mbedtls

Author	SHA1	Message	Date
Manuel Pégourié-Gonnard	a946489efd	X.509: use MD_CAN macros Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	fa99afa2bc	PK: fix test failures Introduce MD_OR_USE_PSA_INIT/DONE. This will likely be used everywhere in X.509 and SSL/TLS, but most places in PK only need USE_PSA_INIT/DONE. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	0b8095d96a	PK: use MD_CAN macros sed -i -f md.sed tests/suites/test_suite_pk{,parse,write}.* Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	ebef58d301	OID + misc crypto: use MD_CAN and fix failures After this, only PK, X.509 and TLS remain to be done. Deterministic uses HMAC-DRBG which uses MD, so it needs crypto_init() when using a driver-only hash. Also, remove a special-purpose macro that's no longer needed. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	1d3bf24555	test_suite_psa_crypto: use PSA_WANT Could use MD_CAN, as both are equivalent when MBEDTLS_PSA_CRYPTO_C is defined, but using PSA_WANT is preferable in a PSA context. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	a5f04621bd	PKCS5: use MD_CAN macros sed -i -f md.sed library/pkcs5.c tests/suites/test_suite_pkcs5* include/mbedtls/pkcs5.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	49e67f814f	PKCS5: always use MD As a consequence, MD_C is now enabled in component accel_hash_use_psa. Fix guards in X.509 info function to avoid this causing a failure now. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	c1f10441e0	RSA: use MD_CAN macros sed -i -f md.sed library/rsa.c tests/suites/test_suite_rsa* include/mbedtls/rsa.h tests/suites/test_suite_pkcs1_v* Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	fb8d90a2db	RSA: always use MD light Note: already auto-enabled in build_info.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	52d02a85d3	PEM: use MD_CAN macros sed -i -f md.sed library/pem.c tests/suites/test_suite_pem* include/mbedtls/pem.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	1c2008fa37	PEM: always use MD light Note: PEM_PARSE already auto-enables MD_LIGHT in build_info.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	0baad53ac9	PKCS12: use MD_CAN macros sed -i -f md.sed library/pkcs12.c tests/suites/test_suite_pkcs12.* include/mbedtls/pkcs12.h with md.sed as before. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	be97afe5d4	PKCS12: always use MD light Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	b2eb1f7456	ECJPAKE: use MD_CAN macros sed -i -f md.sed \ library/ecjpake.c \ include/medtls/ecjpake.h \ tests/suites/test_suite_ecjpake.* With md.sed as follows: s/\bMBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_MD5/g s/\bMBEDTLS_HAS_ALG_RIPEMD160_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_RIPEMD160/g s/\bMBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA1/g s/\bMBEDTLS_HAS_ALG_SHA_224_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA224/g s/\bMBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA256/g s/\bMBEDTLS_HAS_ALG_SHA_384_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA384/g s/\bMBEDTLS_HAS_ALG_SHA_512_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA512/g s/\bMBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_MD5/g s/\bMBEDTLS_HAS_ALG_RIPEMD160_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_RIPEMD160/g s/\bMBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA1/g s/\bMBEDTLS_HAS_ALG_SHA_224_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA224/g s/\bMBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA256/g s/\bMBEDTLS_HAS_ALG_SHA_384_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA384/g s/\bMBEDTLS_HAS_ALG_SHA_512_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA512/g s/\bMBEDTLS_HAS_ALG_MD5_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_MD5/g s/\bMBEDTLS_HAS_ALG_RIPEMD160_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_RIPEMD160/g s/\bMBEDTLS_HAS_ALG_SHA_1_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA1/g s/\bMBEDTLS_HAS_ALG_SHA_224_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA224/g s/\bMBEDTLS_HAS_ALG_SHA_256_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA256/g s/\bMBEDTLS_HAS_ALG_SHA_384_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA384/g s/\bMBEDTLS_HAS_ALG_SHA_512_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA512/g s/\bMBEDTLS_MD5_C\b/MBEDTLS_MD_CAN_MD5/g s/\bMBEDTLS_RIPEMD160_C\b/MBEDTLS_MD_CAN_RIPEMD160/g s/\bMBEDTLS_SHA1_C\b/MBEDTLS_MD_CAN_SHA1/g s/\bMBEDTLS_SHA224_C\b/MBEDTLS_MD_CAN_SHA224/g s/\bMBEDTLS_SHA256_C\b/MBEDTLS_MD_CAN_SHA256/g s/\bMBEDTLS_SHA384_C\b/MBEDTLS_MD_CAN_SHA384/g s/\bMBEDTLS_SHA512_C\b/MBEDTLS_MD_CAN_SHA512/g Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	41bc8b6b1e	ECJPAKE: always use MD light This enables access to all available hashes, instead of the previous situation where you had to choose by including MD_C or not. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	ffcda5679a	Make MD_PSA_INIT/DONE available to all suites Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	235a933f99	PSA hash algs must be a superset of built-ins Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	534d64d67e	MD no longer depends on a built-in hash Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	e0e161b54a	Merge pull request #7296 from valeriosetti/issue7253-part1 driver-only ECDH: enable ECDH-based TLS 1.2 key exchanges -- part 1	2023-03-21 16:09:02 +01:00
