Manuel Pégourié-Gonnard
b2beb84be6
Changelog entry fro the previous commit
2015-09-01 19:37:32 +02:00
Manuel Pégourié-Gonnard
f81ee2eba8
Add NULL checks to top-level SSL functions
...
On normal use these should never be useful, but if the application has issues,
it's best for us to return an error than to crash.
2015-09-01 17:43:40 +02:00
Manuel Pégourié-Gonnard
fdbdd72b8b
Skip to trusted certs early in the chain
...
This helps in the case where an intermediate certificate is directly trusted.
In that case we want to ignore what comes after it in the chain, not only for
performance but also to avoid false negatives (eg an old root being no longer
trusted while the newer intermediate is directly trusted).
closes #220
2015-09-01 17:24:42 +02:00
Manuel Pégourié-Gonnard
560fea3767
Add tests for verify callback
...
As we're about to change the chain construction logic, we want to make sure
the callback will still be called exactly when it should, and not on the
(upcoming) ignored certs in the chain.
2015-09-01 17:24:42 +02:00
Manuel Pégourié-Gonnard
4f202badec
Document the three libraries in Readme
...
see #266
2015-09-01 10:27:16 +02:00
Manuel Pégourié-Gonnard
c881ca8502
Document how to build shared libs with CMake
...
Also updated
https://tls.mbed.org/kb/compiling-and-building/how-do-i-build-compile-mbedtls
closes #267
2015-09-01 10:08:28 +02:00
Manuel Pégourié-Gonnard
5f5e0ec3f1
Improve mbedtls_ssl_write() documentation
2015-08-31 20:47:04 +02:00
Manuel Pégourié-Gonnard
a2cda6bfaf
Add mbedtls_ssl_get_max_frag_len()
...
This is not very useful for TLS as mbedtls_ssl_write() will automatically
fragment and return the length used, and the application should check for that
anyway, but this is useful for DTLS where mbedtls_ssl_write() returns an
error, and the application needs to be able to query the maximum length
instead of just guessing.
2015-08-31 20:47:04 +02:00
Manuel Pégourié-Gonnard
7b23c51595
Print "thread ID" in debug messages
...
closes #218
2015-08-31 16:17:33 +02:00
Manuel Pégourié-Gonnard
d68434efba
Disable some tests with valgrind
...
Tends to cause spurious failures on buildbots due to peer timing out.
Anyway, those tests are mainly for interop, any memory error is most likely
catched by some earlier self-op test. (Also, we'll run these tests with ASan
anyway.)
2015-08-31 12:48:22 +02:00
Manuel Pégourié-Gonnard
bb83844a1d
Clarify that there are two SSL I/O buffers
2015-08-31 12:46:01 +02:00
Manuel Pégourié-Gonnard
824ba72442
Only use -Wshadow with GCC 4.8 or higher
...
Before that, we get useless warnings about local variables shadowing extern
functions, which means we can't have a local variable called index when we
include string.h.
https://lkml.org/lkml/2006/11/28/239
https://gcc.gnu.org/gcc-4.8/changes.html
2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
cf9ab63863
Fix error reporting in pkey/pk_* programs
2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
ce7a08ba49
Fix more comments/outputs in verify programs
2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
102a620c9a
Fix hash buffer size in pkey programs
2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
d224ff1f63
Change default RSA key size in rsa_genkey
2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
1d8f2da7df
Fix comments about filenames in some programs
2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
d74c697035
Fix memory corruption in rsa sign/verify programs
...
We have no guarantee there is enough room in the argv strings.
Fixes #210
2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
8b2641d36f
Fix warning with MD/SHA ALT implementation
...
fixes #239
2015-08-31 10:34:26 +02:00
Manuel Pégourié-Gonnard
c6b5d833ec
Fix handling of long PSK identities
...
fixes #238
2015-08-31 10:34:26 +02:00
Manuel Pégourié-Gonnard
ea35666f50
Fix -Wshadow warnings
...
Checked that it is supported by gcc 4.2.1 (FreeBSD 9).
fixes #240
2015-08-31 10:34:26 +02:00
Manuel Pégourié-Gonnard
4d04cdcd12
Fix RSA mutex fix
...
Once the mutex is acquired, we must goto cleanup rather that return.
Since cleanup adjusts the return value, adjust that in test cases.
