mbedtls

Author	SHA1	Message	Date
TRodziewicz	18cddc08c7	Reverting comments deleted in previous PR Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-07-13 12:19:15 +02:00
Yuto Takano	36c8ddc4cc	Replace `_B` with `B` to prevent reserved identifier clashes Signed-off-by: Yuto Takano <yuto.takano@arm.com>	2021-07-12 16:02:07 +01:00
Archana	277572fa2b	Fix coding style issue Signed-off-by: Archana <archana.madhavan@silabs.com>	2021-07-12 09:00:57 +05:30
Archana	1d2e2bb8cc	Add missing Curve448 support for PSA keys mbedtls_ecp_read_key and mbedtls_ecp_write_key are updated to include support for Curve448 as prescribed by RFC 7748 §5. Test suites have been updated to validate curve448 under Montgomery curves. Signed-off-by: Archana <archana.madhavan@silabs.com>	2021-07-12 08:02:54 +05:30
TRodziewicz	299510e889	Correction to comments and changelog removed Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-07-09 16:55:11 +02:00
TRodziewicz	7871c2e736	Adding new macro for tests failing Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-07-09 14:27:04 +02:00
David Horstmann	44f6390c32	Remove redundant hash len check Remove a check in rsa_rsassa_pkcs1_v15_encode() that is not needed because the same check is performed earlier. This check was added in #4707. Signed-off-by: David Horstmann <david.horstmann@arm.com>	2021-07-08 12:46:26 +01:00
TRodziewicz	458280e67c	Correction to outdated comment Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-07-07 11:33:06 +02:00
Dave Rodgman	45419c1ee5	Revert "Add auto-generated files" This reverts commit `3e84187132`.	2021-07-06 20:44:59 +01:00
TRodziewicz	345165c1f7	Reverting deleted macros Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-07-06 13:42:11 +02:00
TRodziewicz	302ed2bf7d	Reverting the TLS 1.3 compatibility Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-07-05 16:55:27 +02:00
TRodziewicz	d9be65277d	Corrections to the new functions names and error message wording Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-07-05 15:16:00 +02:00
TRodziewicz	053b99b90b	Re-introduction of key slot chekcs Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-07-05 12:06:03 +02:00
Dave Rodgman	527b82a34c	Bump .so version numbers to stay ahead of 2.x Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-07-02 15:19:38 +01:00
Dave Rodgman	3e84187132	Add auto-generated files Add files generated by running make generated_files Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-07-01 09:45:38 +01:00
Dave Rodgman	7601657418	Bump library version numbers Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-30 23:09:51 +01:00
Dave Rodgman	34d8cd2892	Merge remote-tracking branch 'restricted/development-restricted' into mbedtls-3.0.0rc0-pr	2021-06-30 22:51:02 +01:00
Dave Rodgman	9f5774f56d	Merge pull request #4739 from gabor-mezei-arm/3258_fp30_implement_one-shot_MAC_and_cipher Implement one-shot cipher	2021-06-30 17:04:23 +01:00
Dave Rodgman	0a7ff4a4e2	Merge pull request #4741 from gabor-mezei-arm/3267_fp30_sign_verify_key_policies Key policy extension for PSA_KEY_USAGE_SIGN/VERIFY_HASH	2021-06-30 14:50:57 +01:00
gabor-mezei-arm	5ce25d7806	Remove obsolete comment Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-30 10:46:00 +02:00
Dave Rodgman	dc1a3b2d70	Merge pull request #4724 from hanno-arm/ssl_hs_parse_error_3_0 Cleanup SSL error code space	2021-06-30 09:02:55 +01:00
gabor-mezei-arm	00e54f1133	Fix minor issues Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:55:25 +02:00
gabor-mezei-arm	6158e283cc	Check the return status of the functions first Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:55:24 +02:00
gabor-mezei-arm	58c1727775	Add buffer overflow check Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:55:24 +02:00
gabor-mezei-arm	3f860e4c18	Remove invalid buffer overflow check Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:55:24 +02:00
gabor-mezei-arm	47a8e14bb7	Typo Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:49:01 +02:00
gabor-mezei-arm	0a93b665f7	Fix possible unreachable code Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:49:01 +02:00
gabor-mezei-arm	90fceea268	Update documentation Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:49:01 +02:00
gabor-mezei-arm	258ae07fb0	Add checks for buffer size Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:49:00 +02:00
gabor-mezei-arm	e5ff8f430c	Use local variable instead of an ouput parameter Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:49:00 +02:00
gabor-mezei-arm	6f4e5bbe37	Initialize output buffer length to 0 Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:49:00 +02:00
