This website requires JavaScript.
92c876aaa9
Remove unneeded list concatenation
2022-08-23 16:07:19 +0100
55e638ca57
Remove abbreviations and clarify attributes
2022-08-23 14:21:53 +0100
fac3ea5656
Merge pull request #6184 from leorosen/ssl_tls_curve_group_id_null_protect
2022-08-24 15:16:45 +0100
fbb75e3fc5
Separate common test generation classes/functions
2022-08-24 11:30:03 +0100
bcc13c943f
Add further missing whitespaces inside parentheses
2022-08-24 15:08:16 +0100
383461c92f
Separate CMake targets for bignum and PSA
2022-08-23 11:29:05 +0100
20c1137350
Fix coding style
2022-08-24 15:06:13 +0100
5a28142410
Merge pull request #6189 from Kxuan/fix-ctr_drbg-uninit
2022-08-24 14:58:44 +0100
72594633a1
Apply the function parameter naming convention
2022-08-24 11:51:58 +0100
f0ffb1585a
Have mbedtls_mpi_montg_init() take the modulus, rather than just its least significant limb
2022-08-24 11:17:15 +0100
958fd3dc0c
Remove bignum_new.c, moving contents to bignum_core.c
2022-08-24 11:08:51 +0100
2523791d00
Better constant-time properties for mbedtls_mpi_core_montmul()
2022-08-19 08:43:56 +0100
f88b47ea27
Remove 'const' qualifier from temporary for mpi_montmul()
2022-08-17 08:42:58 +0100
4641ec6c52
Fix style following review comments
2022-08-17 06:56:08 +0100
40d229487d
Tidy up doc comments on existing function mpi_montmul()
2022-08-17 06:42:44 +0100
9384284530
Use mbedtls_mpi_core_montmul() in mpi_montmul()
2022-08-05 16:59:43 +0100
f334d9622b
Add unit tests for bignum_new.c:mbedtls_mpi_core_montmul()
2022-08-17 06:29:32 +0100
79b70f6394
Make a public version of mpi_montg_init() in bignum_new.c and add unit tests
2022-08-17 06:17:00 +0100
659c84add9
Add unit tests for the new function mbedtls_mpi_core_mla() in bignum_new.c
2022-08-17 05:45:19 +0100
2a65b85928
Add unit tests for the new function mbedtls_mpi_core_sub() in bignum_new.c
2022-08-17 05:43:54 +0100
0cc78658c3
Add unit tests for the new function mbedtls_mpi_core_add_if() in bignum_new.c
2022-08-23 16:26:52 +0100
268f96b0ef
Fix Windows builds, which were getting "possible loss of data"
2022-07-31 22:30:16 +0100
7e655f7b4c
Use new mbedtls_mpi_core_sub() instead of old static mpi_sub_hlp()
2022-07-20 14:02:11 +0100
90c426b932
Tidy up, removing MPI_CORE(), and using the new mbedtls_mpi_core_mla()
2022-08-23 16:15:19 +0100
2185c0f2e9
add force ciphersuite tls-aes-256-gcm-sha384 test
2022-08-23 16:12:43 +0800
f35ba384ff
Add select ciphersuite entry function
2022-08-23 17:58:26 +0800
71f4b0dda6
Add bignum_new.c starting with MPI_CORE(montmul) for Montgomery multiplication
2022-08-23 12:09:35 +0100
82d3f1e824
Remove bignum_internal.h, moving contents to bignum_core.h
2022-08-23 12:01:39 +0100
dd1bef788e
Add ciphersuite_info check
2022-08-23 17:57:02 +0800
29d9faa468
fix various issues.
2022-08-23 17:52:45 +0800
32bd063773
test_suite_ssl: Add minimal handshake requirements
2022-08-20 14:10:36 -0400
299b1d6c93
Remove unnecessary psa/crypto.h include
2022-08-22 17:26:13 -0400
cccb044804
Style & formatting fixes
2022-08-19 03:42:11 -0400
645ff5b8ff
Merge pull request #6095 from gabor-mezei-arm/6016_add_new_modulus_and_residue_structures
2022-08-23 09:02:43 +0100
66f35f2402
fix wrong requires setting
2022-08-22 17:27:41 +0800
e02da81086
Update TLS1.2 dependencies description in mbedtls_config.h
2022-08-17 17:04:49 -0400
21b6870301
test_suite_ssl: remove unnecessary usage of mbedtls_md_get_size
2022-08-17 16:26:12 -0400
180b6b9608
Enable TLS 1.2 tests without MD and with USE_PSA in all.sh
2022-08-17 16:21:06 -0400
7e16ce3a72
Clarify TLS 1.2 dependencies with and without PSA crypto
2022-08-17 16:19:39 -0400
8c95ac4500
Add missing dependencies / alternatives
2022-08-17 16:17:00 -0400
7bb8bab457
Update SHA and MD5 dependencies in the SSL tests
2022-08-17 16:11:04 -0400
25f271557b
Update SHA and MD5 dependencies in the SSL module
2022-08-17 16:09:31 -0400
635c2c2be5
test_suite_ssl: replace CTR_DRBG with a fake rng source
2022-08-17 15:20:40 -0400
0ce592169e
Use hash_info_get_size in ssl_tls12_client
2022-08-17 07:54:34 -0400
a242e83b21
Rename the sha384 checksum context to reflect its purpose
2022-08-11 10:03:14 -0400
0ce93933e8
Merge pull request #6219 from KloolK/development
2022-08-22 21:47:21 +0100
e5018c97f9
Merge pull request #6195 from superna9999/6149-driver-only-hashes-ec-j-pake
2022-08-22 17:28:15 +0200
194556034d
Merge pull request #6169 from tom-cosgrove-arm/fix-incorrect-use-of-mbedtls_ecp_group_id
2022-08-22 17:26:18 +0200
20ebaac85e
Merge pull request #6211 from tom-cosgrove-arm/explicit-warning-re-ct-conditions-not-0-or-1
2022-08-22 17:24:04 +0200
03f1c39ac7
Merge pull request #6171 from mprse/md_x509_test
2022-08-22 17:18:47 +0200
9ff6f8cdbd
Fix minor typos
2022-08-22 16:05:58 +0200
2e328c8591
Remove confusing const qualifier
2022-08-22 11:19:10 +0100
c459641ad1
Bignum: add missing limb qualifiers
2022-08-22 10:01:27 +0100
6b8e0c2884
Bignum: make tests more readable
2022-08-22 09:54:25 +0100
494a6d22bd
Bignum tests: use TEST_EQUAL
2022-08-22 09:36:17 +0100
af3f39c01c
Fix typos
2022-08-22 09:06:32 +0100
5725f1cf3a
Align ciphersuite with overwrite.
