random() and randomSeed() arduino-compatible functions #289
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Also, when particle-iot-archived/core-communication-lib#25 is merged, then the user will automatically have a secure random seed after handshaking with the Spark Cloud.
m-mcgowan
added a commit
that referenced
this pull request
Sep 4, 2014
(And integration test case for that bug.)
|
the travis build failes because compile is choking on std::array - compiled fine locally. seems like the -std=gnu++11 isn't getting through. I'll investigate later. |
m-mcgowan
added a commit
that referenced
this pull request
Nov 4, 2015
f7a4688 Mention new test script in Readme 8de8a32 Bump yotta version to 2.2.0-rc.1 6edd78b Merge branch 'misc' into development 2046062 Merge branch 'development' into misc 459a950 Fixed typo in comment b48ace7 Merge branch 'iotssl-513-alerts' into development 62aab15 Merge branch 'development' into iotssl-513-alerts c87747b Removed debug code accidentally left in test code fa8094e Merge branch 'iotssl-521-keylen-check' into development 5f7c34b Merge branch iotssl-521-keylen-check e0b2fea Mention performance fix in ChangeLog e357a64 Merge pull request #328 from ARMmbed/iotssl-461-ecjpake-finalization 231a065 yotta Readme: edited by Irit 65eefc8 Fix missing check for RSA key length on EE certs ac8673c Add quick script to estimate ROM footprint de9f953 Optimize more common cases in ecp_muladd() d21eb2a Fix attribution in ChangeLog fbdf06c Fix handling of non-fatal alerts 503a5ef Add key-exchanges.pl to test list 50bd260 Add -Werror to reduced configs test scripts 5c2a7ca Fix warning in some reduced configs e5f3072 Fix #ifdef inconsistency 5df9216 Add script to test configs with single key exchanges 7980096 Further update Redmes regarding the two editions 87173fa yotta Readme: mention all examples ac12173 yotta Readme: expand configuration example f13139a yotta readme: mention supported platforms 71956c9 Fix warnings about locations of header files f45fd73 Remove TLS Client example, see mbed-tls-sockets cdea97c Remove useless code c8cd2c6 Small fix to 'make test' script 8a7a189 Fix curves.pl for ECJPAKE disabled by default 4b20c0e Fix potential stack buffer overflow in ecjpake 12ca6f5 Update ssl-opt.sh for EC J-PAKE disabled by default 1ef96c2 Update ChangeLog for the EC J-PAKE branch fadacb9 Merge branch 'development' into iotssl-461-ecjpake-finalization cf82893 Disable EC J-PAKE by default (experimental) 3e5b5f1 Tune up config-thread.h a bit more ca700b2 Add config-thread.h to test-ref-configs.pl eb47b87 Rework test-ref-configs.pl to also use ssl-opt.sh b6fe70b Tune up the Thread mini config b4d9d36 Bump yotta dependencies version db90c82 Fix typo in documentation e3132a9 Corrected misleading fn description in ssl_cache.h 5674a97 Fix compilers warnings in reduced configs 9f52cac Rename config-ecjpake to thread and minify it 024b6df Improve key export API and documentation b7da194 ecjpake: fix uninitialize member 334a87b Corrected URL/reference to MPI library d97f899 Merge pull request #313 from bogdanm/development 63666ef Fix yotta dependencies 4104864 ECHDE-PSK does not use a certificate adeb7d8 Move all KEY_EXCHANGE__ definitions in one place 3eb8c34 Add example program for Curve25519 262c137 Merge pull request #311 from jcowgill/spelling-fix 07a92d7 Fix minor spelling mistake in programs/pkey/gen_key.c dd0e9a8 Minimal config file for ECJPAKE 4d284d2 Added feature MBEDTLS_SSL_EXPORT_KEYS 4289c0d Typo in parameter name ae8535d Changed defs. back to MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED c4e7d8a Bump version to 2.1.2 ca056c7 Fix CVE number in ChangeLog c80a74f Merge branch 'development' into