XiaokangQian
|
96287d98d8
|
Remove the certificate key check against the received signature
Change-Id: I07d8d46c58dec499f96cb7307fc0af15149d9df7
CustomizedGitHooks: yes
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-06-08 08:37:53 +00:00 |
|
XiaokangQian
|
9850fa8e8d
|
Refine ssl_tls13_pick_cert()
Change-Id: I5448095e280d8968b20ade8b304d139e399e54f1
CustomizedGitHooks: yes
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-06-08 07:02:41 +00:00 |
|
XiaokangQian
|
23c5be6b94
|
Enable SNI test for both tls12 and tls13
Change-Id: Iae5c39668db7caa1a59d7e67f226a5286d91db22
CustomizedGitHooks: yes
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-06-07 09:43:13 +00:00 |
|
XiaokangQian
|
129aeb9b0e
|
Update test cases and support sni ca override
Change-Id: I6052acde0b0ec1c25537f8dd81a35562da05a393
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-06-02 09:29:18 +00:00 |
|
XiaokangQian
|
f4f0f6961a
|
Enable requires_openssl_tls1_3 in sni test cases
Change-Id: I71fbabe0b2ff80d5f1f15ae7df2b048503ccf965
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-06-01 00:42:27 +00:00 |
|
XiaokangQian
|
ac41edfc5e
|
Enable requires_gnutls_tls1_3 in sni test cases
Change-Id: Iea18f4e6a6b4c6b90612b43a5bcd396cdd506335
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-31 13:22:13 +00:00 |
|
XiaokangQian
|
2ccd97b8ef
|
Change test case name to sni
Change-Id: I8f6e68deab71cc49741cbdf233cf876e29683db9
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-31 08:30:17 +00:00 |
|
XiaokangQian
|
0557c94fef
|
Add back SNI related code to validate_certificate
Change-Id: I75883858016d4163cd7c64c3418eb3ca24fa46ea
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-30 08:10:53 +00:00 |
|
XiaokangQian
|
f2a942073e
|
Fix SNI test failure
Change-Id: Id3fce36af9bc52cac858b473168451945aa974f4
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-30 08:07:16 +00:00 |
|
XiaokangQian
|
9b2b7716b0
|
Change mbedtls_ssl_parse_server_name_ext base on comments
Change-Id: I4ae831925cb1899afafb7dc626bfad9be24a5c8c
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-30 08:07:16 +00:00 |
|
XiaokangQian
|
40a3523eb7
|
Add support of server name extension to server side
Change-Id: Iccf5017e306ba6ead2e1026a29f397ead084cc4d
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-30 08:07:16 +00:00 |
|
Ronald Cron
|
1c1d3550ec
|
Merge pull request #5777 from xkqian/tls13_parse_cert_certverify
Add client certificate parse and certificate verify
|
2022-05-30 09:00:05 +02:00 |
|
XiaokangQian
|
e7a5da597f
|
Remove SNI related code
Change-Id: Ic44bdb27b1bdc5c9057078dfed936fc36bddebbe
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-30 00:59:29 +00:00 |
|
XiaokangQian
|
9a4e1dd8a6
|
Add back openssl client auth test
Change-Id: Iea3b70381c3851102c542d1c55c0303bc3a14a92
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-26 00:58:11 +00:00 |
|
XiaokangQian
|
aca9048b5f
|
Change base on review
Fix comments
Add test cases for client authentication with empty certificate
Change-Id: Id8a741ddd997ca92e36832f26088eb0e67830ad8
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-26 00:47:11 +00:00 |
|
XiaokangQian
|
989f06d52d
|
Change some comments base on review
Change-Id: I3db2b8ca8162eb368d2f17dfeffee8b25f9edf6f
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-26 00:47:11 +00:00 |
|
XiaokangQian
|
63e713e8ab
|
Fix comments
Change-Id: Ib741f876f4d296df79565a2b8a2971918db1a77f
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-26 00:47:11 +00:00 |
|
XiaokangQian
|
c3017f620f
|
Remove useless guards and refine checking
Change-Id: I9cd3073826fc65c203e479d83bed72331ff8963d
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-26 00:47:10 +00:00 |
|
XiaokangQian
|
189ded2b07
|
Remove coordinate functions and change state machine in server side
Change-Id: Id4abf78f493e77afc289409db691c9c61acde1d2
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-26 00:46:13 +00:00 |
|
XiaokangQian
|
6b916b1616
|
Add client certificate parse and certificate verify
Change-Id: I638db78922a03db6f8bd70c6c5f56fb60365547d
Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
|
2022-05-26 00:40:53 +00:00 |
|
Dave Rodgman
|
a636d1f192
|
Merge pull request #5714 from daverodgman/k-stachowiak_static-runtime-option-msvc
Enable static linking of the common runtime in MSVC
|
2022-05-25 14:47:58 +01:00 |
|
Dave Rodgman
|
32c995afa3
|
Merge pull request #5724 from Biswa96/cmake-mingw
cmake: Fix runtime library install location in mingw
|
2022-05-25 13:34:43 +01:00 |
|
Paul Elliott
|
8fba70f66c
|
Merge pull request #5749 from yuhaoth/pr/add-tls13-finished-message-and-wrapup
TLS 1.3: Add Finished Message and wrapup
|
2022-05-25 12:02:06 +01:00 |
|
Jerry Yu
|
5491f857d2
|
skip openssl client auth test
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>
|
2022-05-23 22:36:16 +08:00 |
|
Jerry Yu
|
090378c685
|
change exit code of cli auth test
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>
|
2022-05-23 21:03:52 +08:00 |
|
Manuel Pégourié-Gonnard
|
69e348db85
|
Merge pull request #5833 from superna9999/5826-create-mbedtls-pk-can-do-psa
Permissions 1: create `mbedtls_pk_can_do_ext()`
|
2022-05-23 10:58:32 +02:00 |
|
Jerry Yu
|
7eaadae941
|
fix no x509 info fail.
