mbedtls

Author	SHA1	Message	Date
Dave Rodgman	756b028511	Merge pull request #7171 from daverodgman/pr5527 Fix undefined behavior in ssl_read if buf parameter is NULL	2023-03-13 10:46:29 +00:00
Dave Rodgman	f8565b3c2b	Add more PKCS #7 tests with expired cert Add test which uses an expired cert but is otherwise OK, which passes if and only if MBEDTLS_HAVE_TIME_DATE is not set. Add similar test which verifies against a different data file, which must fail regardless of MBEDTLS_HAVE_TIME_DATE. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-11 10:26:39 +00:00
Dave Rodgman	cc77fe8e52	Fix PKCS #7 tests when MBEDTLS_HAVE_TIME_DATE unset Ensure that verification of an expired cert still fails, but update the test to handle the different error code. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-11 09:46:13 +00:00
Dave Rodgman	ca43e0d0ac	Fix test file extension Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-10 13:06:01 +00:00
Dave Rodgman	f2f2dbcfd7	Add test case for PKCS7 file with zero signers The test file was created by manually modifying tests/data_files/pkcs7_data_without_cert_signed.der, using ASN.1 JavaScript decoder https://lapo.it/asn1js/ Changes made: The SignerInfos set was truncated to zero length. All the parent sequences, sets, etc were then adjusted for their new reduced length. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-10 12:52:00 +00:00
Dave Rodgman	ac447837d3	Merge pull request #7206 from xkqian/test_memory_management_in_pkcs7 Test memory management in pkcs7	2023-03-10 11:29:50 +00:00
Gilles Peskine	4da92832b0	Merge pull request #7117 from valeriosetti/issue6862 driver-only ECDSA: enable ECDSA-based TLS 1.2 key exchanges	2023-03-09 20:49:44 +01:00
Gilles Peskine	a25203c5f9	Merge pull request #7208 from paul-elliott-arm/interruptible_sign_hash_new_verify_tests Interruptible_{sign\|verify}_hash: Add public key verification tests	2023-03-09 20:48:13 +01:00
Dave Rodgman	bf4016e5d5	Merge pull request #6567 from mprse/ecjpake-driver-dispatch	2023-03-09 19:23:05 +00:00
Przemek Stekiel	b8eaf635ba	Remove MBEDTLS_SHA256_C from PSA_WANT_ALG_JPAKE config and adapt test dependencies Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-09 12:14:26 +01:00
Valerio Setti	2f081473b6	test: fix disparities in test_suite_ssl Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-08 16:47:28 +01:00
Valerio Setti	c0e7da55c5	test: removing remaning dependencies of PK_WRITE/PK_PARSE from test_suite_psa_crypto suites Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-08 11:03:09 +01:00
Valerio Setti	f9bc5b75f1	test: remove dependencies on PK_WRITE and PK_PARSE from test_suite_psa_crypto suites Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-08 11:03:09 +01:00
Gilles Peskine	a2fc399f57	Merge pull request #6829 from AndrzejKurek/unify-psa-errors Unify PSA to Mbed TLS error translation	2023-03-07 19:55:44 +01:00
Janos Follath	fe780a3c4b	Merge pull request #7184 from gabor-mezei-arm/6349_Secp224r1_fast_reduction Extract Secp224r1 fast reduction from the prototype	2023-03-07 10:57:58 +00:00
Przemek Stekiel	4aa99403f4	Fix configuration for accelerated jpake Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-07 10:50:09 +01:00
Xiaokang Qian	d2988adb31	Add rsa dependencies for pkcs7 corrupt signer info cases Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-03-07 08:38:58 +00:00
Xiaokang Qian	9c703d80ca	Add fuzz bad cases for signer info 1 and 2 Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-03-07 08:38:58 +00:00
Xiaokang Qian	8993a14567	Add unexpected tag cases for signer info 1 and 2 Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-03-07 08:38:58 +00:00
Xiaokang Qian	e8c696ffd1	Add invalid size test case for signer info[2](The third one) Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-03-07 08:38:58 +00:00
Xiaokang Qian	72b4bcac03	Add invalid size test case for signer info 1(the second one) Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-03-07 08:38:55 +00:00
Manuel Pégourié-Gonnard	a5ffa93e43	Merge pull request #7142 from mpg/driver-only-ecdh-starter Driver-only ECDH starter	2023-03-07 09:14:38 +01:00
Paul Elliott	8c092052bd	Add public key verification tests Add public key verification tests, and alter test intent comments to make it obvious that verify_hash_interruptible can do public keys as well as private and keypairs. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-06 17:49:14 +00:00
Manuel Pégourié-Gonnard	228a30d16c	Merge pull request #7120 from mpg/md-light Define "MD light" subset of MD	2023-03-06 11:02:19 +01:00
Dave Rodgman	4693fd9e9e	Merge pull request #7173 from daverodgman/zeroize-platform Use platform-provided secure zeroization	2023-03-06 09:16:12 +00:00
Dave Rodgman	45cef61fa4	Merge branch 'development' into md-light Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-03 14:28:13 +00:00
