mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2024-12-26 18:20:21 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
32,553 Commits 170 Branches 263 Tags 184 MiB
a41d52a3f5
Commit Graph

32553 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ronald Cron
a41d52a3f5
Merge pull request #9831 from ronald-cron-arm/finalize-split-preparation-3 
Finalize split preparation-3
 2024-12-12 14:31:53 +00:00
Ronald Cron
fd71abe8dc cmake: tf-psa-crypto: Add seedfile for testing 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-12 08:44:56 +01:00
Ronald Cron
d98477d5a6 tf-psa-crypto: config.py: Adjust EXCLUDE_FROM_FULL 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-11 22:32:45 +01:00
Ronald Cron
14ace270ca tf-psa-crypto: Add cmake_package_install test program 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-11 22:32:45 +01:00
Ronald Cron
524f75bdde Remove library as header path 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-11 22:32:45 +01:00
Ronald Cron
45eec2295c Remove include as header path 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-11 22:32:45 +01:00
Ronald Cron
51f228cc1b Switch to actual TF-PSA-Crypto build_info.h 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-11 22:32:45 +01:00
Ronald Cron
e11ae17c60 Split check_config.h 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-11 22:32:45 +01:00
Ronald Cron
f6d17ca13c Switch to tf-psa-crypto/build_info.h 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-11 22:32:45 +01:00
Ronald Cron
3955d8bdb4 tf-psa-crypto: cmake: Use TF-PSA-Crypto config.py 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-11 22:32:45 +01:00
Paul Elliott
99ed26e0f7
Merge pull request #9808 from waleed-elmelegy-arm/add-iop-export-pub-key-complete 
Add PSA interruptible export public-key complete API
 2024-12-11 17:47:54 +00:00
Ronald Cron
f3720c7ca9
Merge pull request #9828 from ronald-cron-arm/finalize-split-preparation-2 
Finalize split preparation-2
 2024-12-11 14:07:27 +00:00
Ronald Cron
2d40a24a64 Update framework to the merge of #99 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-11 12:08:23 +01:00
Janos Follath
54f19e5372
Merge pull request #9783 from gilles-peskine-arm/psa-storage-test-cases-never-supported-preliminaries-dev 
Make some edge cases of not-supported or invalid mechanisms more uniform
 2024-12-10 18:15:54 +00:00
Ronald Cron
8a09a411fc make: Add missing dependency 
Add missing dependency of visualc
file generation on programs and
tests generated files.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 17:00:48 +01:00
Ronald Cron
a747fa6127 make: Fix psa_constant_names_generated.c generation 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:59:52 +01:00
Ronald Cron
bced0c782d Fix check that psa_test_wrappers.[hc] are up to date 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:58:02 +01:00
Ronald Cron
9fb40d7e01 Move PSA documentation to tf-psa-crypto 
Move the docuumentation files that after
the split will fit better in TF-PSA-Crypto
than Mbed TLS. No comment update.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:56:49 +01:00
Ronald Cron
faadfc2513 cmake: Remove unnecessary file generation disablement 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:56:49 +01:00
Ronald Cron
3dd1d3d1de Fix test_sha3_variations 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:56:49 +01:00
Ronald Cron
42ba65d892 Fix test_malloc_0_null 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:56:49 +01:00
Ronald Cron
bfa03a2c3a Fix build_zeroize_checks 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:56:49 +01:00
Ronald Cron
b7adf7bb77 Fix tls13_only 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:56:49 +01:00
Ronald Cron
9d262d7c13 Fix test_ccm_aes_sha256 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:56:49 +01:00
Ronald Cron
2654081885 Adapt TF-M configurations to config split 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:56:49 +01:00
Ronald Cron
5096b4cb4b Revert "Remove mbedtls_test" 
This reverts commit 939ce9d0d5.

Build mbedtls_test library of objects to link
with TLS and x509 test suites and programs
with mbedtls framework not TF-PSA-Crypto
one (when it will be there).

