mirror of
https://github.com/Mbed-TLS/mbedtls.git
synced 2025-01-25 09:35:19 +00:00
Merge pull request #6107 from Zaya-dyno/validation_remove_change_hash
Validation remove change hash
This commit is contained in:
commit
1475ac49a4
@ -41,17 +41,10 @@
|
|||||||
#endif /* MBEDTLS_PLATFORM_C */
|
#endif /* MBEDTLS_PLATFORM_C */
|
||||||
#endif /* MBEDTLS_SELF_TEST */
|
#endif /* MBEDTLS_SELF_TEST */
|
||||||
|
|
||||||
#define SHA1_VALIDATE_RET(cond) \
|
|
||||||
MBEDTLS_INTERNAL_VALIDATE_RET( cond, MBEDTLS_ERR_SHA1_BAD_INPUT_DATA )
|
|
||||||
|
|
||||||
#define SHA1_VALIDATE(cond) MBEDTLS_INTERNAL_VALIDATE( cond )
|
|
||||||
|
|
||||||
#if !defined(MBEDTLS_SHA1_ALT)
|
#if !defined(MBEDTLS_SHA1_ALT)
|
||||||
|
|
||||||
void mbedtls_sha1_init( mbedtls_sha1_context *ctx )
|
void mbedtls_sha1_init( mbedtls_sha1_context *ctx )
|
||||||
{
|
{
|
||||||
SHA1_VALIDATE( ctx != NULL );
|
|
||||||
|
|
||||||
memset( ctx, 0, sizeof( mbedtls_sha1_context ) );
|
memset( ctx, 0, sizeof( mbedtls_sha1_context ) );
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -66,9 +59,6 @@ void mbedtls_sha1_free( mbedtls_sha1_context *ctx )
|
|||||||
void mbedtls_sha1_clone( mbedtls_sha1_context *dst,
|
void mbedtls_sha1_clone( mbedtls_sha1_context *dst,
|
||||||
const mbedtls_sha1_context *src )
|
const mbedtls_sha1_context *src )
|
||||||
{
|
{
|
||||||
SHA1_VALIDATE( dst != NULL );
|
|
||||||
SHA1_VALIDATE( src != NULL );
|
|
||||||
|
|
||||||
*dst = *src;
|
*dst = *src;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -77,8 +67,6 @@ void mbedtls_sha1_clone( mbedtls_sha1_context *dst,
|
|||||||
*/
|
*/
|
||||||
int mbedtls_sha1_starts( mbedtls_sha1_context *ctx )
|
int mbedtls_sha1_starts( mbedtls_sha1_context *ctx )
|
||||||
{
|
{
|
||||||
SHA1_VALIDATE_RET( ctx != NULL );
|
|
||||||
|
|
||||||
ctx->total[0] = 0;
|
ctx->total[0] = 0;
|
||||||
ctx->total[1] = 0;
|
ctx->total[1] = 0;
|
||||||
|
|
||||||
@ -100,9 +88,6 @@ int mbedtls_internal_sha1_process( mbedtls_sha1_context *ctx,
|
|||||||
uint32_t temp, W[16], A, B, C, D, E;
|
uint32_t temp, W[16], A, B, C, D, E;
|
||||||
} local;
|
} local;
|
||||||
|
|
||||||
SHA1_VALIDATE_RET( ctx != NULL );
|
|
||||||
SHA1_VALIDATE_RET( (const unsigned char *)data != NULL );
|
|
||||||
|
|
||||||
local.W[ 0] = MBEDTLS_GET_UINT32_BE( data, 0 );
|
local.W[ 0] = MBEDTLS_GET_UINT32_BE( data, 0 );
|
||||||
local.W[ 1] = MBEDTLS_GET_UINT32_BE( data, 4 );
|
local.W[ 1] = MBEDTLS_GET_UINT32_BE( data, 4 );
|
||||||
local.W[ 2] = MBEDTLS_GET_UINT32_BE( data, 8 );
|
local.W[ 2] = MBEDTLS_GET_UINT32_BE( data, 8 );
|
||||||
@ -277,9 +262,6 @@ int mbedtls_sha1_update( mbedtls_sha1_context *ctx,
|
|||||||
size_t fill;
|
size_t fill;
|
||||||
uint32_t left;
|
uint32_t left;
|
||||||
|
|
||||||
SHA1_VALIDATE_RET( ctx != NULL );
|
|
||||||
SHA1_VALIDATE_RET( ilen == 0 || input != NULL );
|
|
||||||
|
|
||||||
if( ilen == 0 )
|
if( ilen == 0 )
|
||||||
