Brian Murray
53e23b684f
Minor CMAC fixes for merge
2016-10-05 14:19:17 +01:00
Brian Murray
9ce2e091de
cleaned up indentation and braket issues in mbedtls_cmac_verify
2016-10-05 14:19:17 +01:00
Brian Murray
06acc18f44
Minor change to pass build tests
2016-10-05 14:19:17 +01:00
Brian Murray
ae1cb12d82
Changed test function to inline to pass tests/scripts/check-names.sh
2016-10-05 14:19:17 +01:00
Brian Murray
0cf14c10d4
Fixed some build warnings
2016-10-05 14:19:17 +01:00
Brian Murray
6a3c0d2d67
Do not zeroize null pointer
2016-10-05 14:19:17 +01:00
Brian Murray
4b64ab6664
Removed unneed memsets and fixed spacing
2016-10-05 14:19:16 +01:00
Brian Murray
87e4040bb9
No CMAC minimum tag length is specified by NIST SP800-38B A
...
Minor Typo Changes
2016-10-05 14:19:16 +01:00
Brian Murray
617634e656
cmac.c whitespace cleanup
2016-10-05 14:19:16 +01:00
Brian Murray
2cfa5072ed
better handling of failed calloc
2016-10-05 14:19:16 +01:00
Brian Murray
57863ad7ed
selftest supports cmac if only MBEDTLS_DES_C is defined
...
Other minor typo fixes
2016-10-05 14:19:16 +01:00
Brian Murray
9044b0295c
More cleanup of CMAC self tests
2016-10-05 14:19:16 +01:00
Brian Murray
b439d4556d
Only compile AES CMAC PRF support if MBEDTLS_AES_C is defined and other cleanups
2016-10-05 14:19:16 +01:00
Brian Murray
0f6af73599
More cleanup of CMAC selftests
2016-10-05 14:19:15 +01:00
Brian Murray
00dc5f0fc8
Fixed CMAC tag length
2016-10-05 14:19:15 +01:00
Brian Murray
f13d3db373
Updated comments for CMAC in config.h
2016-10-05 14:19:15 +01:00
Brian Murray
b0c3c43dec
CMAC support for cipher with 64bit blocks (DES/3DES)
2016-10-05 14:19:15 +01:00
Brian Murray
8262ac3b54
Added cmac.o to libary/Makefile
2016-10-05 14:19:15 +01:00
Manuel Pégourié-Gonnard
7b555f2928
cmac: more cosmetic changes
2016-10-05 14:19:15 +01:00
Manuel Pégourié-Gonnard
ab9c5fd9b3
cmac: avoid useless wrapping of function
...
probably a leftover from an earlier stage
2016-10-05 14:19:15 +01:00
Manuel Pégourié-Gonnard
d18c70708e
cmac: reduce visibility of macros
...
The #undef is usefull for people who want to to amalgamated releases
2016-10-05 14:19:15 +01:00
Manuel Pégourié-Gonnard
2c06306364
cmac: some more padding-related tune-ups
...
- use one less temporary buffer
- pedantic: in_len + 15 was a potential overflow
- use a more explicit name instead of 'flag'
- Mn was a bit misleading
2016-10-05 14:19:14 +01:00
Manuel Pégourié-Gonnard
d2c3d3eddb
cmac: clean up padding function and comments
2016-10-05 14:19:14 +01:00
Manuel Pégourié-Gonnard
475f06f609
cmac: make subkey gen more constant-time
...
The previous version had secret-dependent memory accesses. While it was
probably not an issue in practice cause the two bytes of the array are
probably on the same cache line anyway, as a matter of principle this should
be avoided.
2016-10-05 14:19:14 +01:00
Manuel Pégourié-Gonnard
d6cf75474b
cmac: zeroize sensitive intermediate values
2016-10-05 14:19:14 +01:00
Manuel Pégourié-Gonnard
a610b4c04b
cmac: factor multiply by u to its own function
...
We're doing exactly the same operation for K1 and K2.