2022-08-21 17:27:16 +0800
01e42d2d4c
fix issues in export handshake psk
2022-08-21 12:55:51 +0800
9f7f646b11
Revert "remove psk key when ephemeral selected"
2022-08-21 10:22:33 +0800
e9d4fc09a3
fix binder value security issue
2022-08-20 19:21:15 +0800
24b8c813c4
fix comments and wrong initial value issues
2022-08-20 19:06:56 +0800
5d01c05d93
fix various issues
2022-08-17 10:18:10 +0800
6cf6b47b5c
fix format and comment issues
2022-08-16 14:50:28 +0800
b25d10f153
Add mismatch key tests
2022-08-21 12:53:53 +0800
2b7a51ba8f
Add psk_or_ephemeral mode and tests
2022-08-01 10:19:13 +0800
63c78b869f
add all mode tests
2022-07-31 13:19:11 +0800
3b70b3cce9
add epemeral_all tests
2022-07-31 13:17:37 +0800
badd46f040
add psk_all tests
2022-07-31 13:16:44 +0800
fa8c306258
add ephemeral tests
2022-07-31 13:14:56 +0800
9b83fa1149
add psk_ephemeral tests
2022-07-31 13:13:51 +0800
6a9bebaefd
Add psk mode tests
2022-07-31 12:45:25 +0800
07c0f12302
test_suite_pem.data: change MBEDTLS_CMAC_C->MBEDTLS_CIPHER_MODE_CBC dependency
2022-08-19 13:41:52 +0200
beb4fc0723
Merge pull request #6185 from leorosen/tls12_server_null_on_missing_key
2022-08-19 20:22:59 +0100
19e5973566
mbedtls_ssl_check_curve prevent potential NULL pointer dereferencing
2022-08-08 16:52:38 -0700
deb8030e9f
Improve mbedtls_mpi_core_lt_ct() unit tests
2022-08-19 13:32:17 +0100
a95f204cd3
Improve documentation
2022-08-19 12:09:17 +0100
ca5688e10c
Improve coding style
2022-08-19 12:05:28 +0100
b7a88eca42
Bignum: Apply naming conventions
2022-08-19 12:24:40 +0100
6b8a4ad0d8
Bignum: update const qualifiers
2022-08-19 10:58:34 +0100
01a7d310d5
Make ecjpake test suite depend on MBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA
2022-08-11 11:36:07 +0200
5d7a235efe
Simplify test for ecdsa_verify
2022-08-19 11:26:32 +0100
34ff6a7a31
Correct documentation for mbedtls_ecdsa_verify
2022-08-19 11:08:07 +0100
b153c6c31b
Improve test descriptions
2022-08-18 16:05:49 +0100
cd57a61fec
Paramaterise ecdsa_verify test case more clearly
2022-08-18 15:48:46 +0100
b44c72861f
Minor tidy-up
2022-08-11 13:47:35 +0100
d106308c83
Changelog for ECDSA verify fix
2022-08-10 13:41:11 +0100
66bcadb47d
Fix duplicate test names
2022-08-10 13:31:44 +0100
56cfb31dd1
Add missing newlines
2022-08-10 12:21:23 +0100
c947751a5f
Fix ECDSA signature verification edge-case
2022-08-10 11:26:24 +0100
1fdb8e8c17
Add unit tests for ECDSA with invalid public key
2022-08-10 11:32:07 +0100
a327b52427
Fix incorrect use of mbedtls_ecp_group_id in test_suite_ssl.function
2022-08-03 08:33:06 +0100
7b044c1bbf
Enable ECJPAKE in test_crypto_full_no_md () & test_psa_crypto_config_accel_hash_use_psa () components
2022-08-11 11:19:03 +0200
ecaba1c9b2
Make use of PSA crypto hash if MBEDTLS_MD_C isn't defined
2022-08-11 10:47:08 +0200
0d76341eac
Remove md_info by md_type in ecjpake context, use mbedtls_hash_info_get_size() to get hash length
2022-08-11 10:32:22 +0200
bc3906c58f
pem_pbkdf1(): optimize psa version
2022-08-19 09:16:36 +0200
10836a04a9
config: Fix requirements for MBEDTLS_X509_USE_C and MBEDTLS_X509_CREATE_C
2022-08-19 08:45:34 +0200
bf01c64e9d
oid.c: unify dependencies (VIA_MD_OR_PSA->VIA_LOWLEVEL_OR_PSA)
2022-08-18 13:41:18 +0200
4146525ce9
Fix compilation guard (comment)
2022-08-18 12:43:07 +0200
0cd6f08e6f
pem.c: fix style issues (redundant spaces)
2022-08-18 12:38:30 +0200
d23a4efe2c
pem.c: remove redundant compilation guard
2022-08-18 11:56:54 +0200
c410ccc528
Include psa/crypto.h in legacy_or_psa.h
2022-08-18 10:51:31 +0200
4092ff9ba9
pem.c: add internal macro to increase code readability
2022-08-11 08:49:21 +0200
bc0509a36b
test_suite_pem, test_suite_pkparse: Adjust dependecies
2022-08-10 15:10:15 +0200
12e69cb806
oid.h: remove MBEDTLS_MD_C guard
2022-08-09 19:29:07 +0200
829e97d029
Fix include order
2022-08-09 14:58:35 +0200
76b753bbb7
Change the dependencies in pem.c to xxx_BASED_ON_USE_PSA and related files
2022-08-09 10:54:45 +0200
81799fd9d8
pem.c, test_suite_pem: fix dependency MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA->MBEDTLS_HAS_ALG_MD5_VIA_LOWLEVEL_OR_PSA
2022-08-05 12:37:58 +0200
2c70a0d9e0
test_suite_oid: Replace MBEDTLS_MD5_C and MBEDTLS_SHAxxx_C with the corresponding MBEDTLS_HAS_ALG_xxx_VIA_LOWLEVEL_OR_PSA
2022-08-05 11:47:48 +0200
050819c19e
test_suite_x509write: Move MBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA dependency for x509_crt_check to .function file
2022-08-05 11:12:17 +0200
41b742f84d
test_suite_pem: Adapt dependencies for MD
2022-08-04 12:13:53 +0200
be92bee58a
pem.c: Fix conditional compilation flags
2022-08-04 10:38:34 +0200
f8087e5ffd
x509_crt_check: remove MBEDTLS_SHA1_C dependency from .function file (already handed in .data file)
2022-08-04 08:43:42 +0200
a68d08f7d1
pem.c: adjust for bulid without md
2022-08-04 08:42:06 +0200
55c17430be
oid.h: remove redundant MBEDTLS_MD_C dependency
2022-08-03 10:52:44 +0200
b792cfd423
component_test_psa_crypto_config_accel_hash_use_psa: stop removing all X.509 modules from the build
2022-08-03 09:58:40 +0200
278b6674bd
check_config.h: Adjust x509 dependencies (MBEDTLS_MD_C or MBEDTLS_USE_PSA_CRYPTO)
2022-08-03 09:50:38 +0200
de81028f00
Adjust dependencies in library/oid.c
2022-08-02 23:28:04 +0200
fd18366965
Adjust declared dependencies in library/x509*
2022-08-02 15:29:20 +0200
d34f8c36b8
x509 tests: adjust dependencies
2022-08-02 09:09:29 +0200
f3f6b0a5c3
Merge pull request #6123 from yuhaoth/pr/finialize-tls13-serialize_session_save_load
2022-08-19 08:16:05 +0200
70dfd4c8ac
ssl_tls12_server: fix potential NULL-dereferencing if local certificate was not set.
2022-08-08 15:43:44 -0700
583816caaf
Be explicit about constant time bignum functions that must take a 0 or 1 condition value
2022-08-18 14:09:18 +0100
92cd8642fa
Merge pull request #6090 from hanno-arm/fix_bnmul_arm_v7a
2022-08-18 08:48:03 +0100
e28d9745a1
fix coding style issues
2022-08-18 15:44:03 +0800
5b7c7caee6
fix wrong condition issues
2022-07-23 10:45:12 +0800
3419107e8d
Add checks for ticket and resumption_key fields
2022-08-18 10:32:09 +0800
86c333e79e
Add explicit cast to satisfy compiler
2022-08-17 16:57:26 +0100
e36fdd676c
Change signature of tls13_session_save
2022-08-17 21:31:36 +0800
03f7a6e086
Add armcc plain armv7-m target; tidy up arg order
2022-08-17 14:35:29 +0100
536f28c892
Respect MBEDTLS_HAVE_TIME in ssl_ticket
2022-08-17 14:20:36 +0100
392f714153
Fix type used for capturing TLS ticket generation time
2022-08-17 11:19:41 +0100
8c9a0aebb3
Merge pull request #5985 from zhangsenWang/development
2022-08-16 09:56:58 +0100
96a4be990f
Merge pull request #6177 from AndrzejKurek/ecdsa-no-md
2022-08-16 09:55:02 +0100
a7448bf19d
Merge pull request #6141 from mpg/driver-hashes-rsa-v21
2022-08-16 09:52:39 +0100
3f95d303d1
rebase with lastest development branch
2022-08-16 03:16:22 +0000
e54046c9c2
Add test for ECP group metadata
2022-08-15 11:43:56 +0100
cc93908b88
Bignum: Declare loop variable in loop head
2022-08-15 12:08:49 +0100
620c58ced9
Bignum: make const placement consistent
2022-08-15 11:58:42 +0100
ed5c8d3d1e
Bignum: make modulus value const
2022-08-15 11:50:22 +0100
138f51c5c8
Fix alphabetic order in makefiles
2022-08-15 11:38:30 +0100
816206439a
Bignum: Improve style
2022-08-15 11:13:38 +0100
fd65e82753
Rename structure elements
2022-08-12 18:09:12 +0200
7f0817884e
Unify mpi mod raw read/write test with the other tests
2022-08-12 18:00:33 +0200
c414ba3fc0
Simplify code
2022-08-12 17:47:39 +0200
5a5c0c5f0a
Move the declaration of variables to their scope of usage
2022-08-12 15:40:09 +0200
7f93264ab1
Change struct element order
2022-08-12 15:37:27 +0200
89e31460db
Typo
2022-08-12 15:36:56 +0200
d41f627650
Order the file names
2022-08-12 15:20:21 +0200
7b1be55484
Merge pull request #5993 from eliteraspberries/android-soname
2022-08-12 13:49:55 +0100
5f56df44f0
Remove redundant check
2022-08-12 14:41:54 +0200
bf9da1dfb1
Do not read if output pointer is NULL
2022-08-12 14:11:56 +0200
273efeb0eb
Add Changelog entry
2022-08-12 10:27:50 +0100
fca2bcc733
Update bump_version.sh to recognise Makefile changes
2022-08-12 10:17:18 +0100
6a8673092f
Allow non-versioned library soname.
