Commits · 423b8fe00d145dbb808d0fba4e3287e7295fce18 · fuchsia-mirror / fuchsia.googlesource.com-third_party-tink

Sep 17, 2019
- Fix a bug in loading .ini file as single column CSV file which causes panic. · 423b8fe0
  Tink Team authored 5 years ago
```
- Make sure errors related to malformed csv credential file or bad path are thrown.

PiperOrigin-RevId: 269639332
```
  423b8fe0
Jul 11, 2019

Remove Apache 2.0 comments from build files. · 5c33dec2

tanujdhir authored 5 years ago

To replicate:
find -name BUILD.bazel -exec sed -Ei 's/\s+# Apache 2.0$//' {} \;
find -name BUILD.bazel -exec sed -Ei 's/\s+# Apache 2.0 # keep$/  # keep/' {} \;

PiperOrigin-RevId: 257604221

5c33dec2

May 29, 2019
- Cross language for GCP and AWS Envelope encryption using Golang · 67d8d1aa
  baskaran authored 5 years ago
```
PiperOrigin-RevId: 249747173
```
  67d8d1aa
May 02, 2019

Adding C++ support for GCP Cloud KMS. · f1a09493

przydatek authored 5 years ago

NOKEYCHECK=True
PiperOrigin-RevId: 244120137
GitOrigin-RevId: a3e69d36c4c98100bd2a08011c1c54afdb215dd7

f1a09493

Adding C++ AwsKmsClient. · ee509ad7

przydatek authored 5 years ago

NOKEYCHECK=True
PiperOrigin-RevId: 241739854
GitOrigin-RevId: d180a24e7fa9df2e93c4e8e9d86a2981e8dea6c9

ee509ad7

Mar 20, 2019

internal cleanup · 0a394eba

baskaran authored 6 years ago

NOKEYCHECK=True
PiperOrigin-RevId: 237356228
GitOrigin-RevId: 984d57fd725606039db54712e668cd5c184c16fc

0a394eba

AWS KMS integration · 6d0765ae

baskaran authored 6 years ago

NOKEYCHECK=True
PiperOrigin-RevId: 237348599
GitOrigin-RevId: 7f2e08b2b5871f02b139dd9b5ac55b3e0c30c62f

6d0765ae

Apr 06, 2018

Pulling Wycheproof test vectors from GitHub. · 33cea864

Thai Duong authored 6 years ago

This prevents accidentally leaking unpublished test vectors.

PiperOrigin-RevId: 191730673
GitOrigin-RevId: 25ef0af66bb4b2e7de1e6f31195d30f251e911e6

33cea864

Mar 31, 2018

Fixing ECDH tests. · 157277bf

Thai Duong authored 6 years ago

1/ Catching unchecked exceptions to not crash the JVM.

Wycheproof found that some Java security providers would throw unchecked exceptions when processing attacker-controlled input. To prevent DoS attacks, we'd catch these exceptions in Tink.

2/ Do not report errors if the shared secret is correct.

Android M and N ignore the public key parameters, thus we'd stop reporting errors in tests that modify parameters if the shared secret is still correct.

3/ Skipping CVE-2017-10176 test because it's not a severe issue.

PiperOrigin-RevId: 191113399
GitOrigin-RevId: b069f3af3f515b30b5cc1e2af791b226fb0635c5

157277bf

Mar 23, 2018

Test vectors for version 0.4. · 34d7ed70

Daniel Bleichenbacher authored 7 years ago

There are some format changes:
- The field notes in the header is now a dictionary.
- Test vectors have a new field flags, that should document the
  test vectors better. Additionally it can be used to change
  tests easier (e.g. a test can define if it cares about signature
  malleability or not).
- There are more special cases (e.g. implementations for brainpool curves
  can use the group isomorphisms defined in the standard).

Bug fixes:
- Some ECDH test vectors were missing a shared value.
- Some ECDH test vectors where the public key has modifications in unused
  parameters are now acceptable, as long as the change does not modify the
  shared secret.

