mbedtls

Author	SHA1	Message	Date
Dave Rodgman	3ac99fdf07	Merge pull request #7301 from gilles-peskine-arm/msan-explicit_bzero Fix Msan failure with explicit_bzero	2023-03-16 14:55:18 +00:00
Dave Rodgman	680dbd46ae	Merge pull request #7270 from DemiMarie/oid-fix Fix segfault in mbedtls_oid_get_numeric_string	2023-03-16 12:21:36 +00:00
Gilles Peskine	a8d2ff3fdf	Fix Msan failure with explicit_bzero On some platforms, including modern Linux, Clang with Msan does not recognize that explicit_bzero() writes well-defined content to its output buffer. For us, this causes CMAC operations to fail in Msan builds when mbedtls_platform_zeroize() is implemented over explicit_bzero(). Fix this. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-03-16 10:53:46 +01:00
Demi Marie Obenour	889534a4d2	Fix segfault in mbedtls_oid_get_numeric_string When passed an empty OID, mbedtls_oid_get_numeric_string would read one byte from the zero-sized buffer and return an error code that depends on its value. This is demonstrated by the test suite changes, which check that an OID with length zero and an invalid buffer pointer does not cause Mbed TLS to segfault. Also check that second and subsequent subidentifiers are terminated, and add a test case for that. Furthermore, stop relying on integer division by 40, use the same loop for both the first and subsequent subidentifiers, and add additional tests. Signed-off-by: Demi Marie Obenour <demiobenour@gmail.com>	2023-03-16 01:06:41 -04:00
Gilles Peskine	2a44ac245f	Merge pull request #7217 from lpy4105/issue/6840/add-cache-entry-removal-api ssl_cache: Add cache entry removal api	2023-03-15 15:38:06 +01:00
Manuel Pégourié-Gonnard	18336dace2	Merge pull request #7196 from mprse/ecjpake-driver-dispatch-peer-user EC J-PAKE: partial fix for role vs user+peer	2023-03-15 09:37:30 +01:00
Pengyu Lv	0b9c012f21	ssl_cache: return the error code for mutex failure Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-03-15 14:37:32 +08:00
Pengyu Lv	744b507866	ssl_cache: use auxiliary function to zeroize cache entry This commit introduce a auxiliary function to zeroize the cache entry, especially the session structure. The function is called wherever we need to free the entry. Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-03-15 12:17:14 +08:00
Dave Rodgman	e59c46e161	Merge pull request #7278 from daverodgman/aesce-macro-name-tidyup	2023-03-14 20:33:31 +00:00
Dave Rodgman	4a1d3beaee	Merge pull request #7229 from tom-cosgrove-arm/static-assert	2023-03-14 16:57:38 +00:00
Dave Rodgman	db6ab247fc	Improve macro naming Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-14 16:03:57 +00:00
Dave Rodgman	023c8853ac	Merge pull request #7203 from yuhaoth/pr/add-cpu-modifier-for-aesce Add CPU modifier for AESCE	2023-03-14 15:58:57 +00:00
Tom Cosgrove	57f04b81a0	Have MBEDTLS_STATIC_ASSERT() match current development more closely Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2023-03-14 12:03:47 +00:00
Przemek Stekiel	c0e6250ff9	Fix documentation and tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-14 11:49:36 +01:00
Gilles Peskine	215ecd0439	Merge pull request #7252 from daverodgman/enable_pkcs7 Enable PKCS 7	2023-03-14 10:39:50 +01:00
Jerry Yu	ec9be84ae6	skip pragma when cpu modifier has been set Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-14 10:42:47 +08:00
Jerry Yu	b28d55b242	fix wrong typo and indent issue Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-14 10:36:47 +08:00
Przemek Stekiel	fde112830f	Code optimizations and documentation fixes Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-13 16:28:27 +01:00
Dave Rodgman	efbc5f7322	Update wording in comments Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-13 12:15:49 +00:00
Dave Rodgman	756b028511	Merge pull request #7171 from daverodgman/pr5527 Fix undefined behavior in ssl_read if buf parameter is NULL	2023-03-13 10:46:29 +00:00
Jerry Yu	6f86c19d62	Improve readability for compiler version check Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-13 11:03:40 +08:00
Jerry Yu	02487a2123	Rename target option flag macro Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-13 10:19:35 +08:00
