ipsec-camellia-gcm-03#section-4
|
2013-10-24 13:24:25 +02:00 |
|
Manuel Pégourié-Gonnard
|
083d66821e
|
Make GCM tests accept any cipher, not just AES
|
2013-10-24 13:21:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
94dd5b4dd4
|
Rename GCM test suites to AES-GCM
|
2013-10-24 13:21:39 +02:00 |
|
Manuel Pégourié-Gonnard
|
e783f06f73
|
Start working on mod_p224
(Prototype, works only on 32-bit and little-endian 64-bit.)
|
2013-10-23 13:24:55 +02:00 |
|
Manuel Pégourié-Gonnard
|
cc67aee9c8
|
Make ecp_mod_p521 a bit faster
|
2013-10-23 13:24:55 +02:00 |
|
Manuel Pégourié-Gonnard
|
d1e7a45fdd
|
Rework ecp_mod_p192()
On x86_64, this makes it 5x faster, and ecp_mul() 17% faster for this curve.
The code is shorter too.
|
2013-10-23 13:24:55 +02:00 |
|
Manuel Pégourié-Gonnard
|
748190d319
|
Fix some dependency issues
|
2013-10-17 13:26:48 +02:00 |
|
Manuel Pégourié-Gonnard
|
75c7882de3
|
Add PK test for forbidden operations
|
2013-10-17 12:57:47 +02:00 |
|
Manuel Pégourié-Gonnard
|
67d4583835
|
Add PK tests for rsa encrypt/decrypt
|
2013-10-17 12:57:47 +02:00 |
|
Manuel Pégourié-Gonnard
|
b0a467fdbe
|
Start adding a PK test suite
|
2013-10-15 15:19:59 +02:00 |
|
Paul Bakker
|
5c17ccdf2a
|
Bumped version to 1.3.1
|
2013-10-15 13:12:41 +02:00 |
|
Manuel Pégourié-Gonnard
|
48ac3db551
|
Add OIDs for brainpool curves
|
2013-10-10 15:11:33 +02:00 |
|
Manuel Pégourié-Gonnard
|
201401646e
|
Fix a few selftest typos
|
2013-10-10 13:21:48 +02:00 |
|
Manuel Pégourié-Gonnard
|
43545c8b4f
|
Add test vectors for brainpool curves
|
2013-10-10 12:56:00 +02:00 |
|
Paul Bakker
|
1337affc91
|
Buffer allocator threading support
|
2013-09-29 15:02:11 +02:00 |
|
Paul Bakker
|
1ffefaca1e
|
Introduced entropy_free()
|
2013-09-29 15:01:42 +02:00 |
|
Manuel Pégourié-Gonnard
|
420edcaf1d
|
Clean up config-suite-b.h thanks to new certs
|
2013-09-25 11:52:38 +02:00 |
|
Manuel Pégourié-Gonnard
|
cc648d19dc
|
Adapt test cases to new certs and file names
|
2013-09-24 21:25:54 +02:00 |
|
Manuel Pégourié-Gonnard
|
cbf3ef3861
|
RSA and ECDSA key exchanges don't depend on CRL
|
2013-09-24 21:25:53 +02:00 |
|
Paul Bakker
|
c27c4e2efb
|
Support faulty X509 v1 certificates with extensions
(POLARSSL_X509_ALLOW_EXTENSIONS_NON_V3)
|
2013-09-23 15:01:36 +02:00 |
|
Manuel Pégourié-Gonnard
|
a7496f00ff
|
Fix a few more warnings in small configurations
|
2013-09-20 11:29:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
4fee79b885
|
Fix some more depend issues
|
2013-09-20 10:58:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
387a211fad
|
Fix some dependencies in tests
|
2013-09-20 10:58:59 +02:00 |
|
Paul Bakker
|
5ad403f5b5
|
Prepared for 1.3.0 RC0
|
2013-09-18 21:21:30 +02:00 |
|
Manuel Pégourié-Gonnard
|
15d5de1969
|
Simplify usage of DHM blinding
|
2013-09-18 14:35:55 +02:00 |
|
Manuel Pégourié-Gonnard
|
456d3b9b0b
|
Make ECP error codes more specific
|
2013-09-18 14:35:53 +02:00 |
|
Manuel Pégourié-Gonnard
|
dd0f57f186
|
Check key size in cipher_setkey()
|
2013-09-18 14:34:32 +02:00 |
|
Paul Bakker
|
c559c7a680
|
Renamed x509_cert structure to x509_crt for consistency
|
2013-09-18 14:32:52 +02:00 |
|
Paul Bakker
|
ddf26b4e38
|
Renamed x509parse_* functions to new form
e.g. x509parse_crtfile -> x509_crt_parse_file
|
2013-09-18 13:46:23 +02:00 |
|
Paul Bakker
|
369d2eb2a2
|
Introduced x509_crt_init(), x509_crl_init() and x509_csr_init()
|
2013-09-18 12:01:43 +02:00 |
|
Paul Bakker
|
86d0c1949e
|
Generalized function names of x509 functions not parse-specific
x509parse_serial_gets -> x509_serial_gets
x509parse_dn_gets -> x509_dn_gets