PiperOrigin-RevId: 189929126
GitOrigin-RevId: b3e2b1caee4ba33c3dc4fcc223402527479e7140

34d7ed70

Mar 13, 2018

Copying all Wycheproof test vectors to testdata/wycheproof and adding a few... · fa5dc71f

Thai Duong authored 7 years ago

Copying all Wycheproof test vectors to testdata/wycheproof and adding a few C++ transformation rules.

This is to prepare for cr/188575891.

PiperOrigin-RevId: 188892942
GitOrigin-RevId: 136568e214b16060e5e9750800533e50ed6eebe4

fa5dc71f

tink/cc/subtle should not depend on tink/cc. · 906fe687
Thai Duong authored 7 years ago
```
PiperOrigin-RevId: 188804612
GitOrigin-RevId: f74c008ce89de81d4aaa167b653e3043a6e19375
```
906fe687
Preserving the author information when copying from GoB to GitHub. · 3484bb2c
Thai Duong authored 7 years ago
```
PiperOrigin-RevId: 188463467
GitOrigin-RevId: 0fd2ab773808de613c52e8143092ced7de7b5b26
```
3484bb2c

Mar 09, 2018

Project import generated by Copybara. · 528d8eba

Tink Team authored 7 years ago

PiperOrigin-RevId: 187930665
Change-Id: I140a9e3de957540cd0c6b40cc6a0c93dd0123575
GitOrigin-RevId: 39ca3a385405482e7c942728584e6c1c057aa9d4

528d8eba

Feb 27, 2018

Mass renaming BUILD to BUILD.bazel. · d98847ce

Google Engineers authored 7 years ago

This allows to use BUILD for Blaze.

Change-Id: I6fa84543b8ec927b0bdf5641f698b00d9c4de416
ORIGINAL_AUTHOR=Google Engineers <noreply@google.com>
GitOrigin-RevId: c049652c44d7e575d04169caf19d85b0d5371181

d98847ce

Dec 20, 2017

Adding more tests for AES-SIV. · 7354c9c0

Daniel Bleichenbacher authored 7 years ago

Bug: 66947041
Bug: 65864441

Change-Id: I367b1f6ee318b8b42ade5467a9ce649f25731efb
ORIGINAL_AUTHOR=Daniel Bleichenbacher <bleichen@google.com>
GitOrigin-RevId: 19b921d2d165971059e087294ffae893156e7657

7354c9c0

Nov 10, 2017

Protect X25519 against fault and add Wycheproof's X25519 test. · 3ac30cd2

Quan Nguyen authored 7 years ago

Based on Daniel's idea.

Using the notations at https://tools.ietf.org/html/rfc7748#section-5,
we want to verify whether u, x2/z2, x3/z3 are collinear (see comments in
the code for details).

This CL also bans public key in the list
https://cr.yp.to/ecdh.html#validate

Bug: 68164999

Change-Id: I03b719a9e8369096a89c5fba7e27f724f2a94188
ORIGINAL_AUTHOR=Quan Nguyen <quannguyen@google.com>
GitOrigin-RevId: f4f66fb7abd0ff095211a323fc43a4631660ad89

3ac30cd2

Nov 09, 2017

Add Wycheproof's ECDH tests. · ba5acec6

Quan Nguyen authored 7 years ago

Based on cl/172745913.

Change-Id: I651986b6e4f0cf826a30df80126af16090bc3173
ORIGINAL_AUTHOR=Quan Nguyen <quannguyen@google.com>
GitOrigin-RevId: e8e09845aa30680fc12b21686e5aa5be029c832b

ba5acec6

Nov 03, 2017

Add Wycheproof's ChaCha20Poly1305 tests. · b88d54f3

Quan Nguyen authored 7 years ago

Wycheproof tests will shield us from making mistakes for the
follow-up refactoring/rewritting CLs.

Change-Id: I585038f2218497d1038ce4857c7de31dc2b6c606
ORIGINAL_AUTHOR=Quan Nguyen <quannguyen@google.com>
GitOrigin-RevId: 6177280951ea114ba7da35b185b655e27dd604f3

b88d54f3

Oct 14, 2017

Use Wycheproof test vector for AesEaxJce. · f589755e

Quan Nguyen authored 7 years ago

Move checkAlgAndVersion method to WycheproofTestUtil.

