mbedtls

Author	SHA1	Message	Date
Gilles Peskine	9e4c020ca5	Merge pull request #4969 from jclab-joseph/pr/fix/build-alpine Fix test code to can be built on alpine	2021-09-24 15:03:56 +02:00
joseph	6113af68c5	Fix test code to can be built on alpine Signed-off-by: joseph <joseph@jc-lab.net>	2021-09-24 09:21:29 +09:00
Ronald Cron	f2cb19f921	Merge pull request #4891 from yuhaoth/pr/enable-key-exchange-in-client-hello TLS1.3: Client Hello : Add extensions and test case.	2021-09-23 18:45:01 +02:00
Jerry Yu	76e31ec169	Add gnutls version test for client hello Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2021-09-22 21:16:27 +08:00
Gilles Peskine	f0f2294f57	Merge pull request #4708 from mstarzyk-mobica/ccm_chunked Ccm chunked - enable multipart CCM in PSA	2021-09-21 13:46:52 +02:00
Gilles Peskine	93cb6111ba	Merge pull request #4878 from SiliconLabs/remove_dependency_4877 Remove dependency of built-in keys on storage	2021-09-20 22:20:16 +02:00
Ronald Cron	133740b74e	tests: Improve incomplete then overflow tests Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2021-09-17 09:38:07 +02:00
Jerry Yu	7a5ab044ca	Add tls13 test with everst and ecp restartable Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2021-09-15 22:06:11 +08:00
Archana	9d17bf4215	Styling and refactoring Signed-off-by: Archana <archana.madhavan@silabs.com>	2021-09-10 07:16:08 +05:30
Archana	9a2b6ff8f2	Fix test vector dependency Fix opaque key test vector dependency to PSA_CRYPTO_DRIVER_TEST instead of MBEDTLS_PSA_CRYPTO_DRIVERS while validating with test drivers. Signed-off-by: Archana <archana.madhavan@silabs.com>	2021-09-09 12:32:16 +05:30
Archana	a316b7e42b	Rebase and update signature for curve448 tests Also include the opaque test cases for curve448 vectors. Signed-off-by: Archana <archana.madhavan@silabs.com>	2021-09-09 10:11:02 +05:30
Archana	74d99c6bfc	Add a test to validate copy to read only lifetime Signed-off-by: Archana <archana.madhavan@silabs.com>	2021-09-09 10:11:02 +05:30
Archana	449608bc61	Code style improvements Signed-off-by: Archana <archana.madhavan@silabs.com>	2021-09-08 22:04:13 +05:30
Archana	8a180368fb	Add opaque test driver support for copy key A minimal test driver extension is added to support copy of opaque keys within the same location. Test vector support is extended to cover opaque keys. Signed-off-by: Archana <archana.madhavan@silabs.com>	2021-09-08 22:04:07 +05:30
Archana	6ed4bda2c6	pre-existing validation extended The validation against key width and max key bits is extended to all key types from the existing validation for only symmetric keys. Signed-off-by: Archana <archana.madhavan@silabs.com>	2021-09-08 22:04:00 +05:30
Archana	4d7ae1d8cf	Add test driver support for opaque key import -Add test driver support to import/export while wrapping keys meant to be stored in the PSA core as opaque( emulating an SE without storage ). -Export validate_unstructured_key_bit_size as psa_validate_unstructured_key_bit_size, thereby changing its scope. -Improve the import/export test cases in test_suite_psa_crypto to also cover opaque keys, thereby avoiding duplication. Signed-off-by: Archana <archana.madhavan@silabs.com>	2021-09-08 22:03:54 +05:30
Jerry Yu	ed2ef2d9e0	add client hello msg test Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2021-09-08 10:37:20 +08:00
Mateusz Starzyk	83e4c1270a	Add CCM tests for passing unexpected input. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-09-06 12:09:34 +02:00
