mbedtls

Author	SHA1	Message	Date
Gilles Peskine	55c46040f6	mbedtls_ecp_gen_privkey_mx: rename n_bits to high_bit For Montgomery keys, n_bits is actually the position of the highest bit and not the number of bits, which would be 1 more (fence vs posts). Rename the variable accordingly to lessen the confusion. No semantic change. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-06-03 18:10:03 +02:00
Gilles Peskine	72fcc98d23	mbedtls_ecp_gen_privkey: create subfunctions for each curve type Put the Montgomery and short Weierstrass implementations of mbedtls_ecp_gen_privkey into their own function which can be tested independently, but will not be part of the public ABI/API. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-06-03 18:10:03 +02:00
Gilles Peskine	cce0601485	mbedtls_ecp_gen_privkey: minor refactoring Prepare to isolate the Montgomery and short Weierstrass implementations of mbedtls_ecp_gen_privkey into their own function. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-06-03 18:10:03 +02:00
Manuel Pégourié-Gonnard	84191eab06	Merge pull request #4315 from Kxuan/feat-pre-compute-tls Static initialize comb table	2021-06-03 11:41:54 +02:00
kXuan	782c2b9f36	fix comment, ChangeLog & migration-guide for MBEDTLS_ECP_FIXED_POINT_OPTIM Signed-off-by: kXuan <kxuanobj@gmail.com>	2021-06-03 15:47:40 +08:00
Manuel Pégourié-Gonnard	1b1327cc0d	Merge pull request #4581 from TRodziewicz/remove_supp_for_extensions_in_pre-v3_X.509_certs Remove MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3 option	2021-06-02 13:48:03 +02:00
Manuel Pégourié-Gonnard	df77624ab5	Merge pull request #4490 from TRodziewicz/Combine__SSL_<CID-TLS1_3>_PADDING_GRANULARITY_options Combine _SSL_<CID-TLS1_3>_PADDING_GRANULARITY options	2021-06-02 13:47:48 +02:00
Manuel Pégourié-Gonnard	1b3b27cbb0	Merge pull request #4587 from TRodziewicz/remove_3DES_ciphersuites Remove 3DES ciphersuites	2021-06-02 11:01:42 +02:00
Ronald Cron	3dafa9bda8	Merge pull request #4555 from ronald-cron-arm/m-ccm-api Define CCM multi-part API	2021-06-02 09:56:43 +02:00
Gilles Peskine	9f5c34cc88	Merge pull request #4596 from gilles-peskine-arm/nist_kw-null_dereference-3.0 Fix null pointer arithmetic in NIST_KW	2021-06-01 16:40:19 +02:00
Ronald Cron	e13d3083ee	Add invalid context as a possible reason for _BAD_INPUT error code Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2021-06-01 13:35:40 +02:00
Gilles Peskine	fe3069b7f1	Merge pull request #4585 from mpg/cipher-aead-delayed Clarify multi-part AEAD calling sequence in Cipher module	2021-06-01 12:04:19 +02:00
Gilles Peskine	89ee599092	Fix null pointer arithmetic in error case When mbedtls_nist_kw_wrap was called with output=NULL and out_size=0, it performed arithmetic on the null pointer before detecting that the output buffer is too small and returning an error code. This was unlikely to have consequences on real-world hardware today, but it is undefined behavior and UBSan with Clang 10 flagged it. So fix it (fix #4025). Fix a similar-looking pattern in unwrap, though I haven't verified that it's reachable there. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-06-01 11:22:56 +02:00
TRodziewicz	f059e74a22	Re-wording ChangeLog and reverting overzealous removal from config.h Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-06-01 11:17:07 +02:00
Manuel Pégourié-Gonnard	c01b87b820	Fix some typos Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2021-06-01 09:40:53 +02:00
Ronald Cron	542957d6b1	Add some API calling order documentation Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2021-06-01 09:22:05 +02:00
Ronald Cron	f668bd18df	Add migration guide for developers of CCM alternative implementation Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2021-06-01 09:07:46 +02:00
Ronald Cron	7c41cd2a7a	Split operation start and the declaration of data lengths Split operation start and the declaration of data lengths to better align with the PSA Cryptography multipart AEAD APIs. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2021-06-01 09:07:43 +02:00
Ronald Cron	b740a617ec	Remove change log Remove the change log as the changes in this PR only affect CCM alternative implementation developers. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2021-06-01 09:05:51 +02:00
Ronald Cron	51584c6cdb	Prefer ad to add as shorthand for additional/associated data Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2021-06-01 09:05:51 +02:00
Ronald Cron	ff92479f71	Wording improvement Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2021-06-01 09:05:51 +02:00
Ronald Cron	84cb8e0063	Add invalid mode as mbedtls_ccm_start() possible error Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2021-06-01 09:05:49 +02:00
Ronald Cron	b87fe016aa	Remove buffer overlap considerations Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2021-06-01 09:05:20 +02:00
Ronald Cron	86e6c9f860	Improve expected context state for some APIs Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2021-06-01 09:05:02 +02:00
