48f7a5d724
DHE-PSK based ciphersuite support added and cleaner key exchange based
...
code selection
The base RFC 4279 DHE-PSK ciphersuites are now supported and added.
The SSL code cuts out code not relevant for defined key exchange methods
2013-04-19 20:47:26 +02:00
7e5e7ca205
Added PSK ciphersuite tests to compat.sh
2013-04-18 23:12:34 +02:00
286bf3c501
Split up largest test suite data files into smaller chunks
2013-04-08 18:09:51 +02:00
abfdfbfd46
Removed duplicate value from compat.sh ciphersuite list
2013-04-08 14:07:43 +02:00
27714b1aa1
Added Camellia ECDHE-based CBC ciphersuites
...
Added TLS-ECDHE-RSA-WITH-CAMELLIA-128-CBC-SHA256 and
TLS-ECDHE-RSA-WITH-CAMELLIA-256-CBC-SHA384
2013-04-07 23:07:12 +02:00
c70b982056
OID functionality moved to a separate module.
...
A new OID module has been created that contains the main OID searching
functionality based on type-dependent arrays. A base type is used to
contain the basic values (oid_descriptor_t) and that type is extended to
contain type specific information (like a pk_alg_t).
As a result the rsa sign and verify function prototypes have changed. They
now expect a md_type_t identifier instead of the removed RSA_SIG_XXX
defines.
All OID definitions have been moved to oid.h
All OID matching code is in the OID module.
The RSA PKCS#1 functions cleaned up as a result and adapted to use the
MD layer.
The SSL layer cleanup up as a result and adapted to use the MD layer.
The X509 parser cleaned up and matches OIDs in certificates with new
module and adapted to use the MD layer.
The X509 writer cleaned up and adapted to use the MD layer.
Apps and tests modified accordingly
2013-04-07 22:00:46 +02:00
a54e493bc0
Added ECDHE-based SHA256 and SHA384 ciphersuites
...
Added TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 and
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ciphersuites
2013-03-20 15:31:54 +01:00
41c83d3f67
Added Ephemeral Elliptic Curve Diffie Hellman ciphersuites to SSL/TLS
...
Made all modifications to include Ephemeral Elliptic Curve Diffie
Hellman ciphersuites into the existing SSL/TLS modules. All basic
handling of the ECDHE-ciphersuites (TLS_ECDHE_RSA_WITH_NULL_SHA,
TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA,
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA)
has been included.
2013-03-20 14:39:14 +01:00
00c1f43743
Merge branch 'ecc-devel-mpg' into development
2013-03-13 16:31:01 +01:00
d589a0ddb6
Modified Makefiles to include new files and and config.h to PolarSSL standard
2013-03-13 16:30:17 +01:00
90f042d4cb
Prepared for PolarSSL 1.2.6 release
2013-03-11 11:38:44 +01:00
424fda5d7b
Add ecdh_calc_secret()
2013-02-11 22:05:42 +01:00
5cceb41d2c
Add ecdh_{make,read}_public()
2013-02-11 21:51:45 +01:00
854fbd7ba2
Add ecdh_read_params().
2013-02-11 21:32:24 +01:00
98f51815d6
Fix ecp_tls_read_point's signature
2013-02-10 13:38:29 +01:00
7c145c6418
Fix ecp_tls_read_group's signature
2013-02-10 13:20:52 +01:00
8c16f96259
Add a few tests for ecp_tls_read_point
2013-02-10 13:00:20 +01:00
46106a9d75
Add tests for (and fix bug in) ecp_tls_write_group
2013-02-10 12:51:17 +01:00
420f1eb675
Fix ecp_tls_write_point's signature
2013-02-10 12:22:46 +01:00
6282acaec2
Add basic tests for ecp_tls_*_point
2013-02-10 11:15:11 +01:00
7e86025f32
Rename ecp_*_binary to ecp_point_*_binary
2013-02-10 10:58:48 +01:00
d84895dc22
Supress 'format' argument to ecp_read_binary.
...
And adjust error codes for ecp_*_binary while at it.
2013-02-10 10:53:04 +01:00
1a96728964
Add function parsing a TLS ECParameters record
2013-02-09 17:53:31 +01:00
c7a2da437e
Updated for PolarSSL 1.2.5
2013-02-02 19:23:57 +01:00
cf4a70c8ed
Adjust names of ECDSA tests.
2013-01-27 09:10:53 +01:00
450a163c81
Fix valgrind warning in ECDSA test suite.
2013-01-27 09:08:18 +01:00
007b7177ef
ECDH : add test vectors from RFC 5903.
2013-01-27 09:00:02 +01:00
602a8973d7
ECDSA : test vectors from RFC 4754
2013-01-27 08:10:28 +01:00
d1c7150bf5
Basic tests for ECDSA.
2013-01-26 19:11:28 +01:00
61ce13b728
Basic tests for ECDH primitive
2013-01-26 19:11:28 +01:00
45a035a9ac
Add ecp_gen_keypair()
2013-01-26 14:42:45 +01:00
14c56a3378
Updated for PolarSSL 1.2.4
2013-01-25 17:11:37 +01:00
a95919b4c7
Added ECP files to Makefiles as well
2013-01-16 17:00:05 +01:00
5e402d88ea
Added ecp_read_binary().
2013-01-16 16:31:54 +01:00
37d218a8e3
Added support for writing points compressed
2013-01-16 16:31:54 +01:00
e19feb5b46
Added ecp_write_binary().
2013-01-16 16:31:53 +01:00
1c33057a63
Added ecp_check_pubkey().
2013-01-16 16:31:53 +01:00
c554e9acf1
Added test vectors from RFC 5903
2013-01-16 16:31:53 +01:00
b63f9e98f5
Made ecp_mul() faster and truly SPA resistant
2013-01-16 16:31:53 +01:00
b4a310b472
Added a selftest about SPA resistance
2013-01-16 16:31:52 +01:00
9674fd0d5e
Added ecp_sub() as a variant of ecp_add()
2013-01-16 16:31:52 +01:00
1c2782cc7c
Changed to jacobian coordinates everywhere
2013-01-16 16:31:52 +01:00
4bdd47d2cb
Multiplication by negative is now forbidden
2013-01-16 16:31:52 +01:00
8433824d5f
Added fast mod_p192
2013-01-16 16:31:52 +01:00
e739f0133b
Added test vectors from RFC 5114 to test suite
2013-01-16 16:31:50 +01:00
4b8c3f2a1c
Moved tests from selftest to tests/test_suite_ecp
2013-01-16 16:31:50 +01:00
58ef6ec613
Cleaner test-memory cleanups
2013-01-03 11:33:48 +01:00
fb1ba781b3
Updated for release 1.2.3
2012-11-26 16:28:25 +01:00
df5069cb97
Updated for 1.2.2 release
2012-11-24 12:20:19 +01:00
1eeceaeac8
More expansive testing
2012-11-23 14:25:34 +01:00