development-restricted 2ac9c60 Add 'inline' workaround where needed a97ab2c Merge branch 'development' into development-restricted 9c67626 Merge branch 'development' of ssh://github.com/ARMmbed/mbedtls into development 7776fc3 Fix for #279 macroisation of 'inline' keyword 2d70834 Fix references to non-standard SIZE_T_MAX 86ff487 Merge remote-tracking branch 'origin/development' into development-restricted 0ccd453 Fix yotta version dependencies again 899ac84 Merge branch 'development' into development-restricted 2347bdd Upgrade yotta dependency versions 5ae7984 Merge pull request #306 from ARMmbed/gh-288-missing-warning 281bd6d Merge pull request #307 from ARMmbed/gh-278-musl-socklen 0431735 Fix compile error in net.c with musl libc cb6af00 Add missing warning in doc 475cf0a Merge fix of IOTSSL-496 - Potential heap overflow 5a2e389 Remove inline workaround when not useful 0223ab9 Fix macroization of inline in C++ fec73a8 Merge of fix for IOTSSL-481 - Double free c48b66b Changed attribution for Guido Vranken 6418ffa Merge fix for IOTSSL-480 - base64 overflow issue a45aa13 Merge of IOTSSL-476 - Random malloc in pem_read() e7f96f2 Merge fix IOTSSL-475 Potential buffer overflow d5ba467 Merge fix for IOTSSL-474 PKCS12 Overflow 5b8d1d6 Fix for IOTSSL-473 Double free error 39a60de Correct overwritten fixes 136884c Use MBEDTLS_ECJPAKE_C def. for correct conditional compilation 4feb7ae Added key export API e8377d6 Clean up compilation warnings 7cdad77 Add point format handling ef388f1 Merge branch 'development' into development-restricted bc1babb Fix potential overflow in CertificateRequest 54eec9d Merge pull request #301 from Tilka/typo e56384c Merge branch 'bachp-configs' into development a12e3c0 Updated ChangeLog with credit 13d8762 Merge branch 'configs' of bachp configs 0aa45c2 Fix potential overflow in base64_encode 50a739f Add test for base64 output length 5624ec8 Reordered TLS extension fields in client 04799a4 Fixed copy and paste error 0fc94e9 Revised bounds checking on TLS extensions 9f81231 Revised hostname length check from review d02a1da Fix stack buffer overflow in pkcs12 24417f0 Fix potential double-free in mbedtls_ssl_conf_psk() 58fb495 Fix potential buffer overflow in mpi_read_string() ed99766 Added bounds checking for TLS extensions 89f7762 Added max length checking of hostname 588ad50 Fix a fairly common typo in comments faee44d Avoid false positives in bounds check f592e8e Update yotta dependency version 8f98842 Refined credits in ChangeLog for fuzzing issue 2f056a0 Try to run yotta update for yotta build test ca4fb71 Fix mbed examples after minar upgrade d0d8cb3 Cache ClientHello extension 77c0646 Add cache for EC J-PAKE client extension 6657b8d Fix curve-dependency test 8cea8ad Bump version to 2.1.1 22b2941 Merge pull request #294 from ARMmbed/development-restricted ac58c53 Merge remote-tracking branch 'origin/development' 75df902 Add warning on config options 921f2d0 Add test cases with DTLS and/or password mismatch 0f1660a Implement key exchange messages and PMS derivation 25dbeb0 Skip certificate-related messages with ECJPAKE 0a1324a Add client-side extension parsing 55c7f99 Add server writing of the extension bf57be6 Add server extension parsing e511b4e Ignore ECJPAKE suite if not configured on server c1b46d0 Fix bug in server parsing point formats extension 60884a1 Improve debug formatting of ciphersuites 70905a7 Add ecjpake_pw option to ssl_client2/server2 eef142d Depend on ECJPAKE key exchange, not module ddf97a6 Skip ECJPAKE suite in ClientHello if no pw set up 538cb7b Add the ECJPAKE ciphersuite 557535d Add ECJPAKE key exchange 7dd82f8 Merge branch 'development' with bugfix branch 9aa7218 Merge branch 'bugfix' into development