Dave Rodgman
|
d03f483dbe
|
Use mbedtls_ct_error_if
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-22 10:01:47 +01:00 |
|
Dave Rodgman
|
fbe74a9e51
|
Add mbedtls_ct_error_if, with tests
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-22 09:58:25 +01:00 |
|
Dave Rodgman
|
9d0869140b
|
Remove tests for mbedtls_ct_int_if
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-21 21:54:08 +01:00 |
|
Dave Rodgman
|
a9d70125a3
|
Remove mbedtls_ct_int_if
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-21 21:53:54 +01:00 |
|
Dave Rodgman
|
7ad37e40a6
|
Remove use of mbedtls_ct_int_if
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-21 21:53:31 +01:00 |
|
Dave Rodgman
|
530c3da698
|
Improve implementation of mbedtls_ct_int_if
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-21 21:06:48 +01:00 |
|
Dave Rodgman
|
61f1beaccf
|
Update library to use mbedtls_ct_int_if
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-21 19:23:17 +01:00 |
|
Dave Rodgman
|
f1915f623d
|
Improve testing for mbedtls_ct_int_if
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-21 19:22:59 +01:00 |
|
Dave Rodgman
|
f81b2a14f2
|
Generalise mbedtls_ct_error_if to mbedtls_ct_int_if
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-21 19:22:43 +01:00 |
|
Dave Rodgman
|
cc3c670670
|
Fix compiler cast warning
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-21 16:33:26 +01:00 |
|
Dave Rodgman
|
2a5ab95fc1
|
Merge branch 'development-restricted' into more-ct
|
2023-09-21 13:52:00 +01:00 |
|
Dave Rodgman
|
93b3228d42
|
Add tests for mbedtls_ct_error_if
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-21 13:50:51 +01:00 |
|
Dave Rodgman
|
1a404e8f34
|
Use mbedtls_ct_error for CT error selection
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-21 13:12:28 +01:00 |
|
Dave Rodgman
|
e50b537266
|
Add mbedtls_ct_error_if
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-21 11:29:58 +01:00 |
|
Gilles Peskine
|
7641667abf
|
Merge pull request #1073 from Mbed-TLS/better-ct-memcmp
More consistent use of mbedtls_ct_memcmp
|
2023-09-21 10:00:58 +02:00 |
|
Dave Rodgman
|
584a08f91d
|
Add cast for MSVC
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-20 20:15:52 +01:00 |
|
Dave Rodgman
|
1cf181fd46
|
Reinstate more robust return value handling
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-20 19:10:17 +01:00 |
|
Dave Rodgman
|
c43a0a4adb
|
rename dont_ignore to in_padding
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-20 19:09:51 +01:00 |
|
Dave Rodgman
|
e834d6c9f2
|
Move declaration for robustness against future edits
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-20 19:09:51 +01:00 |
|
Dave Rodgman
|
c62f7fcce9
|
Use more meaningful variable name in mbedtls_rsa_rsaes_oaep_decrypt
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-20 19:09:51 +01:00 |
|
Dave Rodgman
|
e94cd0b99b
|
Correct use of mbedtls_ct_mpi_uint_if_else_0
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-20 19:09:51 +01:00 |
|
Dave Rodgman
|
ee5464fab9
|
Simplify unnecessarily complex error code handling
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-20 09:13:12 +01:00 |
|
Dave Rodgman
|
fd96579ecd
|
Use properly typed versions of mbedtls_ct_xxx_if
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 21:52:13 +01:00 |
|
Dave Rodgman
|
143f5f7c68
|
Add mbedtls_ct_bool_if and mbedtls_ct_bool_if_else_0
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 21:52:13 +01:00 |
|
Dave Rodgman
|
437500c5b1
|
Fix MSVC type complaint
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 21:52:13 +01:00 |
|
Dave Rodgman
|
814d096420
|
Fix error in handling of return value from mbedtls_nist_kw_unwrap
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 20:48:51 +01:00 |
|
Dave Rodgman
|
6be4bcff16
|
code style
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 19:47:51 +01:00 |
|
Dave Rodgman
|
4fc14cc4ae
|
Fix error in handling of return value from mbedtls_nist_kw_unwrap
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 19:45:54 +01:00 |
|
Dave Rodgman
|
f8182d91a7
|
Simplify add_zeros_padding
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 18:39:33 +01:00 |
|
Dave Rodgman
|
d8c68a948a
|
Use CT interface in get_zeros_padding
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 18:39:33 +01:00 |
|
Dave Rodgman
|
1cfc43c77b
|
Rename mbedtls_ct_bool_xor to mbedtls_ct_bool_ne
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 18:39:33 +01:00 |
|
Dave Rodgman
|
89a9bd5887
|
Use CT interface in get_one_and_zeros_padding
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 18:39:33 +01:00 |
|
Dave Rodgman
|
6cec41c3bb
|
use CT interface in add_zeros_and_len_padding()
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 18:34:06 +01:00 |
|
Dave Rodgman
|
6b7e2a5809
|
Use CT interface in get_pkcs_padding
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 18:34:06 +01:00 |
|
Dave Rodgman
|
b4e6b41aa0
|
Use const-time interface throughout mbedtls_rsa_rsaes_oaep_decrypt
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 18:34:06 +01:00 |
|
Dave Rodgman
|
986006e567
|
Make TEST_CALLOC_NONNULL more robust
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 18:30:25 +01:00 |
|
Dave Rodgman
|
6568f60358
|
Simplify mbedtls_ct_memcmp_partial test
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 17:48:24 +01:00 |
|
Dave Rodgman
|
2c9f86b3b6
|
Add docs for mbedtls_ct_memcmp_partial test
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 17:48:13 +01:00 |
|
Dave Rodgman
|
28bc1ab923
|
Use exact bounds for allocations in mbedtls_ct_memcmp_partial test
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 17:34:57 +01:00 |
|
Dave Rodgman
|
a328635305
|
Introduce TEST_CALLOC_NONNULL
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 17:34:39 +01:00 |
|
Dave Rodgman
|
ba600b2fd9
|
Remove expected param from mbedtls_ct_memcmp_partial test
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 17:26:13 +01:00 |
|
Dave Rodgman
|
51c15309f2
|
Make padlen check const-time
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 17:22:18 +01:00 |
|
Dave Rodgman
|
c2630fac52
|
Simplify mbedtls_ct_memcmp_partial
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 17:21:50 +01:00 |
|
Dave Rodgman
|
66d6ac92e6
|
Use mbedtls_ct_memcmp in mbedtls_rsa_rsaes_oaep_decrypt
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 09:10:59 +01:00 |
|
Dave Rodgman
|
d337bd9bfe
|
Improve const-timeness of mbedtls_nist_kw_unwrap
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 09:10:59 +01:00 |
|
Dave Rodgman
|
771ac65b0c
|
Add tests for mbedtls_ct_memcmp_partial
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 09:10:59 +01:00 |
|
Dave Rodgman
|
9c14007ac3
|
Add mbedtls_ct_memcmp_partial
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-19 09:10:59 +01:00 |
|
Dave Rodgman
|
d26a3d6da7
|
Eliminate duplicate ct memcmp
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
2023-09-18 19:09:45 +01:00 |
|
Gilles Peskine
|
8a7fb2d799
|
Merge pull request #1055 from waleed-elmelegy-arm/add-new-pkcs12-pbe2-ext-fun
Add new pkcs12 pbe2 ext fun
|
2023-09-15 18:43:03 +02:00 |
|
Waleed Elmelegy
|
50888643f4
|
Reduce line size in new pkcs function changelog
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
|
2023-09-14 18:27:17 +01:00 |
|