Manuel Pégourié-Gonnard
|
b8bd593741
|
Restrict cipher_update() for GCM
|
2013-09-05 17:06:10 +02:00 |
|
Manuel Pégourié-Gonnard
|
226d5da1fc
|
GCM ciphersuites partially using cipher layer
|
2013-09-05 17:06:10 +02:00 |
|
Manuel Pégourié-Gonnard
|
1af50a240b
|
Cipher: test multiple cycles
GCM-cipher: just trust the user to call update_ad at the right time
|
2013-09-05 17:06:10 +02:00 |
|
Manuel Pégourié-Gonnard
|
cac5f7d737
|
Update benchmarks for new prototypes
|
2013-09-04 17:19:18 +02:00 |
|
Manuel Pégourié-Gonnard
|
ed8a02bfae
|
Simplify DH blinding a bit
|
2013-09-04 17:18:28 +02:00 |
|
Paul Bakker
|
45125bc160
|
Changes to handle merged enhancements
|
2013-09-04 16:48:22 +02:00 |
|
Manuel Pégourié-Gonnard
|
143b5028a5
|
Implement DH blinding
|
2013-09-04 16:29:59 +02:00 |
|
Paul Bakker
|
c049955b32
|
Merged new cipher layer enhancements
|
2013-09-04 16:12:55 +02:00 |
|
Manuel Pégourié-Gonnard
|
2d627649bf
|
Change dhm_calc_secret() prototype
|
2013-09-04 14:22:07 +02:00 |
|
Manuel Pégourié-Gonnard
|
ce4112538c
|
Fix RC4 key length in cipher
|
2013-09-04 12:29:26 +02:00 |
|
Manuel Pégourié-Gonnard
|
83f3fc0d77
|
Add AES-192-GCM
|
2013-09-04 12:14:13 +02:00 |
|
Manuel Pégourié-Gonnard
|
f7ce67f0d2
|
Add tests for gcm via cipher
|
2013-09-04 12:14:11 +02:00 |
|
Manuel Pégourié-Gonnard
|
8eccab5077
|
Add test vectors to the cipher test suite
Ensures the selected cipher/mode/padding is actually used
and padding and tag are actually checked.
|
2013-09-04 12:12:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
43a4780b03
|
Ommit AEAD functions if GCM not defined
|
2013-09-03 19:28:35 +02:00 |
|
Manuel Pégourié-Gonnard
|
aa9ffc5e98
|
Split tag handling out of cipher_finish()
|
2013-09-03 19:20:55 +02:00 |
|
Manuel Pégourié-Gonnard
|
2adc40c346
|
Split cipher_update_ad() out or cipher_reset()
|
2013-09-03 19:20:55 +02:00 |
|
Manuel Pégourié-Gonnard
|
a235b5b5bd
|
Fix iv_len interface.
cipher_info->iv_size == 0 is no longer ambiguous, and
cipher_get_iv_size() always returns something useful to generate an IV.
|
2013-09-03 13:25:52 +02:00 |
|
Manuel Pégourié-Gonnard
|
9c853b910c
|
Split cipher_set_iv() out of cipher_reset()
|
2013-09-03 13:04:44 +02:00 |
|
Manuel Pégourié-Gonnard
|
07de4b1d08
|
Implement randomized coordinates in ecp_mul()
|
2013-09-02 16:26:04 +02:00 |
|
Manuel Pégourié-Gonnard
|
c75c56fef7
|
Fix off-by-one error in ecdsa_write_signature()
Made some signature fail with 521-bit curve
|
2013-09-02 16:25:37 +02:00 |
|
Paul Bakker
|
ea6ad3f6e5
|
ARC4 ciphersuites using only cipher layer
|
2013-09-02 14:57:01 +02:00 |
|
Manuel Pégourié-Gonnard
|
e09d2f8261
|
Change ecp_mul() prototype to allow randomization
(Also improve an error code while at it.)
