mbedtls

Author	SHA1	Message	Date
Andrzej Kurek	5c65c5781f	Fix additional misspellings found by codespell Remaining hits seem to be hex data, certificates, and other miscellaneous exceptions. List generated by running codespell -w -L keypair,Keypair,KeyPair,keyPair,ciph,nd Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-05-11 21:25:54 +01:00
Shaun Case	8b0ecbccf4	Redo of PR#5345. Fixed spelling and typographical errors found by CodeSpell. Signed-off-by: Shaun Case <warmsocks@gmail.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2022-05-11 21:25:51 +01:00
Manuel Pégourié-Gonnard	5479f5321a	Merge pull request #5772 from superna9999/5762-rsa-decrypt-pk RSA decrypt 1a: PK	2022-05-11 11:01:01 +02:00
Neil Armstrong	814562afaa	Switch last TEST_ASSERT() in TEST_EQUAL() in pk_wrap_rsa_decrypt_test_vec() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-05-11 09:29:57 +02:00
Paul Elliott	d1a954d243	Merge pull request #5707 from yuhaoth/pr/add-tls13-write-hello-retry-request TLS1.3: Add HelloRetryRequest Write	2022-05-10 17:25:33 +01:00
Cameron Cawley	ea5496ceb3	Fix compilation with MinGW32 Signed-off-by: Cameron Cawley <ccawley2011@gmail.com>	2022-05-10 13:46:09 +01:00
Manuel Pégourié-Gonnard	42650260a9	Merge pull request #5783 from mprse/md_dep_v3 Fix undeclared dependencies: MD	2022-05-10 10:41:32 +02:00
Manuel Pégourié-Gonnard	9bbb7bacae	Merge pull request #5791 from superna9999/5788-unify-non-opaque-and-opaque-psks Unify non-opaque and opaque PSKs	2022-05-09 10:15:16 +02:00
Jerry Yu	ede50ea891	move hrr tests Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-05-09 15:49:09 +08:00
Jerry Yu	23f7a6fc5c	share write_body between HRR and ServerHello Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-05-09 15:49:01 +08:00
Jerry Yu	cb03677f85	add hrr test Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-05-09 15:48:59 +08:00
XiaokangQian	a987e1d2f8	Change state machine after encrypted extension and update cases Change-Id: Ie84a2d52a08538afb8f6096af0c054bd55ed66cb Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-05-07 01:37:04 +00:00
XiaokangQian	45c22201b3	Update test cases and encrypted extension state set Change-Id: Ie1acd10b61cefa9414169b276a0c5c5ff2f9eb79 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-05-07 01:37:04 +00:00
XiaokangQian	2f150e184f	Update status and add test cases for client certificate request Change-Id: If9b9672540d2b427496b7297aa484b8bcfeb75c5 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-05-07 01:37:04 +00:00
Ronald Cron	25b1f5d2b7	Merge pull request #5545 from xffbai/tls13-write-enc-ext TLS1.3: add writing encrypted extensions on server side.	2022-05-06 13:54:45 +02:00
Przemek Stekiel	d3ba7367c9	component_test_crypto_full_no_md: fix order of disabled features Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-05-06 11:41:56 +02:00
Przemek Stekiel	fe2367af26	all.sh: add build/test config crypto_full minus MD Dependeny list: - ['MBEDTLS_MD_C'] - ['MBEDTLS_ECJPAKE_C', 'MBEDTLS_PKCS5_C', 'MBEDTLS_PKCS12_C', 'MBEDTLS_PKCS1_V15', 'MBEDTLS_PKCS1_V21', 'MBEDTLS_HKDF_C', 'MBEDTLS_HMAC_DRBG_C', 'MBEDTLS_PK_C'] - ['MBEDTLS_ECDSA_DETERMINISTIC', 'MBEDTLS_PK_PARSE_C', 'MBEDTLS_PK_WRITE_C', 'MBEDTLS_RSA_C'] Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-05-05 12:09:03 +02:00
Przemek Stekiel	1068c224a4	Adapt generated psa no_supported tests for HMAC Remove no_supported HMAC generate/import tests when !PSA_KEY_TYPE_HMAC as HMAC key creation works regardless of PSA_WANT_KEY_TYPE_HMAC. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-05-05 12:09:03 +02:00
Przemek Stekiel	cd204992f2	Fix dependencies in tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-05-05 12:09:03 +02:00
Werner Lewis	e59a531455	Fix memcpy() UB in mbedtls_asn1_named_data() Removes a case in mbedtls_asn1_named_data() where memcpy() could be called with a null pointer and zero length. A test case is added for this code path, to catch the undefined behavior when running tests with UBSan. Signed-off-by: Werner Lewis <werner.lewis@arm.com>	2022-05-04 11:45:06 +01:00
Neil Armstrong	cd05f0b9e5	Drop skip PMS generation for opaque XXX-PSK now Opaque PSA key is always present when MBEDTLS_USE_PSA_CRYPTO selected Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-05-04 11:08:41 +02:00