2022-06-29 17:28:03 -0400
6318468183
Improve bignum documentation
2022-08-11 17:42:59 +0100
a30b4e5692
Bignum: remove duplicate documentation from source
2022-08-11 17:15:18 +0100
8b0799d43f
Merge pull request #6181 from wernerlewis/ecp_set_zero
2022-08-11 16:43:19 +0100
2ab2d3e3e9
Inline mpi_core_clear()
2022-08-11 16:13:53 +0100
56a10f97ba
Bignum: remove unnecessary NULL pointer checks
2022-08-11 15:19:00 +0100
296ea66442
Bignum: clean up use of enums
2022-08-11 14:58:29 +0100
5c28e7aa0e
remove psk key when ephemeral selected
2022-07-30 23:22:08 +0800
56acc9421c
Write key_share base on key_exchange mode.
2022-07-30 23:02:36 +0800
f0bad2554a
Continue check next psk key when binder mismatch
2022-07-30 13:45:24 +0800
32e1370fbc
Add config check for pre_shared_key parser
2022-07-29 13:04:08 +0800
e95c8af266
Align ciphersuite with psk key
2022-07-26 15:48:20 +0800
ccc68a466e
change handshake psk key type for tls13
2022-07-26 16:39:20 +0800
295d93ebe8
Add psk handshake with gnutls
2022-07-19 08:21:29 +0200
40f3771e18
Add handshake psk export function.
2022-07-26 16:58:57 +0800
1af61cb75b
Introduce a new macro for hash size in ecdsa tests
2022-08-11 09:19:42 -0400
9dfb5621ff
Test little endian core I/O with odd limbs
2022-08-11 12:15:55 +0100
1cb3b976c3
Test big endian core I/O with odd limbs
2022-08-11 10:50:04 +0100
71bf28bb34
Fix include file path
2022-07-29 12:12:00 +0200
f98b57f231
Initialize status/ret to error value
2022-07-29 11:27:46 +0200
2aae040615
make ret_from_status() global function and move it to has_info.[ch]
2022-07-29 11:20:07 +0200
712bb9c5af
Use more suitable function for checking if hash is supported
2022-07-29 11:12:00 +0200
79b99f47a1
Fix definition of MD_OR_PSA macros
2022-07-27 23:04:21 +0200
7d5271608b
Fix undeclared dependencies on SHA-1
2022-07-27 20:09:38 +0200
e741c61d54
Adjust dependencies in test_suite_pkcs1_v21
2022-07-27 13:13:55 +0200
7a27e85f5c
Fix failure of RSA accel test
2022-07-27 12:30:34 +0200
077ba8489d
PKCS#1 v2.1 now builds with PSA if no MD_C
2022-07-27 10:42:31 +0200
faa3b4e0c3
Get rid of md_info outside helper functions
2022-07-15 13:18:15 +0200
35c09e4824
Introduce compute_hash() function
2022-07-15 13:10:54 +0200
f701acc088
Extract common code into hash_mprime()
2022-07-15 12:49:14 +0200
f3a6755450
Simplify callers of mgf_mask()
2022-07-15 12:16:42 +0200
259c213545
Tune API of internal function mgf_mask in RSA
2022-07-15 12:09:08 +0200
8a9f88899d
Merge pull request #6186 from leorosen/ssl_tls_null_on_invalid_code
2022-08-11 10:12:34 +0100
322a7a19e7
Merge pull request #6155 from yuhaoth/pr/add-any-all-configs-enabled
2022-08-11 09:40:38 +0100
9ac6b28e27
ctr_drbg: remove mbedtls_aes_init call from mbedtls_ctr_drbg_seed
2022-08-11 09:52:18 +0800
62c8763de7
Improve macro expansion help message
2022-08-11 10:18:36 +0800
8d59c86f61
Make pylint happy
2022-08-10 15:35:35 +0100
c6d16362f3
Copy files instead of hard-linking on Windows
2022-08-10 16:27:14 +0200
d0895708e2
Bignum: move internal constants to headers
2022-08-10 13:32:16 +0100
9938719a05
Allow internal macros without prefix
2022-08-10 11:11:34 +0100
11e9310fd1
ctr_drbg: fix free uninitialized aes context
2022-08-10 16:32:06 +0800
08dccc1f75
Improve help message
2022-08-10 10:02:04 +0800
e9d8dcdbf5
ssl_tls: avoid the appearance of a potential NULL dereferencing
2022-08-08 15:57:48 -0700
c47c0569d4
Remove VALIDATE macros from bignum_core.c
2022-08-09 13:54:43 +0100
d1baedb786
Bignum: extract bignum_mod.h functions
2022-08-09 13:44:53 +0100
0ded631879
Bignum: extract bignum_mod_raw.h functions
2022-08-09 13:34:54 +0100
3ca0775e59
Bignum: extract bignum_core.h functions
2022-08-09 11:45:47 +0100
f421d45869
Merge pull request #6139 from AdityaHPatwardhan/fix/build_error_due_to_missing_prototype
2022-08-09 11:27:42 +0100
384f1e61f7
Merge pull request #5950 from savent404/development
2022-08-09 10:52:31 +0100
953ce3962f
Merge pull request #5971 from yuhaoth/pr/add-rsa-pss-rsae-for-tls12
2022-08-09 10:21:45 +0100
3b09739c1b
Add test case for mbedtls_ecp_set_zero
2022-08-08 11:53:45 +0100
1694969a0a
Bignum: Add tests for modulus setup and free
2022-08-08 13:37:20 +0100
d86b8ac111
Fix test_psa_crypto_config_accel_hash_use_psa build when including libtestdriver1 PSA headers from programs
2022-07-20 16:25:49 +0200
9bb8e0d3c5
Fix fuzz_privkey build without MBEDTLS_ENTROPY_C defined
2022-07-20 16:25:06 +0200
a97f1ac5f9
Initialize mbedtls_x509write_csr struct before USE_PSA_INIT(), mbedtls_x509write_csr_free() will crash if uninitialized
2022-07-20 15:49:49 +0200
9f42c0683c
Adjust hash dependencies in test_suite_ecdsa
2022-08-08 03:49:10 -0400
75ef944da3
Fix CMake change failures on Windows
2022-07-21 16:57:22 +0100
6a31396a13
Fix incorrect indentation
2022-07-20 15:16:50 +0100
265e051d06
Remove is None from if statement
2022-07-20 14:45:23 +0100
c442f6a3d6
Fix type issues
2022-07-20 14:13:44 +0100
b17ca8ad80
Remove set() to preserve test case order
2022-07-20 13:35:53 +0100
a51fe2b27e
Sort tests when generating cases
2022-07-20 13:35:22 +0100
86caf85ed2
Add test case generation for bignum add
2022-07-18 17:22:58 +0100
69a92ce497
Add test generation for bignum cmp variant
2022-07-18 15:49:43 +0100
8b2df74b12
Add bignum test generation framework
2022-07-08 13:54:57 +0100
dae1147596
Improve Bignum documentation
2022-08-08 11:50:02 +0100
8ff0729dd7
Fix typos in Bignum documentation
2022-08-08 08:39:52 +0100
a200f6f855
Add macro definitions to the tests
2022-08-03 12:59:57 +0200
6666914b76
Revert "Move Bignum macros to common header"
2022-08-03 12:52:26 +0200
37b06360b3
Add documentation for new bignum functions
2022-08-02 17:22:18 +0200
23a1ce90ec
Add tests for mbedtls_mpi_mod_raw read/write functions
2022-08-02 11:54:44 +0200
c0b9304f92
Use value as numerical value instead of bitfield value
2022-08-02 11:52:37 +0200
d8f5bc2d3d
Free the correct struct element
2022-08-02 11:51:25 +0200
535f36d203
Unify parameter naming
2022-08-02 11:50:44 +0200
e66b1d47ed
Typo
2022-08-02 11:49:59 +0200
8b718b5a66
Add bounds check to residue input
2022-07-25 11:31:02 +0100
23bdeca64d
Add core constant time comparison
2022-07-22 18:24:06 +0100
5f016650d7
Reuse Bignum core I/O functions
2022-07-22 16:18:41 +0100
91dc67d31c
Allow (NULL, 0) as a representation of 0
2022-07-22 14:24:58 +0100
4670f88991
Reuse Bignum helper functions
2022-07-21 18:25:42 +0100
4614b9ad1b
Move Bignum macros to common header
2022-07-21 15:34:47 +0100
6ff3536de5
Add tests for little endian core I/O
2022-07-21 15:27:21 +0100
f1d617deb8
Add tests for big endian core I/O
