mbedtls

Author	SHA1	Message	Date
Janos Follath	0ec6e3f394	mpi_core_mod_exp: improve style and documentation No intended change in behaviour. Signed-off-by: Janos Follath <janos.follath@arm.com>	2022-11-22 21:22:53 +00:00
Janos Follath	a77911e5c1	core_exp_mod: improve window selection We are looking at the exponent at limb granularity and therefore exponent bits can't go below 32. The `mpi_` prefix is also removed as it is better not to have prefix at all than to have just a partial. (Full prefix would be overly long and would hurt readability.) Signed-off-by: Janos Follath <janos.follath@arm.com>	2022-11-22 21:22:53 +00:00
Janos Follath	59cbd1be27	Make mbedtls_mpi_core_ct_uint_table_lookup static Now that we have a function that calls mbedtls_mpi_core_ct_uint_table_lookup(), the compiler won't complain if we make it static. Signed-off-by: Janos Follath <janos.follath@arm.com>	2022-11-22 21:22:53 +00:00
Janos Follath	bad42c4d0d	mpi_core_exp_mod: fix local variable type On platforms with size_t different from int, mismatch between size_t and mpi_uint can cause incorrect results or complaints from the compiler. Signed-off-by: Janos Follath <janos.follath@arm.com> mpi_core_exp_mod: Cast local variable explicitly Signed-off-by: Janos Follath <janos.follath@arm.com>	2022-11-22 21:22:53 +00:00
Janos Follath	b6673f0f19	Add modular exponentiation to bignum core Signed-off-by: Janos Follath <janos.follath@arm.com>	2022-11-22 21:22:53 +00:00
Aditya Deshpande	5e3c70e3be	Merge branch 'development' into driver-wrapper-key-agreement	2022-11-22 17:58:52 +00:00
Aditya Deshpande	8cc1470c18	Merge branch 'development' into driver-wrapper-key-agreement	2022-11-22 17:55:53 +00:00
Valerio Setti	6d4e75f0c6	psa_crypto_pake: initialize psa_status_t stack variables Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-22 18:52:17 +01:00
Valerio Setti	fdb77cdae3	psa_crypto_pake: internally call to psa_pake_abort() in case of errors In this way, in case of error, it is not possible to continue using the same psa_pake_operation_t without reinitializing it. This should make the PSA pake's behavior closer to what expected by the specification Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-22 18:41:01 +01:00
Valerio Setti	99d88c1ab4	tls: psa_pake: fix missing casting in mbedtls_psa_ecjpake_write_round Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-22 16:03:43 +01:00
Tom Cosgrove	452c99c173	Use mbedtls_mpi_core_sub_int() in mbedtls_mpi_sub_abs() Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2022-11-22 14:58:15 +00:00
Tom Cosgrove	f7ff4c9a11	Tidy up, remove MPI_CORE(), and apply the naming convention Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2022-11-22 14:58:15 +00:00
Hanno Becker	d9b2348d8f	Extract MPI_CORE(sub_int) from the prototype Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2022-11-22 14:58:15 +00:00
Bence Szépkúti	a17d038ee1	Merge branch 'development' into pr3431	2022-11-22 15:54:52 +01:00
Gilles Peskine	4f19d86e3f	Merge pull request #6608 from mprse/ecjpake_password_fix Make a copy of the password key in operation object while setting j-pake password	2022-11-22 14:52:12 +01:00
Aditya Deshpande	2f7fd76d91	Replace PSA_KEY_AGREEMENT_MAX_SHARED_SECRET_SIZE with PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE in psa_key_agreement_internal(). Signed-off-by: Aditya Deshpande <aditya.deshpande@arm.com>	2022-11-22 11:10:34 +00:00
Valerio Setti	d4a9b1ab8d	tls: psa_pake: remove useless defines and fix a comment Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-22 11:11:10 +01:00
Xiaokang Qian	8bee89994d	Add parse function for early data in encrypted extentions Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-22 09:40:07 +00:00
Przemek Stekiel	0bdec19c93	Further optimizations of pake set_password implementation Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-11-22 09:10:35 +01:00
Jerry Yu	fdd24b8c49	Revert change in flight transmit Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-22 14:08:03 +08:00
Gilles Peskine	339406daf9	Merge pull request #6609 from gilles-peskine-arm/mpi_sint-min-ub Fix undefined behavior in bignum: NULL+0 and -most-negative-sint	2022-11-21 19:51:58 +01:00