Neil Armstrong	4c3b4e079c	Initialize & free PSA in test_multiple_psks() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-05-04 11:08:41 +02:00
Jerry Yu	7c0da07445	Update state check Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-05-03 15:08:54 +08:00
Neil Armstrong	b32ae72e27	Add PK Opaque RSA decrypt tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-05-02 09:14:58 +02:00
Manuel Pégourié-Gonnard	068a13d909	Merge pull request #5771 from superna9999/5761-rsa-decrypt-rework-pk-wrap-as-opaque RSA decrypt 0: Rework `mbedtls_pk_wrap_as_opaque()`	2022-05-02 09:06:49 +02:00
Manuel Pégourié-Gonnard	67397fa4fd	Merge pull request #5704 from mprse/mixed_psk_2cx Mixed PSK 2a, 2b, 2c: enable client/server support opaque RSA-PSK, ECDHE-PSK, DHE-PSK	2022-04-29 10:47:16 +02:00
Gilles Peskine	310294f06a	Merge pull request #5759 from tom-daubney-arm/correct_x509_flag_parse_tests Set flag to proper value in x509 parse tests	2022-04-28 18:27:36 +02:00
Gilles Peskine	2b5d898eb4	Merge pull request #5644 from gilles-peskine-arm/psa-storage-format-test-exercise PSA storage format: exercise key	2022-04-28 18:20:02 +02:00
Gilles Peskine	038108388a	Merge pull request #5654 from gilles-peskine-arm/psa-crypto-config-file Support alternative MBEDTLS_PSA_CRYPTO_CONFIG_FILE	2022-04-28 18:17:50 +02:00
Gilles Peskine	4098083ed4	Merge pull request #5745 from superna9999/5712-pk-opaque-rsa-pss-sign-tls RSA-PSS sign 2: TLS 1.3 integration testing	2022-04-28 18:16:44 +02:00
Neil Armstrong	95974974d2	Update mbedtls_pk_wrap_as_opaque() usage in PK & X509write tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-04-28 13:27:59 +02:00
Manuel Pégourié-Gonnard	ad47487e25	Merge pull request #5742 from superna9999/5669-review-test-incompatible-psa Fixup or re-enable tests with Use PSA	2022-04-28 09:57:13 +02:00
Neil Armstrong	98136b14e0	Fixup and update comment of disabled USE_PSA_CRYPTO test check in all.sh Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-04-27 10:00:42 +02:00
Neil Armstrong	1c9eb722fd	Update PSA specific comment in pk_rsa_verify_ext_test_vec() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-04-25 14:38:18 +02:00
Jerry Yu	cef55dbd6a	ssl-opt: add state check Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-04-25 19:41:47 +08:00
Ronald Cron	eecd0d2fc3	Merge pull request #5679 from yuhaoth/pr/add-tls13-write-server-hello	2022-04-25 09:28:40 +02:00
Ronald Cron	a828f4d89c	Merge pull request #5684 from tom-daubney-arm/M-AEAD_decrypt_driver_dispatch_test M aead decrypt driver dispatch test The internal CI "merge TLS testing" ran successfully, CI is OK.	2022-04-23 12:10:21 +02:00
Neil Armstrong	882e02ea7a	Move and fixup check_test_requires_psa_disabled() into check_test_cases() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-04-22 16:53:07 +02:00
Neil Armstrong	6e6967f6a0	Reorganize PSA INVALID_PADDING handling for test #5 in pk_rsa_verify_ext_test_vec() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-04-22 16:46:24 +02:00
Gilles Peskine	eef30bcea1	Merge pull request #5755 from mpg/ecdsa-range-test Expand negative coverage of ECDSA verification	2022-04-22 16:43:44 +02:00
Jerry Yu	955ddd75a3	fix various issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-04-22 22:27:33 +08:00
Przemek Stekiel	85d46fe6cf	ssl-opt.sh: add tests for clent/server psa opaque dhe-psk key exchange Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-04-22 14:54:33 +02:00
Przemek Stekiel	b6a0503dda	ssl-opt.sh: add tests for clent/server psa opaque ecdhe-psk key exchange Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-04-22 14:53:55 +02:00
Przemek Stekiel	b270b56372	ssl-opt.sh: add tests for server psa opaque rsa-psk key exchange Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-04-22 14:52:28 +02:00
Przemek Stekiel	8e0495e0f4	ssl-opt.sh: add tests for client psa opaque rsa-psk key exchange Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-04-22 14:52:28 +02:00
Manuel Pégourié-Gonnard	60d83f0126	Merge pull request #5710 from superna9999/5627-pk-opaque-rsa-x509 RSA sign 3a: X.509 integration testing	2022-04-22 14:29:23 +02:00
Thomas Daubney	7d063f6467	Adds comments for clarification Adds two comments to clarify 1) why an offset is used in the call to psa_aead_verify() and 2) why the test of .hits_finish is always 0 in this test case. Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>	2022-04-22 11:36:07 +01:00
