29186 Commits

This Branch

This Branch

All Branches

Author	SHA1	Message	Date
Jonathan Winzig	63b5e216f8	Fix Issue #8687 ... Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>	2024-01-22 15:31:05 +00:00
Jonathan Winzig	1c7629c1c0	Add tests for Issue #8687 ... Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>	2024-01-22 15:31:05 +00:00
v1gnesh	d0b55edea3	Create 8726.txt changelog entry ... Signed-off-by: v1gnesh <v1gnesh@users.noreply.github.com>	2024-01-22 17:13:56 +05:30
v1gnesh	3c129dd6aa	Update entropy_poll.c ... Signed-off-by: v1gnesh <v1gnesh@users.noreply.github.com>	2024-01-22 15:59:49 +05:30
Manuel Pégourié-Gonnard	34c6e8a770	Merge pull request #8700 from valeriosetti/issue8461 ... psa_asymmetric_encrypt() doesn't work with opaque driver	2024-01-22 08:43:08 +00:00
Ronald Cron	f8fdbb5174	tests: tls13: Run early data test only in TLS 1.3 only config ... Temporary workaround to not run the early data test in Windows-2013 where there is an issue with mbedtls_vsnprintf(). Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-01-22 09:37:45 +01:00
Ronald Cron	a8dd81b4de	tests: tls13: Add early data unit test ... This aims to provide a basis for negative testing around TLS 1.3 early data. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-01-22 09:37:45 +01:00
Ronald Cron	ec3408d707	tests: ssl: Move setting of debug callback ... Move the setting of the debug callback to the endpoint initialization function. That way, no need to repeat it in various testing scenarios. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-01-22 09:37:45 +01:00
Ronald Cron	d903a86e52	tests: tls13: Add session resume with ticket unit test ... This aims to provide a basis for negative testing around TLS 1.3 ticket, replacing eventually the negative tests done in ssl-opt.sh using the dummy_ticket option. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-01-22 09:37:45 +01:00
Ronald Cron	77abfe67db	ssl_helpers.c: Add ticket write/parse test functions ... Add ticket write/parse test functions as defined by mbedtls_ssl_ticket_write/parse_t. They are intended to be used in negative testing involving tickets. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-01-22 09:37:45 +01:00
Ronald Cron	297c608915	tls13: cli: Fix setting of early data transform ... Fix setting of early data transform when we do not send dummy CCS for middlebox compatibility. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-01-22 09:37:45 +01:00
Janos Follath	fb12d9204d	Merge pull request #8693 from Ryan-Everett-arm/implement-key-slot-mutex ... Implement the key slot mutex	2024-01-19 20:49:18 +00:00
Dave Rodgman	075f8797ac	Remove include of build_info.h ... Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2024-01-19 16:48:42 +00:00
Dave Rodgman	336efeec50	Move MBEDTLS_COMPILER_IS_GCC & MBEDTLS_GCC_VERSION into build_info ... Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2024-01-19 16:38:53 +00:00
Dave Rodgman	00b4eeb0b3	Improve comments ... Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2024-01-19 16:14:55 +00:00
Dave Rodgman	7470557855	Add changelog entry ... Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2024-01-19 16:14:55 +00:00
Dave Rodgman	2143a4ad1f	Improve mbedtls_xor docs ... Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2024-01-19 15:25:33 +00:00
Dave Rodgman	18d90d7519	Make mbedtls_xor always inline ... Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2024-01-19 15:25:33 +00:00
Dave Rodgman	55b5dd2cfc	Make unaligned accessors always inline ... Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2024-01-19 15:25:33 +00:00
Dave Rodgman	c581264977	Fix unaligned access on old compilers ... Add an alternative implementation of unaligned access that is efficient for IAR and old versions of gcc. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2024-01-19 15:25:33 +00:00
Minos Galanakis	42151380af	programs_dh_client/server: Updated config guards. ... Adjusted to use `MBEDTLS_SHA256_C` instead of `MBEDTLS_MD_CAN_SHA256` since the former is being used in accelerated driver configurations. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-01-19 14:39:41 +00:00
Minos Galanakis	db8915287e	programs_dh_client/server: Changed mdlen type to unsigned integer. ... Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-01-19 14:38:51 +00:00
Dave Rodgman	7d8c99abb0	Move MBEDTLS_COMPILER_IS_GCC defn into alignment.h ... Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2024-01-19 14:02:58 +00:00
Dave Rodgman	69b5a86064	Improve mbedtls_xor for IAR ... Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2024-01-19 14:02:08 +00:00
Ryan Everett	63952b7de5	Fix typo ... Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-19 13:45:19 +00:00