2022-07-21 09:29:32 +0100
ba5c139e4c
Add more validation to modulus life cycle
2022-07-19 13:42:07 +0100
281ccda8a5
Clean up mpi_mod_init/free
2022-07-19 13:14:36 +0100
5005edb36c
Fix typos
2022-07-19 12:45:13 +0100
c5328cf9a6
Add a set of I/O functions for the modulus structure
2022-07-18 23:13:13 +0200
b903070cec
Add a set of I/O functions
2022-07-18 23:09:45 +0200
0c655572dc
Build the new bignum_new.c file
2022-07-18 23:08:26 +0200
f049dbfe94
Add the new modulus and the residue structures
2022-07-18 23:02:33 +0200
5740ff5f1f
Merge pull request #5949 from Summer-ARM/mbedtls-psa-crypto-config
2022-08-05 11:03:45 +0200
b4983d4556
Merge pull request #6164 from mprse/md_ssl_test
2022-08-05 11:02:44 +0200
f860f3742b
Merge pull request #6070 from wernerlewis/bignum_test_radix
2022-08-05 11:01:07 +0200
57d4c11c44
Merge pull request #6165 from mprse/md_x509_test
2022-08-04 10:11:03 +0200
b3edc1576c
Merge pull request #2602 from edsiper/crt-symlink
2022-08-03 13:05:29 +0200
07e7fe516b
Merge pull request #6088 from tuvshinzayaArm/validation_remove_change_curve
2022-08-03 13:05:16 +0200
7e1ee0f04b
Merge pull request #6114 from mman/development
2022-08-03 13:04:57 +0200
27d80927d5
fix wrong typo
2022-08-02 21:28:55 +0800
4741e0b56c
Use double quotes to include private header file psa_crypto_cipher.h
2022-08-02 12:44:35 +0200
3096f331ee
Fix missing prototype warning when MBEDTLS_DEPRECATED_REMOVED is enabled
2022-07-26 14:31:46 +0530
5d8adab983
cmake: IAR support option( MBEDTLS_FATAL_WARNINGS)
2022-06-17 18:06:30 +0800
dc47fe71df
Use upper case for bignum string comparison
2022-08-01 13:55:41 +0100
3ccc116c35
Apply test data changes for conflicting cases
2022-08-01 15:11:48 +0100
a453c14a12
Remove radix arguments from tests added in 3.2
2022-07-13 16:07:02 +0100
efda01fb8c
Fix formatting in bignum test functions
2022-07-06 13:03:36 +0100
f65a327111
Remove remaining bignum radix args
2022-07-07 11:38:44 +0100
9802d36168
Remove radix arg from bignum tests
2022-07-07 11:37:24 +0100
19b4cd893c
Remove radix arg from mbedtls_test_read_mpi
2022-07-07 11:02:27 +0100
54a544600f
test_suite_x509write: use psa_hash_compute() instead mbedtls_md()
2022-08-01 13:59:12 +0200
cc59c998d8
test_suite_ssl: make PSA build independent on MD module
2022-08-01 11:51:22 +0200
78ddc3e8fc
Merge pull request #6159 from tom-cosgrove-arm/fix-typos-in-md-files
2022-08-01 10:06:28 +0200
2fcb056ea9
Add requires_{any,all}_configs_enabled functions
2022-07-27 17:30:49 +0800
d2d4110e8e
Remove Teminated message from stdout
2022-07-26 17:34:42 +0800
919ff15ecf
Merge pull request #4686 from Kazuyuki-Kimura/patch_#2020
2022-07-29 17:08:11 +0100
0b86ac1957
Fix typographical errors in .md files found by cspell
2022-07-29 13:44:01 +0100
27036c9e28
Merge pull request #6142 from tom-cosgrove-arm/fix-comments-in-docs-and-comments
2022-07-29 12:59:05 +0100
d5e8a482f9
delete whitespace in comment
2022-07-29 07:53:36 +0000
baeffbbdd2
skip test with openssl client because it will timeout with certain seed due to an openssl bug
2022-07-29 06:34:47 +0000
c3bf748dc7
fix vertical alignment
2022-07-29 10:27:17 +0800
09a99fcf8a
Add rsa_pss_rsae_* sig algos for tls12 default
2022-07-28 14:22:17 +0800
379b1ff3a5
remove useless comment
2022-07-23 11:40:25 +0800
95b743ca17
Rename get_pk_type_and_md_alg
2022-07-23 11:37:50 +0800
eec4f03c60
fix typo and changelog entry issues
2022-07-23 11:31:51 +0800
72a858517b
add changelog entry
2022-06-27 14:40:08 +0800
6455b687fe
add rsa_pss_rsae_* test for tls12 server
2022-06-27 14:18:29 +0800
693a47ab1d
add rsa_pss_rsae_* support in tls12
2022-06-23 14:02:28 +0800
257319a33e
Merge pull request #6133 from tom-cosgrove-arm/extend-query_compile_time_config-to-psa_want
2022-07-28 13:01:09 +0100
1e48445aa0
Merge pull request #6104 from superna9999/6097-remove-useless-md-in-test
2022-07-28 11:35:56 +0200
86669de348
Broke 2 long lines
2022-07-28 10:31:16 +0100
aba26d0099
Merge pull request #5963 from tom-daubney-arm/remove_ssl_compression_new
2022-07-28 10:28:23 +0100
f6b8c3297a
Merge pull request #6065 from mpg/explore2
2022-07-28 10:43:38 +0200
ce7f18c00b
Fix a/an typos in doxygen and other comments
2022-07-28 05:50:56 +0100
68429fc44d
Fix a few more typos
2022-07-27 20:37:12 +0200
fb389dde58
Enable invalid param test for ecp
2022-07-27 15:23:02 +0100
22f3654324
Remove NULL pointer validation in ecp.c
2022-07-27 15:21:48 +0100
8df9603e73
Enable invalid param test for ecjpake
2022-07-27 15:13:38 +0100
a891f83803
Re-introduce ENUM validation in ecjpake.c
2022-07-27 15:13:04 +0100
2b1ecdaf4e
Remove NULL pointer validation in ecjpake.c
2022-07-27 15:12:06 +0100
2392419c9d
Enable invalid param test in ecdh.c
2022-07-27 15:19:46 +0100
f69cac784a
Reintroduce enum validation ecdh.c
2022-07-27 14:43:38 +0100
7857caadcd
Remove NULL pointer validation in ecdh.c
2022-07-27 14:40:47 +0100
375950f119
Remove NULL pointer validations in ecdsa.c
2022-07-27 14:28:20 +0100
9115e1bc4d
Merge pull request #6137 from KloolK/development
2022-07-27 12:45:54 +0200
5900c1d405
Fix stupid mistake (s/-d/-f/) and typo found by mpg review - thanks
2022-07-27 08:55:03 +0100
31e03a8e15
Replace hard-coded zeroes for constant
2022-07-25 15:59:25 +0100
54e38ea9cd
Remove remaining references to compression in docs
2022-07-01 16:34:20 +0100
69576274cc
Add ChangeLog entry
2022-06-21 10:26:02 +0100
20f89a9605
Remove uses of SSL compression
2022-06-20 15:12:19 +0100
b839c54e1d
Correctly include psa/crypto.h in query_config.fmt
2022-07-26 11:54:08 +0100
25fdc2addb
Fix minor typos
2022-07-26 10:45:07 +0200
de9ffe37ab
Fix typos in hash_info.[ch]
2022-07-26 10:20:52 +0200
fca4dc6ba6
Clarifications & improved documentation
2022-07-26 10:10:07 +0200
ff3c6c1a1a
Add parsing of psa/crypto_config.h for PSA_WANT_xxx to query_compile_time_config
2022-07-25 12:19:35 +0100
ef83b839d0
Tidy up generate_query_config.pl in preparation for further work
2022-07-25 11:42:38 +0100
e579ece305
Merge pull request #6087 from yuhaoth/pr/add-tls13-serialize_session_save_load
2022-07-23 08:57:11 +0200
340c559cb3
Merge pull request #6079 from yuhaoth/pr/add-tls13-parse-pre_shared_key_offered_psks
2022-07-23 08:50:45 +0200
13ab81d5ac
Add handshake failure in pre_shared_key withou psk_kex_modes
2022-07-22 23:17:11 +0800
6ac7c0349a
TLS 1.3: Add session test checks
2022-07-21 23:11:55 +0800
bc7c1a4260
fix typo/format/name issues
2022-07-21 22:57:37 +0800
24e385519e
Add reconnect test
2022-07-15 16:35:26 +0800
f092629997
Add save load test for tls13
2022-07-15 13:05:57 +0800
a180f99a55