Andrzej Kurek	8a045ce5e6	Unify PSA to Mbed TLS error translation Move all error translation utilities to psa_util.c. Introduce macros and functions to avoid having a local copy of the error translating function in each place. Identify overlapping errors and introduce a generic function. Provide a single macro for all error translations (unless one file needs a couple of different ones). Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-03 05:23:44 -05:00
Paul Elliott	ddbc6ed6cd	Enable all keys for interruptible op fail tests Due to a misunderstanding about the purpose of the test, I had limited this to ECC keys only, however this defeats the purpose of the test, and left gaps in test coverage. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-02 16:03:43 +00:00
Dave Rodgman	f4385faa6f	Merge pull request #7188 from paul-elliott-arm/interruptible_sign_hash_complete_after_start_fail Interruptible {sign\|verify} hash - Call complete() after start() failure.	2023-03-01 17:18:08 +00:00
Paul Elliott	42585f678b	Merge pull request #7176 from paul-elliott-arm/interruptible_sign_hash_verify_test_improvements Interruptible {sign\|verify} hash verification test improvements	2023-03-01 15:00:45 +00:00
Paul Elliott	ebf2e38662	Merge pull request #7177 from paul-elliott-arm/interruptible_sign_hash_improve_num_ops_testing Interruptible sign hash improve num ops testing	2023-03-01 14:59:44 +00:00
Paul Elliott	de7c31e082	Improve comment wording Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-01 14:43:52 +00:00
Przemek Stekiel	f5dcb8886a	Rework pake input getters tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-01 12:28:21 +01:00
Gilles Peskine	1eae11565d	Merge pull request #6949 from bensze01/replace_pkcs7_fuzzer_tests Replace fuzzer-generated PKCS #7 memory management tests	2023-03-01 10:46:22 +01:00
Paul Elliott	7c17308253	Add num_ops tests to sign and verify interruptible hash This is the only test usable for non-deterministic ECDSA, thus needs this code path testing as well. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-28 17:23:29 +00:00
Paul Elliott	8359c14c14	Add hash corruption test to interruptible verify test Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-28 17:23:29 +00:00
Paul Elliott	c1e0400bac	Add test to check not calling get_num_ops() Make sure that not calling get_num_ops() inbetweeen calls to complete() does not mean that ops get lost (Regression test for previous fix). Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-28 17:20:14 +00:00
Paul Elliott	9e8819f356	Move 'change max_ops' test into ops tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-28 17:20:14 +00:00
Paul Elliott	5770224ef3	Rename max ops tests to ops tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-28 17:20:14 +00:00
Gilles Peskine	7e677fa2c5	Merge pull request #6389 from gilles-peskine-arm/ecdsa-use-psa-without-pkwrite Remove pkwrite dependency in pk using PSA for ECDSA	2023-02-28 18:17:16 +01:00
Paul Elliott	587e780812	Test calling complete() after {sign\|verify}_hash_start fails Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-28 17:13:39 +00:00
Dave Rodgman	17152df58d	Merge pull request #7175 from paul-elliott-arm/interruptible_sign_hash_test_comments Interruptible sign hash test comments	2023-02-28 17:09:43 +00:00
Gilles Peskine	ebb63420cc	Merge pull request #7124 from oberon-microsystems/fix-test-output-length-on-success-only Fix test to check output length on PSA_SUCCESS only	2023-02-28 18:09:33 +01:00
Dave Rodgman	ffb4dc38c8	Merge pull request #7183 from paul-elliott-arm/interruptible_sign_hash_test_max_ops_0 Interruptible {sign\|verify} hash : Change max_ops=min tests to use a value of zero.	2023-02-28 15:56:01 +00:00
Bence Szépkúti	4a2fff6369	Fix expected error code This was overlooked during the rebase. Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>	2023-02-28 16:40:27 +01:00
Gabor Mezei	804cfd32ea	Follow the naming convention Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-02-27 16:50:09 +01:00
Paul Elliott	ac2251dad1	Merge pull request #7076 from mprse/parse_RFC822_name Add parsing of x509 RFC822 name + test	2023-02-27 14:16:13 +00:00
Paul Elliott	cd7e8bce03	Change max_ops=min tests to use zero Zero is the minimum value defined by the spec, just because the internal implementation treats zero and one as the same thing does not mean that other implementations will also do so. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-27 12:21:36 +00:00
Stephan Koch	5819d2c141	Feedback from Arm: guarantee that output_length <= output_size even on error, to reduce the risk that a missing error check escalates into a buffer overflow in the application code Signed-off-by: Stephan Koch <koch@oberon.ch>	2023-02-27 11:49:13 +01:00
oberon-sk	10c0f770ce	asymmetric_encrypt: check output length only if return code is PSA_SUCCESS. Signed-off-by: Stephan Koch <koch@oberon.ch>	2023-02-27 11:48:51 +01:00

1 2 3 4 5 ...

4925 commits