11255 Commits

Author	SHA1	Message	Date
Yanray Wang	93533b51a8	gcm.c: do not set length for some arrays in selftest ... Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-11 17:57:17 +08:00
Yanray Wang	d329c69fba	gcm selftest: remove non-128-bit data if aes_128bit_only enabled ... This commit sets a loop_limit to omit AES-GCM-192 and AES-GCM-256 if MBEDTLS_AES_ONLY_128_BIT_KEY_LENGTH enabled. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-11 17:57:17 +08:00
Yanray Wang	dd56add42d	cmac selftest: add macro for non-128-bit data/test ... Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-11 17:57:17 +08:00
Yanray Wang	59c2dfa48c	aes selftest: determine selftest loop limit in runtime ... Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-11 17:56:21 +08:00
Yanray Wang	62c9991a5b	aes selftest: remove non-128-bit data if aes_128bit_only enabled ... Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-11 11:11:17 +08:00
Paul Elliott	481a6a8edb	Merge pull request #7482 from gabor-mezei-arm/6029_use_core_api_in_ecp_mod_koblitz ... [Bignum] Use core API in ecp_mod_koblitz()	2023-05-10 17:24:46 +01:00
Andrzej Kurek	199eab97e7	Add partial support for URI SubjectAltNames ... Only exact matching without normalization is supported. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-10 09:57:19 -04:00
Manuel Pégourié-Gonnard	1d046fa0dd	Merge pull request #6010 from mprse/ffdh_import_export ... FFDH 1, 2A, 2B: FFDH add support for import/export key, key agreement, key generation + tests	2023-05-10 11:40:54 +02:00
Pol Henarejos	2d8076978a	Fix coding style. ... Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2023-05-09 11:44:57 +02:00
Gilles Peskine	97edeb4fb8	Merge pull request #6866 from mprse/extract-key-ids ... Extracting SubjectKeyId and AuthorityKeyId in case of x509 V3 extensions v.2	2023-05-08 20:38:29 +02:00
Kusumit Ghoderao	3fc4ca7272	Limit max input cost to 32bit ... Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-08 15:57:41 +05:30
Kusumit Ghoderao	d0422f30c5	Enable empty salt as input for pbkdf2 ... Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-08 15:56:19 +05:30
Kusumit Ghoderao	6731a2580c	Remove redundant code in key_derivation_abort() ... Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-08 15:54:54 +05:30
Przemek Stekiel	61aed064c5	Code optimization ... Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-05-08 11:15:59 +02:00
Przemek Stekiel	ed9fb78739	Fix parsing of KeyIdentifier (tag length error case) + test ... Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-05-08 11:15:54 +02:00
Yanray Wang	e2bc158b38	aesce.c: add macro of MBEDTLS_AES_ONLY_128_BIT_KEY_LENGTH ... Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-08 10:29:28 +08:00
Gabor Mezei	908f40014c	Determine special cases in-place in the common Koblitz function ... Remove parameter used by the special cases and check for special cases in-place. Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-05-05 16:31:19 +02:00
Pol Henarejos	d06c6fc45b	Merge branch 'development' into sha3 ... Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2023-05-05 16:01:18 +02:00
Tom Cosgrove	501fb3abf3	Merge pull request #5894 from Xeenych/patch-1 ... Reduce RAM - move some variables to .rodata	2023-05-05 14:54:32 +01:00
Przemek Stekiel	837d2d1c5e	mbedtls_psa_export_ffdh_public_key: return fixed key size ... Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-05-05 12:33:46 +02:00
Valerio Setti	fc90decb74	pkwrite: removing unused/duplicated variables ... Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-05 12:30:40 +02:00
Valerio Setti	4f387ef277	pk: use better naming for the new key ID field ... Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-05 10:59:32 +02:00
Valerio Setti	048cd44f77	pk: fix library code for using the new opaque key solution ... Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-05 10:59:32 +02:00
Valerio Setti	e00954d0ed	pk: store opaque key ID directly in the pk_context structure ... Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-05 10:57:26 +02:00
Przemek Stekiel	134cc2e7a8	Fix code style ... Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-05-05 10:13:47 +02:00
Manuel Pégourié-Gonnard	71f88ecc52	Merge pull request #6838 from jethrogb/jb/pkix-curdle ... Read and write RFC8410 keys	2023-05-05 10:02:21 +02:00
Przemek Stekiel	e1621a460a	mbedtls_psa_ffdh_generate_key: optimize code and return fixed key size ... Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-05-05 09:53:37 +02:00
