mbedtls

mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-02-01 03:32:43 +00:00

Author	SHA1	Message	Date
Janos Follath	f741db3d6e	Merge pull request #8764 from Ryan-Everett-arm/threadsafe-key-wiping Make key destruction thread safe	2024-02-12 09:37:59 +00:00
Ryan Everett	7fee4f7318	Fix mutex unlock error handling in psa_destroy_key Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-02-09 14:11:27 +00:00
Manuel Pégourié-Gonnard	1d7bc1ecdf	Merge pull request #8717 from valeriosetti/issue8030 PSA FFDH: feature macros for parameters	2024-02-07 10:06:03 +00:00
Gilles Peskine	f45589b492	Merge pull request #8198 from silabs-Kusumit/kdf_incorrect_initial_capacity KDF incorrect initial capacity	2024-02-06 17:29:43 +00:00
Ryan Everett	763971f32e	Comment on locking strategy in psa_destroy_key Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-29 17:17:12 +00:00
Ryan Everett	c053d968f2	Make psa_destroy_key threadsafe We do not require linearizability in the case of destroying a key in use. Using a key and destroying it simultaneously will not cause any issues as the user will only use the copy of the key in the slot. Two simulatenous deletion calls to one key cannot interfere, the first caller sets the slot's state to PENDING_DELETION, the second caller will back off. Remove outdated comment about one key being in multiple slots, psa_open_key does not put the key into a new slot. Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-29 17:06:34 +00:00
Manuel Pégourié-Gonnard	34c6e8a770	Merge pull request #8700 from valeriosetti/issue8461 psa_asymmetric_encrypt() doesn't work with opaque driver	2024-01-22 08:43:08 +00:00
Gilles Peskine	4d4891e18a	Merge pull request #8666 from valeriosetti/issue8340 Export the mbedtls_md_psa_alg_from_type function	2024-01-18 13:58:55 +00:00
Gilles Peskine	c9077cccd3	Merge pull request #8664 from valeriosetti/issue7764 Conversion function from ecp group to PSA curve	2024-01-18 10:28:55 +00:00
Paul Elliott	2728267ec4	Merge pull request #8672 from Ryan-Everett-arm/implement-new-key-slot-states Implement the new key slot state system within the PSA subsystem.	2024-01-17 17:50:04 +00:00
Valerio Setti	504a10254c	psa_crypto: do not validate DH groups which are not enabled Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-01-17 15:57:03 +01:00
Ryan Everett	4a0ba80bdb	Clarify psa_destroy_key documentation Co-authored-by: Janos Follath <janos.follath@arm.com> Signed-off-by: Ryan Everett <144035422+Ryan-Everett-arm@users.noreply.github.com>	2024-01-17 14:12:33 +00:00
Ryan Everett	7ed542e0f1	Implement delayed deletion in psa_destroy_key and some cleanup Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-17 11:40:29 +00:00
Ryan Everett	1d32a57764	Revert change to psa_destroy_key documentation Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-15 11:27:58 +00:00
Ryan Everett	dfe8bf86a8	Return CORRUPTION_DETECTED instead of BAD_SLOT when the slot's state is wrong These error codes are only returned if the program has been tampered with, so they should be CORRUPTION_DETECTED. Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-15 11:20:50 +00:00
Ryan Everett	4755e6bda4	Relax psa_wipe_key_slot to allow states other than SLOT_PENDING_DELETION psa_wipe_key_slot can now be called on a slot in any state, if the slot's state is PSA_SLOT_FULL or PSA_SLOT_PENDING_DELETION then there must be exactly 1 registered reader. Remove the state changing calls that are no longer necessary. Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-15 11:20:35 +00:00
Valerio Setti	5bb454aace	psa_crypto: allow asymmetric encryption/decryption also with opaque keys Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-01-15 10:43:16 +01:00
Kusumit Ghoderao	7d4db631cf	add depends on for capacity tests and fix code style Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2024-01-10 21:49:09 +05:30
Kusumit Ghoderao	d3f70d321a	fix unused variable warning and other fixes Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2024-01-10 21:49:09 +05:30
Kusumit Ghoderao	86e83dd4a7	Add kdf_set_max_capacity function Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2024-01-10 21:49:09 +05:30
Kusumit Ghoderao	a0907f5750	Reorder and correct comment Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2024-01-10 21:49:09 +05:30
Kusumit Ghoderao	5f3a938d95	Fix psa_key_derivation_setup_kdf Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2024-01-10 21:49:09 +05:30
Valerio Setti	d36c313b53	psa: remove bits_is_sloppy parameter from mbedtls_ecc_group_from_psa() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-01-09 13:41:52 +01:00
Valerio Setti	ddba51e6c9	psa: rename "mbedtls_ecc_group_of_psa" to "mbedtls_ecc_group_from_psa" Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-01-09 13:41:52 +01:00
Manuel Pégourié-Gonnard	4aad0ff510	Merge pull request #8632 from valeriosetti/issue8598 [G5] Make block_cipher work with PSA	2024-01-08 08:07:53 +00:00
