mbedtls

Author	SHA1	Message	Date
Manuel Pégourié-Gonnard	525add631e	Add component with accelerated hashes and USE_PSA Currently the test suites are passing because a lot of tests functions/cases explicitly depend on SHAxxx_C, resulting in them being skipped in this build. The goal of the next few commits is going to make them pass and achieve test parity with a non-accelerated build for selected modules. Note: compared to the previous component, I'm using 'make tests' not 'make' (ie not building program) because I'm betting build failures (some header not found) in programs which are not my interest atm. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-12 11:11:19 +02:00
Manuel Pégourié-Gonnard	97ab2a3ae2	Clean up two accel tests in all.sh - TLS versions earlier than 1.2 have been removed - fix a copy-paste typo Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-12 11:11:19 +02:00
Manuel Pégourié-Gonnard	46a295422d	Build and test RSA PKCS#1v1.5 without MD Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-12 11:11:19 +02:00
Manuel Pégourié-Gonnard	e496c6273e	Sort out MD dependencies in RSA tests When MD is only used to compute a size, use md_internal.h instead. When it's actually used to compute a hash, mark the test function as depending on it. This is probably suboptimal in the long run, and we might want to either adapt the code so that it can use PSA Crypto instead, or just pre-compute the hash in the test data. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-12 11:11:19 +02:00
Manuel Pégourié-Gonnard	3f4778995e	Rm dependency on MD in psa_crypto_rsa.c The previous commit made the PKCS#1v1.5 part of rsa.c independent from md.c, but there was still a dependency in the corresponding part in PSA. This commit removes it. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-12 11:11:19 +02:00
Manuel Pégourié-Gonnard	fe2b9b5397	Make mbedtls_oid_get_md_alg() always available This is a step towards building with RSA PKCS#1v1.5 without MD. Also loosen guards around oid data: the OID definitions clearly don't depend on our software implementation. We could simply have no dependency as this is just data. But for the sake of code size, let's have some guards so that people who don't use MD5, SHA1 or RIPEMD160 don't have to pay the price for them. Note: this is used for RSA (PKCS#v1.5) signatures among other things, an area that is not influenced by USE_PSA, so the guards should not depend on it either. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-12 11:11:19 +02:00
Manuel Pégourié-Gonnard	f493f2ad1d	Use md_internal_get_size() in rsa.c Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-12 11:11:18 +02:00
Manuel Pégourié-Gonnard	3356b89b64	Add missing guard around call to MD PKCS#1 v1.5 mostly does not need hash operations. This is a first step towards allowing builds with PKCS#1 v1.5 only (no v2.1) without MD. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-12 11:11:18 +02:00
Manuel Pégourié-Gonnard	b86279fc63	Build and test PK without MD Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-12 11:11:18 +02:00
Manuel Pégourié-Gonnard	6a0a160f99	Avoid a dependency on MD in test_suite_pk Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-12 11:11:18 +02:00
Manuel Pégourié-Gonnard	a370e06e30	Avoid dependency of PK on MD Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-12 11:11:18 +02:00
Manuel Pégourié-Gonnard	d8a298e1fc	Add internal MD size getter Modules / tests that only need to get the size of a hash from its type, without actually computing a hash, need not depend on MD_C. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-07-12 11:11:18 +02:00
Paul Elliott	6dc7cdfdd1	Merge pull request #959 from paul-elliott-arm/merge-into-3.2.0 Merge 3.2.0 into development	2022-07-11 20:01:18 +01:00
Paul Elliott	7adb8cbc0e	Revert "Add generated files for 3.2.0 release" This reverts commit `cb21f2eab3`. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2022-07-11 18:18:30 +01:00
Paul Elliott	3aef7670b7	Merge pull request #957 from paul-elliott-arm/mbedtls-3.2.0rc0-pr Mbedtls 3.2.0rc0 PR	2022-07-11 15:45:03 +01:00
Paul Elliott	cb21f2eab3	Add generated files for 3.2.0 release Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2022-07-11 13:56:01 +01:00
Paul Elliott	f14b742689	Update BRANCHES.md for 3.2.0 release Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2022-07-11 13:56:01 +01:00
Paul Elliott	20362cd1ca	Bump library and so versions for 3.2.0 release Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2022-07-11 13:56:01 +01:00
Paul Elliott	2238eed2d9	Update Changelog for 3.2.0 release Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2022-07-11 13:55:59 +01:00
Paul Elliott	2089fd0ea9	Rename Changelog entries that don't have .txt extension Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2022-07-11 13:52:54 +01:00
Paul Elliott	237c87ba0e	Add missing Changelog entries Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2022-07-11 13:52:28 +01:00
