Gabor Mezei
|
7b39bf178e
|
Send dummy change_cipher_spec records from TLS 1.3 server
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>
|
2022-06-22 17:07:21 +02:00 |
|
Gilles Peskine
|
36aeb7f163
|
Merge pull request #5834 from mprse/HKDF_1
HKDF 1: PSA: implement HKDF_Expand and HKDF_Extract algorithms
|
2022-06-20 15:27:46 +02:00 |
|
Ronald Cron
|
ca3c6a5698
|
Merge pull request #5817 from xkqian/tls13_add_server_name
Tls13 add server name
|
2022-06-16 08:30:09 +02:00 |
|
XiaokangQian
|
75fe8c7e54
|
Change place of ssl_tls13_check_ephemeral_key_exchange
Change-Id: Id49172f7375e2a0771ad1216fb7eead808f0db3e
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-06-15 09:42:45 +00:00 |
|
XiaokangQian
|
fb665a8452
|
Adress the comments about styles and pick_cert
Change-Id: Iee89a27aaea6ebc8eb01c6c9985487f081ef7343
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-06-15 03:57:21 +00:00 |
|
Przemek Stekiel
|
69c4679b22
|
Adapt macro name to meet requested criteria: MBEDTLS_PSA_BUILTIN_ALG_ANY_HKDF->BUILTIN_ALG_ANY_HKDF
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
|
2022-06-14 11:13:32 +02:00 |
|
XiaokangQian
|
07aad0710c
|
Refine function name ssl_tls13_pick_key_cert
Change-Id: I821e1485d9cfcca88fa3e18d345766ea48c64250
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-06-14 05:35:09 +00:00 |
|
XiaokangQian
|
81802f43a2
|
Select certificate base on the received signature list
Change-Id: Ife707db7fcfdb1e761ba86804cbf5dd766a5ee33
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-06-13 03:58:06 +00:00 |
|
Przemek Stekiel
|
75fe3fb1d7
|
psa_crypto.c: add MBEDTLS_PSA_BUILTIN_ALG_ANY_HKDF macro to limit number of #if conditions
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
|
2022-06-09 14:44:55 +02:00 |
|
Dave Rodgman
|
11930699f1
|
Merge pull request #5827 from wernerlewis/time_utc
Use ASN1 UTC tags for dates before 2000
|
2022-06-08 13:54:19 +01:00 |
|
Paul Elliott
|
5f2bc754d6
|
Merge pull request #5792 from yuhaoth/pr/add-tls13-moving-state-tests
Pr/add-tls13-moving-state-tests
|
2022-06-08 13:39:52 +01:00 |
|
Manuel Pégourié-Gonnard
|
3a833271aa
|
Merge pull request #5727 from SiliconLabs/feature/PSEC-3207-TLS13-hashing-HMAC-to-PSA
Feature psec-3207 move TLS13 hashing and hmac to psa
|
2022-06-08 11:53:35 +02:00 |
|
XiaokangQian
|
96287d98d8
|
Remove the certificate key check against the received signature
Change-Id: I07d8d46c58dec499f96cb7307fc0af15149d9df7
CustomizedGitHooks: yes
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-06-08 08:37:53 +00:00 |
|
pespacek
|
d9aaf768b5
|
Fixing CI complains.
Signed-off-by: pespacek <peter.spacek@silabs.com>
|
2022-06-08 09:44:11 +02:00 |
|
XiaokangQian
|
9850fa8e8d
|
Refine ssl_tls13_pick_cert()
Change-Id: I5448095e280d8968b20ade8b304d139e399e54f1
CustomizedGitHooks: yes
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-06-08 07:02:41 +00:00 |
|
pespacek
|
b06acd734b
|
Fixing PSA return status
Signed-off-by: pespacek <peter.spacek@silabs.com>
|
2022-06-07 13:07:21 +02:00 |
|
XiaokangQian
|
23c5be6b94
|
Enable SNI test for both tls12 and tls13
Change-Id: Iae5c39668db7caa1a59d7e67f226a5286d91db22
CustomizedGitHooks: yes
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-06-07 09:43:13 +00:00 |
|
Ronald Cron
|
209cae9c42
|
tls13: server: Fix state update in CLIENT_CERTIFICATE
The state should be updated only if the handler
returns in success.
