Commit graph

4212 commits

Author SHA1 Message Date
Paul Bakker a9f02c8c21 Fix for #441 - crypt and hash gcm (#546)
* Fix crypt_and_hash to support decrypting GCM encrypted files

* Fix documentation in crypt_and_hash for the generic case

* Remove unused lastn from crypt_and_hash

lastn is not used with the cipher layer as it already provides padding
and understanding of length of the original data.
2016-09-02 22:08:18 +01:00
Simon Butcher e88c9102e4 Merge pull request #538 from andresag01/mbedtls-2.1-iotssl-472-ca-chain-with-invalid-dates
Mbedtls 2.1 iotssl 472 ca chain with invalid dates
2016-07-19 13:07:48 +01:00
Simon Butcher 8b459923ac Add missing dependencies to X509 Parse test suite for P-384 curve
The test script curves.pl was failing on testing dependencies for the P-384
curve on the new test cases introduced by ede75f0 and 884b4fc.
2016-07-15 12:53:25 +01:00
Janos Follath 7b26865529 X509: Fix bug triggered by future CA among trusted
Fix an issue that caused valid certificates being rejected whenever an
expired or not yet valid version of the trusted certificate was before the
valid version in the trusted certificate list.
2016-07-14 13:19:46 +01:00
Janos Follath e223527da0 X509: Future CA among trusted: add more tests 2016-07-14 12:02:56 +01:00
Janos Follath 38921c8837 X509: Future CA among trusted: add unit tests 2016-07-14 12:02:50 +01:00
Simon Butcher b998e27547 Merge branch 'mbedtls-2.1' 2016-06-27 19:57:27 +01:00
Simon Butcher c38aa616a0 Update ChangeLog for Release 2016-06-27 19:49:04 +01:00
Simon Butcher 64f5df5545 Changed version number to version 2.1.5 2016-06-27 19:37:08 +01:00
Simon Butcher 88aa189415 Merge branch 'mbedtls-2.1' into mbedtls-2.1 2016-06-27 01:16:16 +01:00
Simon Butcher 60e2b2fe22 Fix whitespace and formatting in ssl_srv.c 2016-05-23 16:41:16 +01:00
Janos Follath 83f26052bf Fix non compliance SSLv3 in server extension handling.
The server code parses the client hello extensions even when the
protocol is SSLv3 and this behaviour is non compliant with rfc6101.
Also the server sends extensions in the server hello and omitting
them may prevent interoperability problems.
2016-05-23 14:50:15 +01:00
Janos Follath b700c46750 Add a test for SSLv3 with extensions, server side
This test verifies if the server parses or sends extensions when
the protocol is SSLv3.
2016-05-23 14:43:54 +01:00
Paul Bakker 3b224ffd25 Split test into valgrind and no-valgrind version
Running valgrind on: "DTLS client reconnect from same port: reconnect,
nbio" results in timeouts.