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>
|
2022-05-23 16:17:25 +08:00 |
|
Neil Armstrong
|
b2f2b027c2
|
Clarify mbedtls_pk_can_do_ext() return documentation amd add warning on future addition of allowed algs & usage flags
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-20 12:00:56 +02:00 |
|
Neil Armstrong
|
c661ff51c9
|
Fix pk_can_do_ext tests with non-opaque keys
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-20 09:49:04 +02:00 |
|
Neil Armstrong
|
a724f7ae17
|
Document mbedtls_pk_can_do_ext() return for non-allowed algorithms and usage flags
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-20 09:28:12 +02:00 |
|
Neil Armstrong
|
81d391f773
|
Check when usage == 0 in mbedtls_pk_can_do_ext()
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-20 09:26:16 +02:00 |
|
Neil Armstrong
|
b80785f1a4
|
Comment typo fix in mbedtls_pk_can_do_ext()
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-20 09:25:55 +02:00 |
|
Gilles Peskine
|
e4d3a6a4e8
|
Merge pull request #5804 from superna9999/5797-remove-cipher-deps-tls
Remove Cipher dependencies in TLS
|
2022-05-19 21:02:12 +02:00 |
|
Neil Armstrong
|
5c5b116a49
|
Add pk_can_do_ext test for non-opaque keys
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-19 18:07:53 +02:00 |
|
Dave Rodgman
|
afe149d76e
|
Merge pull request #5846 from bootstrap-prime/development
Fix typos in documentation and constants with typo finding tool
|
2022-05-19 16:53:32 +01:00 |
|
Paul Elliott
|
4283a6b121
|
Merge pull request #5736 from gilles-peskine-arm/psa-raw_key_agreement-buffer_too_small
Make psa_raw_key_agreement return BUFFER_TOO_SMALL
|
2022-05-19 16:06:02 +01:00 |
|
Neil Armstrong
|
084338d336
|
Change mbedtls_pk_can_do_ext() usage test logic for opaque keys
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-19 16:22:40 +02:00 |
|
Jerry Yu
|
e3d67cb263
|
Improve readability
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>
|
2022-05-19 15:33:10 +08:00 |
|
Jerry Yu
|
fd5ea0458f
|
add compute application transform
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>
|
2022-05-19 14:29:48 +08:00 |
|
Jerry Yu
|
545432310d
|
remove zeorize from keys
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>
|
2022-05-19 11:23:25 +08:00 |
|
Jerry Yu
|
cc0a13fcf8
|
remove unnecessary empty line
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>
|
2022-05-19 10:14:24 +08:00 |
|
bootstrap-prime
|
6dbbf44d78
|
Fix typos in documentation and constants with typo finding tool
Signed-off-by: bootstrap-prime <bootstrap.prime@gmail.com>
|
2022-05-18 14:15:33 -04:00 |
|
Neil Armstrong
|
8395d7a37d
|
Change guard of mbedtls_ssl_cipher_to_psa() with USE_PSA_CRYPTO || SSL_PROTO_TLS1_3
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-18 13:24:34 +02:00 |
|
Neil Armstrong
|
0fa8ce3498
|
TLS 1.3 only have AEAD ciphers, drop the PSA_ALG_IS_AEAD() check in mbedtls_ssl_tls13_get_cipher_key_info()
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-18 13:19:29 +02:00 |
|
Neil Armstrong
|
b818e16b29
|
Move out common PSA code from mbedtls_ssl_tls13_generate_handshake_keys/mbedtls_ssl_tls13_generate_application_keys
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-18 13:19:29 +02:00 |
|
Neil Armstrong
|
e3b0b8ab67
|
Remove non-PSA code in mbedtls_ssl_tls13_generate_handshake_keys/mbedtls_ssl_tls13_generate_application_keys
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-18 13:19:29 +02:00 |
|
Neil Armstrong
|
93617245c3
|
Code style fixes
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-18 13:19:29 +02:00 |
|
Neil Armstrong
|
689557ca12
|
Make CIPHER_C guard code as alternate of USE_PSA_CRYPTO in mbedtls_ssl_ciphersuite_get_cipher_key_bitlen()
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-18 13:19:29 +02:00 |
|
Neil Armstrong
|
4f4f271850
|
In mbedtls_ssl_tls13_generate_handshake_keys() and mbedtls_ssl_tls13_generate_application_keys(), avoid calling mbedtls_cipher_info_from_type()
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-18 13:19:29 +02:00 |
|
Neil Armstrong
|
a8093f5c48
|
In mbedtls_ssl_tls13_populate_transform() make sure mbedtls_cipher_info_from_type() is only called when USE_PSA is disabled
Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
|
2022-05-18 13:19:29 +02:00 |
|