Add load-save tests for tls13
2022-07-15 12:52:54 +0800
1ac476cc1e
Add save buf size test for tls13
2022-07-15 11:22:40 +0800
6e8fec2908
add session serialization load buf
2022-07-15 10:37:02 +0800
534ff400d4
Add serialize_version_check for tls13
2022-07-14 16:43:43 +0800
438ddd835b
Add tls13 session save/load
2022-07-07 06:55:50 +0000
a66fecebe7
Add endpoint/ticket_flag field for session
2022-07-13 14:30:29 +0800
6f1db3fc92
fix format and potential non-PSK fail issue
2022-07-22 23:05:59 +0800
ce6ed7076a
Change the order of key_exchange determine
2022-07-22 21:49:53 +0800
ba9b6e9e53
fix unkown identity case
2022-07-22 21:35:18 +0800
568ec2502a
fix format/name issues
2022-07-22 21:27:34 +0800
2f0abc94d8
fix typo/type/format issues
2022-07-22 19:34:48 +0800
4beb870fa8
Merge pull request #6064 from xkqian/tls13_add_psk
2022-07-22 11:35:05 +0200
0aabb6d8b9
Fix dependency in test_suite_pk
2022-07-22 10:55:06 +0200
a948f0588c
Merge pull request #1986 from jacmet/bn_mul-fix-x86-pic-compilation-for-gcc-4
2022-07-21 17:34:48 +0100
77f0148e11
Add psk/psk_ephemeral key exchange check
2022-07-11 07:03:24 +0000
87276a326f
Merge pull request #5952 from tuvshinzayaArm/add-missing-break
2022-07-21 15:25:40 +0100
32578b3bd0
Merge pull request #6069 from yuhaoth/pr/add-tls13-write-new-session-ticket
2022-07-21 16:17:35 +0200
892747015d
Merge pull request #6112 from ronald-cron-arm/tls13-negotiated-key-exchange-mode
2022-07-21 15:46:35 +0200
34e90fac27
TLS 1.3: tests: Allow PSK exchange mode on GnuTLS server
2022-07-21 15:31:14 +0200
bee71453b2
Improve the buffer pointer check in write pre_shared key
2022-07-21 08:19:06 +0000
3ad67bf4e3
Rename functions and add test messages
2022-07-21 02:26:21 +0000
088c92977e
Remove useless force cipher suite
2022-07-20 10:43:34 +0000
7c12d31813
Refine comments for psk related code
2022-07-20 07:25:43 +0000
8698195566
Address comments of various issues
2022-07-19 09:51:50 +0000
adab9a6440
Fix transcript issues and add cases against openssl
2022-07-18 07:41:26 +0000
008d2bf80b
Address comments in psk client review
2022-07-14 07:54:01 +0000
eb69aee6af
Add psk code to tls13 client side
2022-07-05 08:21:43 +0000
fb2ed58064
Add notes on steps and testing
2022-07-21 11:04:52 +0200
c8c352c322
Update strategy document to reflect new macros
2022-07-21 11:01:50 +0200
db2c80402a
Fix dependencies in test_suite_pk
2022-07-21 11:58:21 +0200
73692b7537
Rework macros expressing dependencies
2022-07-21 10:40:13 +0200
96a2e368dc
TLS 1.3: Add pre-shared-key multiple psk parser
2022-07-21 15:11:34 +0800
6119715e05
Change type cast to size_t
2022-07-21 16:28:02 +0800
1c9247cff4
TLS 1.3: Add pre_share_key last ext check
2022-07-21 12:37:39 +0800
352cd7db59
fix various issues
2022-07-20 22:11:00 +0800
daf375aa8b
fix issues of check_binder_match
2022-07-20 21:31:43 +0800
bb852029f4
fix naming issues
2022-07-20 21:10:44 +0800
6e74a7e3c7
Add check return flags
2022-07-20 20:49:32 +0800
4a2ea16aed
remove forcecipher for psk test
2022-07-15 15:01:26 +0800
997549353e
fix various code format issues
2022-07-15 15:01:08 +0800
032b15ce5e
Add write selected_identity
2022-07-11 06:10:03 +0000
36847820fa
add tests for offered psk parser
2022-07-10 06:35:06 +0000
1c105560b4
add offered psks parser
2022-07-10 06:32:38 +0000
6dcd18d55b
export hdr checksum function
2022-07-10 06:32:05 +0000
bdc8fd630a
Suggest strategy for intra-crypto dependencies
2022-07-20 11:46:49 +0200
bc817bac76
TLS 1.3: Limit scope of tls13_kex_modes handshake field
2022-07-21 09:35:20 +0200
fca4d579a4
fix various issues
2022-07-21 10:37:48 +0800
799077177b
TLS 1.3: Use selected key exchange mode field
2022-07-20 17:05:29 +0200
853854958f
TLS 1.3: Add selected key exchange mode field
2022-07-20 16:44:00 +0200
7f9ccfeccc
TLS 1.3: Remove unnecessary key exchange mode check
2022-07-20 17:07:59 +0200
2d8b7ac898
TLS 1.3: Fix selected key exchange mode check
2022-07-20 16:21:43 +0200
ecc1031dbf
Merge pull request #6086 from paul-elliott-arm/fix_cmake_no_gen_files
2022-07-20 16:13:42 +0100
fa40b02da3
Remove use of lstat
2022-07-20 16:08:00 +0100
6cb4fcd1a5
Remove key exchange mode check.
2022-07-20 22:40:00 +0800
f7b5b59a92
Add tests for write new session ticket
2022-07-07 07:55:53 +0000
e67bef4aba
Add tls13 write new session ticket
2022-07-07 07:29:42 +0000
251a12e942
Add dummy session save
2022-07-13 15:15:48 +0800
7085aa42ee
Merge pull request #5896 from wernerlewis/aes_shallow_copy
2022-07-20 15:16:37 +0100
90ae438cfc
Merge pull request #5913 from yuhaoth/pr/add-tls13-new-session-ticket
2022-07-20 15:45:10 +0200
c95cb6d6e5
Add Changelog entry
2022-07-01 12:57:21 +0100
103f8b6506
Spelling and grammar improvements
2022-07-01 11:31:05 +0100
935154ef04
Don't increase failure count for dangling symlinks
2022-07-20 14:01:45 +0100
e1bfffc4f6
x509_crt: handle properly broken links when looking for certificates
2019-04-25 10:43:26 -0600
3afdf36de7
Add hash length check
2022-07-20 17:34:14 +0800
a14f5d9bd6
Spelling fix
2022-07-20 11:09:17 +0100
0270b9f5a4
Rm useless use of MD in PKCS#1v2.1 test functions
2022-07-19 17:49:25 +0200
9750f813a7
Rename MBEDTLS_SSL_TICKET_NONCE_LENGTH
2022-07-20 11:04:50 +0800
0a430c8aaf
Rename resumption_key and the hardcode len
2022-07-20 11:02:48 +0800
b14413804a
Remove ticket_flags
2022-07-20 10:38:27 +0800
08aed4def9
fix comments and time_t type issues
2022-07-20 10:36:12 +0800
a0446a0344
Add check_return flag
2022-07-13 11:22:55 +0800
4e6c42a533
fix various issues
2022-07-13 11:16:51 +0800
cb3b1396f3
move resume psk ticket computation to end
2022-07-12 06:09:38 +0000
af2c0c8dd6
fix various comment/format issues
2022-07-12 05:47:21 +0000
a357cf4d4c
Rename new_session_ticket state
2022-07-12 05:36:45 +0000
29ab32d0e5
Add client side tests
2022-07-07 11:33:35 +0000
2b4f02d7fb
Add new_session_ticket err handler
2022-07-07 11:41:58 +0000
f8a4994ec7
Add tls13 new session ticket parser
2022-07-07 11:32:32 +0000
c62ae5f539
Add new session ticket message check
2022-07-07 09:42:26 +0000
a270f67340
Add tls13 session fields
2022-07-07 06:51:06 +0000
0038c5ff1c
Add ticket nonce setting
2022-07-07 06:49:01 +0000
5ea65173fb
Rm useless use of MD in ECDSA test functions
2022-07-19 16:54:28 +0200
582f72bf3b
Fix linking of generated files in cmake
2022-07-12 14:55:01 +0100
d99f24c792
Add a ChangeLog entry
2022-07-19 08:55:48 +0100
d82a9edc63
Rm now-duplicate helper function
2022-07-18 15:21:37 +0200
130fa4d376
Rm local helper now that a global one is available
2022-07-18 15:12:48 +0200
abac037a7b
Migrate from old inline to new actual function.
