aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2016-12-19Add some tests for the Javascript wrappersRichard van der Hoff
These would have helped avoid the recent FRV.
2016-12-16Merge pull request #40 from matrix-org/rav/fix_encryptionRichard van der Hoff
Avoid buffer overrun on encryption
2016-12-16Avoid buffer overrun on encryptionRichard van der Hoff
Make sure we null-terminate encrypted strings before passing them to UTF8ToString. This used to work when we allocated the buffer on the stack, because it turns out that allocate() zeroinits the returned memory. malloc(), of course, does not.
2016-12-15Merge pull request #39 from matrix-org/rav/messages_on_heapRichard van der Hoff
Allocate memory for message blobs on the heap
2016-12-15typoRichard van der Hoff
2016-12-15zero out plaintext buffersRichard van der Hoff
Avoid leaving copies of the plaintext sitting around in the emscripten heap.
2016-12-14Merge pull request #38 from matrix-org/rav/handle_load_exceptionsRichard van der Hoff
Better handling of exceptions during loading, and import OLM_OPTIONS
2016-12-14Allocate memory for message blobs on the heapRichard van der Hoff
Messages can be very large, so we don't really want to allocate them on the stack. Switch to using the heap for them, and try to clean up some of the string handling while we're at it.
2016-12-14Let apps override emscripten settingsRichard van der Hoff
Read settings from OLM_OPTIONS to allow apps to configure some options. In particular, this is useful for setting the heap size.
2016-12-12Better handling of exceptions during loadingRichard van der Hoff
If we get an exception during load, don't define half of window.Olm (which confuses apps). This is a partial fix to https://github.com/vector-im/riot-web/issues/2726.
2016-10-27Add a document on signing keysRichard van der Hoff
2016-10-25Update python wrapper to run against libolm.so.2Richard van der Hoff
2016-10-25Merge branch 'release-v2.0.0'Richard van der Hoff
2016-10-25Document the return values for olm_matches_inbound_sessionMark Haines
2016-10-25Version bump for 2.0.02.0.0Richard van der Hoff
2016-10-24Changelog: Mention install-headersRichard van der Hoff
2016-10-24Prepare changelog for v2.0.0Richard van der Hoff
2016-10-24Fix broken fuzzer compilationRichard van der Hoff
fuzz_group_decrypt.cpp got broken by 653790e; fix it up
2016-10-24remove redundant svgRichard van der Hoff
2016-10-24double_ratchet.svgRichard van der Hoff
2016-10-24Merge pull request #33 from matrix-org/rav/pickle_lengthRichard van der Hoff
Return the base64-encoded length of pickles
2016-10-24Merge pull request #32 from matrix-org/markjh/replayMark Haines
Document the potential for message replays and possible mitigations
2016-10-24Return the base64-encoded length of picklesRichard van der Hoff
make olm_pickle_* return the lengths of the base64-encoded pickles, rather than the raw pickle. (From the application's POV, the format of the pickle is opaque: it doesn't even know that it is base64-encoded. So returning the length of the raw pickle is particularly unhelpful.)
2016-10-21Merge branch 'rav/clear_random_bufs'Richard van der Hoff
2016-10-21Clear random buf in olm_init_outbound_group_sessionRichard van der Hoff
All the other methods clear their random inputs. This one needs to do the same, to reduce the risk of the randomness being used elsewhere and leaking key info.
2016-10-21SpellingMark Haines
2016-10-21s/they've/they have/Mark Haines
2016-10-21Reword and s/message index/ratchet index/Mark Haines
2016-10-21Document the potential for message replays and possible mitigationsMark Haines
2016-10-21Merge pull request #31 from matrix-org/markjh/groupmessageindexMark Haines
Return the message index when decrypting group messages.
2016-10-20Check the message index in the testsMark Haines
2016-10-20Merge branch 'master'Richard van der Hoff
2016-10-20Merge pull request #30 from matrix-org/rav/misc_docsRichard van der Hoff
Add notes on limitations to megolm spec
2016-10-20Add NULL check for message_index pointerMark Haines
2016-10-20Return the message index when decrypting group messages.Mark Haines
Applications can use the index to detect replays of the same message.
2016-10-19s/ephemeral/one-time/ in olm specRichard van der Hoff
We're standardising on 'one-time keys' as a term for the thing that Bob uploads for prekey messages.
2016-10-19Add notes on limitations to megolm specRichard van der Hoff
2016-10-19Link to the megolm specRichard van der Hoff
2016-10-19Document the unknown key-share attacks and mitigation (#29)Richard van der Hoff
2016-10-19Merge pull request #28 from matrix-org/rav/fix_megolm_segfaultRichard van der Hoff
Fix a buffer bounds check when decoding group messages
2016-10-19Merge pull request #27 from matrix-org/rav/fuzzers_readmeRichard van der Hoff
Add a README for the fuzzers
2016-10-19Fix a buffer bounds check when decoding group messagesRichard van der Hoff
Fixes a segfault when a group message had exactly the length of the mac + signature. Also tweak skipping of unknown tags to avoid an extra trip around the loop.
2016-10-19Add a README for the fuzzersRichard van der Hoff
2016-10-02fix missing ctypes function signaturesMatthew Hodgson
These missing signatures were causing OSX to truncate 64-bit pointers to 32-bit pointers when calling the missing methods, causing segfaults
2016-10-02s/PCKS/PKCS/Matthew Hodgson
2016-10-02s/PCKS/PKCS/Matthew Hodgson
2016-09-28typoMatthew Hodgson
2016-09-23Makefile: install-headers is phonyRichard van der Hoff
2016-09-23Add a Makefile rule to install the headersEmmanuel Gil Peyrot
Signed-off-by: Emmanuel Gil Peyrot <linkmauve@linkmauve.fr>
2016-09-23Merge branch 'rav/megolm_spec'Richard van der Hoff