Ryan Everett	7aeacc1ec4	Add empty line in register_read comment ... Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-19 13:02:58 +00:00
Ryan Everett	558da2ffd3	Move key_slot_mutex to threading.h ... Make this a global mutex so that we don't have to init and free it. Also rename the mutex to follow the convention Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-19 12:59:28 +00:00
Minos Galanakis	7c8448842d	programs_dh_client/server: Updated to query digest size using mbedtls_md_info_from_type(). ... Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-01-18 14:29:41 +00:00
Minos Galanakis	6e92df12c2	programs_rsa_rsa_verify: Updated program to use mbedtls_rsa_get_len() ... Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-01-18 14:29:41 +00:00
Minos Galanakis	992f0b8427	programs_rsa_rsa_sign: Updated program to use mbedtls_rsa_get_len() ... Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-01-18 14:29:41 +00:00
Minos Galanakis	ee757d35df	programs_rsa_encrypt/decrypt: Updated programs to use mbedtls_rsa_get_len() ... Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-01-18 14:29:41 +00:00
Minos Galanakis	b6a96195fb	programs_dh_client/server: Updated programs to use mbedtls_rsa_get_len() ... Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-01-18 14:29:41 +00:00
Minos Galanakis	f4dfd1c8a5	programs/dh_client/server: Added entropy source to mbedtls_rsa_pkcs1_sign() ... Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-01-18 14:29:41 +00:00
Minos Galanakis	a184fd0516	programs/dh_client/server: Replaced mbedtls_sha1 with mbedtls_sha256 ... Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-01-18 14:29:41 +00:00
Gilles Peskine	4d4891e18a	Merge pull request #8666 from valeriosetti/issue8340 ... Export the mbedtls_md_psa_alg_from_type function	2024-01-18 13:58:55 +00:00
Ryan Everett	fb02d57de7	Document the thread safety of the primitive key slot functions ... Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-18 10:54:42 +00:00
Ryan Everett	0e3b677cf4	Support PSA_ERROR_SERVICE_FAILURE ... To be returned in the case where mbedtls_mutex_lock and mbedtls_mutex_unlock fail. Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-18 10:47:29 +00:00
Ryan Everett	846889355c	Initialize and free the key slot mutex ... Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-18 10:47:05 +00:00
Gilles Peskine	b1f96c0354	Merge pull request #7815 from gilles-peskine-arm/ecp-export-partial ... ECP keypair utility functions	2024-01-18 10:29:05 +00:00
Gilles Peskine	c9077cccd3	Merge pull request #8664 from valeriosetti/issue7764 ... Conversion function from ecp group to PSA curve	2024-01-18 10:28:55 +00:00
Ryan Everett	491f7e5ac3	Define key_slot_mutex ... Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-18 10:21:38 +00:00
Valerio Setti	4f34b155f5	test_driver_key_management: keep mbedtls_test_opaque_wrap_key() private ... Only mbedtls_test_opaque_unwrap_key() is actually needed by other test drivers to deal with opaque keys. mbedtls_test_opaque_wrap_key() can be kept private to test_driver_key_management.c. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-01-18 08:44:13 +01:00
Valerio Setti	43ff242a8b	changelog: fix typo ... Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-01-18 08:42:38 +01:00
Dave Rodgman	fb133513d6	Merge pull request #8705 from daverodgman/ctr-perf ... Ctr perf	2024-01-17 20:25:41 +00:00
Paul Elliott	2728267ec4	Merge pull request #8672 from Ryan-Everett-arm/implement-new-key-slot-states ... Implement the new key slot state system within the PSA subsystem.	2024-01-17 17:50:04 +00:00
Ryan Everett	4a0ba80bdb	Clarify psa_destroy_key documentation ... Co-authored-by: Janos Follath <janos.follath@arm.com> Signed-off-by: Ryan Everett <144035422+Ryan-Everett-arm@users.noreply.github.com>	2024-01-17 14:12:33 +00:00
Gilles Peskine	dd77343381	Open question for ECDSA signature that can be resolved during implementation ... Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2024-01-17 14:33:32 +01:00
Gilles Peskine	d5b04a0c63	Add a usage parameter to mbedtls_pk_get_psa_attributes ... Let the user specify whether to use the key as a sign/verify key, an encrypt/decrypt key or a key agreement key. Also let the user indicate if they just want the public part when the input is a key pair. Based on a discussion in https://github.com/Mbed-TLS/mbedtls/pull/8682#discussion_r1444936480 Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2024-01-17 14:31:57 +01:00
Gilles Peskine	702d9f65f6	Resolve several open questions as nothing special to do ... Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2024-01-17 12:58:25 +01:00
Ryan Everett	38a2b7a6a3	Extend psa_wipe_key_slot documentation ... Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-17 11:45:44 +00:00