2022-07-18 13:41:11 +0200
4772884133
New internal module for managing hash information
2022-07-18 13:00:40 +0200
c0546e351f
bn_mul.h: fix x86 PIC inline ASM compilation with GCC < 5
2018-08-27 22:50:57 +0200
1f7f7172dc
Document existing dependency of MD_C
2022-07-18 12:04:05 +0200
8c7b81cdf9
Fix a bunch of typos
2022-07-18 11:17:06 +0200
1c402a4217
Remove macro that's no longer used
2022-07-18 12:46:30 +0200
d5b1eb51db
Merge pull request #6078 from yuhaoth/pr/add-tls13-paser-psk-kex-mode-ext
2022-07-18 11:34:24 +0200
4608c48b0c
Rm useless use of MD in PK test functions
2022-07-18 10:55:56 +0200
5ef4e8d9b9
Don't depend on strong entropy for RSA tests
2022-07-16 08:57:19 +0200
1d1174a5c3
Rm spurious declared dependency in test_suite_rsa
2022-07-16 08:41:34 +0200
236c4e22f7
Adjust test dependencies after last commit
2022-07-16 08:35:06 +0200
a4aa12f0a1
Rm useless use of MD in RSA test functions
2022-07-16 08:20:26 +0200
5ce9959185
Adjust test dependencies after last commit
2022-07-16 08:04:55 +0200
a9e1d9953e
Rm useless use of MD in PKCS#1v1.5 test functions
2022-07-16 07:52:42 +0200
f0762e929e
Enable inline assembly in armcc all.sh component
2022-07-15 12:08:19 +0100
907a367b50
Remove explicit width suffixes from Arm bignum assembly
2022-07-15 12:00:58 +0100
4c1087f474
Use MBEDTLS_OR_PSA_WANT_xxx in test_suite_rsa
2022-07-15 11:16:58 +0200
f88b1b5375
Introduce MBEDTLS_OR_PSA_WANT_xxx helper macros
2022-07-15 11:05:05 +0200
854dd9e23f
fix comment issue
2022-07-15 14:28:27 +0800
0b5f4950cc
Merge pull request #5953 from tuvshinzayaArm/update-document-PSA_ALG_RSA_PSS
2022-07-14 10:40:21 +0100
c52e3bd93b
Improve comment
2022-07-14 10:48:46 +0800
299e31f10e
fix various issue
2022-07-13 23:06:36 +0800
3637c516a4
Refine dependencies in test_suite_pkcs1_v15
2022-07-13 12:41:36 +0200
0dca5ef773
Merge pull request #6081 from daverodgman/assemble-cl-case
2022-07-12 16:48:20 +0100
72fa1c23ed
Merge pull request #960 from paul-elliott-arm/merge-into-3.2.1
2022-07-12 16:24:10 +0100
af4b90db3f
Revert "Add missing library/psa_crypto_driver_wrappers.c"
2022-07-12 10:44:02 +0100
81c69b547a
Revert "Revert "Revert "Add generated files for 3.2.0 release"""
2022-07-12 10:43:38 +0100
fe52e55301
redirect stderr output in ubuntu22.04
2022-07-09 04:23:43 +0000
e36397d13b
add tests for psk_key_exchange_mode
2022-07-09 04:20:59 +0000
e19e3b9eb8
Add psk_key_exchange_modes parser
2022-07-08 12:04:51 +0000
869298bffe
Add 3.2.1 Changelog
2022-07-12 10:39:42 +0100
cd08ba0326
Bump version to 3.2.1
2022-07-12 10:36:53 +0100
c2a9387110
Add missing library/psa_crypto_driver_wrappers.c
2022-07-12 10:04:43 +0100
185d24ba0e
Revert "Revert "Add generated files for 3.2.0 release""
2022-07-12 10:03:59 +0100
af8cf5c04e
Add a partial plan towards G5
2022-07-12 11:05:53 +0200
c0d78e9e69
Remove outdated paragraphs about G5
2022-07-12 09:41:05 +0200
481846c82f
General update of PSA strategy documentation
2022-07-12 09:27:39 +0200
7b0825d180
Build with SHA-256 accelerated too
2022-07-11 11:06:09 +0200
f0f63bc1b6
Test without MD_C
2022-07-08 19:12:33 +0200
bbd0dc6cbd
Fix hash-specific dependencies of test_suite_pk
2022-07-08 12:01:55 +0200
abcfa90276
PK test functions don't depend on software SHA-256
2022-07-08 10:51:45 +0200
2d08ea49c8
Some PK test functions no longer depend on MD
2022-07-08 10:48:18 +0200
043c8c5de8
Add USE_PSA version of PK test functions
2022-07-08 10:33:44 +0200
bab73ab842
Loosen guards in mbedtls_psa_translate_md()
2022-07-08 09:53:17 +0200
5508673832
Add helper macros for dependencies based on USE_PSA
2022-07-07 12:17:55 +0200
525add631e
Add component with accelerated hashes and USE_PSA
2022-07-06 13:06:57 +0200
97ab2a3ae2
Clean up two accel tests in all.sh
2022-07-06 10:46:57 +0200
46a295422d
Build and test RSA PKCS#1v1.5 without MD
2022-07-05 13:13:23 +0200
e496c6273e
Sort out MD dependencies in RSA tests
2022-07-05 13:11:13 +0200
3f4778995e
Rm dependency on MD in psa_crypto_rsa.c
2022-07-05 11:30:31 +0200
fe2b9b5397
Make mbedtls_oid_get_md_alg() always available
2022-07-05 11:35:52 +0200
f493f2ad1d
Use md_internal_get_size() in rsa.c
2022-07-05 17:41:05 +0200
3356b89b64
Add missing guard around call to MD
2022-07-05 10:25:06 +0200
b86279fc63
Build and test PK without MD
2022-07-05 12:11:05 +0200
6a0a160f99
Avoid a dependency on MD in test_suite_pk
2022-07-05 12:09:04 +0200
a370e06e30
Avoid dependency of PK on MD
2022-07-05 11:55:20 +0200
d8a298e1fc
Add internal MD size getter
2022-07-05 17:40:04 +0200
91385121b9
delete openssl version requirement for openssl client, because the bug only occurs on openssl server
2022-07-12 01:48:17 +0000
6dc7cdfdd1
Merge pull request #959 from paul-elliott-arm/merge-into-3.2.0
2022-07-11 20:01:18 +0100
7adb8cbc0e
Revert "Add generated files for 3.2.0 release"
2022-07-11 17:46:05 +0100
3aef7670b7
Merge pull request #957 from paul-elliott-arm/mbedtls-3.2.0rc0-pr
2022-07-11 15:45:03 +0100
cb21f2eab3
Add generated files for 3.2.0 release
2022-07-08 12:25:39 +0100
f14b742689
Update BRANCHES.md for 3.2.0 release
2022-07-08 12:29:24 +0100
20362cd1ca
Bump library and so versions for 3.2.0 release
2022-07-08 12:21:35 +0100
2238eed2d9
Update Changelog for 3.2.0 release
2022-07-08 18:19:12 +0100
2089fd0ea9
Rename Changelog entries that don't have .txt extension
2022-07-08 10:15:41 +0100
237c87ba0e
Add missing Changelog entries
2022-07-07 17:06:14 +0100
f518f81d41
Ensure return for mbedtls_ssl_write_alpn_ext() is checked
2022-07-11 12:36:20 +0100
ca9556bff1
Fix case of Mbed TLS in assemble_changelog.py
2022-07-11 11:39:21 +0100
9a8d78419f
Fixup test tls13_server_certificate_msg_invalid_vector_len
2022-07-10 12:48:57 +0100
20ccd6e8bb
Merge remote-tracking branch 'origin/development' into mbedtls-3.2.0rc2-pr
2022-07-11 11:29:32 +0100
ce7d76e2ee
Merge remote-tracking branch 'mbedtls-restricted/development-restricted' into mbedtls-3.2.0rc0-pr