|
2013-09-02 14:29:09 +02:00 |
|
Paul Bakker
|
eb851f6cd5
|
Merged current cipher enhancements for ARC4 and AES-GCM
|
2013-09-01 15:49:38 +02:00 |
|
Manuel Pégourié-Gonnard
|
9241be7ac5
|
Change cipher prototypes for GCM
|
2013-08-31 18:07:42 +02:00 |
|
Paul Bakker
|
cca5b81d18
|
All CBC ciphersuites via the cipher layer
|
2013-08-31 17:40:26 +02:00 |
|
Paul Bakker
|
da02a7f45e
|
AES_CBC ciphersuites now run purely via cipher layer
|
2013-08-31 17:25:14 +02:00 |
|
Manuel Pégourié-Gonnard
|
20d6a17af9
|
Make GCM tag check "constant-time"
|
2013-08-31 16:37:46 +02:00 |
|
Manuel Pégourié-Gonnard
|
07f8fa5a69
|
GCM in the cipher layer, step 1
- no support for additional data
- no support for tag
|
2013-08-31 16:08:22 +02:00 |
|
Manuel Pégourié-Gonnard
|
b5e85885de
|
Handle NULL as a stream cipher for more uniformity
|
2013-08-30 17:11:28 +02:00 |
|
Manuel Pégourié-Gonnard
|
37e230c022
|
Add arc4 support in the cipher layer
|
2013-08-30 17:11:28 +02:00 |
|
Paul Bakker
|
f451bac000
|
Blinding RSA only active when f_rng is provided
|
2013-08-30 15:48:53 +02:00 |
|
Paul Bakker
|
48377d9834
|
Configuration option to enable/disable POLARSSL_PKCS1_V15 operations
|
2013-08-30 13:41:14 +02:00 |
|
Paul Bakker
|
aab30c130c
|
RSA blinding added for CRT operations
|
2013-08-30 11:03:09 +02:00 |
|
Paul Bakker
|
548957dd49
|
Refactored RSA to have random generator in every RSA operation
Primarily so that rsa_private() receives an RNG for blinding purposes.
|
2013-08-30 10:30:02 +02:00 |
|
Paul Bakker
|
ca174fef80
|
Merged refactored x509write module into development
|
2013-08-28 16:32:51 +02:00 |
|
Paul Bakker
|
9659dae046
|
Some extra code defined out
|
2013-08-28 16:21:34 +02:00 |
|
Manuel Pégourié-Gonnard
|
c852a68b96
|
More robust selection of ctx_enc size
|
2013-08-28 13:13:30 +02:00 |
|
Manuel Pégourié-Gonnard
|
cffe4a65bd
|
Move "constant" code outside a loop
|
2013-08-28 13:13:20 +02:00 |
|
Paul Bakker
|
c8676784ff
|
Amended ChangeLog for ECDSA-ciphersuites
|
2013-08-28 12:15:11 +02:00 |
|
Paul Bakker
|
577e006c2f
|
Merged ECDSA-based key-exchange and ciphersuites into development
Conflicts:
include/polarssl/config.h
library/ssl_cli.c
library/ssl_srv.c
library/ssl_tls.c
|
2013-08-28 11:58:40 +02:00 |
|
Manuel Pégourié-Gonnard
|
a0f07478ee
|
Rm redundant dependencies in test files
|
2013-08-28 10:10:09 +02:00 |
|
Manuel Pégourié-Gonnard
|
70064fd721
|
compat.sh: report results
|
2013-08-27 22:21:22 +02:00 |
|
Manuel Pégourié-Gonnard
|
7ebaf376f9
|
Add ECDSA suites to compat.sh
|
2013-08-27 22:21:22 +02:00 |
|
Manuel Pégourié-Gonnard
|
dfc8d5accc
|
Small adjustments in compat.sh
|
2013-08-27 22:21:22 +02:00 |
|
Manuel Pégourié-Gonnard
|
9791a4043e
|
Refactor compat.sh to prepare for ECDSA
|
2013-08-27 22:21:22 +02:00 |
|
Manuel Pégourié-Gonnard
|
57a8783364
|
Make more room for ciphersuites
|
2013-08-27 22:21:21 +02:00 |
|
Manuel Pégourié-Gonnard
|
acc7505a35
|
Temporary fix for size of cipher contexts
|
2013-08-27 22:21:21 +02:00 |
|
Manuel Pégourié-Gonnard
|
db77175e99
|
Make ecdsa_verify() return value more explicit
|
2013-08-27 22:21:21 +02:00 |
|
Manuel Pégourié-Gonnard
|
9cc6f5c61b
|
Fix some hash debugging
|
2013-08-27 22:21:21 +02:00 |
|
Manuel Pégourié-Gonnard
|
4bd1284f59
|
Fix ECDSA hash selection bug with TLS 1.0 and 1.1
|
2013-08-27 22:21:21 +02:00 |
|