ea4b76d Merge pull request #273 from ARMmbed/iotssl-411-port-reuse 5793e7e Merge 'development' into iotssl-411-port-reuse 294139b Add client extension writing b813acc Add mbedtls_ecjpake_check(), tells if set up 7002f4a Add mbedtls_ssl_set_hs_ecjpake_password() f7022d1 Fix bug in server parsing point formats extension 5e4c206 Make config check include for configs examples more consistent 76cfd3f Add EC J-PAKE context in handshake structure f472179 Adjust dependencies for EC extensions ea5370d Don't allow reconnect during handshake 6ad23b9 Make failing test more robust a1a1128 Updated ChangeLog for fix #275 520d3b8 Merge pull request #289 from quartzjer/development 49641ad Merge pull request #275 from embedthis/fix-1 c57556e tiny spelling fixes d69f14b Updated Changelog for new version 8a52a74 Added PR to Changelog for NWilson 835faec Merge branch 'NWilson-const_profile' d0bf6a3 Update ssl_tls.c 74ca8d0 Update ssl_tls.c 0789aed Update ssl_tls.c 1a57af1 Update ssl.h 4f6882a Update config.h a25cab8 FIX: compiler warning with recvfrom on 64-bit a6b95f0 Print I/O buffer size in memory.sh ddfe5d2 Tune dependencies c2ed802 Fix ChangeLog - misplaced entries 2ed05a0 Fix typos ab05d23 Update generated file 259db91 Add test without cookies 22311ae Improve help message of ssl_*2.c 62c74bb Stop wasting resources 2088e2e fix const-ness of argument to mbedtls_ssl_conf_cert_profile 222cb8d Tune related documentation while at it 3a2a448 Update documentation 14c2574 Update Changelog e5a21b4 Merge pull request #282 from ARMmbed/iotssl-469-rsa-crt-restricted 5f50104 Add counter-measure against RSA-CRT attack d745a1a Add tests for hard reconnect 3f09b6d Fix API be619c1 Clean up error codes 11331fc First working dirty version 9650205 Start detecting epoch 0 ClientHellos 26d227d Add config flag for support of client port reuse dbd2307 Add option reconnect_hard to ssl_client2 cd34589 Fix #ifdef in test suite d9802af Add tests for round 2 3059095 Complete tests for reading round one bbe4e52 Start adding tests for EC J-PAKE round one d0d8a93 Blind operations on the secret 55f3d84 fixup-include c907081 Polish the source f7368c9 Polish API and documentation e192710 Unify round two d8204a7 Provide symmetric API for the first round e2d3a4e Unify loading of test vectors in tests ce45676 Rename variable to prepare for cli/srv unification 6b798b9 Tune up some comments e0ad57b Replace explicit IDs with table look-ups 5f18829 Add derive_pms, completing first working version 6449391 Store our role in the context 614bd5e Add write_client_params ec0eece Add read_client_params bed9e41 Add writing of server params 8d31e80 Improve testing strategy 1a7c5ef Optimize some case of mbedtls_ecp_muladd() cb7cd03 Add first draft or read_server_params 23dcbe3 Add support for passphrase in the context 4e8bc78 Add context-using functions for Hello extensions 7af8bc1 Start introducing mbedtls_ecjpake_context 3aed185 Re-order functions. 9028c5a Improve const correctness of read() functions 082767f Add ecjpake_kkpp_read/write 4f2cd95 Fix potential memory leaks b1b250b Add ecjpake_kkp_read/write() 967cd71 Add test vector for ZKP verification 6029a85 Add ecjpake_zpk_read() c618195 Fix base point in ecjpake_write_zkp() d9a3f47 Add mbedtls_ecp_gen_keypair_base() 8489f17 First draft of ecjpake_write_zkp() 3dbf2fb Implement hashing function for ZKP 4d8685b Add skeleton for EC J-PAKE module 7f2f062 Fix possible client crash on API misuse 14d8005 Remove "private" setting from module.json git-subtree-dir: communication/lib/mbedtls git-subtree-split: f7a46882574804d1939d48341ecc8b87e3efd651
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
@towynlin did the hard work, I just added some tests.