Change-Id: I25b81f9bf421a4c5c34604cdd3335c6714f4e2ce
ORIGINAL_AUTHOR=Quan Nguyen <quannguyen@google.com>
GitOrigin-RevId: 3e3c339ad6a5059da0cead658bc3783f67fb4def

f589755e

Oct 06, 2017

Fixing issues found during sync. · f77a51a1

Thai Duong authored 7 years ago

- Moving wycheproof test vectors to testdata/wycheproof so that
they can be excluded in sync.

- StreamingAeadConfig does not use AeadConfig, removing the
dependency.

- Adding ToString() in a few places.

- Removing unused dependencies in AesGcmBoringSsl.

- Removing TestUtil.getBytes() and renaming TestUtil.getJsonObject
to readJson.

Change-Id: I5216275fa7050524af98c11ce6a8007cbab37212
ORIGINAL_AUTHOR=Thai Duong <thaidn@google.com>
GitOrigin-RevId: 4fdc9b5759d0f37b0ce054fe56a57bb27c3ba594

f77a51a1

Fix a bug in Ed25519 and add Wycheproof tests. · 2da371ee

Quan Nguyen authored 7 years ago

The bug is that isNonZeroVarTime assumes the input is reduced while it
isn't. Furthermore, the reduced number representation is not unique,
e.g., the following array is essentially zero
[67108845,33554431,67108863,33554431,67108863,33554431,67108863,33554431,67108863,33554431]
We have to call Field25519.contract() before checking for zero.

Change-Id: Ib4f80a686de3f72e44dc602664c9f12616663db8
ORIGINAL_AUTHOR=Quan Nguyen <quannguyen@google.com>
GitOrigin-RevId: c735f0857fad861647a53eb842838cf0e499636d

2da371ee

Jul 28, 2017

Remove AES-GCM and ECDSA test vector files. · 1a8d7249

Thanh Bui authored 7 years ago

AES-GCM and ECDSA tests now obtain the test vectors directly from Wycheproof's repository.

Change-Id: I614ba141c342a34286b7f2f11af87e25b0f1dc81
ORIGINAL_AUTHOR=Thanh Bui <thanhb@google.com>
GitOrigin-RevId: 176deedb86d4d4ebd10aed07aa9ad1042e467fba

1a8d7249

Jul 22, 2017

Add ECDSA implementation. · cd3117f7

Thanh Bui authored 7 years ago

To test ECDSA, also add test vectors from Wycheproof.

Change-Id: I08157184e727acecf854b2d4dda766ae8e613217
ORIGINAL_AUTHOR=Thanh Bui <thanhb@google.com>
GitOrigin-RevId: adfb86b2ebb474386f3aa51906a3cfdf632977c3

cd3117f7

Add AES-GCM subtle. · 45b8562e

Thanh Bui authored 7 years ago

To test AES-GCM, also add AES-GCM test vectors from Wycheproof.

Change-Id: Ib367b2dff4200ca27068d78b1cbe026381ef4b32
ORIGINAL_AUTHOR=Thanh Bui <thanhb@google.com>
GitOrigin-RevId: 83e830ecaa3cd321161b2240897c940876c484c9

45b8562e

May 26, 2017

Move Java to com.google.crypto.tink. · c0412713

Thai Duong authored 7 years ago

Change-Id: I7822198a4257a81db34231d1c4d416f87fb9b65a
ORIGINAL_AUTHOR=Thai Duong <thaidn@google.com>
GitOrigin-RevId: e38021ac0481d7c14f68778d60468e66767a91d6

c0412713

May 16, 2017

Merge "Update test resources." · 8faa2ef0

Thai Duong authored 7 years ago

ORIGINAL_AUTHOR=Thai Duong <thaidn@google.com>
GitOrigin-RevId: 1a4706c0eafb9a683aab304a5f51c709c1325fd3

8faa2ef0

Apr 12, 2017

Create a testdata top folder to host shared test data for all languages. · bae3fb98

Thai Duong authored 7 years ago

Change-Id: I1b59df255d25a25e79849408b7df0901e5e4486b
ORIGINAL_AUTHOR=Thai Duong <thaidn@google.com>
GitOrigin-RevId: 81b35288e94edb4eec6f679268638f90d65de839

bae3fb98