return( 0 );
|
return( 0 );
|
||||||
|
|
||||||
@ -329,9 +311,6 @@ int mbedtls_sha1_finish( mbedtls_sha1_context *ctx,
|
|||||||
uint32_t used;
|
uint32_t used;
|
||||||
uint32_t high, low;
|
uint32_t high, low;
|
||||||
|
|
||||||
SHA1_VALIDATE_RET( ctx != NULL );
|
|
||||||
SHA1_VALIDATE_RET( (unsigned char *)output != NULL );
|
|
||||||
|
|
||||||
/*
|
/*
|
||||||
* Add padding: 0x80 then 0x00 until 8 bytes remain for the length
|
* Add padding: 0x80 then 0x00 until 8 bytes remain for the length
|
||||||
*/
|
*/
|
||||||
@ -392,9 +371,6 @@ int mbedtls_sha1( const unsigned char *input,
|
|||||||
int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
|
int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
|
||||||
mbedtls_sha1_context ctx;
|
mbedtls_sha1_context ctx;
|
||||||
|
|
||||||
SHA1_VALIDATE_RET( ilen == 0 || input != NULL );
|
|
||||||
SHA1_VALIDATE_RET( (unsigned char *)output != NULL );
|
|
||||||
|
|
||||||
mbedtls_sha1_init( &ctx );
|
mbedtls_sha1_init( &ctx );
|
||||||
|
|
||||||
if( ( ret = mbedtls_sha1_starts( &ctx ) ) != 0 )
|
if( ( ret = mbedtls_sha1_starts( &ctx ) ) != 0 )
|
||||||
|
@ -149,18 +149,12 @@ static int mbedtls_a64_crypto_sha256_determine_support( void )
|
|||||||
|
|
||||||
#endif /* MBEDTLS_SHA256_USE_A64_CRYPTO_IF_PRESENT */
|
#endif /* MBEDTLS_SHA256_USE_A64_CRYPTO_IF_PRESENT */
|
||||||
|
|
||||||
#define SHA256_VALIDATE_RET(cond) \
|
|
||||||
MBEDTLS_INTERNAL_VALIDATE_RET( cond, MBEDTLS_ERR_SHA256_BAD_INPUT_DATA )
|
|
||||||
#define SHA256_VALIDATE(cond) MBEDTLS_INTERNAL_VALIDATE( cond )
|
|
||||||
|
|
||||||
#if !defined(MBEDTLS_SHA256_ALT)
|
#if !defined(MBEDTLS_SHA256_ALT)
|
||||||
|
|
||||||
#define SHA256_BLOCK_SIZE 64
|
#define SHA256_BLOCK_SIZE 64
|
||||||
|
|
||||||
void mbedtls_sha256_init( mbedtls_sha256_context *ctx )
|
void mbedtls_sha256_init( mbedtls_sha256_context *ctx )
|
||||||
{
|
{
|
||||||
SHA256_VALIDATE( ctx != NULL );
|
|
||||||
|
|
||||||
memset( ctx, 0, sizeof( mbedtls_sha256_context ) );
|
memset( ctx, 0, sizeof( mbedtls_sha256_context ) );
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -175,9 +169,6 @@ void mbedtls_sha256_free( mbedtls_sha256_context *ctx )
|
|||||||
void mbedtls_sha256_clone( mbedtls_sha256_context *dst,
|
void mbedtls_sha256_clone( mbedtls_sha256_context *dst,
|
||||||
const mbedtls_sha256_context *src )
|
const mbedtls_sha256_context *src )
|
||||||
{
|
{
|
||||||
SHA256_VALIDATE( dst != NULL );
|
|
||||||
SHA256_VALIDATE( src != NULL );
|
|
||||||
|
|
||||||
*dst = *src;
|
*dst = *src;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -186,12 +177,12 @@ void mbedtls_sha256_clone( mbedtls_sha256_context *dst,
|
|||||||
*/
|
*/
|
||||||
int mbedtls_sha256_starts( mbedtls_sha256_context *ctx, int is224 )
|
int mbedtls_sha256_starts( mbedtls_sha256_context *ctx, int is224 )
|
||||||
{
|
{
|
||||||
SHA256_VALIDATE_RET( ctx != NULL );
|
|
||||||
|
|
||||||