Ryan Everett	1b70a07eca	Replace psa_unlock_key_slot calls in operations which act on FULL slots Replaces calls to psa_unlock_key_slot with calls to psa_unregister_read. All instances follow a pattern of a call to psa_get_and_lock_key_slot_X, followed by some code which reads from a slot, followed by a call to psa_unregister_read. Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-04 16:57:48 +00:00
Ryan Everett	c70ce576bd	Update psa_destroy_key, psa_purge_key and psa_close_key This does not yet implement destruction while a key is in use for psa_destroy_key; that will be implemented in a separate pr. (I am not sure if I am allowed to change the documentation in the include files.) Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-04 16:57:48 +00:00
Ryan Everett	098c6659ad	Update psa_get_and_lock_key_slot_X functions Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-04 16:57:48 +00:00
Ryan Everett	b69118ebd0	Update key creation functions to use the new key slot states Update psa_start_key_creation, psa_finish_key_creation and psa_fail_key_creation. Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-04 16:57:48 +00:00
Ryan Everett	aa33c512cc	Update psa_wipe_key_slot Change psa_wipe_key_slot to use the new state system. Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2024-01-04 16:57:48 +00:00
Valerio Setti	384fbde49a	library/tests: replace md_psa.h with psa_util.h as include file for MD conversion Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-01-02 13:27:32 +01:00
Valerio Setti	1fff4f2012	psa: add key_type as input parameter of psa_can_do_cipher() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-12-28 18:33:17 +01:00
Manuel Pégourié-Gonnard	cddab78612	Merge pull request #8630 from joerchan/mbedtls-tfm-compat Mbedtls tfm compat	2023-12-15 09:31:27 +00:00
Valerio Setti	c6f004f0e2	psa_crypto: add internal helper to signal that cipher driver is ready Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-12-14 18:08:14 +01:00
Joakim Andersson	b349108b99	library: Move mbedtls_ecc helper functions to psa_util Move the mbedtls_ecc helper functions from psa_core to psa_util. These files are not implemented as part of the PSA API and should not be part of the PSA crypto implementation. Signed-off-by: Joakim Andersson <joakim.andersson@nordicsemi.no>	2023-12-14 13:55:11 +01:00
Manuel Pégourié-Gonnard	1f67363d6a	Merge pull request #8616 from lpy4105/issue/8553/test-driver-only-rsa Add test for driver-only RSA (crypto only)	2023-12-14 11:05:55 +00:00
Pengyu Lv	f75893bb36	Update comments Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-12-08 17:40:00 +08:00
Pengyu Lv	e9efbc2aa5	Error out when get domain_parameters is not supported From time being, domain_parameters could not be extracted from driver. We need to return error to indicate this situation. This is temporary and would be fixed after #6494. Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-12-08 17:30:26 +08:00
Valerio Setti	83e0de8481	crypto_extra: revert changes to mbedtls_psa_random_free() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-12-04 11:04:42 +01:00
Valerio Setti	402cfba4dc	psa: free RNG implementation before checking for remaining open key slots Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-12-04 11:04:41 +01:00
Dave Rodgman	c94f8f1163	Merge pull request #8551 from daverodgman/sign-conversion-part1 Sign conversion part 1	2023-11-24 15:12:00 +00:00
Dave Rodgman	e4a6f5a7ec	Use size_t cast for pointer subtractions Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-21 17:09:46 +00:00
Ryan Everett	975d411d92	Only set slot to OCCUPIED on successful key loading Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2023-11-16 13:37:51 +00:00
Ryan Everett	5567e3a34b	Make empty key slots explicit Add new status field to key slots, and use it. Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2023-11-08 13:28:20 +00:00
Dave Rodgman	16799db69a	update headers Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-02 19:47:20 +00:00
Valerio Setti	02a634decd	md: remove unnecessary inclusions of mbedtls/md.h Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-10-11 13:15:58 +02:00
Dave Rodgman	0fc86b2ddf	Merge pull request #8075 from valeriosetti/issue8016 driver-only ECC: curve acceleration macros	2023-09-27 14:39:02 +00:00
Xiaokang Qian	fe9666b8c0	Change the extension type of the file psa_crypto_driver_wrapper Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-09-26 09:09:20 +00:00
Xiaokang Qian	e9c39c42fd	Enable build of non-static psa wrapper functions Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-09-26 09:09:20 +00:00
Thomas Daubney	7046468a02	Define the psa wrapper functions as static inline This is a commit from Thomas Daubney. Signed-off-by: Thomas Daubney <thomas.daubney@arm.com> Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-09-26 09:09:06 +00:00

1 2 3 4 5 ...

1423 Commits