mbedtls

Author	SHA1	Message	Date
Tom Cosgrove	ff3c6c1a1a	Add parsing of psa/crypto_config.h for PSA_WANT_xxx to query_compile_time_config Fixes #6131 Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2022-07-25 12:19:35 +01:00
Tom Cosgrove	ef83b839d0	Tidy up generate_query_config.pl in preparation for further work Output is unchanged. Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2022-07-25 11:42:38 +01:00
Ronald Cron	e579ece305	Merge pull request #6087 from yuhaoth/pr/add-tls13-serialize_session_save_load TLS 1.3: Add serialize session save load I can see that https://github.com/Mbed-TLS/mbedtls/pull/6087#discussion_r927935696 and https://github.com/Mbed-TLS/mbedtls/pull/6087#discussion_r924252403 are addressed in #6123. Thus I am ok to merge it as it is.	2022-07-23 08:57:11 +02:00
Ronald Cron	340c559cb3	Merge pull request #6079 from yuhaoth/pr/add-tls13-parse-pre_shared_key_offered_psks TLS 1.3: PSK: Add parser/writer of pre_shared_key extension on server side.	2022-07-23 08:50:45 +02:00
Jerry Yu	13ab81d5ac	Add handshake failure in pre_shared_key withou psk_kex_modes Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 23:17:11 +08:00
Jerry Yu	6ac7c0349a	TLS 1.3: Add session test checks Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 23:09:40 +08:00
Jerry Yu	bc7c1a4260	fix typo/format/name issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 23:09:40 +08:00
Jerry Yu	24e385519e	Add reconnect test Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 23:09:37 +08:00
Jerry Yu	f092629997	Add save load test for tls13 Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 23:08:43 +08:00
Jerry Yu	a180f99a55	Add load-save tests for tls13 Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 23:08:43 +08:00
Jerry Yu	1ac476cc1e	Add save buf size test for tls13 Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 23:08:43 +08:00
Jerry Yu	6e8fec2908	add session serialization load buf Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 23:08:43 +08:00
Jerry Yu	534ff400d4	Add serialize_version_check for tls13 Add population session also Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 23:08:43 +08:00
Jerry Yu	438ddd835b	Add tls13 session save/load Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 23:08:43 +08:00
Jerry Yu	a66fecebe7	Add endpoint/ticket_flag field for session Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 23:08:43 +08:00
Jerry Yu	6f1db3fc92	fix format and potential non-PSK fail issue Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 23:05:59 +08:00
Jerry Yu	ce6ed7076a	Change the order of key_exchange determine Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 21:49:53 +08:00
Jerry Yu	ba9b6e9e53	fix unkown identity case Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 21:45:05 +08:00
Jerry Yu	568ec2502a	fix format/name issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 21:27:34 +08:00
Jerry Yu	2f0abc94d8	fix typo/type/format issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-22 19:34:48 +08:00
Ronald Cron	4beb870fa8	Merge pull request #6064 from xkqian/tls13_add_psk Add psk code to tls13 client side	2022-07-22 11:35:05 +02:00
Manuel Pégourié-Gonnard	0aabb6d8b9	Fix dependency in test_suite_pk When USE_PSA is disabled and ECDSA_DETERMINISTIC is enabled, generating ECDSA signatures via PK requires use of the hash via the MD layer (in HMAC-DRBG, used by deterministic ECDSA). When USE_PSA is enabled, ECDSA signatures via PK go through PSA which always uses non-deterministic ECDSA, so does not rely on HMAC-DRBG/MD. The condition used here is slightly too strong, but expressing exactly the optimal condition seems more effort than it's worth for just 3 test cases. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-22 10:55:06 +02:00
Dave Rodgman	a948f0588c	Merge pull request #1986 from jacmet/bn_mul-fix-x86-pic-compilation-for-gcc-4 bn_mul.h: fix x86 PIC inline ASM compilation with GCC < 5	2022-07-21 17:34:48 +01:00
Jerry Yu	77f0148e11	Add psk/psk_ephemeral key exchange check Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-21 23:27:22 +08:00
Dave Rodgman	87276a326f	Merge pull request #5952 from tuvshinzayaArm/add-missing-break Add missing break	2022-07-21 15:25:40 +01:00
Ronald Cron	32578b3bd0	Merge pull request #6069 from yuhaoth/pr/add-tls13-write-new-session-ticket TLS 1.3:add tls13 write new session ticket Validated by the internal CI and Travis.	2022-07-21 16:17:35 +02:00
Ronald Cron	892747015d	Merge pull request #6112 from ronald-cron-arm/tls13-negotiated-key-exchange-mode TLS 1.3: Add specific field to store the selected key exchange mode Validated by the internal CI merge job.	2022-07-21 15:46:35 +02:00
Ronald Cron	34e90fac27	TLS 1.3: tests: Allow PSK exchange mode on GnuTLS server Allow PSK exchange mode on GnuTLS server for NewSessionTicket message test as otherwise the GnuTLS server does not send tickets. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2022-07-21 15:31:14 +02:00