Dave Rodgman	3543806026	Merge pull request #7190 from yanrayw/6197_rsa_get_padding_hashID RSA: provide interface to retrieve padding mode and hash_id	2023-03-20 18:34:53 +00:00
Dave Rodgman	97fd217748	Merge pull request #7318 from tom-cosgrove-arm/update-mbedtls_have_asm-requirements-in-mbedtls_config.h Note that MBEDTLS_HAVE_ASM is required by MBEDTLS_AESCE_C	2023-03-20 18:22:25 +00:00
Dave Rodgman	43f9a25277	Merge pull request #7315 from mpg/ecjpake-changelog Add ChangeLog entry for driver-only EC J-PAKE	2023-03-20 15:14:15 +00:00
Tom Cosgrove	f586aa2af2	Note that MBEDTLS_HAVE_ASM is required by MBEDTLS_AESCE_C Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2023-03-20 14:45:27 +00:00
Dave Rodgman	c5807a6fa8	Merge pull request #6918 from yuhaoth/pr/add-gcm-with-armv8-crypto-extension Add GCM with armv8 crypto extension	2023-03-20 14:45:14 +00:00
Valerio Setti	fdea36d137	test_suite_ssl: remove redundant ECDH dependencies when the key exchange is specified Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-20 14:02:07 +01:00
Valerio Setti	2f8eb62946	ssl-opt: remove leftover debug commands and fix comment Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-20 14:02:07 +01:00
Valerio Setti	866aa187e8	ecdh: solve disparities in accelerated ECDH vs reference Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-20 14:02:07 +01:00
Valerio Setti	5d1f29e700	ssl_tls: fix guards for accelerated ECDH Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-20 14:02:07 +01:00
Valerio Setti	6ba247c236	ssl-opt: solve errors in ECDH reference tests Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-20 14:00:51 +01:00
Valerio Setti	53a5844abc	test: enable ECDH key exchanges for driver coverage tests Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-20 14:00:51 +01:00
Manuel Pégourié-Gonnard	e9a60224fd	Add ChangeLog entry for driver-only EC J-PAKE Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-20 10:03:55 +01:00
Manuel Pégourié-Gonnard	4ebe2a7372	Merge pull request #7300 from valeriosetti/issue7281 Driver only EC JPAKE: re-enable the EC J-PAKE key exchange and get test parity	2023-03-20 09:54:47 +01:00
Manuel Pégourié-Gonnard	e91aadaeed	Merge pull request #7299 from valeriosetti/issue7280 Driver only EC JPAKE: enable ssl-opt.sh and get test parity	2023-03-20 09:51:11 +01:00
Manuel Pégourié-Gonnard	c9ef476431	Merge pull request #7192 from joerchan/psa-update-mbedtls psa_crypto: Fix psa_key_derivation_output_key ECC without builtin keys	2023-03-20 09:47:07 +01:00
Manuel Pégourié-Gonnard	14c194aae9	Merge pull request #7271 from mpg/use-md-light Use md light	2023-03-20 09:01:16 +01:00
Yanray Wang	b46ccf235c	fix line length of ChangeLog Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-20 12:41:10 +08:00
Dave Rodgman	b937c92853	Merge pull request #7313 from daverodgman/aes-armv8-changelog Changelog and terminology tidy-up for AESCE	2023-03-18 14:33:04 +00:00
Dave Rodgman	f992e6fe38	Changelog for AESCE support Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-17 17:52:38 +00:00
Dave Rodgman	f918d42332	Tidy up ARMCE terminology Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-17 17:52:23 +00:00
Manuel Pégourié-Gonnard	0f60d09aa8	Add a test with all of ECC accelerated Note that ECC key derivation is not using drivers yet, as we don't have driver support for cooked key derivation acceleration, see https://github.com/Mbed-TLS/mbedtls/pull/5451 and follow-ups. So, we still need MBEDTLS_ECP_C enabled at least for this, and probably in several other places for now. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-17 15:23:17 +01:00
Manuel Pégourié-Gonnard	3831637e85	Handle dependency on ECP_C in ECC KDF Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-17 15:21:26 +01:00
Joakim Andersson	bb576febb2	psa_crypto: Fix psa_key_derivation_output_key ECC without builtin keys Fix psa_key_derivation_output_key not being able to derive ECC keys without MBEDTLS_BUILTIN ECC key types enabled. The PSA crypto drivers can generate these keys without requiring the builtin key types. Signed-off-by: Joakim Andersson <joakim.andersson@nordicsemi.no>	2023-03-17 15:21:26 +01:00
Yanray Wang	69bc8403eb	rsa_tests: use TEST_EQUAL instead of TEST_ASSERT Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-17 20:33:08 +08:00
Yanray Wang	e05a21f084	rsa: add a test to check default padding mode and hash_id Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-17 20:09:20 +08:00
Yanray Wang	15d3df7aec	rsa: add positive test cases for getter functions Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-17 19:49:04 +08:00
Dave Rodgman	8a7ed6951d	Changelog Signed-off-by: Dave Rodgman <dave.rodgman@arm.com> Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-17 18:58:11 +08:00
Yanray Wang	d41684e8bc	rsa.c: rename getter function of hash_id Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-17 18:57:42 +08:00
Dave Rodgman	0e2b06a1ce	Merge pull request #7083 from KloolK/record-size-limit/parsing Add parsing for Record Size Limit extension in TLS 1.3	2023-03-17 10:18:34 +00:00
Paul Elliott	9f02a4177b	Merge pull request #7009 from mprse/csr_write_san Added ability to include the SubjectAltName extension to a CSR - v.2	2023-03-17 10:07:27 +00:00
Manuel Pégourié-Gonnard	0d957d3a83	Merge pull request #7275 from valeriosetti/issue7255 Driver-only EC JPAKE: starter	2023-03-17 10:01:38 +01:00

1 2 3 4 5 ...

24126 commits