1. 19 Jan, 2017 1 commit
    • Andres AG's avatar
      Add DTLS test to check 6 byte record ctr is cmp · 692ad84e
      Andres AG authored
      Add a test to ssl-opt.sh to ensure that in DTLS a 6 byte record counter
      is compared in ssl_check_ctr_renegotiate() instead of a 8 byte one as in
      the TLS case. Because currently there are no testing facilities to check
      that renegotiation routines are triggered after X number of input/output
      messages, the test consists on setting a renegotiation period that
      cannot be represented in 6 bytes, but whose least-significant byte is 2.
      If the library behaves correctly, the renegotiation routines will be
      executed after two exchanged.
  2. 13 Oct, 2016 11 commits
  3. 10 Oct, 2016 1 commit
    • Simon Butcher's avatar
      Add extra compilation conditions to X.509 samples · 203a6934
      Simon Butcher authored
      The sample applications programs/pkey/cert_req.c and
      programs/pkey/cert_write.c use the library functions
      mbedtls_pk_write_csr_pem() and mbedtls_pk_write_crt_pem() respectively which
      are dependent on the configuration option MBEDTLS_PEM_WRITE_C. If the option
      isn't defined the build breaks.
      This change adds the compilation condition MBEDTLS_PEM_WRITE_C to these
      sample application.
  4. 07 Oct, 2016 2 commits
  5. 06 Oct, 2016 2 commits
  6. 05 Oct, 2016 4 commits
  7. 26 Sep, 2016 3 commits
  8. 02 Sep, 2016 1 commit
    • Paul Bakker's avatar
      Fix for #441 - crypt and hash gcm (#546) · 243f48e1
      Paul Bakker authored
      * Fix crypt_and_hash to support decrypting GCM encrypted files
      * Fix documentation in crypt_and_hash for the generic case
      * Remove unused lastn from crypt_and_hash
      lastn is not used with the cipher layer as it already provides padding
      and understanding of length of the original data.
  9. 30 Aug, 2016 3 commits
    • Andres AG's avatar
      Make entropy bias self test poll multiple times · e7723ec2
      Andres AG authored
      Instead of polling the hardware entropy source a single time and
      comparing the output with itself, the source is polled at least twice
      and make sure that the separate outputs are different.
    • Andres AG's avatar
      Add a new self test to entropy module · b34e42e6
      Andres AG authored
      The self test is a quick way to check at startup whether the entropy
      sources are functioning correctly. The self test only polls 8 bytes
      from the default entropy source and performs the following checks:
      - The bytes are not all 0x00 or 0xFF.
      - The hardware does not return an error when polled.
      - The entropy does not provide data in a patter. Only check pattern
        at byte, word and long word sizes.
    • Simon Butcher's avatar
  10. 25 Aug, 2016 1 commit
  11. 24 Aug, 2016 2 commits
  12. 13 Jul, 2016 1 commit
  13. 23 Jun, 2016 1 commit
  14. 09 Jun, 2016 3 commits
  15. 07 Jun, 2016 3 commits
  16. 03 Jun, 2016 1 commit