#if defined(MBEDTLS_SHA224_C)
|
#if defined(MBEDTLS_SHA224_C)
|
||||||
SHA256_VALIDATE_RET( is224 == 0 || is224 == 1 );
|
if( is224 != 0 && is224 != 1 )
|
||||||
|
return MBEDTLS_ERR_SHA256_BAD_INPUT_DATA;
|
||||||
#else
|
#else
|
||||||
SHA256_VALIDATE_RET( is224 == 0 );
|
if( is224 != 0 )
|
||||||
|
return MBEDTLS_ERR_SHA256_BAD_INPUT_DATA;
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
ctx->total[0] = 0;
|
ctx->total[0] = 0;
|
||||||
@ -427,9 +418,6 @@ int mbedtls_internal_sha256_process_c( mbedtls_sha256_context *ctx,
|
|||||||
|
|
||||||
unsigned int i;
|
unsigned int i;
|
||||||
|
|
||||||
SHA256_VALIDATE_RET( ctx != NULL );
|
|
||||||
SHA256_VALIDATE_RET( (const unsigned char *)data != NULL );
|
|
||||||
|
|
||||||
for( i = 0; i < 8; i++ )
|
for( i = 0; i < 8; i++ )
|
||||||
local.A[i] = ctx->state[i];
|
local.A[i] = ctx->state[i];
|
||||||
|
|
||||||
@ -579,9 +567,6 @@ int mbedtls_sha256_update( mbedtls_sha256_context *ctx,
|
|||||||
size_t fill;
|
size_t fill;
|
||||||
uint32_t left;
|
uint32_t left;
|
||||||
|
|
||||||
SHA256_VALIDATE_RET( ctx != NULL );
|
|
||||||
SHA256_VALIDATE_RET( ilen == 0 || input != NULL );
|
|
||||||
|
|
||||||
if( ilen == 0 )
|
if( ilen == 0 )
|
||||||
return( 0 );
|
return( 0 );
|
||||||
|
|
||||||
@ -633,9 +618,6 @@ int mbedtls_sha256_finish( mbedtls_sha256_context *ctx,
|
|||||||
uint32_t used;
|
uint32_t used;
|
||||||
uint32_t high, low;
|
uint32_t high, low;
|
||||||
|
|
||||||
SHA256_VALIDATE_RET( ctx != NULL );
|
|
||||||
SHA256_VALIDATE_RET( (unsigned char *)output != NULL );
|
|
||||||
|
|
||||||
/*
|
/*
|
||||||
* Add padding: 0x80 then 0x00 until 8 bytes remain for the length
|
* Add padding: 0x80 then 0x00 until 8 bytes remain for the length
|
||||||
*/
|
*/
|
||||||
@ -705,14 +687,13 @@ int mbedtls_sha256( const unsigned char *input,
|
|||||||
mbedtls_sha256_context ctx;
|
mbedtls_sha256_context ctx;
|
||||||
|
|
||||||
#if defined(MBEDTLS_SHA224_C)
|
#if defined(MBEDTLS_SHA224_C)
|
||||||
SHA256_VALIDATE_RET( is224 == 0 || is224 == 1 );
|
if( is224 != 0 && is224 != 1 )
|
||||||
|
return MBEDTLS_ERR_SHA256_BAD_INPUT_DATA;
|
||||||
#else
|
#else
|
||||||
SHA256_VALIDATE_RET( is224 == 0 );
|
if( is224 != 0 )
|
||||||
|
return MBEDTLS_ERR_SHA256_BAD_INPUT_DATA;
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
SHA256_VALIDATE_RET( ilen == 0 || input != NULL );
|
|
||||||
SHA256_VALIDATE_RET( (unsigned char *)output != NULL );
|
|
||||||
|
|
||||||
mbedtls_sha256_init( &ctx );
|
mbedtls_sha256_init( &ctx );
|
||||||
|
|
||||||
if( ( ret = mbedtls_sha256_starts( &ctx, is224 ) ) != 0 )
|
if( ( ret = mbedtls_sha256_starts( &ctx, is224 ) ) != 0 )
|
||||||
|
@ -164,10 +164,6 @@ static int mbedtls_a64_crypto_sha512_determine_support( void )
|
|||||||
|
|
||||||
#endif /* MBEDTLS_SHA512_USE_A64_CRYPTO_IF_PRESENT */
|
#endif /* MBEDTLS_SHA512_USE_A64_CRYPTO_IF_PRESENT */
|
||||||
|
|
||||||
#define SHA512_VALIDATE_RET(cond) \