2022-07-08 18:56:49 +0200
a343d34f0d
Merge pull request #6077 from paul-elliott-arm/fix_generate_debug_helpers_pylint
2022-07-08 22:28:41 +0100
4a49651860
Fix formatting of generate_ssl_debug_helpers.py
2022-07-08 19:59:09 +0100
391e33ac93
Merge pull request #6076 from paul-elliott-arm/fix_generate_debug_helpers
2022-07-08 17:55:51 +0100
fe9d43c21d
Fix generation of ssl_debug_helpers
2022-07-08 17:27:25 +0100
6e80e09bd1
Merge pull request #5915 from AndrzejKurek/cid-resumption-clash
2022-07-06 15:03:36 +0100
1ce9ca0630
Changelog rewording Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-06 06:48:48 -0400
21b50808cd
Clarify the need for calling mbedtls_ssl_derive_keys after extension parsing Use a more straightforward condition to note that session resumption is happening. Co-authored-by: Ronald Cron <ronald.cron@arm.com> Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-06 03:26:55 -0400
826762e315
Merge pull request #5765 from leorosen/fix-some-resource-leaks
2022-07-05 23:12:02 +0100
3a29e9cf57
Improve changelog wording Co-authored-by: Ronald Cron <ronald.cron@arm.com> Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-05 10:49:10 -0400
c6a4a1cc13
Merge pull request #6011 from gabor-mezei-arm/coverity_22_07_01
2022-07-05 13:59:34 +0100
c1999d5746
Add fallback when rk unaligned with padlock
2022-07-05 11:55:15 +0100
ddb8cd601d
test_suite_ssl: Fix handshake options cleanup Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-04 16:07:28 -0400
0358597589
Merge pull request #5757 from mpg/update-doc-use-psa
2022-07-04 17:59:00 +0200
9dc4402afa
test_suite_ssl: zeroize the cache pointer in case if the struct memory gets reused Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-04 05:46:15 -0400
1e085686ec
test_suite_ssl: remove unnecessary user data checks Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-04 05:23:21 -0400
3d0d501517
test_suite_ssl: prefer ASSERT_ALLOC over malloc Fix formatting for option initialization Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-04 05:20:55 -0400
2e1a232261
Fix changelog wording Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-28 11:16:09 -0400
92d7417d89
Formatting fixes Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-28 10:29:42 -0400
e11acb2c9b
test_suite_ssl: add proper cache cleanup Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-27 06:11:34 -0400
e8ad0d7d42
Disable bad session id length test in TLS 1.3 Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-11 09:43:45 -0400
456a109edb
test_suite_ssl: add required dependencies for default handshake parameters Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-11 06:27:05 -0400
6e518ab086
test_suite_ssl: add missing options cleanup Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-11 05:08:38 -0400
ed58b50ea6
test_suite_ssl: add missing MBEDTLS_SSL_SERVER_C dependency Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-10 19:24:05 -0400
626a931bb9
test_suite_ssl: Add missing arguments in endpoint initialization Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-10 11:07:39 -0400
9abad0c5ef
Improve the changelog message to contain more details Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-10 10:40:54 -0400
514683abdc
Add a test with a bad session_id_len that makes cache setting fail Force a bad session_id_len before handshake wrapup. This should result in a forced jump to a clean up of a serialized session. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-10 10:33:05 -0400
780dc18f74
Refactor test_suite_ssl tests to enable cache setting Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-10 08:57:19 -0400
b7aba1a584
Improve Changelog
2022-05-13 17:17:30 +0100
072d2b094d
Add pem_free() to other error paths in pk_parse_public_key()
2022-05-13 17:08:36 +0100
56e01f37a8
Created customary ChangeLog.d entry.
2022-04-22 16:36:24 -0700
116f50cd96
Fix resource leaks
2022-04-21 13:05:10 -0700
b5b27c1114
Misc clean-ups in docs/use-psa-crypto.md
2022-06-10 11:09:03 +0200
465341f438
Add ChangeLog entries for general Use PSA improvements
2022-06-10 10:57:44 +0200
2dc436d6e7
Tune description of PSA crypto implementation
2022-06-08 10:09:51 +0200
0dba51cfad
Fix list of what's common to TLS 1.2 and 1.3
2022-06-07 10:28:02 +0200
9bf9b9e269
Link to restartable ECC EPIC
2022-06-07 10:16:24 +0200
cbc03f5377
Update README about USE_PSA_CRYPTO
2022-06-07 10:10:39 +0200
f3f79a00fc
Now compatible with MBEDTLS_PSA_CRYPTO_KEY_ID_ENCODES_OWNER
2022-05-11 13:31:47 +0200
3e83098e01
Clarify the TLS 1.3 situation
2022-05-11 13:27:44 +0200
103b9929d1
Remove HKDF-Extract/Expand
2022-05-11 13:21:39 +0200
b2bd34ecdc
Update docs/use-psa-crypto.md
2022-04-20 15:58:00 +0200
ff43ff6e78
Remove stability waiver from USE_PSA
2022-04-20 15:32:01 +0200
97ec0b7bfa
Clarify effect of USE_PSA on TLS 1.3
2022-04-20 15:20:15 +0200
2a47d23927
Update strategy.md
2022-04-20 15:01:13 +0200
83c538869e
Update psa-limitations
2022-04-20 14:27:48 +0200
b8a6c2320e
Update testing.md
2022-04-20 12:50:59 +0200
2ffb93a83b
Rm tasks-g2.md
2022-04-20 12:38:09 +0200
4d7af2aee0
Merge pull request #5835 from superna9999/5831-tls-1-2-ciphersuite-selection
2022-07-04 12:37:02 +0200
41aa808a56
Merge pull request #952 from gilles-peskine-arm/stdio_buffering-setbuf
2022-07-04 10:12:22 +0100
0e39ece23f
Merge pull request #5916 from yuhaoth/pr/tls13-refactor-get-sig-alg-from-pk
2022-07-04 09:10:08 +0200
7c6b0e4464
Merge pull request #5972 from wernerlewis/migration_guide_removals
2022-07-01 17:40:21 +0100
6931e439e4
Fix Handshake select ECDH-RSA- test dependencies
2022-07-01 18:30:10 +0200
bae7a1a5a6
Merge pull request #5620 from gstrauss/dn_hints
2022-07-01 17:23:14 +0100
c466ec2e73
Fix code formatting
2022-07-01 16:43:25 +0100
dfb5da2a99
Fix changelog requirements section.