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
|
2022-06-07 10:58:22 +02:00 |
|
pespacek
|
670913f4dc
|
Fixing return value for ssl_tls13_write_certificate_body()
Signed-off-by: pespacek <peter.spacek@silabs.com>
|
2022-06-07 10:53:39 +02:00 |
|
Dave Rodgman
|
5e03d9e601
|
Merge pull request #5837 from robert-shade/robert-shade/add_subdirectory_support
Allow building as a subdir
|
2022-06-06 14:11:06 +01:00 |
|
Przemek Stekiel
|
b57a44bf9b
|
is_kdf_alg_supported: Adapt impl to new build flags for HKDF EXTRACT/EXPAND
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
|
2022-06-06 11:26:43 +02:00 |
|
Przemek Stekiel
|
cde3f783f5
|
Make info valid only after secret for HKDF-EXPAND + adapt tests
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
|
2022-06-06 11:26:02 +02:00 |
|
Przemek Stekiel
|
0586f4c4ea
|
Make salt mandatory for HKDF-EXTRACT + adapt tests
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
|
2022-06-06 11:25:43 +02:00 |
|
Przemek Stekiel
|
3e8249cde0
|
Add PSA_WANT_ALG_HKDF_EXPAND, PSA_WANT_ALG_HKDF_EXTRACT, adapt code and dependencies
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
|
2022-06-03 16:18:15 +02:00 |
|
Przemek Stekiel
|
a29b488296
|
Optimize code by adding PSA_ALG_IS_ANY_HKDF macro
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
|
2022-06-03 16:18:09 +02:00 |
|
XiaokangQian
|
129aeb9b0e
|
Update test cases and support sni ca override
Change-Id: I6052acde0b0ec1c25537f8dd81a35562da05a393
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-06-02 09:29:18 +00:00 |
|
Przemek Stekiel
|
459ee35062
|
Fix typo and style
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
|
2022-06-02 11:16:52 +02:00 |
|
Werner Lewis
|
acd01e58a3
|
Use ASN1 UTC tags for dates before 2000
Signed-off-by: Werner Lewis <werner.lewis@arm.com>
|
2022-06-01 16:24:28 +01:00 |
|
Gilles Peskine
|
8399cccd2e
|
Merge pull request #5829 from paul-elliott-arm/fix_ct_uninit_memory_access
Fix uninitialised memory access in constant time functions
|
2022-06-01 11:42:51 +02:00 |
|
Gilles Peskine
|
09858ae664
|
Merge pull request #5813 from mprse/deprecate_mbedtls_cipher_setup_psa
Deprecate mbedtls_cipher_setup_psa()
|
2022-05-31 10:56:52 +02:00 |
|
Jerry Yu
|
0a92d6c8eb
|
fix move state to handshake over fail
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>
|
2022-05-31 15:06:04 +08:00 |
|
Dave Rodgman
|
a3344f7bac
|
Merge pull request #5767 from leorosen/avoid-null-args
Avoid potentially passing NULL arguments
|
2022-05-30 11:40:21 +01:00 |
|
XiaokangQian
|
0557c94fef
|
Add back SNI related code to validate_certificate
Change-Id: I75883858016d4163cd7c64c3418eb3ca24fa46ea
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-30 08:10:53 +00:00 |
|
XiaokangQian
|
f2a942073e
|
Fix SNI test failure
Change-Id: Id3fce36af9bc52cac858b473168451945aa974f4
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-30 08:07:16 +00:00 |
|
XiaokangQian
|
9b2b7716b0
|
Change mbedtls_ssl_parse_server_name_ext base on comments
Change-Id: I4ae831925cb1899afafb7dc626bfad9be24a5c8c
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-30 08:07:16 +00:00 |
|
XiaokangQian
|
40a3523eb7
|
Add support of server name extension to server side
Change-Id: Iccf5017e306ba6ead2e1026a29f397ead084cc4d
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-30 08:07:16 +00:00 |
|
XiaokangQian
|
e7a5da597f
|
Remove SNI related code
Change-Id: Ic44bdb27b1bdc5c9057078dfed936fc36bddebbe
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-30 00:59:29 +00:00 |
|
XiaokangQian
|
aca9048b5f
|
Change base on review
Fix comments
Add test cases for client authentication with empty certificate
Change-Id: Id8a741ddd997ca92e36832f26088eb0e67830ad8
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-26 00:47:11 +00:00 |
|
XiaokangQian
|
989f06d52d
|
Change some comments base on review
Change-Id: I3db2b8ca8162eb368d2f17dfeffee8b25f9edf6f
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-26 00:47:11 +00:00 |
|
XiaokangQian
|
63e713e8ab
|
Fix comments
Change-Id: Ib741f876f4d296df79565a2b8a2971918db1a77f
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-26 00:47:11 +00:00 |
|
XiaokangQian
|
c3017f620f
|
Remove useless guards and refine checking
Change-Id: I9cd3073826fc65c203e479d83bed72331ff8963d
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-26 00:47:10 +00:00 |
|
XiaokangQian
|
189ded2b07
|
Remove coordinate functions and change state machine in server side
Change-Id: Id4abf78f493e77afc289409db691c9c61acde1d2
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-26 00:46:13 +00:00 |
|
XiaokangQian
|
6b916b1616
|
Add client certificate parse and certificate verify
Change-Id: I638db78922a03db6f8bd70c6c5f56fb60365547d
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-26 00:40:53 +00:00 |
|
Dave Rodgman
|
a636d1f192
|
Merge pull request #5714 from daverodgman/k-stachowiak_static-runtime-option-msvc
Enable static linking of the common runtime in MSVC
|
2022-05-25 14:47:58 +01:00 |
|
Dave Rodgman
|
32c995afa3
|
Merge pull request #5724 from Biswa96/cmake-mingw
cmake: Fix runtime library install location in mingw
|
2022-05-25 13:34:43 +01:00 |
|
Paul Elliott
|
8fba70f66c
|
Merge pull request #5749 from yuhaoth/pr/add-tls13-finished-message-and-wrapup
TLS 1.3: Add Finished Message and wrapup
|
2022-05-25 12:02:06 +01:00 |
|
pespacek
|
3493587e05
|
FEATURE: mbedtls_md() in ssl_tls13_write_certificate_verify_body()
replaced withpsa_hash_compute()
Signed-off-by: pespacek <peter.spacek@silabs.com>
|
2022-05-23 13:10:48 +02:00 |
|
pespacek
|
a1378105cf
|
FEATURE: use psa_hash_xxx rather than mbedtls_md_xxx for TLS 1.3.
ssl_tls13_parse_certificate_verify()
Signed-off-by: pespacek <peter.spacek@silabs.com>
|
2022-05-23 13:10:47 +02:00 |
|
Manuel Pégourié-Gonnard
|
69e348db85
|
Merge pull request #5833 from superna9999/5826-create-mbedtls-pk-can-do-psa
Permissions 1: create `mbedtls_pk_can_do_ext()`
|
2022-05-23 10:58:32 +02:00 |
|
Robert Shade
|
591e729b54
|
Allow building as a subdir
Fixes #5688
Signed-off-by: Robert Shade <robert.shade@gmail.com>
|
2022-05-21 12:55:12 -04:00 |
|