|
|
||||||
MBEDTLS_INTERNAL_VALIDATE_RET( cond, MBEDTLS_ERR_SHA512_BAD_INPUT_DATA )
|
|
||||||
#define SHA512_VALIDATE(cond) MBEDTLS_INTERNAL_VALIDATE( cond )
|
|
||||||
|
|
||||||
#if !defined(MBEDTLS_SHA512_ALT)
|
#if !defined(MBEDTLS_SHA512_ALT)
|
||||||
|
|
||||||
#define SHA512_BLOCK_SIZE 128
|
#define SHA512_BLOCK_SIZE 128
|
||||||
@ -183,8 +179,6 @@ static void sha512_put_uint64_be( uint64_t n, unsigned char *b, uint8_t i )
|
|||||||
|
|
||||||
void mbedtls_sha512_init( mbedtls_sha512_context *ctx )
|
void mbedtls_sha512_init( mbedtls_sha512_context *ctx )
|
||||||
{
|
{
|
||||||
SHA512_VALIDATE( ctx != NULL );
|
|
||||||
|
|
||||||
memset( ctx, 0, sizeof( mbedtls_sha512_context ) );
|
memset( ctx, 0, sizeof( mbedtls_sha512_context ) );
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -199,9 +193,6 @@ void mbedtls_sha512_free( mbedtls_sha512_context *ctx )
|
|||||||
void mbedtls_sha512_clone( mbedtls_sha512_context *dst,
|
void mbedtls_sha512_clone( mbedtls_sha512_context *dst,
|
||||||
const mbedtls_sha512_context *src )
|
const mbedtls_sha512_context *src )
|
||||||
{
|
{
|
||||||
SHA512_VALIDATE( dst != NULL );
|
|
||||||
SHA512_VALIDATE( src != NULL );
|
|
||||||
|
|
||||||
*dst = *src;
|
*dst = *src;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -210,11 +201,12 @@ void mbedtls_sha512_clone( mbedtls_sha512_context *dst,
|
|||||||
*/
|
*/
|
||||||
int mbedtls_sha512_starts( mbedtls_sha512_context *ctx, int is384 )
|
int mbedtls_sha512_starts( mbedtls_sha512_context *ctx, int is384 )
|
||||||
{
|
{
|
||||||
SHA512_VALIDATE_RET( ctx != NULL );
|
|
||||||
#if defined(MBEDTLS_SHA384_C)
|
#if defined(MBEDTLS_SHA384_C)
|
||||||
SHA512_VALIDATE_RET( is384 == 0 || is384 == 1 );
|
if( is384 != 0 && is384 != 1 )
|
||||||
|
return MBEDTLS_ERR_SHA512_BAD_INPUT_DATA;
|
||||||
#else
|
#else
|
||||||
SHA512_VALIDATE_RET( is384 == 0 );
|
if( is384 != 0 )
|
||||||
|
return MBEDTLS_ERR_SHA512_BAD_INPUT_DATA;
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
ctx->total[0] = 0;
|
ctx->total[0] = 0;
|
||||||
@ -569,9 +561,6 @@ int mbedtls_internal_sha512_process_c( mbedtls_sha512_context *ctx,
|
|||||||
uint64_t A[8];
|
uint64_t A[8];
|
||||||
} local;
|
} local;
|
||||||
|
|
||||||
SHA512_VALIDATE_RET( ctx != NULL );
|
|
||||||
SHA512_VALIDATE_RET( (const unsigned char *)data != NULL );
|
|
||||||
|
|
||||||
#define SHR(x,n) ((x) >> (n))
|
#define SHR(x,n) ((x) >> (n))
|
||||||
#define ROTR(x,n) (SHR((x),(n)) | ((x) << (64 - (n))))
|
#define ROTR(x,n) (SHR((x),(n)) | ((x) << (64 - (n))))
|
||||||
|
|
||||||
@ -735,9 +724,6 @@ int mbedtls_sha512_update( mbedtls_sha512_context *ctx,
|
|||||||
size_t fill;
|
size_t fill;
|
||||||
unsigned int left;
|
unsigned int left;
|
||||||
|
|
||||||
SHA512_VALIDATE_RET( ctx != NULL );
|
|
||||||
SHA512_VALIDATE_RET( ilen == 0 || input != NULL );
|
|
||||||
|
|
||||||
if( ilen == 0 )
|
if( ilen == 0 )