kXuan	22fc906d57	Add ChangeLog and migration guide for MBEDTLS_ECP_FIXED_POINT_OPTIM Signed-off-by: kXuan <kxuanobj@gmail.com>	2021-06-01 14:01:59 +08:00
kXuan	b2b3ec4f7a	add ecp_comb_table.py ecp_comb_table.py generates comb table Signed-off-by: kXuan <kxuanobj@gmail.com>	2021-06-01 10:02:14 +08:00
kXuan	ba9cb76e9f	static initialize comb table MBEDTLS_ECP_FIXED_POINT_OPTIM aims to speed up ecc multiplication performance. We compute the comb table in runtime now. It is a costly operation. This patch add a pre-computed table to initialize well-known curves. It speed up ECDSA signature verify process in runtime by using more ROM size. Signed-off-by: kXuan <kxuanobj@gmail.com>	2021-06-01 10:02:13 +08:00
Gilles Peskine	bbd617be5f	Remove duplicated definition of ASSERT_ALLOC Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-05-31 20:33:17 +02:00
Gilles Peskine	b2827693b5	Remove spurious dependencies on PEM Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-05-31 20:33:15 +02:00
TRodziewicz	231649a020	Changing the migration guide entry wording. Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-05-31 13:12:16 +02:00
TRodziewicz	4e57f4cdfd	Adding removed defines to check_config.h and fixing the migration guide entry. Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-05-31 12:58:25 +02:00
Manuel Pégourié-Gonnard	6d84e917bb	Merge pull request #4568 from creiter32/to_upstream/csr_critical_extensions Expose flag for critical extensions	2021-05-31 12:46:59 +02:00
Manuel Pégourié-Gonnard	ee57ebe553	Add ChangeLog and migration guide entries Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2021-05-31 12:25:01 +02:00
Manuel Pégourié-Gonnard	42eba1a274	Fix a typo Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2021-05-31 12:14:02 +02:00
TRodziewicz	3670e387dc	Remove 3DES ciphersuites Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-05-31 12:11:53 +02:00
Manuel Pégourié-Gonnard	daae68d9b2	Merge pull request #4565 from mpg/fixup-changelog-4495-4286 Fix the "rm (D)TLS 1.0 1.1" ChangeLog entry	2021-05-31 11:37:04 +02:00
Manuel Pégourié-Gonnard	c42a0be00b	Clarify calling sequence in the Cipher layer Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2021-05-31 11:13:35 +02:00
Ronald Cron	ea62d2f391	Merge pull request #4369 from hanno-arm/relax_psk_config Implement relaxed semantics for static PSK configuration in Mbed TLS 3.0	2021-05-31 10:03:56 +02:00
TRodziewicz	dee975af7d	Remove MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3 option Remove define Add ChangeLog file and migration guide entry Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-05-28 15:27:01 +02:00
Ronald Cron	f1eb425782	Merge pull request #4469 from xiaoxiang781216/padlock aes: Check aes_padlock_ace > 0 before calling padlock	2021-05-28 11:06:40 +02:00
Hanno Becker	2bec09c113	Fix typo in migration guide Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-05-28 09:54:31 +01:00
Hanno Becker	934ab00f77	Minor improvement of ChangeLog wording Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-05-28 09:52:54 +01:00
Ronald Cron	c44a1d522a	Merge pull request #4507 from Venafi/userid-oid Add OID for User ID	2021-05-28 10:43:41 +02:00
Hanno Becker	196739b478	Change wording in documentation of PSK configuration Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-05-28 05:33:14 +01:00
Ronald Cron	7146cb9488	Merge pull request #4559 from gilles-peskine-arm/psa-storage-format-test-algorithms-3.0 PSA storage format test: algorithms	2021-05-27 17:33:57 +02:00
Christoph Reiter	95273f4b07	Expose flag for critical extensions Enables creating X.509 CSRs with critical extensions. Signed-off-by: Christoph Reiter <christoph.reiter@infineon.com>	2021-05-27 14:27:43 +02:00
Ronald Cron	142c205ffc	Merge pull request #4513 from Patater/psa-without-genprime-fix psa: Support RSA signature without MBEDTLS_GENPRIME	2021-05-27 14:19:24 +02:00
Manuel Pégourié-Gonnard	e9cac0e277	Fix inconsistent documentation of cipher_setup() - the \internal note said that calling cipher_init() first would be made mandatory later, but the documention of the ctx parameter already said the context had to be initialized... - the documentation was using the word initialize for two different meanings (calling setup() vs calling init()), making the documentation of the ctx parameter quite confusing (you must initialize before you can initialize...) Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2021-05-27 12:59:11 +02:00
Ronald Cron	0cc60f9985	Improve some length parameter descriptions Improve some length parameter descriptions, aligning them with the descriptions for the one-shot functions. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2021-05-27 09:58:21 +02:00
Ronald Cron	c0cc7ba51e	Change from total_input_len to plaintext_len as parameter name plaintext_len conveys more information. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2021-05-27 09:58:12 +02:00

1 2 3 4 5 ...

15976 commits