Przemek Stekiel	ad0f357178	Optimize pake code that sets/use password key Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-11-21 15:04:37 +01:00
Przemek Stekiel	e2d6b5f45b	psa_key_slot_get_slot_number: Move documentation to header file Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-11-21 15:03:52 +01:00
Valerio Setti	5151bdf46e	tls: psa_pake: add missing braces Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-21 14:30:02 +01:00
Valerio Setti	79f6b6bb1b	tls: psa_pake: fixing mbedtls_psa_ecjpake_write_round() It might happen that the psa_pake_output() function returns elements which are not exactly 32 or 65 bytes as expected, but 1 bytes less. As a consequence, insted of hardcoding the expected value for the length in the output buffer, we write the correct one as obtained from psa_pake_output() Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-21 14:17:03 +01:00
Dave Rodgman	9e1836cc16	Merge pull request #6593 from Mbed-TLS/fix_tls12_sent_sigalgs Fix TLS1.2 signature algorithms list entry getting overwritten by length.	2022-11-21 10:09:57 +00:00
Jerry Yu	9b421456b0	Revert change in dtls1.2 Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-19 20:12:35 +08:00
Jerry Yu	668070d5f4	Remove unnecessary replace Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-19 20:12:35 +08:00
Jerry Yu	a8d3c5048f	Rename new session ticket name for TLS 1.3 NewSessionTicket is different with TLS 1.2. It should not share same state. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-19 20:12:35 +08:00
Jerry Yu	cfda4bbeac	Replace handshake over in flight transmit Fix deadloop in DTLS resumption test. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-19 20:12:35 +08:00
Jerry Yu	1fb3299ad7	Replace internal usage of is_handshake_over. NEW_SESSION_TICKETS* are processed in handshake_step. Change the stop condition from `mbedtls_ssl_is_handshake_over` to directly check. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-19 20:12:34 +08:00
Jerry Yu	5ed73ff6de	Add NEW_SESSION_TICKET* into handshake over states All state list after HANDSHAKE_OVER as is_handshakeover Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-19 20:12:34 +08:00
Jerry Yu	6848a61922	Revert "Replace internal usage of mbedtls_ssl_is_handshake_over" This reverts commit 1d3ed2975e7ef0d84050a3aece02eec1f890dec3. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-19 20:12:34 +08:00
Jerry Yu	e219c11b4e	Replace internal usage of mbedtls_ssl_is_handshake_over Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-19 20:12:34 +08:00
Valerio Setti	61ea17d30a	tls: psa_pake: fix return values in parse functions Ensure they all belong to the MBEDTLS_ERR_SSL_* group Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-18 12:11:00 +01:00
Valerio Setti	aca21b717c	tls: psa_pake: enforce not empty passwords Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-17 18:20:50 +01:00
Valerio Setti	819de86895	tls: removed extra white spaces and other minor fix Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-17 18:05:19 +01:00
Valerio Setti	6b3dab03b5	tls: psa_pake: use a single function for round one and two in key exchange read/write Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-17 17:14:54 +01:00
Valerio Setti	9bed8ec5d8	tls: psa_pake: make round two reading function symmatric to the writing one Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-17 16:36:19 +01:00
Valerio Setti	30ebe11f86	tls: psa_pake: add a check on read size on both rounds Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-17 16:35:02 +01:00
Valerio Setti	a988364767	tls: psa_pake: fix missing new round one parsing function on tls12 server Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-17 16:35:02 +01:00
Valerio Setti	a08b1a40a0	tls: psa_pake: move move key exchange read/write functions to ssl_tls.c Inlined functions might cause the compiled code to have different sizes depending on the usage and this not acceptable in some cases. Therefore read/write functions used in the initial key exchange are moved to a standard C file. Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-17 16:34:59 +01:00