2016-10-05 14:19:14 +01:00
Manuel Pégourié-Gonnard
3da5402a89
cmac: fix whitespace/codingstyle issues
2016-10-05 14:19:14 +01:00
Manuel Pégourié-Gonnard
690083c21d
cmac: improve argument order and naming
...
- always use the pattern "buffer, length"
- avoid using unqualified "length" as a name when there are more than one
2016-10-05 14:19:14 +01:00
Robert Cragie
3d23b1d5ed
Line endings wrong
2016-10-05 14:19:14 +01:00
Robert Cragie
f261ef07ee
Bad code in function documentation
2016-10-05 14:19:13 +01:00
Robert Cragie
48f2ff9dbe
Use autogenerated version_features.c
2016-10-05 14:19:13 +01:00
Robert Cragie
84a4c67741
Added CMAC as proper low-level module and changed error returns
2016-10-05 14:19:13 +01:00
Robert Cragie
8324818e0a
Added MBEDTLS_CMAC_C
2016-10-05 14:19:13 +01:00
Robert Cragie
dc5c7b98ac
Add support for AES-128-CMAC and AES-CMAC-PRF-128
2016-10-05 14:19:13 +01:00
Andres AG
93012e8bce
Set selftest verbose flag to boost coverage
2016-09-27 17:29:22 +01:00
Andres AG
b2fdd04f6a
Fix scripts to support multiple openssl and gnutls
2016-09-27 16:04:44 +01:00
Andres AG
7abc974ec4
Add config macro for min bytes hw entropy
2016-09-27 14:25:31 +01:00
Andres AG
f84f8926a7
Add new config.h that does not need entropy source
2016-09-27 14:25:31 +01:00
Andres AG
788aa4a812
Rename net.{c,h} to net_sockets.{c,h}
...
The library/net.c and its corresponding include/mbedtls/net.h file are
renamed to library/net_sockets.c and include/mbedtls/net_sockets.h
respectively. This is to avoid naming collisions in projects which also
have files with the common name 'net'.
2016-09-26 23:23:52 +01:00
Simon Butcher
d43fb9598a
Update for ChangeLog for fixes for cert_app
2016-09-26 20:48:56 +01:00
Paul Bakker
5e8c62f53d
Do not add empty cert / key in cert_app
2016-09-26 20:30:13 +01:00
Paul Bakker
f2b92bb25b
Actually apply debug_level settings in cert_app
2016-09-26 20:30:13 +01:00
Andres AG
c49b808ae4
Add missing dependency to check in Makefile
...
The main makefile check target does not depend on tests. When running
make with the -j option it could happen that the tests are build twice
and concurrently, which causes errors.
2016-09-16 15:08:34 +01:00
Andres AG
f9113194af
Allow the entry_name size to be set in config.h
...
Allow the size of the entry_name character array in x509_crt.c to be
configurable through a macro in config.h. entry_name holds a
path/filename string. The macro introduced in
MBEDTLS_X509_MAX_FILE_PATH_LEN.
2016-09-16 11:42:35 +01:00
Simon Butcher
40122e015a
Remove list numbering in output_env.sh
2016-09-15 20:45:53 +01:00
Simon Butcher
41eeccf76b
Fix merge of OpenSSL/GNUTLS version options in all.sh
2016-09-15 20:45:53 +01:00
Andres AG
7a63eaf2de
Add version printing for all.sh env vars
2016-09-15 20:45:53 +01:00
Andres AG
f181e25e5b
Remove specific GnuTLS and OpenSSL version requirements
2016-09-15 20:45:53 +01:00
Andres AG
f07314e787
Allow cmake 'out-of-source' builds
...
Allow mbed TLS to be build in a subdirectory. Also add a test in
all.sh
2016-09-15 20:45:53 +01:00
Andres AG
d9eba4ba3d
Allow alternate openssl and gnutls in all.sh
...
Allow the user to specify alternative openssl, gnutls-cli and
gnutls-serv binaries to execute legacy tests in all.sh.
2016-09-15 20:45:53 +01:00