x509parse_time_expired -> x509_time_expired
|
2013-09-18 12:01:42 +02:00 |
|
Paul Bakker
|
5187656211
|
Renamed X509 / X509WRITE error codes to generic (non-cert-specific)
|
2013-09-17 14:36:05 +02:00 |
|
Paul Bakker
|
36713e8ed9
|
Fixed bunch of X509_PARSE related defines / dependencies
|
2013-09-17 13:25:29 +02:00 |
|
Paul Bakker
|
7c6b2c320e
|
Split up X509 files into smaller modules
|
2013-09-16 21:41:54 +02:00 |
|
Paul Bakker
|
cff6842b39
|
POLARSSL_PEM_C split into POLARSSL_PEM_PARSE_C and POLARSSL_PEM_WRITE_C
|
2013-09-16 13:36:18 +02:00 |
|
Paul Bakker
|
77e23fb0e0
|
Move *_pemify() function to PEM module
|
2013-09-15 20:03:26 +02:00 |
|
Paul Bakker
|
40ce79f1e6
|
Moved DHM parsing from X509 module to DHM module
|
2013-09-15 17:43:54 +02:00 |
|
Paul Bakker
|
dce7fdcbc9
|
Fixed warnings in case POLARSSL_PEM_C is not defined
|
2013-09-15 17:15:26 +02:00 |
|
Paul Bakker
|
2292d1fad0
|
Fixed warnings in case POLARSSL_X509_PARSE_C is not defined
|
2013-09-15 17:06:49 +02:00 |
|
Paul Bakker
|
de56ca1097
|
The suite specific header should only be used when the suite is active
|
2013-09-15 17:05:21 +02:00 |
|
Paul Bakker
|
4606c7317b
|
Added POLARSSL_PK_PARSE_C and POLARSSL_PK_WRITE_C
|
2013-09-15 17:04:23 +02:00 |
|
Paul Bakker
|
428b9ba3b7
|
Moved POLARSSL_FS_IO check to .function from .data
|
2013-09-15 15:20:37 +02:00 |
|
Paul Bakker
|
e827ce013f
|
Fix for parse commit
|
2013-09-15 15:08:31 +02:00 |
|
Paul Bakker
|
c7bb02be77
|
Moved PK key writing from X509 module to PK module
|
2013-09-15 14:54:56 +02:00 |
|
Paul Bakker
|
1a7550ac67
|
Moved PK key parsing from X509 module to PK module
|
2013-09-15 13:47:30 +02:00 |
|
Manuel Pégourié-Gonnard
|
92cb1d3a91
|
Make CBC an option, step 3: individual ciphers
|
2013-09-13 17:25:43 +02:00 |
|
Manuel Pégourié-Gonnard
|
989ed38de2
|
Make CBC an option, step 2: cipher layer
|
2013-09-13 15:48:40 +02:00 |
|
Manuel Pégourié-Gonnard
|
4fe9200f47
|
Fix memory leak in GCM by adding gcm_free()
|
2013-09-13 13:45:58 +02:00 |
|
Manuel Pégourié-Gonnard
|
735b8fcb0b
|
Fix blunder in 8a109f1
|
2013-09-13 12:57:23 +02:00 |
|
Paul Bakker
|
9013af76a3
|
Merged major refactoring of x509write module into development
This refactoring adds support for proper CSR writing and X509
certificate generation / signing
|
2013-09-12 11:58:04 +02:00 |
|
Manuel Pégourié-Gonnard
|
0237620a78
|
Fix some dependencies declaration
|
2013-09-12 11:57:02 +02:00 |
|
Manuel Pégourié-Gonnard
|
31e59400d2
|
Add missing f_rng/p_rng arguments to x509write_crt
|
2013-09-12 11:57:02 +02:00 |
|
Manuel Pégourié-Gonnard
|
f38e71afd5
|
Convert x509write_crt interface to PK
|
2013-09-12 11:57:02 +02:00 |
|
Manuel Pégourié-Gonnard
|
6de63e480d
|
Add EC support to x509write_key
|
2013-09-12 11:57:01 +02:00 |
|
Manuel Pégourié-Gonnard
|
7f1f0926e4
|
Add test for x509write_key
|
2013-09-12 11:57:01 +02:00 |
|
Manuel Pégourié-Gonnard
|
3837daec9e
|
Add EC support to x509write_pubkey
|
2013-09-12 11:57:01 +02:00 |
|
Manuel Pégourié-Gonnard
|
e1f821a6eb
|
Adapt x509write_pubkey interface to use PK
key_app_writer will be fixed later
|
2013-09-12 11:57:01 +02:00 |
|
Manuel Pégourié-Gonnard
|
33250b0461
|
Add test for x509write_pubkey_pem()
|
2013-09-12 11:57:01 +02:00 |
|
Manuel Pégourié-Gonnard
|
ee73179b2f
|
Adapt x509write_csr prototypes for PK
|
2013-09-12 11:57:00 +02:00 |
|
Manuel Pégourié-Gonnard
|
27d87fa6c4
|
Fix many off-by-one errors
|
2013-09-12 11:57:00 +02:00 |
|
Paul Bakker
|
c0dcf0ceb1
|
Merged blinding additions for EC, RSA and DHM into development
|
2013-09-10 14:44:27 +02:00 |
|
Paul Bakker