Andrzej Kurek	ec71b0937f	Introduce a test for single signature algorithm correctness The value of the first sent signature algorithm is overwritten. This test forces only a single algorithm to be sent and then validates that the client received such algorithm. 04 03 is the expected value for SECP256R1_SHA256. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-11-17 14:58:14 +00:00
Paul Elliott	96a0fd951f	Fix signature algorithms list entry getting overwritten by length. Fix bug whereby the supported signature algorithm list sent by the server in the certificate request would not leave enough space for the length to be written, and thus the first element would get overwritten, leaving two random bytes in the last entry. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2022-11-17 14:58:14 +00:00
Przemek Stekiel	369ae0afc3	Zeroize pake password buffer before free Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-11-17 14:14:31 +01:00
Przemek Stekiel	152ae07682	Change password ec j-pake operation fields to more suitable Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-11-17 13:24:36 +01:00
Ronald Cron	d12922a69a	Merge pull request #6486 from xkqian/tls13_add_early_data_indication The merge job of the internal CI ran successfully. This is good to go.	2022-11-17 12:48:50 +01:00
Przemyslaw Stekiel	1def5becc2	Add psa_get_and_lock_key_slot_with_policy to header file Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>	2022-11-16 16:28:04 +01:00
Valerio Setti	6f1b5741ae	tls12: psa_pake: simplify EC info parsing in server's 2nd round Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-16 14:50:13 +01:00
Valerio Setti	4a9caaa0c9	tls12: psa_pake: check elliptic curve's TLS ID on handshake Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-16 14:50:10 +01:00
Valerio Setti	fbbc1f3812	tls12: psa_pake: use proper defines for the output size of each step in ECJPAKE Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-16 14:49:52 +01:00
Valerio Setti	02c25b5f83	tls12: psa_pake: use common code for parsing/writing round one and round two data Share a common parsing code for both server and client for parsing round one and two. Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-16 13:56:12 +01:00
Xiaokang Qian	0cc4320e16	Add EARLY_DATA guard to the early data extension in session ticket Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-16 08:43:50 +00:00
Gilles Peskine	ef7f4e47b1	Express abs(z) in a way that satisfies GCC and MSVC Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-11-15 23:25:27 +01:00
Gilles Peskine	af601f9751	Fix undefined behavior with the most negative mbedtls_mpi_sint When x is the most negative value of a two's complement type, `(unsigned_type)(-x)` has undefined behavior, whereas `-(unsigned_type)x` has well-defined behavior and does what was intended. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-11-15 23:02:14 +01:00
Gilles Peskine	db14a9d180	Fix NULL+0 in addition 0 + 0 Fix undefined behavior (typically harmless in practice) of mbedtls_mpi_add_mpi(), mbedtls_mpi_add_abs() and mbedtls_mpi_add_int() when both operands are 0 and the left operand is represented with 0 limbs. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-11-15 23:00:21 +01:00
Przemek Stekiel	348410f709	Make a copy of the key in operation while setting pake password Additionally use psa_get_and_lock_key_slot_with_policy() to obtain key. This requires making this function public. This will have to be solved while adding driver dipatch for EC-JPAKE. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-11-15 22:22:07 +01:00
Gilles Peskine	4a768dd17d	Fix negative zero created by (-A) + (+A) or (-A) - (-A) In mbedtls_mpi_add_mpi() and mbedtls_mpi_sub_mpi(), and by extention mbedtls_mpi_add_int() and mbedtls_mpi_sub_int(), when the resulting value was zero, the sign bit of the result was incorrectly set to -1 when the left-hand operand was negative. This is not a valid mbedtls_mpi representation. Fix this: always set the sign to +1 when the result is 0. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-11-15 20:36:18 +01:00