Paul Elliott	f518f81d41	Ensure return for mbedtls_ssl_write_alpn_ext() is checked Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2022-07-11 12:37:47 +01:00
Paul Elliott	9a8d78419f	Fixup test tls13_server_certificate_msg_invalid_vector_len The parameters for init_handshake_options had changed on the development branch after this test was created, so fixing up this test in order to correct build failures after merge. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2022-07-11 11:34:14 +01:00
Paul Elliott	20ccd6e8bb	Merge remote-tracking branch 'origin/development' into mbedtls-3.2.0rc2-pr Merge missing commits from development into release	2022-07-11 11:29:32 +01:00
Ronald Cron	ce7d76e2ee	Merge remote-tracking branch 'mbedtls-restricted/development-restricted' into mbedtls-3.2.0rc0-pr	2022-07-11 10:22:37 +02:00
Paul Elliott	a343d34f0d	Merge pull request #6077 from paul-elliott-arm/fix_generate_debug_helpers_pylint Fix formatting of generate_ssl_debug_helpers.py	2022-07-08 22:28:41 +01:00
Paul Elliott	4a49651860	Fix formatting of generate_ssl_debug_helpers.py Satisfy pylint formatting errors Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2022-07-08 20:45:39 +01:00
Dave Rodgman	391e33ac93	Merge pull request #6076 from paul-elliott-arm/fix_generate_debug_helpers Fix generation of ssl_debug_helpers	2022-07-08 17:55:51 +01:00
Paul Elliott	fe9d43c21d	Fix generation of ssl_debug_helpers File was being generated with tabs rather than spaces which breaks release builds Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2022-07-08 17:27:25 +01:00
Paul Elliott	6e80e09bd1	Merge pull request #5915 from AndrzejKurek/cid-resumption-clash Fix DTLS 1.2 session resumption	2022-07-06 15:03:36 +01:00
Andrzej Kurek	1ce9ca0630	Changelog rewording Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-06 06:50:30 -04:00
Andrzej Kurek	21b50808cd	Clarify the need for calling mbedtls_ssl_derive_keys after extension parsing Use a more straightforward condition to note that session resumption is happening. Co-authored-by: Ronald Cron <ronald.cron@arm.com> Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-06 03:26:55 -04:00
Paul Elliott	826762e315	Merge pull request #5765 from leorosen/fix-some-resource-leaks Fix resource leaks	2022-07-05 23:12:02 +01:00
Andrzej Kurek	3a29e9cf57	Improve changelog wording Co-authored-by: Ronald Cron <ronald.cron@arm.com> Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-05 10:49:10 -04:00
Dave Rodgman	c6a4a1cc13	Merge pull request #6011 from gabor-mezei-arm/coverity_22_07_01 Fix uninitialised memory access in test	2022-07-05 13:59:34 +01:00
Andrzej Kurek	ddb8cd601d	test_suite_ssl: Fix handshake options cleanup Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 16:07:28 -04:00
Manuel Pégourié-Gonnard	0358597589	Merge pull request #5757 from mpg/update-doc-use-psa Update "use PSA" documentation (inc. strategy)	2022-07-04 17:59:00 +02:00
Andrzej Kurek	9dc4402afa	test_suite_ssl: zeroize the cache pointer in case if the struct memory gets reused Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 10:40:15 -04:00
Andrzej Kurek	1e085686ec	test_suite_ssl: remove unnecessary user data checks Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 10:40:09 -04:00
Andrzej Kurek	3d0d501517	test_suite_ssl: prefer ASSERT_ALLOC over malloc Fix formatting for option initialization Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 10:39:34 -04:00
Andrzej Kurek	2e1a232261	Fix changelog wording Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 10:21:59 -04:00
Andrzej Kurek	92d7417d89	Formatting fixes Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 10:21:59 -04:00
Andrzej Kurek	e11acb2c9b	test_suite_ssl: add proper cache cleanup Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 10:21:59 -04:00
Andrzej Kurek	e8ad0d7d42	Disable bad session id length test in TLS 1.3 Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 10:21:59 -04:00
Andrzej Kurek	456a109edb	test_suite_ssl: add required dependencies for default handshake parameters Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 10:21:59 -04:00
Andrzej Kurek	6e518ab086	test_suite_ssl: add missing options cleanup Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 10:21:59 -04:00
Andrzej Kurek	ed58b50ea6	test_suite_ssl: add missing MBEDTLS_SSL_SERVER_C dependency Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 10:21:59 -04:00
Andrzej Kurek	626a931bb9	test_suite_ssl: Add missing arguments in endpoint initialization Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 10:21:59 -04:00
Andrzej Kurek	9abad0c5ef	Improve the changelog message to contain more details Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 10:18:29 -04:00
Andrzej Kurek	514683abdc	Add a test with a bad session_id_len that makes cache setting fail Force a bad session_id_len before handshake wrapup. This should result in a forced jump to a clean up of a serialized session. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-07-04 10:18:29 -04:00

1 2 3 4 5 ...

20502 commits