gabor-mezei-arm	0dfeaaf5c9	Remove confising comments Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:49:00 +02:00
gabor-mezei-arm	9951b50b8a	Remove comments These comment cannot bring more information than the code does. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:49:00 +02:00
gabor-mezei-arm	42cdb2a90b	Fix struct initialization Fix initialization of mbedtls_psa_cipher_operation_t by not initializing the mbedtls_cipher_context_t typed field completely. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:49:00 +02:00
gabor-mezei-arm	a9449a0b07	Dispatch cipher functions through the driver interface Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:48:59 +02:00
gabor-mezei-arm	ba0fa75eae	Implement one-shot cipher Implement one-shot cipher APIs, psa_cipher_encrypt and psa_cipher_decrypt, introduced in PSA Crypto API 1.0. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 19:14:34 +02:00
gabor-mezei-arm	95180fe808	Fix comment Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 17:06:33 +02:00
gabor-mezei-arm	43110b6b2c	Do key usage policy extension when loading keys Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>	2021-06-29 17:05:49 +02:00
Dave Rodgman	39bd5a655e	Address review comment Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-29 15:25:21 +01:00
Dave Rodgman	c50b717a19	Update a couple of ssl error codes Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-29 14:40:23 +01:00
Dave Rodgman	bed8927538	Correct some TLS alerts and error codes Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-29 12:06:44 +01:00
Dave Rodgman	bb05cd09b7	Remove MBEDTLS_ERR_SSL_NO_CIPHER_CHOSEN Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-29 10:41:06 +01:00
Dave Rodgman	53c8689e88	Introduce new TLS error codes Introduce new codes: * MBEDTLS_ERR_SSL_UNSUPPORTED_EXTENSION * MBEDTLS_ERR_SSL_NO_APPLICATION_PROTOCOL These are returned when the corresponding alert is raised. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-29 10:02:06 +01:00
Dave Rodgman	096c41111e	Remove MBEDTLS_ERR_SSL_NO_USABLE_CIPHERSUITE Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-29 09:52:06 +01:00
Dave Rodgman	43fcb8d7c1	Address review feedback Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-29 08:57:19 +01:00
Ronald Cron	8682faeb09	Merge pull request #4694 from gilles-peskine-arm/out_size-3.0 Add output size parameter to signature functions	2021-06-29 09:43:17 +02:00
TRodziewicz	2abf03c551	Remove all TLS 1.0 and 1.1 instances and add some compatibility tests Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>	2021-06-28 14:36:37 +02:00
Dave Rodgman	e8dbd53966	Update error code for cert parsing failure Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-28 12:35:08 +01:00
Dave Rodgman	5f8c18b0d0	Update error code from ssl_parse_signature_algorithm Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-28 12:35:08 +01:00
Dave Rodgman	8f127397f8	Update alert message for parsing PSK hint Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-28 12:35:08 +01:00
Hanno Becker	77b4a6592a	Address review feedback Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:08 +01:00
Hanno Becker	2fc9a652bc	Address review feedback Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:08 +01:00
Hanno Becker	90d59dddf5	Remove MBEDTLS_ERR_SSL_BAD_HS_CLIENT_HELLO Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:08 +01:00
Hanno Becker	c3411d4041	Remove MBEDTLS_ERR_SSL_BAD_HS_SERVER_HELLO Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:08 +01:00
Hanno Becker	9ed1ba5926	Rename MBEDTLS_ERR_SSL_BAD_HS_CERTIFICATE New name MBEDTLS_ERR_SSL_BAD_CERTIFICATE Also, replace some instances of MBEDTLS_ERR_SSL_BAD_HS_CERTIFICATE by MBEDTLS_ERR_SSL_DECODE_ERROR and MBEDTLS_ERR_SSL_ILLEGAL_PARAMETER as fit. Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:08 +01:00
Hanno Becker	5697af0d3d	Remove MBEDTLS_ERR_SSL_BAD_HS_CERTIFICATE_REQUEST Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:08 +01:00
Hanno Becker	cbc8f6fd5d	Remove MBEDTLS_ERR_SSL_BAD_HS_SERVER_KEY_EXCHANGE Signed-off-by: Hanno Becker <hanno.becker@arm.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-28 12:35:08 +01:00
Hanno Becker	a0ca87eb68	Remove MBEDTLS_ERR_SSL_BAD_HS_FINISHED Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:07 +01:00
Hanno Becker	d934a2aafc	Remove MBEDTLS_ERR_SSL_BAD_HS_CERTIFICATE_VERIFY Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:07 +01:00
Hanno Becker	d3eec78258	Remove MBEDTLS_ERR_SSL_BAD_HS_CLIENT_KEY_EXCHANGE_CS Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:07 +01:00