Jerry Yu	8b9fd374b8	Add P_CLI test to easy debug Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-04-22 16:45:01 +08:00
Jerry Yu	abf20c7564	add state check Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-04-22 16:45:01 +08:00
Ronald Cron	38b8aa4f63	Merge pull request #5539 from xkqian/add_client_hello_to_server Add client hello into server side	2022-04-22 10:26:00 +02:00
Neil Armstrong	7f6f672d7e	Add Opaque PK test case for TLS 1.3 Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-04-22 10:23:10 +02:00
Manuel Pégourié-Gonnard	21f82c7510	Merge pull request #5709 from superna9999/5625-pk-opaque-rsa-tls12 RSA sign 3b: TLS 1.2 integration testing	2022-04-22 10:05:43 +02:00
Neil Armstrong	e6ed23cb90	Fix typo in x509_crt_check() comment Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-04-22 09:44:04 +02:00
XiaokangQian	e8ff350698	Update code to align with tls13 coding standard Change-Id: I3c98b7d0db63aecc712a67f4e8da2cb9945c8f17 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-04-22 02:34:40 +00:00
Manuel Pégourié-Gonnard	70701e39b5	Merge pull request #5726 from mprse/mixed_psk_1_v2 Mixed PSK 1: Extend PSK-to-MS algorithm in PSA (v.2)	2022-04-21 17:11:52 +02:00
Manuel Pégourié-Gonnard	90c70146b5	Merge pull request #5728 from superna9999/5711-pk-opaque-rsa-pss-sign RSA-PSS sign 1: PK	2022-04-21 17:11:18 +02:00
Gilles Peskine	9d8716c5aa	Merge pull request #5739 from gilles-peskine-arm/depends-curves-positive-only Don't test with all-but-one elliptic curves	2022-04-21 12:34:44 +02:00
Neil Armstrong	843795ad2f	Use macro for public key buffer size in pk_psa_wrap_sign_ext() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-04-21 12:23:28 +02:00
Gilles Peskine	afbfed9397	Merge pull request #5582 from gilles-peskine-arm/ssl-opt-auto-psk Run ssl-opt.sh in more reduced configurations	2022-04-21 12:03:53 +02:00
Przemek Stekiel	4e47a91d2e	Fix indentation issues Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-04-21 11:53:57 +02:00
Przemek Stekiel	4daaa2bd05	derive_output mix-psk test: add more cases for derivation of output key Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-04-21 11:53:57 +02:00
Przemek Stekiel	6aabc473ce	derive_output test: remove redundant tests with raw key agreement Already handled by input_bytes(). Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-04-21 11:53:57 +02:00
Przemek Stekiel	e665466a80	derive_output test: add other key type value 11 to handle raw key type Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-04-21 11:53:57 +02:00
Przemek Stekiel	c5bd1b8b24	PSA key derivation mix-psk tests: add description for bad state cases Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-04-21 11:53:57 +02:00
Przemek Stekiel	38647defa8	derive_output() test: fix code style Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-04-21 11:53:57 +02:00
Przemek Stekiel	cd00d7f724	test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-04-21 11:41:41 +02:00
Gilles Peskine	b29d814169	Use MAX_SIZE macros instead of hard-coding IV/nonce max size Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-21 11:33:17 +02:00
Gilles Peskine	5eef11af2c	Remove redundant initialization of iv_length Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-21 11:33:11 +02:00
Gilles Peskine	286c314ae3	cipher_alg_without_iv: also test multipart decryption For multipart encrpytion, call psa_cipher_finish(). This is not actually necessary for non-pathological implementations of ECB (the only currently supported IV-less cipher algorithm) because it requires the input to be a whole number of blocks and non-pathological implementations emit the output block from update() as soon as an input block is available. But in principle a driver could delay output and thus require a call to finish(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-21 11:27:17 +02:00
Gilles Peskine	9e38f2c8fd	cipher_alg_without_iv: generalized to also do decryption Test set_iv/generate_iv after decrypt_setup. Test successful decryption. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-21 11:25:00 +02:00