Arto Kinnunen	0f06618db0	AES: skip 192bit and 256bit key in selftest if 128bit_only enabled ... This includes: - aes.c - cmac.c - gcm.c - nist_kw.c Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-05 11:20:59 +08:00
Arto Kinnunen	732ca3221d	AES: add macro of MBEDTLS_AES_ONLY_128_BIT_KEY_LENGTH ... Add configuration option to support 128-bit key length only in AES calculation. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-05 11:20:38 +08:00
Minos Galanakis	b89440394f	bignum_core: Removed input checking for mbedtls_mpi_core_shift_l ... Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-05-04 14:40:40 +01:00
Dave Rodgman	6dc62e682a	Merge pull request #7544 from tom-cosgrove-arm/use-mbedtls_ct_uint_if-rather-than-mbedtls_ct_cond_select_sign ... Use mbedtls_ct_uint_if() rather than mbedtls_ct_cond_select_sign()	2023-05-04 12:23:30 +01:00
Jethro Beekman	cb706ea308	Silence bad "maybe unitialized" warning for ec_grp_id ... Signed-off-by: Jethro Beekman <jethro@fortanix.com>	2023-05-04 13:01:47 +02:00
Jethro Beekman	cf4545e396	Fix unsued variable in mbedtls_pk_write_pubkey_der in certain configurations ... Signed-off-by: Jethro Beekman <jethro@fortanix.com>	2023-05-04 13:01:47 +02:00
Jethro Beekman	13d415c4ed	Only use mbedtls_ecc_group_of_psa if defined(MBEDTLS_ECP_LIGHT) ... Signed-off-by: Jethro Beekman <jethro@fortanix.com>	2023-05-04 13:01:47 +02:00
Jethro Beekman	33a3ccd899	Fix bug in mbedtls_pk_wrap_as_opaque ... Signed-off-by: Jethro Beekman <jethro@fortanix.com>	2023-05-04 13:01:47 +02:00
Jethro Beekman	8e59ebb2e4	Refactor EC SPKI serialization ... Signed-off-by: Jethro Beekman <jethro@fortanix.com>	2023-05-04 13:01:47 +02:00
Jethro Beekman	2e662c6f97	Add comment about version 1 PKCS8 keys not containing a public key ... Signed-off-by: Jethro Beekman <jethro@fortanix.com>	2023-05-04 13:01:47 +02:00
Jethro Beekman	0167244be4	Read and write X25519 and X448 private keys ... Signed-off-by: Jethro Beekman <jethro@fortanix.com> Co-authored-by: Gijs Kwakkel <gijs.kwakkel@fortanix.com> Signed-off-by: Gijs Kwakkel <gijs.kwakkel@fortanix.com>	2023-05-04 13:01:47 +02:00
Manuel Pégourié-Gonnard	e4072c00c8	Merge pull request #7548 from jethrogb/jb/mbedtls_pem_write_buffer ... mbedtls_pem_write_buffer: Correctly report needed buffer size for all possible line lengths and counts	2023-05-04 12:54:56 +02:00
Paul Elliott	b6432832d0	Merge pull request #7490 from paul-elliott-arm/test_ecp_mod_p448 ... [Bignum] Add unit tests for ecp_mod_p448	2023-05-04 11:39:44 +01:00
Kusumit Ghoderao	b9410e89b4	Fix failing CI ... Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-04 13:17:51 +05:30
Przemek Stekiel	8194285cf1	Fix parsing of authorityCertSerialNumber (use valid tags) ... Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-05-03 16:19:16 +02:00
Jethro Beekman	746df88e90	mbedtls_pem_write_buffer: Correctly report needed buffer size for all possible line lengths and counts ... Signed-off-by: Jethro Beekman <jethro@fortanix.com>	2023-05-03 15:30:49 +02:00
Kusumit Ghoderao	056f0c5047	Make output_byte return not_supported for pbkdf2 ... As output functionality is not added yet return PSA_SUCCESS for now if inputs are passed correctly. If input validation fails operation is aborted and output_bytes will return PSA_ERROR_BAD_STATE Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-03 17:33:27 +05:30
Manuel Pégourié-Gonnard	f57273c817	Merge pull request #7496 from valeriosetti/issue7480 ... Fix test gap in PK write: private (opaque) -> public	2023-05-03 12:39:49 +02:00
Andrzej Kurek	9c9880a63f	Explicitly exit IPv4 parsing on a fatal error ... This makes the function flow more readable. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-03 05:06:47 -04:00
Kusumit Ghoderao	f5fedf1e0d	Add pbkdf2 to psa_key_derivation_abort ... Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-03 14:20:37 +05:30
Kusumit Ghoderao	3128c5d9ce	Enable can_output_key with PSA_KEY_DERIVATION_INPUT_PASSWORD ... Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-03 14:20:37 +05:30
Kusumit Ghoderao	24b3895dee	Add pbkdf2 input functions to psa_key_derivation_input_internal ... Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-03 14:20:36 +05:30
Kusumit Ghoderao	f4fe3ee9e4	Add input password function for pbkdf2 ... Also adds PSA_KEY_DERIVATION_INPUT_PASSWORD case handling to psa_key_derivation_check_input_type function Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-03 14:20:36 +05:30