XiaokangQian	bee71453b2	Improve the buffer pointer check in write pre_shared key Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-07-21 15:30:04 +02:00
XiaokangQian	3ad67bf4e3	Rename functions and add test messages Change-Id: Iab51b031ae82d7b2d384de708858be64be75f9ed Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-07-21 15:30:04 +02:00
XiaokangQian	088c92977e	Remove useless force cipher suite Change-Id: Ib217806b4d44dea11515dd3ee1463d29431d70bb Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-07-21 15:30:04 +02:00
XiaokangQian	7c12d31813	Refine comments for psk related code Change-Id: Iff5c176bb902919abc8d4fb78a185aa68704a791 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-07-21 15:30:04 +02:00
XiaokangQian	8698195566	Address comments of various issues Improve comments Change coding style Rename functions Change-Id: Ia111aef303932cfeee693431c3d48f90342b32e5 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-07-21 15:30:04 +02:00
XiaokangQian	adab9a6440	Fix transcript issues and add cases against openssl Change-Id: I496674bdb79f074368f11beaa604ce17a3062bc3 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-07-21 15:30:04 +02:00
XiaokangQian	008d2bf80b	Address comments in psk client review Improve comments Refine cipher suite related code in psk Refine get_psk_offered() Change-Id: Ic3b0b5f86eb1e71f11bb499961aa8494284f1840 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-07-21 15:30:04 +02:00
XiaokangQian	eb69aee6af	Add psk code to tls13 client side Change-Id: I222b2c9d393889448e5e6ad06638536b54edb703 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-07-21 15:30:04 +02:00
Manuel Pégourié-Gonnard	fb2ed58064	Add notes on steps and testing Also add example/template script to check for coverage regressions. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-21 13:51:19 +02:00
Manuel Pégourié-Gonnard	c8c352c322	Update strategy document to reflect new macros Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-21 13:35:08 +02:00
Manuel Pégourié-Gonnard	db2c80402a	Fix dependencies in test_suite_pk Using VIA_MD_OR_PSA_BASED_ON_USE_PSA was justified by the fact that until a few commits ago, the test functions here computed hashes using either MD or PSA, depending on whether USE_PSA was defined (which itself was justified by the loose reasoning that "PK is USE_PSA territory"). A few commits ago, test code stopped computing hashes because the hash values became part of the test data. PK itself does not compute hashes. As a result, VIA_MD_OR_PSA_BASED_ON_USE_PSA is no longer justified. There are now two kinds of tests: - those that only rely on hash data (ECDSA, RSA PKCS#1 v1.5) should depend on VIA_LOWLEVEL_OR_PSA as that is the minimal dependency, hence the one used for data - those that were the layer below PK will internally compute a hash (RSA PKCS#1 v2.1): currently this hash is always computed using MD (on which MBEDTLS_PKCS1_V21 depends), so legacy dependencies like MBEDTLS_SHA256_C should be used for now. The previous dependency was morally wrong, it didn't show in the driver-only tests only because PKCS#1 v2.1 is disabled in this test for now. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-21 13:34:46 +02:00
Manuel Pégourié-Gonnard	73692b7537	Rework macros expressing dependencies Fix usage with sed: s/MBEDTLS_OR_PSA_WANT_\([A-Z_0-9]\)/MBEDTLS_HAS_\1_VIA_LOWLEVEL_OR_PSA/ s/MBEDTLS_USE_PSA_WANT_\([A-Z_0-9]\)/MBEDTLS_HAS_\1_VIA_MD_OR_PSA_BASED_ON_USE_PSA/ Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-21 12:11:53 +02:00
Jerry Yu	96a2e368dc	TLS 1.3: Add pre-shared-key multiple psk parser Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-21 18:00:13 +08:00
Jerry Yu	6119715e05	Change type cast to size_t Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-21 16:28:02 +08:00
Jerry Yu	1c9247cff4	TLS 1.3: Add pre_share_key last ext check From RFC, pre_share_key must be the last one. Add check for it. And with/without psk, it should be check Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-21 16:19:50 +08:00
Jerry Yu	352cd7db59	fix various issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-21 16:19:50 +08:00
Jerry Yu	daf375aa8b	fix issues of check_binder_match Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-21 16:19:50 +08:00
Jerry Yu	bb852029f4	fix naming issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-21 16:19:50 +08:00
Jerry Yu	6e74a7e3c7	Add check return flags Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-21 16:19:50 +08:00
Jerry Yu	4a2ea16aed	remove forcecipher for psk test Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-21 16:19:50 +08:00
Jerry Yu	997549353e	fix various code format issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-21 16:19:50 +08:00
Jerry Yu	032b15ce5e	Add write selected_identity Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-07-21 16:19:50 +08:00

... 2 3 4 5 6 ...

20806 commits