mbedtls

Author	SHA1	Message	Date
Jerry Yu	1f45b67474	Add unit tests Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-03-22 15:13:34 +08:00
Jerry Yu	79c004148d	Add PSA && TLS1_3 check_config Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-03-22 15:13:34 +08:00
Jerry Yu	3a58b462b6	add pss_rsae_sha{384,512} Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-03-22 15:13:34 +08:00
Jerry Yu	919130c035	Add rsa_pss_rsae_sha256 support Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-03-22 15:13:33 +08:00
Manuel Pégourié-Gonnard	f4042f076b	Merge pull request #5573 from superna9999/5176-5177-5178-5179-tsl-record-hmac TLS record HMAC	2022-03-21 11:36:44 +01:00
Manuel Pégourié-Gonnard	706f6bae27	Merge pull request #5518 from superna9999/5274-ecdsa-signing PK: ECDSA signing	2022-03-21 09:57:57 +01:00
Manuel Pégourié-Gonnard	472044f21e	Merge pull request #5525 from superna9999/5161-pk-rsa-encryption PK: RSA encryption	2022-03-21 09:57:38 +01:00
Neil Armstrong	c23d2e3ef1	Wrap unused declaration in #if/#endif when USE_PSA is set in x509_csr_check() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-03-18 15:31:59 +01:00
Neil Armstrong	0ab7a232b5	Add non-PSA and PSA variant of test_XXXX_constant_flow all.sh tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-03-18 11:10:09 +01:00
Neil Armstrong	8f92bf3a26	Only make PSA HMAC key exportable when NULL or CBC & not EtM in build_transforms() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-03-18 11:10:09 +01:00
Manuel Pégourié-Gonnard	8d4bc5eeb9	Merge pull request #5481 from gabor-mezei-arm/5401_implement_hkdf_extract_based_on_psa_hmac HKDF 1a: Implement Extract in TLS 1.3 based on PSA HMAC	2022-03-17 11:55:48 +01:00
Manuel Pégourié-Gonnard	15c0e39fff	Merge pull request #5519 from superna9999/5150-pk-rsa-decryption PK: RSA decryption	2022-03-17 11:02:13 +01:00
Manuel Pégourié-Gonnard	7c92fe966a	Merge pull request #5614 from gabor-mezei-arm/5203_tls_cipher_tickets_use_psa_for_protection TLS Cipher 2a: tickets: use PSA for protection	2022-03-17 09:50:09 +01:00
Gabor Mezei	88f3b2e502	Update old style test function parameter handling Use data_t type for hex string parameters. Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2022-03-16 16:53:23 +01:00
Dave Rodgman	2cecd8aaad	Merge pull request #3624 from daxtens/timeless RFC: Fix builds with MBEDTLS_HAVE_TIME disabled and test	2022-03-15 16:43:19 +00:00
Dave Rodgman	868d38f50f	Merge pull request #5547 from tom-cosgrove-arm/seclib-667-sha256-acceleration-mbedtls-internal SECLIB-667: Accelerate SHA-256 with A64 crypto extensions	2022-03-14 12:57:37 +00:00
Manuel Pégourié-Gonnard	c11bffe989	Merge pull request #5139 from mprse/key_der_ecc PSA: implement key derivation for ECC keys	2022-03-14 09:17:13 +01:00
Gilles Peskine	afb482897b	Merge pull request #5292 from mprse/asym_encrypt Driver dispatch for PSA asymmetric encryption + RSA tests	2022-03-10 20:07:38 +01:00
Gabor Mezei	49c8eb3a5a	Enable chachcapoly cipher for SSL tickets Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2022-03-10 17:09:59 +01:00
Gabor Mezei	2fa1c311cd	Remove test dependency The SSL ticket rotation test case is enabled when PSA is used. Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2022-03-10 17:09:59 +01:00
Manuel Pégourié-Gonnard	10e5cdbbbf	Merge pull request #5454 from gstrauss/cert_cb-user_data server certificate selection callback	2022-03-10 11:51:42 +01:00
Dave Rodgman	73e91e13a6	Merge pull request #2229 from RonEld/fix_test_md_api_violation Fix test md api violation	2022-03-10 09:21:47 +00:00
Paul Elliott	17f452aec4	Merge pull request #5448 from lhuang04/tls13_alpn Port ALPN support for tls13 client from tls13-prototype	2022-03-08 17:53:38 +00:00
Przemek Stekiel	c85f0912c4	psa_crypto.c, test_suite_psa_crypto.function: fix style Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-03-08 11:37:54 +01:00
Przemek Stekiel	f8614a0ec2	asymmetric_encryption.h: trim trailing spaces Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-03-08 10:48:35 +01:00
Przemek Stekiel	b6bdebde5e	asymmetric_encrypt: handle forced output Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-03-08 10:32:18 +01:00
Przemek Stekiel	d5e5c8b58d	asymmetric_encrypt: add remining test driver cases Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-03-08 10:31:07 +01:00
Gilles Peskine	c9c967c812	Fix RSA sanity checks for asymmetric_encrypt * Remove expected_output_data: since asymmetric encryption is randomized, it can't be useful. * The decryption check needs the private exponent, not the public exponent. * Use PSA macro for the expected ciphertext buffer size. * Move RSA sanity checks to their own function for clarity. * For RSAES-PKCS1-v1_5, check that the result of the private key operation has the form 0x00 0x02 ... 0x00 M where M is the plaintext. * For OAEP, check that the result of the private key operation starts with 0x00. The rest is the result of masking which it would be possible to check here, but not worth the trouble of implementing. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-03-07 21:18:37 +01:00