Mateusz Starzyk	efec38bb29	Extend CCM corner cases tests. Add tests covering skipped update() or update_ad() for empty plaintext/ciphertext and empty auth data. Test vector for P=0, A=0 generated using python's cryptography.hazmat library. Python script used for test vector generation: ``` import os from cryptography.hazmat.primitives.ciphers.aead import AESCCM def encrypt(key, iv, plaintext, associated_data): key = bytes.fromhex(key) iv = bytes.fromhex(iv) plaintext = bytes.fromhex(plaintext) associated_data = bytes.fromhex(associated_data) aesccm = AESCCM(key) ct = aesccm.encrypt(iv, plaintext, associated_data) return ct.hex() def decrypt(key, associated_data, iv, ciphertext): key = bytes.fromhex(key) associated_data = bytes.fromhex(associated_data) iv = bytes.fromhex(iv) ciphertext = bytes.fromhex(ciphertext) aesccm = AESCCM(key) pt = aesccm.decrypt(iv, ciphertext, associated_data) return pt.hex() key = "54caf96ef6d448734700aadab50faf7a" plaintext = "" iv = "a3803e752ae849c910d8da36af" aad = "" encrypted = encrypt(key, iv, plaintext, aad) print(f"key: {key}") print(f"iv: {iv}") print(f"encrypted: {encrypted}") print("--------------------------------------") decrypted = decrypt( key, aad, iv, encrypted ) print(f"decrypted: {decrypted}") ``` Results: ``` key: 54caf96ef6d448734700aadab50faf7a iv: a3803e752ae849c910d8da36af encrypted: eba8347baa6d61f87b67c2dd7c6d2053 -------------------------------------- decrypted: ``` Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-09-06 12:09:34 +02:00
Mateusz Starzyk	cd975e4645	Extend CCM corner cases tests. Add tests for passing incomplete input data in the first call and too much data in the second call. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-09-06 12:09:33 +02:00
Mateusz Starzyk	3050f054f2	Subtract 1 from input in CCM's incomplete data tests Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-09-03 12:59:44 +02:00
Ronald Cron	13592ca654	Merge pull request #4879 from yuhaoth/pr/upgrade-gnutls-next Upgrade gnutls next	2021-09-02 16:38:19 +02:00
Mateusz Starzyk	df2507301b	Use AES-128 for multipart CCM corner cases tests Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-09-02 12:36:02 +02:00
Jerry Yu	75261df2e3	fix comment issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2021-09-02 17:56:20 +08:00
Jerry Yu	b12d81d1a3	Add feature tests for gnutls-next Test NO_TICKETS and DISABLE_TLS13_COMPAT_MODE Change-Id: Idf21b36bd64c7eefe4e0e6fb875b2e06ebb0aa07 Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2021-09-02 17:31:10 +08:00
Jerry Yu	ab46aa0436	Upgrade gnutls-next to 3.7.2 v3.7.2 introduces DISABLE_TLS13_COMPAT_MODE. That can be used to verify if TLS13 COMPATIBLE is not available. Change-Id: Id68748e92504835b5a63b2565a618f728e7222f6 Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2021-09-02 17:31:10 +08:00
Gilles Peskine	0bf740ee4f	Merge pull request #4765 from gilles-peskine-arm/all.sh-subshells-3.0 Run all.sh components in a subshell	2021-09-02 10:26:58 +02:00
Mateusz Starzyk	7251eda6ff	Replace BAD_SEQUENCE error with BAD_INPUT Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-09-01 13:26:44 +02:00
Manuel Pégourié-Gonnard	5a8abb144c	Merge pull request #4883 from mstarzyk-mobica/fix_psa_sign_msg PSA MAC computation with _HASH flag implies _MESSAGE.	2021-09-01 12:23:20 +02:00
Mateusz Starzyk	1ebcd55afa	Extend mac_key_policy test. Add checks for psa_mac_compute and psa_mac_verify. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-08-30 17:11:01 +02:00
Manuel Pégourié-Gonnard	e45ee40f7e	Merge pull request #4811 from hanno-arm/tls13_ciphersuite_api Add TLS 1.3 ciphersuite and key exchange identifiers and API	2021-08-30 09:47:46 +02:00