New version added that runs only under valgrind. Original only runs when
valgrind is not used
2016-05-22 21:49:34 +01:00
Simon Butcher 6eb066ed56 Fixes RC4 config dependencies in tests in ssl-opt.h
Adds dependencies on MBEDTLS_REMOVE_ARC4_CIPHERSUITES for tests that
require RC4 to be disabled (the default config).
2016-05-19 22:25:42 +01:00
Simon Butcher df8c386a64 Merge branch 'mbedtls-2.1' 2016-05-18 19:52:37 +01:00
Janos Follath f06edd695a Remove unused code from PKCS1v15 test suite 2016-05-18 19:36:04 +01:00
Simon Butcher e87e7064cb Fixes typo in platform.h 2016-05-18 19:36:04 +01:00
Simon Butcher 282e1d9130 Add missing config dependencies to PKCS1 V15 tests 2016-05-18 19:36:03 +01:00
Simon Butcher c019035e8e Add missing stdlib.h header to rsa sample programs 2016-05-18 19:36:03 +01:00
Simon Butcher 663638d202 Corrects platform return values in rsa sample programs 2016-05-18 19:36:03 +01:00
Simon Butcher 4529c48c42 Fixes error and exit paths in rsa sample programs 2016-05-18 19:36:03 +01:00
Janos Follath bffa68d3ca Fix memory leaks in example programs. 2016-05-18 19:36:03 +01:00
Janos Follath 329149e575 Add tests to cover PKCS1 v1.5 signature functions.
The reported memory leak should have been spotted by
make memcheck
But it wasn't. Keeping the tests for better coverage.
2016-05-18 19:36:03 +01:00
Janos Follath c184d9d34f Fix the broken pkcs1 v1.5 test.
The random buffer handed over to the test function was too small
and the remaining bytes were generated by the default (platform
dependant) function.
2016-05-18 19:36:03 +01:00
Janos Follath 6200b50518 Extended ChangeLog entry 2016-05-18 19:36:02 +01:00
Janos Follath 25da9b35cf Moved underflow test to better reflect time constant behaviour. 2016-05-18 19:33:39 +01:00
Janos Follath d5770a1d78 Add Changelog entry for current branch 2016-05-18 19:33:39 +01:00
Janos Follath 43e9297e12 Included test for integer underflow. 2016-05-18 19:30:09 +01:00
Janos Follath 9ccbd6313f Add Changelog entry for current branch 2016-05-18 19:30:09 +01:00
Janos Follath e33f559de1 Included tests for the overflow 2016-05-18 19:30:09 +01:00
Janos Follath e007c9fede Removing 'if' branch from the fix.
This new error shouldn't be distinguishable from other padding errors.
Updating 'bad' instead of adding a new 'if' branch.
2016-05-18 19:30:09 +01:00
Janos Follath b645c45865 Add tests for the bug IOTSSL-619.
The main goal with these tests is to test the bug in question and
they are not meant to test the entire PKCS#1 v1.5 behaviour. To
achieve full test coverage, further test cases are needed.
2016-05-18 19:30:09 +01:00
Janos Follath ea6cbb957c Add Changelog entry for current branch 2016-05-18 19:30:09 +01:00
Janos Follath a95834340a Length check added 2016-05-18 19:30:09 +01:00
SimonB 493abdf692 Clarifies documentation on reported memory statistics 2016-05-05 17:55:19 +01:00
SimonB 991244cd7b Fixes memory leak in memory_buffer_alloc.c debug
Debug symbols were being leaked in memory_buffer_alloc.c
2016-05-05 17:51:09 +01:00
Attila Molnar c7b8e3af53 Fix minor doc issue 2016-05-05 17:50:17 +01:00
Simon Butcher d58d715680 Update ChangeLog for bug #429 in ssl_fork_server 2016-04-29 00:15:34 +01:00
Janos Follath c89a62e809 Improves and makes pretty the ssl_fork_server output 2016-04-28 23:57:42 +01:00
Janos Follath 56a7347841 Fix issue #429 in ssl_fork_server.c 2016-04-28 23:57:28 +01:00
Janos Follath e9d5510f05 Fix bug in ssl_write_supported_elliptic_curves_ext
Passing invalid curves to mbedtls_ssl_conf_curves potentially could caused a
crash later in ssl_write_supported_elliptic_curves_ext. #373
2016-04-22 09:55:32 +01:00
Janos Follath 689a627215 Fix null pointer dereference in the RSA module.
Introduced null pointer checks in mbedtls_rsa_rsaes_pkcs1_v15_encrypt
2016-04-19 10:20:59 +01:00
Simon Butcher 0705dd0588 Adds test for odd bit length RSA key size
Also tidy up ChangeLog following review.
2016-04-19 09:19:46 +01:00
Janos Follath 1a59a504e7 Fix odd bitlength RSA key generation
Fix issue that caused a hang up when generating RSA keys of odd
bitlength.
2016-04-19 09:19:21 +01:00
Janos Follath 1033abdd4e Remove unused code from PKCS1v15 test suite 2016-04-18 10:06:21 +01:00
Simon Butcher e789a6ead6 Fixes typo in platform.h 2016-04-13 18:46:26 +01:00
Simon Butcher 3e25f8c01e Add missing config dependencies to PKCS1 V15 tests 2016-04-13 14:49:19 +01:00
Simon Butcher 57b42d25c3 Add missing stdlib.h header to rsa sample programs 2016-04-13 11:52:56 +01:00
Simon Butcher 7d65cedc96 Corrects platform return values in rsa sample programs 2016-04-12 15:04:10 +01:00