Also, at cleanup we don't want to overwrite 'ret', or we'll loose track of
errors.
see #257
2015-08-31 09:31:55 +02:00
Manuel Pégourié-Gonnard
6a6619b24b
Fix last edit
2015-08-31 09:29:08 +02:00
Manuel Pégourié-Gonnard
435314d99c
Merge pull request #263 from iriark01/patch-6
...
Small edit
2015-08-31 09:24:19 +02:00
Irit Arkin
9cdd0d55f2
Small edit
2015-08-28 09:27:57 +01:00
Manuel Pégourié-Gonnard
cbee3f76f6
Merge pull request #262 from iriark01/patch-5
...
Small edit
2015-08-27 17:10:44 +02:00
Manuel Pégourié-Gonnard
fe3fda5de0
Merge pull request #261 from iriark01/patch-4
...
Small edit
2015-08-27 17:10:40 +02:00
Manuel Pégourié-Gonnard
2823661550
Merge pull request #260 from iriark01/patch-3
...
Small edit
2015-08-27 17:10:34 +02:00
Manuel Pégourié-Gonnard
c816476a54
Merge pull request #259 from iriark01/patch-2
...
Very small edit
2015-08-27 17:10:27 +02:00
Irit Arkin
36936bff6e
Small edit
2015-08-27 15:57:54 +01:00
Irit Arkin
fb40410547
Small edit
2015-08-27 15:56:44 +01:00
Irit Arkin
c4d9d32b62
Small edit
2015-08-27 15:47:00 +01:00
Irit Arkin
cd8c0fbf60
Very small edit
2015-08-27 15:44:11 +01:00
Manuel Pégourié-Gonnard
1385a289f4
Fix possible mutex lock/unlock mismatch
...
fixes #257
2015-08-27 11:30:58 +02:00
Manuel Pégourié-Gonnard
3dce9ec3af
Sync yotta and general readme again
2015-08-27 10:07:09 +02:00
Manuel Pégourié-Gonnard
9acf88bdff
Ship license files with the yotta module
2015-08-25 10:58:24 +02:00
Simon Butcher
5719aa121c
Merge pull request #255 from iriark01/patch-1
...
Approved for merge.
2015-08-24 15:34:19 +01:00
Irit Arkin
4d8edd544c
Edited
...
Not a major edit
2015-08-24 13:50:25 +01:00
Manuel Pégourié-Gonnard
d0422a45f1
Bump patch version for yotta
2015-08-21 14:09:38 +02:00
Manuel Pégourié-Gonnard
fe626138e8
Add proper destructor for HelloHTTPS
...
Just as a matter of principle
2015-08-20 12:00:58 +02:00
Manuel Pégourié-Gonnard
324fc02b1a
Synchronise top-level and yotta READMEs
...
And fix two typos while at it
2015-08-20 11:51:53 +02:00
Simon Butcher
a150050555
Merge branch 'development' of ssh://github.com/ARMmbed/mbedtls into development
...
Conflicts:
yotta/data/example-authcrypt/README.md
yotta/data/example-benchmark/README.md
yotta/data/example-hashing/README.md
yotta/data/example-selftest/README.md
yotta/data/example-tls-client/README.md
2015-08-19 20:29:31 +01:00
Simon Butcher
df81924a7a
Fixed issues in Yotta examples README's
...
Fixed README's in Yotta examples and updated certificate reference in
TLS Client.
2015-08-19 19:33:27 +01:00
Manuel Pégourié-Gonnard
38db006e0c
Finish test in pkwrite
2015-08-19 10:24:34 +02:00
Manuel Pégourié-Gonnard
e50f67c18a
Fix debug mode in example-tls-client
...
Fixes #242
2015-08-18 20:52:18 +02:00
Manuel Pégourié-Gonnard
1a18aaecde
Update output of example-tls-client in its readme
2015-08-18 20:38:22 +02:00
Manuel Pégourié-Gonnard
0819e6f50c
Merge remote-tracking branch 'tmp/readme-fix' into development
...
* tmp/readme-fix:
Removing yt ls step in READMEs of examples
2015-08-18 20:29:06 +02:00
Manuel Pégourié-Gonnard
e578b1c79a
Relax timing_self_test for windows idiosyncrasies
2015-08-18 20:11:48 +02:00
Brian Daniels
3c405aefc5
Removing yt ls step in READMEs of examples
2015-08-18 10:52:57 -07:00
Manuel Pégourié-Gonnard
04b7eec539
Fix pkwrite test that were failing on mingw32
...
Apparently fread() writes some junk after the contents of the file. Don't look
at it.
2015-08-18 19:49:40 +02:00