Gilles Peskine	72ee1e3f3c	Unify mbedtls_mpi_add_mpi and mbedtls_mpi_sub_mpi mbedtls_mpi_add_mpi() and mbedtls_mpi_sub_mpi() have the same logic, just with one bit to flip in the sign calculation. Move the shared logic to a new auxiliary function. This slightly reduces the code size (if the compiler doesn't inline) and reduces the maintenance burden. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-11-15 20:30:09 +01:00
Xiaokang Qian	2cd5ce0c6b	Fix various issues cause rebase to latest code Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-15 10:33:53 +00:00
Dave Rodgman	d384b64dd2	Merge branch 'development' into rfc9146_2 Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2022-11-14 17:43:15 +00:00
Janos Follath	4d0ea7f4cc	Merge pull request #6550 from minosgalanakis/minos/6017_add_montgomery_conversion Bignum: Add Montgomery conversion from/to cannonical form	2022-11-14 11:12:13 +00:00
Xiaokang Qian	fe3483f9a1	Update early data doument and config dependencies Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:16:22 +00:00
Xiaokang Qian	ae07cd995a	Change ticket_flag base on review Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:16:22 +00:00
Xiaokang Qian	2d87a9eeb5	Pend one alert in case wrong EXT_EARLY_DATA length Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:16:22 +00:00
Xiaokang Qian	a042b8406d	Address some format issues Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:16:19 +00:00
Xiaokang Qian	f447e8a8d3	Address comments base on reviews Improve early data indication check Update test case to gnutls server Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:15:36 +00:00
Xiaokang Qian	a341225fd0	Change function name ssl_tls13_early_data_has_valid_ticket Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:15:05 +00:00
Xiaokang Qian	01323a46c6	Add session ticket related check when send early data Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:15:05 +00:00
Xiaokang Qian	ecc2948f21	Fix format issues Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:15:05 +00:00
Xiaokang Qian	76332816c7	Define the EARLY_DATA_STATUS Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:15:05 +00:00
Xiaokang Qian	338f727683	Move EARLY_DATA_OFF/ON guard to ssl_misc.h Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:15:03 +00:00
Xiaokang Qian	b781a2323c	Move ssl_tls13_has_configured_ticket() back to tls13 client Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:13:51 +00:00
Xiaokang Qian	893ad81966	Remove useless early_secrets field Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:13:51 +00:00
Xiaokang Qian	911c0cc4f0	Fix format issues in comments Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:13:50 +00:00
Xiaokang Qian	0e97d4d16d	Add early data indication to client side Add fields to mbedtls_ssl_context Add write early data indication function Add check whether write early data indication Add early data option to ssl_client2 Add test cases for early data Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2022-11-14 03:13:50 +00:00
Paul Elliott	aeb8bf2ab0	Merge pull request #6170 from yuhaoth/pr/tls13-cleanup-extensions-parser TLS 1.3: Add extension check for message parsers	2022-11-11 19:00:46 +00:00
Minos Galanakis	d9299c388e	bignum_mod_raw: Refactored Montgomery conversion functions This patch updates the `mbedtls_mpi_mod_raw_conv_xx()` methods as follows: * Renamed for simplicity: conv_fwd -> from_mont_rep, conv_inv -> to_mont_rep. * Uncoupled the dependency on the legaly bignum interface. * `mbedtls_mpi` is no longer used for temporary buffer allocation. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2022-11-11 10:54:58 +00:00
Hanno Becker	5ad4a93596	bignum_mod_raw: Added conversion methods for internal/public data representation Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2022-11-11 10:54:58 +00:00
Dave Rodgman	f58172fe43	Merge remote-tracking branch 'origin/development' into pr3431	2022-11-10 09:54:49 +00:00
Gilles Peskine	ed4b34aa7c	Merge pull request #6570 from gilles-peskine-arm/bignum-mbedtls_test_read_mpi_core-nonempty Forbid empty mpi_core in test data	2022-11-09 19:02:24 +01:00