Gilles Peskine	44311f5c98	Merge pull request #5571 from superna9999/5162-pk-rsa-signing PK: RSA signing	2022-03-07 17:09:14 +01:00
Gilles Peskine	6bf5c8cb1d	Merge pull request #5506 from superna9999/4964-extend-psa-one-shot-multipart Extend PSA operation setup tests to always cover both one-shot and multipart	2022-03-07 17:04:37 +01:00
Gilles Peskine	fdfc10b250	Merge pull request #4408 from gilles-peskine-arm/storage-format-check-mononicity Check storage format tests for regressions	2022-03-07 17:02:34 +01:00
Przemek Stekiel	72373f3819	WIP: Add asymmetric_encrypt test case Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-03-07 16:48:18 +01:00
Przemek Stekiel	7a58208809	Change names rsa->asymmetric_encryption Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-03-07 10:49:04 +01:00
Neil Armstrong	fd4c259a7b	Use PSA_INIT() in mac_multipart_internal_func() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-03-07 10:11:11 +01:00
Ron Eldor	0df1ecd5fd	Fix test_suite_md API violation Add a call to `mbedtls_md_starts()` in the `mbedtls_md_process()` test, as it violates the API usage. Fixes #2227. Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2022-03-04 16:48:17 +00:00
Przemek Stekiel	f25b16cadd	test_psa_compliance: update tag to fix-pr-5139-3 Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-03-04 14:25:09 +01:00
Andrzej Kurek	469fa95cbc	Add the timing test dependency on MBEDTLS_HAVE_TIME Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-03-04 05:07:45 -05:00
David Horstmann	61faf665e6	Use $PWD instead of $(pwd) for consistency Change the new baremetal all.sh tests to use $PWD rather than calling pwd again directly. Signed-off-by: David Horstmann <david.horstmann@arm.com>	2022-03-04 05:07:45 -05:00
Daniel Axtens	814c8133c8	tests: add baremetal full config build To be able to test utility programs for an absence of time.h, we need a baremetal config that is not crypto only. Add one. Signed-off-by: Daniel Axtens <dja@axtens.net>	2022-03-04 05:07:45 -05:00
Daniel Axtens	446af202f6	tests: prevent inclusion of time.h in baremetal compiles baremetal compiles should not include time.h, as MBEDTLS_HAVE_TIME is undefined. To test this, provide an overriding include directory that has a time.h which throws a meaningful error if included. Signed-off-by: Daniel Axtens <dja@axtens.net>	2022-03-04 05:07:45 -05:00
Daniel Axtens	09e34b78ee	Add header guard around malloc(0) returning NULL implementation Make it safe to import the config multiple times without having multiple definition errors. (This prevents errors in the fuzzers in a later patch.) Signed-off-by: Daniel Axtens <dja@axtens.net>	2022-03-04 05:07:45 -05:00
Neil Armstrong	502da11df1	Initialize PSA crypto in test_suite_pk pk_rsa_decrypt_test_vec() when USE_PSA_CRYPTO is enabled Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-03-03 16:52:47 +01:00
Neil Armstrong	5b32038ff0	Alternative CSR checks in x509_csr_check when USE_PSA_CRYPTO The X509write x509_csr_check reference file depends on mbedtls_test_rnd_pseudo_rand being used to match the pre-generated data. This calls x509_crt_verifycsr() like in x509_csr_check_opaque() when MBEDTLS_USE_PSA_CRYPTO is defined. Notably using PSA_ALG_DETERMINISTIC_ECDSA() in ecdsa_sign_wrap() makes this test run without these changes. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-03-03 16:44:06 +01:00
Neil Armstrong	5f8328b2f6	Initialize PSA crypto in test_suite_x509write for RSA signing tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-03-03 16:39:39 +01:00
Neil Armstrong	c921bfdf30	Fix 80 characters indentation in pk_rsa_encrypt_decrypt_test() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-03-03 16:33:39 +01:00
Neil Armstrong	7f1055223d	Remove pk_rsa_encrypt_test_vec() test in favor to pk_rsa_encrypt_decrypt_test() Not checking the encrypt result with PSA makes the test useless. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-03-03 16:33:39 +01:00
Neil Armstrong	dac2f23a82	Stop checking against reference vector in pk_rsa_encrypt_test_vec when USE_PSA_CRYPTO The pk_rsa_encrypt_test_vec() reference vector is calculated while using mbedtls_test_rnd_pseudo_rand rng source, but since the RNG souce can't be controlled when USE_PSA_CRYPTO is enabled we can't get the same result. The pk_rsa_encrypt_test_vec() fails when switching to mbedtls_test_rnd_std_rand as rng source. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-03-03 16:33:39 +01:00
Neil Armstrong	e0df42cbb7	Introduce pk_rsa_encrypt_decrypt_test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-03-03 16:33:39 +01:00
Neil Armstrong	445d2192d5	Initialize PSA crypto in test_suite_pk pk_rsa_encrypt_test_vec() & pk_rsa_alt() when USE_PSA_CRYPTO is enabled Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-03-03 16:33:39 +01:00
Neil Armstrong	fe6da1c35c	Fix style issues in mac_sign_verify_multi() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-03-03 16:29:14 +01:00

1 2 3 4 5 ...

6340 commits