|
||||||
return( 0 );
|
return( 0 );
|
||||||
|
|
||||||
@ -788,9 +774,6 @@ int mbedtls_sha512_finish( mbedtls_sha512_context *ctx,
|
|||||||
unsigned used;
|
unsigned used;
|
||||||
uint64_t high, low;
|
uint64_t high, low;
|
||||||
|
|
||||||
SHA512_VALIDATE_RET( ctx != NULL );
|
|
||||||
SHA512_VALIDATE_RET( (unsigned char *)output != NULL );
|
|
||||||
|
|
||||||
/*
|
/*
|
||||||
* Add padding: 0x80 then 0x00 until 16 bytes remain for the length
|
* Add padding: 0x80 then 0x00 until 16 bytes remain for the length
|
||||||
*/
|
*/
|
||||||
@ -862,12 +845,12 @@ int mbedtls_sha512( const unsigned char *input,
|
|||||||
mbedtls_sha512_context ctx;
|
mbedtls_sha512_context ctx;
|
||||||
|
|
||||||
#if defined(MBEDTLS_SHA384_C)
|
#if defined(MBEDTLS_SHA384_C)
|
||||||
SHA512_VALIDATE_RET( is384 == 0 || is384 == 1 );
|
if( is384 != 0 && is384 != 1 )
|
||||||
|
return MBEDTLS_ERR_SHA512_BAD_INPUT_DATA;
|
||||||
#else
|
#else
|
||||||
SHA512_VALIDATE_RET( is384 == 0 );
|
if( is384 != 0 )
|
||||||
|
return MBEDTLS_ERR_SHA512_BAD_INPUT_DATA;
|
||||||
#endif
|
#endif
|
||||||
SHA512_VALIDATE_RET( ilen == 0 || input != NULL );
|
|
||||||
SHA512_VALIDATE_RET( (unsigned char *)output != NULL );
|
|
||||||
|
|
||||||
mbedtls_sha512_init( &ctx );
|
mbedtls_sha512_init( &ctx );
|
||||||
|
|
||||||
|
@ -18,13 +18,12 @@ void mbedtls_sha1( data_t * src_str, data_t * hash )
|
|||||||
}
|
}
|
||||||
/* END_CASE */
|
/* END_CASE */
|
||||||
|
|
||||||
/* BEGIN_CASE depends_on:MBEDTLS_SHA256_C:NOT_DEFINED */
|
/* BEGIN_CASE depends_on:MBEDTLS_SHA256_C */
|
||||||
void sha256_invalid_param( )
|
void sha256_invalid_param( )
|
||||||
{
|
{
|
||||||
mbedtls_sha256_context ctx;
|
mbedtls_sha256_context ctx;
|
||||||
unsigned char buf[64] = { 0 };
|
unsigned char buf[64] = { 0 };
|
||||||
size_t const buflen = sizeof( buf );
|
size_t const buflen = sizeof( buf );
|
||||||
int valid_type = 0;
|
|
||||||
int invalid_type = 42;
|
int invalid_type = 42;
|
||||||
|
|
||||||
TEST_EQUAL( MBEDTLS_ERR_SHA256_BAD_INPUT_DATA,
|
TEST_EQUAL( MBEDTLS_ERR_SHA256_BAD_INPUT_DATA,
|
||||||
@ -67,13 +66,12 @@ void mbedtls_sha256( data_t * src_str, data_t * hash )
|
|||||||
}
|
}
|
||||||
/* END_CASE */
|
/* END_CASE */
|
||||||
|
|
||||||
/* BEGIN_CASE depends_on:MBEDTLS_SHA512_C:NOT_DEFINED */
|
/* BEGIN_CASE depends_on:MBEDTLS_SHA512_C */
|
||||||
void sha512_invalid_param( )
|
void sha512_invalid_param( )
|
||||||
{
|
{
|
||||||
mbedtls_sha512_context ctx;
|
mbedtls_sha512_context ctx;
|
||||||
unsigned char buf[64] = { 0 };
|
unsigned char buf[64] = { 0 };
|
||||||
size_t const buflen = sizeof( buf );
|
size_t const buflen = sizeof( buf );
|
||||||
int valid_type = 0;
|
|
||||||
int invalid_type = 42;
|
int invalid_type = 42;
|
||||||
|
|
||||||
TEST_EQUAL( MBEDTLS_ERR_SHA512_BAD_INPUT_DATA,
|
TEST_EQUAL( MBEDTLS_ERR_SHA512_BAD_INPUT_DATA,
|
||||||
|
Loading…
x
Reference in New Issue
Block a user