Jerry Yu	97be6a913e	fix various issues - typo error - replace `ssl->hanshake` with handshake Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-09 22:43:31 +08:00
Gilles Peskine	95b5addcd6	Don't test mbedtls_mpi_core_lt_ct with 0 limbs A core MPI must have at least 1 limb. We can no longer test with 0 limbs, and we don't need to anyway, so don't try. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-11-09 11:18:38 +01:00
Gilles Peskine	d4bd38ba5d	Merge pull request #6544 from KloolK/development Fix outdated reference in debug message	2022-11-08 17:12:20 +01:00
Gilles Peskine	4a480ac5a1	Merge pull request #6265 from Kabbah/x509-info-hwmodulename-hex `x509_info_subject_alt_name`: Render HardwareModuleName as hex	2022-11-08 17:11:07 +01:00
Jerry Yu	7de2ff0310	Refactor extension list print Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-08 23:51:39 +08:00
Jerry Yu	79aa721ade	Rename ext print function and macro Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-08 23:51:39 +08:00
Jerry Yu	b95dd3683b	Add missing mask set and tls13 unrecognized extension Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-08 23:51:38 +08:00
Aditya Deshpande	c4646c08cd	Merge branch 'development' into driver-wrapper-key-agreement	2022-11-08 14:25:20 +00:00
Jerry Yu	c437ee3bac	fix wrong return value Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-08 21:04:15 +08:00
Jerry Yu	ea52ed91cf	fix typo and spell issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-08 21:01:17 +08:00
Gilles Peskine	42d75f2daf	Merge pull request #6013 from gstrauss/asn1-type-free Shared code to free x509 structs like mbedtls_x509_named_data	2022-11-08 12:20:20 +01:00
Dave Rodgman	ae2635df6f	Merge pull request #6306 from tom-cosgrove-arm/issue-6305-fix Return an error from mbedtls_ssl_handshake_step() if neither client nor server	2022-11-08 10:54:17 +00:00
Neil Armstrong	ca7d506556	Use PSA PAKE API when MBEDTLS_USE_PSA_CRYPTO is selected Signed-off-by: Neil Armstrong <narmstrong@baylibre.com> Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2022-11-08 10:58:45 +01:00
Jerry Yu	e5991328ff	fix tls13 psk only test fail Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-08 16:16:29 +08:00
Glenn Strauss	82ba274c01	Deprecate mbedtls_asn1_free_named_data() Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>	2022-11-07 15:42:44 -05:00
Aditya Deshpande	d1b72a7b83	Merge branch 'development' into driver-wrapper-key-agreement	2022-11-07 17:36:23 +00:00
Gilles Peskine	faefe62013	Merge pull request #6390 from mpg/fix-ecjpake-psa-format Fix ecjpake PSA format	2022-11-07 17:35:44 +01:00
Gilles Peskine	bf249accc7	Merge pull request #6498 from yuhaoth/pr/fix-session-resumption-fail-when-hostname-is-not-localhost BUG: Fix session resumption fail when hostname is not localhost	2022-11-07 17:33:38 +01:00
Jan Bruckner	f869bfdfef	Fix outdated reference in debug message Signed-off-by: Jan Bruckner <jan@janbruckner.de>	2022-11-07 15:28:49 +01:00
Aditya Deshpande	5567c660cd	Fix formatting and code comments Signed-off-by: Aditya Deshpande <aditya.deshpande@arm.com>	2022-11-07 10:43:29 +00:00
Aditya Deshpande	3f1606a1f6	Refactor call hierarchy for ECDH so that it goes through the driver wrapper in a similar fashion to ECDSA. Add component_test_psa_config_accel_ecdh to all.sh to test key agreement driver wrapper with libtestdriver1. Signed-off-by: Aditya Deshpande <aditya.deshpande@arm.com>	2022-11-07 09:22:52 +00:00
Jerry Yu	50e00e3ac6	Refactor server hello Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-06 11:54:22 +08:00
Jerry Yu	edab637b51	Refactor new session ticket Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-06 11:54:22 +08:00
Jerry Yu	0d5cfb7703	Refactor Certificate Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-06 11:54:22 +08:00
Jerry Yu	6d0e78ba22	Refactor certificate request Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-06 11:54:22 +08:00
Jerry Yu	9eba750916	Refactor encrypted extensions Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-06 11:54:22 +08:00
Jerry Yu	63a459cde5	Refactor client_hello parser and writer Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-06 11:54:21 +08:00