Jerry Yu	31c01d303e	Rename available values for tls13_kex_modes Rename `psk_pure` to `psk` and `ephemeral_pure` to `ephemeral` Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2021-08-25 18:13:53 +08:00
Mateusz Starzyk	cbefb6ba4d	Merge branch 'development' into ccm_chunked Conflicts: library/ccm.c Conflict resolved by re-applying the MBEDTLS_BYTE_0 macro. Conflict resolved by ignoring the MBEDTLS_PUT_UINT16_BE macro used in development branch on the 'b' buffer, because the 'b' buffer is removed in current branch.	2021-08-24 15:14:23 +02:00
Mateusz Starzyk	d07f4fc30f	Use separate expected results for MAC sign and verify key policy. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-08-24 14:16:55 +02:00
Mateusz Starzyk	cb0a7cd142	Fix mac_key_policy test function Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-08-20 11:34:49 +02:00
Archana	0dc86b5a2a	Remove dependency of builtin keys on storage The psa_open_key API depends on MBEDTLS_PSA_CRYPTO_STORAGE_C. This is unnecessary for builtin keys and so is fixed. Updated an open_fail test vector keeping with the same. Signed-off-by: Archana <archana.madhavan@silabs.com>	2021-08-17 02:46:00 +05:30
Manuel Pégourié-Gonnard	f11724bf2e	Merge pull request #4861 from yuhaoth/pr/add-openssl-gnutls-tls1_3-check Add openssl/gnutls tls1.3 feature tests.	2021-08-13 09:15:22 +02:00
Manuel Pégourié-Gonnard	4512f21473	Merge pull request #3572 from mpg/add-arm-linux-build Add arm-linux-gnueabi-gcc build	2021-08-12 13:16:02 +02:00
Hanno Becker	932064d660	Add ssl-opt.sh tests for ssl_client/server TLS 1.3 kex parameters Those tests are so far only checking that ssl_client2/ssl_server2 recognize the arguments, nothing more. Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-08-12 06:31:14 +01:00
Hanno Becker	ae336852c5	Add ssl-opt.sh run to TLS 1.3 test in all.sh Signed-off-by: Hanno Becker <hanno.becker@arm.com>	2021-08-12 06:28:45 +01:00
Dave Rodgman	2aec149e13	Merge pull request #4248 from hanno-arm/tls13_populate_transform Fix and test compliance of TLS 1.3 record protection	2021-08-11 16:41:51 +01:00
Jerry Yu	0402979ed3	Add openssl/gnutls tls1.3 feature tests. Add functions and test cases to make sure tls1.3 is available in openssl/gnutls Change-Id: I797d15117a8de96614f392e6bb2ed16b6d71ba69 Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2021-08-11 18:09:49 +08:00
Mateusz Starzyk	e0f5227550	Add CCM test for calling finish without any input. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-08-10 14:31:57 +02:00
Mateusz Starzyk	8fb1754e1a	Add short description for CCM test functions. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-08-10 14:00:14 +02:00
Mateusz Starzyk	f442de69eb	Add tests for CCM corner cases. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-08-10 14:00:14 +02:00
Mateusz Starzyk	bccbf88bc3	Rename CCM test functions. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-08-10 14:00:14 +02:00
Mateusz Starzyk	ceb5bc6150	Fix typos. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-08-10 13:58:39 +02:00
Mateusz Starzyk	8788906947	Add CCM test for edge cases. Cover: - not calling auth data update - not calling cipher text update - exceeding configured auth data length - exceeding configured cipher text length Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-08-10 13:58:39 +02:00
Mateusz Starzyk	c8bdf36a72	Validate tag pointer in ccm function. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-08-10 13:58:39 +02:00
Mateusz Starzyk	27a1bef89d	Tidy up test functions. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>	2021-08-10 13:56:37 +02:00

1 2 3 4 5 ...

5579 Commits