Jerry Yu	77a010e3b3	Remove the max version limitation for clang workaround Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-13 10:19:35 +08:00
Jerry Yu	490bf08dd9	fix comment issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-13 10:19:34 +08:00
Jerry Yu	7b4d9da08c	fix wrong clang version check. Both inline assembly and intrinsic need pragma Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-13 10:19:34 +08:00
Jerry Yu	ae129c3a20	Add new feature test macros Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-13 10:19:34 +08:00
Jerry Yu	48b999cd6e	Add cpu modifiers for aesce.c Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-13 10:19:31 +08:00
Przemek Stekiel	f309d6b7fb	Fix peer user mismatch after rebase Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-12 16:59:28 +01:00
Przemek Stekiel	18cd6c908c	Use local macros for j-pake slient/server strings Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-12 16:59:28 +01:00
Przemek Stekiel	aa1834254e	Fix code style Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-12 16:59:28 +01:00
Przemek Stekiel	09104b8712	rework psa_pake_set_role to be consistent with requirements and adapt tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-12 16:59:28 +01:00
Przemek Stekiel	d7f6ad7bc8	Minor fixes (comments, cleanup) Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-12 16:59:28 +01:00
Przemek Stekiel	4cd20313fe	Use user/peer instead role in jpake TLS code Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-10 09:18:03 +01:00
Przemek Stekiel	1e7a927118	Add input getters for jpake user and peer Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-10 09:18:03 +01:00
Przemek Stekiel	26c909d587	Enable support for user/peer for JPAKE This is only partial support. Only 'client' and 'server' values are accepted for peer and user. Remove support for role. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-10 09:18:02 +01:00
Gilles Peskine	4da92832b0	Merge pull request #7117 from valeriosetti/issue6862 driver-only ECDSA: enable ECDSA-based TLS 1.2 key exchanges	2023-03-09 20:49:44 +01:00
Dave Rodgman	bf4016e5d5	Merge pull request #6567 from mprse/ecjpake-driver-dispatch	2023-03-09 19:23:05 +00:00
Dave Rodgman	5e5aa4a4e6	Merge pull request #7218 from tom-cosgrove-arm/fix-typos-230307 Fix typos in development prior to release	2023-03-08 17:19:59 +00:00
Dave Rodgman	51b62ef23d	Merge pull request #7228 from tom-cosgrove-arm/fix-alignment.h-on-32-bit-systems Fix mbedtls_bswap64() on 32-bit systems	2023-03-08 17:19:29 +00:00
Manuel Pégourié-Gonnard	913d9bb921	Merge pull request #7162 from valeriosetti/issue7055 Legacy MBEDTLS_PK_PARSE_C and MBEDTLS_PK_WRITE_C dependencies in test_suite_psa_crypto	2023-03-08 17:07:19 +01:00
Valerio Setti	75fba32cb3	ssl: use new macros for ECDSA capabilities Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-08 16:47:28 +01:00
Manuel Pégourié-Gonnard	289e5baa83	Merge pull request #7082 from valeriosetti/issue6861 driver-only ECDSA: add ssl-opt.sh testing with testing parity	2023-03-08 16:45:38 +01:00
Tom Cosgrove	6ef9bb3d74	Implement and use MBEDTLS_STATIC_ASSERT() Fixes #3693 Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2023-03-08 14:19:51 +00:00
Tom Cosgrove	bbe166e721	Fix mbedtls_bswap64() on 32-bit systems Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2023-03-08 13:23:24 +00:00
Tom Cosgrove	c15a2b949d	Update the text about gcc5 support for Armv8 CE Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2023-03-08 12:55:48 +00:00
Valerio Setti	733de595e3	psa_crypto_rsa: remove PK_WRITE_C in psa_rsa_export_key Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-08 11:03:09 +01:00
Valerio Setti	73a218513b	psa_crypto_rsa: add comment/explanation for residual PK_WRITE_C guard Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-08 11:03:09 +01:00
Przemek Stekiel	691e91adac	Further pake code optimizations Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-08 09:54:00 +01:00
Gilles Peskine	a2fc399f57	Merge pull request #6829 from AndrzejKurek/unify-psa-errors Unify PSA to Mbed TLS error translation	2023-03-07 19:55:44 +01:00
Gilles Peskine	12e3c8e019	Merge pull request #7168 from mpg/use-md Use MD (not low-level hash interface) in X.509 and TLS	2023-03-07 19:55:12 +01:00

1 2 3 4 5 ...

10612 commits