Jerry Yu	4b8f2f7266	Refactor sent extension message output Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-06 11:54:21 +08:00
Jerry Yu	d25cab0327	Refactor debug helpers for exts and hs message Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-06 11:54:21 +08:00
Janos Follath	5933f691a2	Add merge slots to Bignum files Legacy Bignum is excluded as it doesn't get regular extensions like new ones. Each slot uses comments of their respective filetype. Since .data files don't have a syntax for comments, dummy test cases are used. (These test cases will never be executed and no noise will be added to tests.) Signed-off-by: Janos Follath <janos.follath@arm.com>	2022-11-02 17:27:25 +00:00
Janos Follath	2a8bcf8c6f	Add bignum merge scaffolding Signed-off-by: Janos Follath <janos.follath@arm.com>	2022-11-02 17:25:48 +00:00
Gilles Peskine	22cdd0ccd3	Update some internal comments The refactoring of fill_random had left some obsolete bits in comments. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-11-02 16:00:01 +01:00
Gilles Peskine	009d195a56	Move mbedtls_mpi_core_fill_random to the proper .c file Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-11-02 16:00:01 +01:00
Gilles Peskine	5980f2bd36	Implement mbedtls_mpi_core_fill_random Turn mpi_fill_random_internal() into mbedtls_mpi_core_fill_random(). It had basically the right code except for how X is passed to the function. Write unit tests. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-11-02 15:59:36 +01:00
Gilles Peskine	909e03c52f	Bignum core: fill_random: prototype Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-11-02 15:59:16 +01:00
Janos Follath	f1ed5815ba	Merge pull request #6512 from yanesca/extract_uint_table_lookup_core Implement mbedtls_mpi_core_ct_uint_table_lookup()	2022-11-02 13:58:19 +00:00
Jerry Yu	df0ad658a3	tls13: Add allowed extesions constants. - And refactor check_received_extension Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-11-02 21:35:27 +08:00
Dave Rodgman	90c6836271	Merge pull request #6524 from daverodgman/fix-duplicate-header Remove duplicate function prototype	2022-11-02 13:06:08 +00:00
Dave Rodgman	0877dc8f55	Improve documentation for psa_crypto_cipher.h Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2022-11-02 09:29:50 +00:00
Dave Rodgman	1630447eed	Move declaration of mbedtls_cipher_info_from_psa into psa_crypto_cipher.h Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2022-11-02 09:25:38 +00:00
Dave Rodgman	ba864848e7	Remove duplicate function prototype Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2022-11-01 16:41:09 +00:00
Dave Rodgman	29b9b2b699	Fix zeroization at NULL pointer Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2022-11-01 16:08:14 +00:00
Janos Follath	8904a2db29	mpi_core_ct_uint_table_lookup: style and docs Signed-off-by: Janos Follath <janos.follath@arm.com>	2022-10-31 16:51:56 +00:00
Nick Child	3951a4f3ad	pkcs7: Use better error codes Remove an unnecessary debug print (whoops). Use new error code for when the x509 is expired. When there are no signers return invalid certificate. Signed-off-by: Nick Child <nick.child@ibm.com> Co-authored-by: Dave Rodgman <dave.rodgman@arm.com> Signed-off-by: Nick Child <nick.child@ibm.com>	2022-10-31 09:38:42 -05:00
Dave Rodgman	e8734d8a55	Apply suggestions from code review Two spelling fixes (changelog & a comment) Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2022-10-31 14:30:24 +00:00
Dave Rodgman	55fd0b9fc1	Merge pull request #6121 from daverodgman/pr277 cert_write - add a way to set extended key usages - rebase	2022-10-31 13:27:49 +00:00
Janos Follath	e50f2f1a8e	Add mbedtls_mpi_core_ct_uint_table_lookup This will be needed for extracting modular exponentiation from the prototype. The function signature is kept aligned to the prototype, but the implementation is new. (The implementation of this function in the prototype has further optimisations which are out of scope for now.) The function is not reused in the bignum counterpart as it will become redundant soon. This function is meant to be static, but doesn't have the qualifier as it is not used yet and would cause compiler warnings. The MBEDTLS_STATIC_TESTABLE macro will be added in a later commit. Signed-off-by: Janos Follath <janos.follath@arm.com>	2022-10-31 11:32:55 +00:00