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:56:49 +01:00
Ronald Cron
f6eee5ad55 Move test_keys.h to include/test 
Move test_keys.h to tests/include/test
instead of tests/src as it is used
outside of tests/src namely by
test_suite_pk.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:56:42 +01:00
Ronald Cron
04baacb228 cmake: Try and simplify test_keys/certs.h generation 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:54:05 +01:00
Ronald Cron
cec78c33df libtesdriver1: Copy only scripts from framework 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:54:05 +01:00
Ronald Cron
ce3bcf04d8 Restore 3.6 PSA constants generation check 
Just to ease the eventual migration
of check-generated-files.sh to
the framework.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:54:05 +01:00
Ronald Cron
8392f189e2 Move build of PSA programs to tf-psa-crypto 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-10 16:54:05 +01:00
Manuel Pégourié-Gonnard
e9d036ab11
Merge pull request #9788 from eleuzi01/issue-74-fw 
Move scripts used by all-core.sh to the framework
 2024-12-10 12:42:06 +00:00
Waleed Elmelegy
e330e58bd7 Improve iop export public-key testing 
* Improve wording of comments.
* Zeroize buffer before doing iop testing to
  avoid comparing with previous values in
  case they are not overwritten.
* Remove redundant testing.

Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-10 11:44:58 +00:00
Elena Uziunaite
f37cbf8c2f Update submodule with the merge 
Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>
 2024-12-10 09:42:48 +00:00
Waleed Elmelegy
0843214dee Remove Invalid import/export key test 
The test is supposed to be an opaque key test but the
testing function does not support specifying an
opaque driver.

Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-09 18:14:21 +00:00
Waleed Elmelegy
c66147df72 Refactor & improve internal iop export public-key setup and complete APIs 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-09 18:13:45 +00:00
Waleed Elmelegy
1daabc113b Refactor and improve iop export public-key setup and abort APIs 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-09 18:13:42 +00:00
Waleed Elmelegy
3c46535ff9 Rename mbedtls_psa_export_public_key_iop_operation_t 
Rename it to mbedtls_psa_export_public_key_iop_t as
iop stands for "interuptible operation" already.

Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-09 18:12:16 +00:00
Waleed Elmelegy
e283ed9e20 Add testing of complete API of interruptible export public-key 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-09 18:12:16 +00:00
Waleed Elmelegy
a04e88adf0 Fix export public-key opaque key test paramters 
The test is marked as opaque but the parameter was set
to PSA_KEY_LIFETIME_VOLATILE.

Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-09 18:12:16 +00:00
Waleed Elmelegy
81a525849c Add interuptible export public-key to current export public-key tests 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-09 18:12:16 +00:00
Waleed Elmelegy
54ba963575 Add interuptible export public-key testing to invalid key tests 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-09 18:12:16 +00:00
Waleed Elmelegy
f466a284c1 Fix checks for key type in psa_export_public_key_iop_setup() 
Key type must be a key pair or public-key if not we return
PSA_ERROR_INVALID_ARGUMENT.

The key type must be ECC key as this is what we support for
now otherwise we return PSA_ERROR_NOT_SUPPORTED.

Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-09 18:12:16 +00:00
Waleed Elmelegy
4cffd5d4f3 Add implementaion for psa_export_public_key_iop_complete() 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-09 18:12:16 +00:00
Waleed Elmelegy
2cfce63fe6 Fix status variable type in mbedtls_psa_ecp_export_public_key_iop_setup() 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-09 18:12:16 +00:00
Waleed Elmelegy
af2595b4a7 Add implementation for mbedtls_psa_ecp_export_public_key_iop_complete() 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-09 18:12:16 +00:00
Waleed Elmelegy
c1fc136b14 Add Header for mbedtls_psa_ecp_export_public_key_iop_complete() 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-12-09 18:12:16 +00:00
Gilles Peskine
c3e0e8fe97 Fix copypasta 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-12-09 18:31:59 +01:00
Gilles Peskine
e7e704ac83 p256-m: allow deterministic ECDSA verification 
For ECDSA verification, there is no difference between the deterministic and
randomized algorithm. The PSA core consider the two variants as identical as
far as key policies are concerned, and the built-in implementation accepts
either variant even if only the other variant is supported for signature.

In p256-m, accept to perform an ECDSA verification when the algorithm is
specified as deterministic ECDSA. This makes the behavior identical to the
built-in implementation, which is less surprising for users and saves us
from having to cope with a difference in our testing.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-12-09 18:31:59 +01:00
Gilles Peskine
de7aae1ba0 PSA interruptible sign/verify: detect unsupported mechanism in start 
In particular, if interruptible ECDSA is supported but not the deterministic
variant, detect this in psa_sign_hash_start(), whereas before start() would
succeed and psa_sign_hash_complete() would fail. This avoids an
inconsistency between psa_sign_hash() and psa_sign_hash_start() that would
be annoying to handle in test_suite_psa_crypto_op_fail.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-12-09 18:31:59 +01:00