Hanno Becker	666b5b45f7	Remove MBEDTLS_ERR_SSL_BAD_HS_CLIENT_KEY_EXCHANGE Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:07 +01:00
Hanno Becker	029cc2f97b	Remove MBEDTLS_ERR_SSL_BAD_HS_SERVER_HELLO_DONE Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:07 +01:00
Hanno Becker	b24e74bff7	Remove MBEDTLS_ERR_SSL_BAD_HS_CLIENT_KEY_EXCHANGE_RP error code Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:07 +01:00
Hanno Becker	241c19707b	Remove MBEDTLS_ERR_SSL_BAD_HS_NEW_SESSION_TICKET Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:07 +01:00
Hanno Becker	bc00044279	Rename MBEDTLS_ERR_SSL_BAD_HS_PROTOCOL_VERSION New name is MBEDTLS_ERR_SSL_BAD_PROTOCOL_VERSION. Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-06-28 12:35:07 +01:00
Bence Szépkúti	bb0cfeb2d4	Rename config.h to mbedtls_config.h This commit was generated using the following script: # ======================== #!/bin/sh git ls-files \| grep -v '^ChangeLog' \| xargs sed -b -E -i ' s/((check\|crypto\|full\|mbedtls\|query)_config)\.h/\1\nh/g s/config\.h/mbedtls_config.h/g y/\n/./ ' mv include/mbedtls/config.h include/mbedtls/mbedtls_config.h # ======================== Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>	2021-06-28 09:28:33 +01:00
Bence Szépkúti	c662b36af2	Replace all inclusions of config.h Also remove preprocessor logic for MBEDTLS_CONFIG_FILE, since build_info.h alreadyy handles it. This commit was generated using the following script: # ======================== #!/bin/sh git ls-files \| grep -v '^include/mbedtls/build_info\.h$' \| xargs sed -b -E -i ' /^#if !?defined$MBEDTLS_CONFIG_FILE$/i#include "mbedtls/build_info.h" //,/^#endif/d ' # ======================== Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>	2021-06-28 09:24:07 +01:00
Dave Rodgman	10bda58b49	Merge pull request #4259 from CJKay/cmake-config Add CMake package config file	2021-06-25 20:32:13 +01:00
Dave Rodgman	63ad854de8	Merge pull request #4712 from daverodgman/psa_cipher_and_mac_abort_on_error Psa cipher and mac abort on error	2021-06-25 15:39:59 +01:00
Janos Follath	83e384da59	Fix unused parameter warning Signed-off-by: Janos Follath <janos.follath@arm.com>	2021-06-25 15:29:56 +01:00
Janos Follath	1107ee4e44	Add prefix to BYTES_TO_T_UINT_* These macros were moved into a header and now check-names.sh is failing. Add an MBEDTL_ prefix to the macro names to make it pass. Signed-off-by: Janos Follath <janos.follath@arm.com>	2021-06-25 12:46:40 +01:00
Dave Rodgman	90d1cb83a0	Use more standard label name Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-25 09:09:02 +01:00
Ronald Cron	3698fa1043	Merge pull request #4673 from gilles-peskine-arm/psa_crypto_spm-from_platform_h Fix and test the MBEDTLS_PSA_CRYPTO_SPM build	2021-06-25 09:01:08 +02:00
Gilles Peskine	f9f1bdfa7b	Translate MBEDTLS_ERR_PK_BUFFER_TOO_SMALL for PSA The error is currently never returned to any function that PSA calls, but keep mbedtls_to_psa_error up to date in case this changes. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-06-25 00:46:22 +02:00
Gilles Peskine	908982b275	Fix the build with MBEDTLS_ECP_RESTARTABLE enabled Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-06-25 00:46:22 +02:00
Gilles Peskine	16fe8fcef3	Fix unused variable warning Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-06-25 00:46:22 +02:00
Gilles Peskine	f00f152444	Add output size parameter to signature functions The functions mbedtls_pk_sign(), mbedtls_pk_sign_restartable(), mbedtls_ecdsa_write_signature() and mbedtls_ecdsa_write_signature_restartable() now take an extra parameter indicating the size of the output buffer for the signature. No change to RSA because for RSA, the output size is trivial to calculate. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-06-25 00:46:22 +02:00
Gilles Peskine	1fed4b8324	Merge pull request #4720 from gilles-peskine-arm/gcm-finish-outlen Add output_length parameter to mbedtls_gcm_finish	2021-06-24 20:02:40 +02:00
Dave Rodgman	8036bddb01	Tidy up logic in psa_mac_sign_finish Simplify the logic in psa_mac_sign_finish. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-24 16:19:08 +01:00
Dave Rodgman	b5dd7c794d	Correct coding style issues Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-24 16:17:43 +01:00