|
36b7e1efe7
|
Merged GCM refactoring into development
GCM is now independent of AES and can be used as a mode for any
cipher-layer supported 128-bit based block cipher
|
2013-09-10 14:41:05 +02:00 |
|
Paul Bakker
|
a5943858d8
|
x509_verify() now case insensitive for cn (RFC 6125 6.4)
|
2013-09-09 17:21:45 +02:00 |
|
Paul Bakker
|
cd35803684
|
Changes x509_csr to x509write_csr
|
2013-09-09 12:38:45 +02:00 |
|
Paul Bakker
|
43aff2aec4
|
Moved GCM to use cipher layer instead of AES directly
|
2013-09-09 00:10:27 +02:00 |
|
Paul Bakker
|
5e0efa7ef5
|
Added POLARSSL_MODE_ECB to the cipher layer
|
2013-09-08 23:04:04 +02:00 |
|
Paul Bakker
|
2397cf3ede
|
First certificate writing test. Full server1.crt reconstruction
|
2013-09-08 15:58:15 +02:00 |
|
Manuel Pégourié-Gonnard
|
b8bd593741
|
Restrict cipher_update() for GCM
|
2013-09-05 17:06:10 +02:00 |
|
Manuel Pégourié-Gonnard
|
1af50a240b
|
Cipher: test multiple cycles
GCM-cipher: just trust the user to call update_ad at the right time
|
2013-09-05 17:06:10 +02:00 |
|
Manuel Pégourié-Gonnard
|
ed8a02bfae
|
Simplify DH blinding a bit
|
2013-09-04 17:18:28 +02:00 |
|
Manuel Pégourié-Gonnard
|
143b5028a5
|
Implement DH blinding
|
2013-09-04 16:29:59 +02:00 |
|
Manuel Pégourié-Gonnard
|
2d627649bf
|
Change dhm_calc_secret() prototype
|
2013-09-04 14:22:07 +02:00 |
|
Manuel Pégourié-Gonnard
|
f7ce67f0d2
|
Add tests for gcm via cipher
|
2013-09-04 12:14:11 +02:00 |
|
Manuel Pégourié-Gonnard
|
8eccab5077
|
Add test vectors to the cipher test suite
Ensures the selected cipher/mode/padding is actually used
and padding and tag are actually checked.
|
2013-09-04 12:12:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
43a4780b03
|
Ommit AEAD functions if GCM not defined
|
2013-09-03 19:28:35 +02:00 |
|
Manuel Pégourié-Gonnard
|
aa9ffc5e98
|
Split tag handling out of cipher_finish()
|
2013-09-03 19:20:55 +02:00 |
|
Manuel Pégourié-Gonnard
|
2adc40c346
|
Split cipher_update_ad() out or cipher_reset()
|
2013-09-03 19:20:55 +02:00 |
|
Manuel Pégourié-Gonnard
|
9c853b910c
|
Split cipher_set_iv() out of cipher_reset()
|
2013-09-03 13:04:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
e09d2f8261
|
Change ecp_mul() prototype to allow randomization
(Also improve an error code while at it.)
|
2013-09-02 14:29:09 +02:00 |
|
Manuel Pégourié-Gonnard
|
9241be7ac5
|
Change cipher prototypes for GCM
|
2013-08-31 18:07:42 +02:00 |
|
Manuel Pégourié-Gonnard
|
07f8fa5a69
|
GCM in the cipher layer, step 1
- no support for additional data
- no support for tag
|
2013-08-31 16:08:22 +02:00 |
|
Manuel Pégourié-Gonnard
|
b5e85885de
|
Handle NULL as a stream cipher for more uniformity
|
2013-08-30 17:11:28 +02:00 |
|
Manuel Pégourié-Gonnard
|
37e230c022
|
Add arc4 support in the cipher layer
|
2013-08-30 17:11:28 +02:00 |
|
Paul Bakker
|
48377d9834
|
Configuration option to enable/disable POLARSSL_PKCS1_V15 operations
|
2013-08-30 13:41:14 +02:00 |
|
Paul Bakker
|
548957dd49
|
Refactored RSA to have random generator in every RSA operation
Primarily so that rsa_private() receives an RNG for blinding purposes.
|
2013-08-30 10:30:02 +02:00 |
|
Paul Bakker
|
ca174fef80
|
Merged refactored x509write module into development
|
2013-08-28 16:32:51 +02:00 |
|
Paul Bakker
|
577e006c2f
|
Merged ECDSA-based key-exchange and ciphersuites into development
Conflicts:
include/polarssl/config.h
library/ssl_cli.c
library/ssl_srv.c
library/ssl_tls.c
|
2013-08-28 11:58:40 +02:00 |
|
Manuel Pégourié-Gonnard
|
a0f07478ee
|
Rm redundant dependencies in test files
|
2013-08-28 10:10:09 +02:00 |
|