Gilles Peskine	9b9b614a02	cipher_encrypt_alg_without_iv: validate size macros independently Validate the size macros directly from the output length in the test data, rather than using the value returned by the library. This is equivalent since the value returned by the library is checked to be identical. Enforce that SIZE() <= MAX_SIZE(), in addition to length <= SIZE(). This is stronger than the previous code which merely enforced length <= SIZE() and length <= MAX_SIZE(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-21 11:24:48 +02:00
Neil Armstrong	09030a345c	Refine component_check_test_requires_psa_disabled change grep options order for better compatibility Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-04-21 11:17:43 +02:00
Manuel Pégourié-Gonnard	ec52893ec3	Improve readability and relevance of values Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-04-21 09:25:23 +02:00
Thomas Daubney	28015e1e44	Set flag to proper value Set flag to proper value. Was previously 0xFFFFFFF and has been corrected to 0xFFFFFFFF. Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>	2022-04-21 08:12:59 +01:00
XiaokangQian	318dc763a6	Fix test failure issue and update code styles Change-Id: I0b08da1b083abdb19dc383e6f4b210f66659c109 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-04-20 09:43:51 +00:00
XiaokangQian	de33391fa0	Rebase and solve conflicts Change-Id: I7f838ff5b607fe5e6b68d74d0edc1def8fc9a744 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-04-20 08:49:42 +00:00
Manuel Pégourié-Gonnard	d8d19de1c7	Expand negative coverage of ECDSA verification Motivated by CVE-2022-21449, to which we're not vulnerable, but we didn't have a test for it. Now we do. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-04-20 10:34:22 +02:00
XiaokangQian	3f84d5d0cd	Update test cases and fix the test failure Change-Id: If93506fc3764d49836b229d51e4ad5b008cc3343 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-04-20 07:45:50 +00:00
XiaokangQian	8f9dfe41c0	Fix comments about coding styles and test cases Change-Id: I70ebc05e9dd9fa084d7b0ce724a25464c3425e22 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-04-20 07:45:50 +00:00
XiaokangQian	cfd925f3e8	Fix comments and remove hrr related code Change-Id: Iab1fc5415b3b7f7b5bcb0a41a01f4234cc3497d6 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-04-20 07:45:50 +00:00
XiaokangQian	ed582dd023	Update based on comments Remove cookie support from server side Change code to align with coding styles Re-order functions of client_hello Change-Id: If31509ece402f8276e6cac37f261e0b166d05e18 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-04-20 07:43:48 +00:00
XiaokangQian	c4b8c99a38	Rebase and solve conflicts and issues Change-Id: I17246c5b2f8a8ec4989c8b0b83b55cad0491b78a Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-04-20 07:43:48 +00:00
XiaokangQian	5e4528cd12	Add test cases for server side parse client hello Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>	2022-04-20 07:43:48 +00:00
Ronald Cron	9d0a3e8296	generate_tls13_compat_tests.py: Fix/Unify parameter ordering Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2022-04-19 18:31:24 +02:00
Ronald Cron	df5f8681cc	ssl-opt.sh: Fix/Unify TLS 1.3 test descriptions Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2022-04-19 18:31:24 +02:00
Paul Elliott	a2da9c7e45	Merge pull request #5631 from gstrauss/enum-tls-vers Unify internal/external TLS protocol version enums	2022-04-19 17:05:26 +01:00
Gilles Peskine	f4d70b2944	Merge pull request #5608 from AndrzejKurek/raw-key-agreement-fail Add a test for a raw key agreement failure	2022-04-19 14:00:48 +02:00
Gilles Peskine	5bd0b51048	Use terse output from lsof This both simplifies parsing a little, and suppresses warnings. Suppressing warnings is both good and bad: on the one hand it resolves problems such as https://github.com/Mbed-TLS/mbedtls/issues/5731, on the other hand it may hide clues as to why lsof wouldn't be working as expected. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-16 11:34:23 +02:00
Gilles Peskine	a841c2a20f	test_cmake_out_of_source: run an ssl-opt test case that exists component_test_cmake_out_of_source was running the ssl-opt.sh test case "Fallback SCSV: beginning of list", but this test case was removed in Mbed TLS 3.0, so ssl-opt.sh was running nothing, which is not an effective test. In 2.x, the test case was chosen because it uses an additional auxiliary program tests/scripts/tcp_client.pl. This auxiliary program is no longer used. So instead, run at least one test case that's sure to exist. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-16 11:31:25 +02:00
