aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2016-10-21Clear random buf in olm_init_outbound_group_sessionRichard van der Hoff
All the other methods clear their random inputs. This one needs to do the same, to reduce the risk of the randomness being used elsewhere and leaking key info.
2016-10-21Merge pull request #31 from matrix-org/markjh/groupmessageindexMark Haines
Return the message index when decrypting group messages.
2016-10-20Check the message index in the testsMark Haines
2016-10-20Merge branch 'master'Richard van der Hoff
2016-10-20Merge pull request #30 from matrix-org/rav/misc_docsRichard van der Hoff
Add notes on limitations to megolm spec
2016-10-20Add NULL check for message_index pointerMark Haines
2016-10-20Return the message index when decrypting group messages.Mark Haines
Applications can use the index to detect replays of the same message.
2016-10-19s/ephemeral/one-time/ in olm specRichard van der Hoff
We're standardising on 'one-time keys' as a term for the thing that Bob uploads for prekey messages.
2016-10-19Add notes on limitations to megolm specRichard van der Hoff
2016-10-19Link to the megolm specRichard van der Hoff
2016-10-19Document the unknown key-share attacks and mitigation (#29)Richard van der Hoff
2016-10-19Merge pull request #28 from matrix-org/rav/fix_megolm_segfaultRichard van der Hoff
Fix a buffer bounds check when decoding group messages
2016-10-19Merge pull request #27 from matrix-org/rav/fuzzers_readmeRichard van der Hoff
Add a README for the fuzzers
2016-10-19Fix a buffer bounds check when decoding group messagesRichard van der Hoff
Fixes a segfault when a group message had exactly the length of the mac + signature. Also tweak skipping of unknown tags to avoid an extra trip around the loop.
2016-10-19Add a README for the fuzzersRichard van der Hoff
2016-10-02fix missing ctypes function signaturesMatthew Hodgson
These missing signatures were causing OSX to truncate 64-bit pointers to 32-bit pointers when calling the missing methods, causing segfaults
2016-10-02s/PCKS/PKCS/Matthew Hodgson
2016-10-02s/PCKS/PKCS/Matthew Hodgson
2016-09-28typoMatthew Hodgson
2016-09-23Makefile: install-headers is phonyRichard van der Hoff
2016-09-23Add a Makefile rule to install the headersEmmanuel Gil Peyrot
Signed-off-by: Emmanuel Gil Peyrot <linkmauve@linkmauve.fr>
2016-09-23Merge branch 'rav/megolm_spec'Richard van der Hoff
2016-09-23megolm.rst: link to protobuf specRichard van der Hoff
2016-09-22More review feedbackRichard van der Hoff
2016-09-22Merge branch 'rav/python_fixes'Richard van der Hoff
2016-09-22InboundGroupSession.init no longer requires a separate message_indexRichard van der Hoff
2016-09-22Handle non-base64 chars in pickle filesRichard van der Hoff
2016-09-22megolm.rst: review feedbackRichard van der Hoff
Split ratchet algorithm out to a separate section. Also clean up some phrasing and correct a typo or two.
2016-09-22megolm.rst: linkify Ed25519Richard van der Hoff
2016-09-22Megolm.rst: add Background and footerRichard van der Hoff
2016-09-22First stab at a megolm specRichard van der Hoff
2016-09-16Merge pull request #25 from matrix-org/markjh/fix_jenkinsMark Haines
Fix jenkins.sh
2016-09-16Fix jenkins.shMark Haines
2016-09-16Merge pull request #24 from matrix-org/rav/one_time_keys_commentRichard van der Hoff
Update comment on olm_account_one_time_keys
2016-09-16Update comment on olm_account_one_time_keysRichard van der Hoff
Document what it actually returns.
2016-09-14Fix the release instructionsMark Haines
2016-09-14Changelog and version bump for 1.3.01.3.0Mark Haines
2016-09-14Make release instructions more C+PableMark Haines
2016-09-14Fix the group javascript demoMark Haines
2016-09-13Merge remote-tracking branch 'matrix/master'Mark Haines
2016-09-13Merge pull request #23 from matrix-org/markjh/remove_message_indexMark Haines
Remove the messsage index from olm_init_inbound_group_session
2016-09-13Merge pull request #22 from matrix-org/markjh/inbound_group_session_idMark Haines
Add a olm_inbound_group_session_id method
2016-09-13Remove the messsage index from olm_init_inbound_group_session since it is ↵Mark Haines
read from the session_key
2016-09-13Add a test to check the equivalence of session ids for inbound and outbound ↵Mark Haines
sessions
2016-09-13Add a olm_inbound_group_session_id methodMark Haines
2016-09-13Merge pull request #21 from matrix-org/markjh/fix_session_idsMark Haines
Use the ed25519 public key as the group session id.
2016-09-13``if`` is not the same as ``for``Mark Haines
2016-09-13Comment on the encoding of the message counter.Mark Haines
2016-09-13Use the ed22519 public key as the group session id.Mark Haines
Some clients expect the session id to be globally unique, so allowing the end devices to pick the session id will cause problems. Include the current ratchet index with the initial keys, this decreases the risk that the client will supply the wrong index causing problems. Sign the initial keys with the ratchet ed25519 key, this reduces the risk of a client claiming a session that they didn't create.
2016-09-06call double ratchet what it isMatthew Hodgson