Janos Follath	865a75e95b	Reject low-order points on Curve448 early We were already rejecting them at the end, due to the fact that with the usual (x, z) formulas they lead to the result (0, 0) so when we want to normalize at the end, trying to compute the modular inverse of z will give an error. If we wanted to support those points, we'd a special case in ecp_normalize_mxz(). But it's actually permitted by all sources (RFC 7748 say we MAY reject 0 as a result) and recommended by some to reject those points (either to ensure contributory behaviour, or to protect against timing attack when the underlying field arithmetic is not constant-time). Since our field arithmetic is indeed not constant-time, let's reject those points before they get mixed with sensitive data (in ecp_mul_mxz()), in order to avoid exploitable leaks caused by the special cases they would trigger. (See the "May the Fourth" paper https://eprint.iacr.org/2017/806.pdf) Signed-off-by: Janos Follath <janos.follath@arm.com>	2021-06-24 15:34:59 +01:00
Janos Follath	8b8b781524	Use mbedtls_mpi_lset() more Signed-off-by: Janos Follath <janos.follath@arm.com>	2021-06-24 15:00:33 +01:00
Janos Follath	8c70e815dd	Move mpi constant macros to bn_mul.h Signed-off-by: Janos Follath <janos.follath@arm.com>	2021-06-24 14:48:38 +01:00
Janos Follath	8081ced91d	Prevent memory leak in ecp_check_pubkey_x25519() Signed-off-by: Janos Follath <janos.follath@arm.com>	2021-06-24 14:24:13 +01:00
Dave Rodgman	54648243cd	Call abort on error in psa_mac/cipher setup Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-24 11:49:45 +01:00
Dave Rodgman	685b6a742b	Update multipart hash operations to abort on error Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-24 11:49:14 +01:00
Gilles Peskine	fedd52ca19	Merge pull request #4707 from gilles-peskine-arm/require-matching-hashlen-rsa-implementation Require matching hashlen in RSA functions: implementation	2021-06-24 10:28:20 +02:00
Gilles Peskine	5a7be10419	Add output_length parameter to mbedtls_gcm_finish Without this parameter, it would be hard for callers to know how many bytes of output the function wrote into the output buffer. It would be possible, since the cumulated output must have the same length as the cumulated input, but it would be cumbersome for the caller to keep track. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-06-23 21:51:32 +02:00
Dave Rodgman	38e62aebc3	Update cipher and mac functions to abort on error Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2021-06-23 18:59:17 +01:00
Gilles Peskine	f06b92d724	Merge pull request #4567 from mstarzyk-mobica/gcm_ad Enable multiple calls to mbedtls_gcm_update_ad	2021-06-23 19:36:23 +02:00
Dave Rodgman	cb17fc34cf	Merge pull request #4671 from mpg/x509-crt-profile-public Make the fields of mbedtls_x509_crt_profile public	2021-06-23 16:06:12 +01:00
Ronald Cron	4f7cc1bb63	Merge pull request #4713 from gilles-peskine-arm/psa-storage-format-test-lifetimes-3.0 PSA storage format: test lifetimes Almost straightforward of #4392 thus merging with only one approval.	2021-06-23 15:22:03 +02:00
Janos Follath	aa5938edb3	Merge pull request #4703 from gilles-peskine-arm/mpi_montmul-null-3.0 Fix several bugs with the value 0 in bignum	2021-06-23 13:40:14 +01:00
Mateusz Starzyk	939a54cda3	Fix typos and style issues. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-06-23 14:30:15 +02:00
Gilles Peskine	f9a046ecb5	Remove duplicate wipe call in psa_destroy_key Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-06-23 13:53:56 +02:00
Gilles Peskine	6687cd07f3	Refuse to destroy read-only keys Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-06-23 13:44:35 +02:00
Gilles Peskine	87bc91c13b	Forbid creating a read-only key The persistence level PSA_KEY_PERSISTENCE_READ_ONLY can now only be used as intended, for keys that cannot be modified through normal use of the API. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-06-23 13:43:08 +02:00
Gilles Peskine	f5f07c847a	Fix mbedtls_psa_get_stats for keys with fancy lifetimes mbedtls_psa_get_stats() was written back before lifetimes were structured as persistence and location. Fix its classification of volatile external keys and internal keys with a non-default persistence. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2021-06-23 13:43:08 +02:00
Manuel Pégourié-Gonnard	06215eaa3e	Avoid complaints about undeclared non-static symbols Clang was complaining and check-names.sh too This only duplicates macros, so no impact on code size. In 3.0 we can probably avoid the duplication by using an internal header under library/ but this won't work for 2.16. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2021-06-23 12:59:02 +02:00
Manuel Pégourié-Gonnard	2d457b8fca	Use more compact encoding of Montgomery curve constants Base 256 beats base 16. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2021-06-23 12:44:21 +02:00

1 2 3 4 5 ...

7228 commits