Gilles Peskine	7393ec5ccf	test_cmake_out_of_source: validate that ssl-opt passed If the ssl-opt test case was skipped, the test was ineffective. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-16 11:30:24 +02:00
Neil Armstrong	4ad82e4b33	Add component_check_test_requires_psa_disabled used to check if some tests requiring PSA to be disabled are presemt Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-04-15 13:27:17 +02:00
Neil Armstrong	655725a624	Unify PSA & non-PSA Verify ext RSA #5 test, and handle different return in pk_rsa_verify_ext_test_vec() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>	2022-04-15 12:00:16 +02:00
Gilles Peskine	f96e977584	No need to recalculate iv_length Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-15 11:10:14 +02:00
Gilles Peskine	6e0f80ab94	Don't try to perform operations when driver support is lacking We test some configurations using drivers where the driver doesn't support certain hash algorithms, but declares that it supports compound algorithms that use those hashes. Until this is fixed, in those configurations, don't try to actually perform operations. The built-in implementation of asymmetric algorithms that use a hash internally only dispatch to the internal md module, not to PSA. Until this is supported, don't try to actually perform operations when the operation is built-in and the hash isn't. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-15 11:10:14 +02:00
Gilles Peskine	17e350b12a	Short-tag AEAD with the nominal length are encoded as nominal AEAD `PSA_ALG_AEAD_WITH_SHORTENED_TAG(aead_alg, len) == aead_alg` when `len == PSA_AEAD_TAG_LENGTH(aead_alg)`. So skip this case when testing the printing of constants. This fixes one test case due to the way arguments of `PSA_ALG_AEAD_WITH_SHORTENED_TAG` are enumerated (all algorithms are tested for a value of `len` which isn't problematic, and all values of `len` are tested for one algorithm). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-15 11:10:14 +02:00
Gilles Peskine	aa3449dd22	exercise_key: support combined key agreement+derivation algorithms Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-15 11:10:14 +02:00
Gilles Peskine	61548d1035	Only exercise Brainpool curve keys on one algorithm There's nothing wrong with ECC keys on Brainpool curves, but operations with them are very slow. So we only exercise them with a single algorithm, not with all possible hashes. We do exercise other curves with all algorithms so test coverage is perfectly adequate like this. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-15 11:10:14 +02:00
Gilles Peskine	4bd90dc6b1	Don't exercise OAEP with small key and large hash RSA-OAEP requires the key to be larger than a function of the hash size. Ideally such combinations would be detected as a key/algorithm incompatibility. However key/algorithm compatibility is currently tested between the key type and the algorithm without considering the key size, and this is inconvenient to change. So as a workaround, dispense OAEP-with-too-small-hash from exercising, without including it in the automatic operation-failure test generation. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-15 11:10:14 +02:00
Gilles Peskine	d586b82e12	exercise_key: signature: detect function/algorithm incompatibility Don't try to use {sign,verify}_message on algorithms that only support {sign_verify}_hash. Normally exercise_key() tries all usage that is supported by policy, however PSA_KEY_USAGE_{SIGN,VERIFY}_MESSAGE is implied by PSA_KEY_USAGE_{SIGN,VERIFY}_HASH so it's impossible for the test data to omit the _MESSAGE policies with hash-only algorithms. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-15 11:10:14 +02:00
Gilles Peskine	7acb1980ee	Use PSA_AEAD_NONCE_LENGTH when exercising AEAD keys Don't re-code the logic to determine a valid nonce length. This fixes exercise_key() for PSA_ALG_CHACHA20_POLY1305, which was trying to use a 16-byte nonce. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-15 11:10:14 +02:00

1 2 3 4 5 ...

6682 commits