Janos Follath	2dc2757cca	Merge pull request #6457 from minosgalanakis/minos/6017_update_modulus_lifecycle Bignum: Updated the modulus lifecyle	2022-10-31 11:28:37 +00:00
Dave Rodgman	1a22bef116	Merge pull request #6190 from daverodgman/invalid-ecdsa-pubkey Improve ECDSA verify validation	2022-10-31 09:37:26 +00:00
Jerry Yu	7a485c1fdf	Add ext id and utilities - Remove `MBEDTLS_SSL_EXT_*` - Add macros and functions for translating iana identifer. - Add internal identity for extension Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	c4bf5d658e	fix various issues - Signature of - mbedtls_tls13_set_hs_sent_ext_mask - check_received_extension and issues - Also fix comment issue. - improve readablity. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	03112ae022	change input extension_type Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	0c354a211b	introduce sent/recv extensions field And remove `extensions_present` Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	ffa1582793	move get_extension mask Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	9872eb2d69	change return type for unexpected extension Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	43ff252688	Remove unnecessary checks. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	d15992d3ce	fix wrong setting of unrecognized ext Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	6ba9f1c959	Add extension check for NewSessionTicket Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	2c5363e58b	Add extension check for ServerHello and HRR Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	2eaa76044b	Add extension check for Certificate Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	c55a6af9eb	Add extensions check for CertificateRequest Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	cbd082f396	Add extension check for EncryptedExtensions Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	e18dc7eb9a	Add forbidden extensions check for ClientHello Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	471dee5a12	Add debug helpers to track extensions Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-31 16:41:42 +08:00
Jerry Yu	def7ae4404	Add auth mode check Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2022-10-30 17:57:06 +08:00
Nick Child	5f39767495	pkcs7: Fix imports Respond to feedback about duplicate imports[1] and new import style [2]. [1] https://github.com/Mbed-TLS/mbedtls/pull/3431#discussion_r991355485 [2] https://github.com/Mbed-TLS/mbedtls/pull/3431#pullrequestreview-1138745361 Signed-off-by: Nick Child <nick.child@ibm.com>	2022-10-28 12:38:41 -05:00
Nick Child	bb82ab764f	pkcs7: Respond to feeback on parsing logic After recieving review on the pkcs7 parsing functions, attempt to use better API's, increase consisitency and use better documentation. The changes are in response to the following comments: - use mbedtls_x509_crt_parse_der instead of mbedtls_x509_crt_parse [1] - make lack of support for authenticatedAttributes more clear [2] - increment pointer in pkcs7_get_content_info_type rather than after [3] - rename `start` to `p` for consistency in mbedtls_pkcs7_parse_der [4] [1] https://github.com/Mbed-TLS/mbedtls/pull/3431#discussion_r992509630 [2] https://github.com/Mbed-TLS/mbedtls/pull/3431#discussion_r992562450 [3] https://github.com/Mbed-TLS/mbedtls/pull/3431#discussion_r992741877 [4] https://github.com/Mbed-TLS/mbedtls/pull/3431#discussion_r992754103 Signed-off-by: Nick Child <nick.child@ibm.com>	2022-10-28 12:28:54 -05:00
Glenn Strauss	7db3124c00	Skip asn1 zeroize if freeing shallow pointers This skips zeroizing additional pointers to data. (Note: actual sensitive data should still be zeroized when freed.) Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>	2022-10-28 12:51:35 -04:00
Glenn Strauss	a4b4041219	Shared code to free x509 structs Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>	2022-10-28 12:51:35 -04:00

1 2 3 4 5 ...

9961 commits