2022-07-01 16:32:14 +0100
ff15dbab4c
Make definition order a bit neater
2022-07-01 16:30:08 +0100
7922bfbd47
Merge pull request #6005 from ronald-cron-arm/tls13-changelogs-doc-update
2022-07-01 17:27:33 +0200
971f30d917
Fix mbedtls_ssl_get_ciphersuite_sig_alg() by returning MBEDTLS_PK_NONE for MBEDTLS_KEY_EXCHANGE_RSA
2022-07-01 16:23:50 +0200
c67e6e96f8
Depends on MBEDTLS_X509_REMOVE_INFO disable for double Opaque keys test requiring cert infos to determine selected key
2022-07-01 15:48:10 +0200
dc3f3bb8b1
Initilize variable
2022-07-01 15:06:34 +0200
3cb707dc6d
Fix and improve logs and documentation
2022-07-01 14:36:52 +0200
7ac0d498de
remove force_version for client
2022-07-01 19:29:30 +0800
8b8a1610f7
Merge pull request #936 from paul-elliott-arm/fix_tls_record_size_check
2022-07-01 12:29:48 +0200
790ab52ee0
Merge pull request #5962 from gilles-peskine-arm/storage-format-doc-202206
2022-07-01 12:21:17 +0200
52b7d923fe
fix various issues
2022-07-01 18:03:31 +0800
08346434d2
Add TLS 1.3 change logs
2022-07-01 11:27:19 +0200
2ba0d23c65
Update TLS 1.3 support documentation
2022-07-01 11:25:49 +0200
7999cb3896
Remove auth_mode=required and client crt_file/key_file when testing server authentication
2022-07-01 09:51:33 +0200
4b10209568
Use different certs for double opaque keys and check certificate issuer CN
2022-07-01 09:42:29 +0200
11ccb35987
Merge pull request #5994 from gilles-peskine-arm/storage-format-doc-2.25-development
2022-07-01 09:25:35 +0200
0bd76ee2ed
Fix Doxygen documentation attached to non-existent elements
2022-06-30 19:32:02 +0200
1948a20796
Cleanup Order & Title of Opaque TLS tests, fix RSA- test definition
2022-06-30 18:05:57 +0200
96eceb8022
Refine mbedtls_ssl_tls12_get_preferred_hash_for_sig_alg() when USE_PSA_CRYPTO is selected
2022-06-30 18:05:05 +0200
cf4d9f98c7
Changelog entry for mbedtls_setbuf()
2022-06-30 17:07:47 +0200
6d576c9646
Call setbuf when reading or writing files: programs
2022-06-30 17:06:11 +0200
da0913ba6b
Call setbuf when reading or writing files: library
2022-06-30 17:03:40 +0200
6497b5a1d1
Add setbuf platform function
2022-06-30 17:01:40 +0200
cb67e1a890
Merge pull request #5917 from gilles-peskine-arm/asn1write-0-fix
2022-06-30 15:42:16 +0200
bcde39ca4a
Merge pull request #5612 from tom-cosgrove-arm/tls13-config-options
2022-06-30 15:10:02 +0200
0b7ee23fe0
Historical update: the layout on stdio changed in Mbed Crypto 1.1.0
2022-06-30 12:16:50 +0200
38989612d6
Typos
2022-06-30 12:16:32 +0200
219a34839c
Repeat the seed file documentation in 2.25.0
2022-06-30 12:15:53 +0200
3d65a19ee3
Fix wrong type in C snippet
2022-06-30 12:15:35 +0200
167d82c4df
Add dual keys Opaque ssl-opt tests
2022-06-30 11:32:00 +0200
31fcfd5632
Merge pull request #5981 from mprse/hkdf_config_fix
2022-06-30 11:27:16 +0200
36b022334c
Reorganize Opaque ssl-opt tests, pass key_opaque_algs=, add less wrong negative server testings
2022-06-30 11:16:53 +0200
b2c3b5be2d
Fix depends on handshake_ciphersuite_select tests
2022-06-30 10:49:04 +0200
d7adb3c7d9
Add comments about MBEDTLS_PSA_CRYPTO_C also being required by MBEDTLS_SSL_PROTO_TLS1_3
2022-06-30 09:48:40 +0100
25e39f24b9
Add section for Mbed TLS 2.25.0+
2022-06-30 09:16:53 +0200
db13497490
Reorganize & add more handshake_ciphersuite_select to test all MBEDTLS_KEY_EXCHANGE_XXX cases
2022-06-30 09:06:28 +0200
9b64546eb2
Update tests/ssl-opt.sh, delete 1 blank line.
2022-06-30 10:27:08 +0800
f6a56cf5ff
Merge pull request #939 from ronald-cron-arm/tls13-add-missing-overread-check
2022-06-29 17:01:14 +0100
afb2fe1acf
Document that MBEDTLS_SSL_KEEP_PEER_CERTIFICATE is required by MBEDTLS_SSL_PROTO_TLS1_3
2022-06-29 16:36:12 +0100
ec0193d019
Update test to cover move-decrypt sequence
2022-06-13 12:28:25 +0100
7656a373b6
Reformat AES changes for readability
2022-06-13 12:28:20 +0100
6d71944f0d
Specify unit for rk_offset in AES context
2022-06-13 12:28:07 +0100
dd76ef359d
Refactor AES context to be shallow-copyable
2022-05-30 12:00:21 +0100
1dc6848679
Merge pull request #5976 from gilles-peskine-arm/selftest-calloc-pointer-comparison-fix-development
2022-06-29 15:25:04 +0100
5b50f38f92
Merge pull request #934 from gilles-peskine-arm/mpi-0-mod-2
2022-06-29 15:02:59 +0100
955993c4b5
For status values, the macro expansions must not change either
2022-06-29 14:37:17 +0200
4fd898e876
More wording improvements
2022-06-29 14:29:52 +0200
aae28f178b
add tests
2022-06-29 16:21:32 +0800
2fe6c638e2
remove supported check from parse sig algs
2022-06-29 10:02:38 +0800
959e5e030b
fix format issue
2022-06-29 09:49:02 +0800
660cb4209c
Remove pkcs1 from key cert and sig alg map
2022-06-28 16:17:58 +0800
71b18844ff
fix various issues
2022-06-27 23:01:49 +0800
05d5f81c20
Fix spelling and formatting consistency
2022-06-29 09:19:29 +0100
9d3e2fa372
Add negative tests
2022-06-27 22:14:01 +0800
2f244c43b4
Merge pull request #5980 from mprse/md_dep_fix
2022-06-29 10:18:41 +0200
c2e0493e6e
Add rsa_pkcs1 for cert sig match
2022-06-27 22:13:03 +0800
cc5391048e
fix various issues
2022-06-27 16:27:35 +0800
202919c23d
refine supported sig alg print
2022-06-27 16:21:00 +0800
ee28e7a21d
add tests for select sig alg
2022-06-24 19:35:40 +0800
a0bb906c9f
fix handshake_version test fail.
2022-06-24 17:04:12 +0800
aebaaaf527
add debug messages
2022-06-24 13:14:36 +0800
64f410c246
Add tls13 sig alg parameters
2022-06-24 13:09:27 +0800
430db6b6ff
Remove hack fix for server hybrid issue
2022-06-24 13:05:28 +0800
a1255e6b8c
fix various issues
2022-06-24 10:10:47 +0800
9bb3ee436b
Revert rsa_pss_rsae_* support for tls12
2022-06-23 10:16:33 +0800
53f5c15155
Add debug message
2022-06-22 20:24:38 +0800
80dd5db808
Remove pkcs1 from certificate verify.
2022-06-22 19:30:32 +0800
d4a71a57a8
Add tls12 algorithms in hybrid mode client hello
2022-06-22 14:42:59 +0800
5ef71f2723
remove rsa_pkcs1_* from tls13 support list
2022-06-22 14:03:16 +0800
f085678879
remove unnecessary check
2022-06-22 13:59:31 +0800
6272c4d4aa
Revert unnecessary space change
2022-06-22 13:46:55 +0800
96ee23eb88
fix tls12 openssl/gnutls server fail
2022-06-21 16:34:57 +0800
ba5e379697
Revert order of default sig_algs
2022-06-21 15:26:05 +0800
3f71ca0941
Remove rsa_pss_rsae_* from tls12 sig_algs
2022-06-21 14:42:03 +0800
0c6be8f863
move big function
2022-06-20 20:42:00 +0800
3896ac6e5b
fix ordered sig algs fail for openssl
2022-06-19 17:16:38 +0800
f3b46b5082
Add debug message
2022-06-19 16:52:27 +0800
d099cf0325
fix unused variable issue
2022-06-19 13:47:00 +0800
f55886a217
fix various issues
2022-06-19 11:48:56 +0800
6babfee178
remove out of scope codes
2022-06-19 11:31:53 +0800
fb526693c1
Rename sig_alg cert_key check
2022-06-19 11:22:49 +0800
a6076aa8b8
Revert temp test
2022-06-17 18:52:43 +0800
f0cda410a4
remove default sig_hashes
2022-06-17 14:29:46 +0800
7ab7f2b184
Remove pkcs1 from certificate_verify
2022-06-16 19:07:10 +0800
08524c55f9
remove pkcs1_* support
2022-06-16 16:58:57 +0800
0ebce95785
create tls12/tls13 sig alg support check
2022-06-16 13:54:47 +0800
9f4cc5ff65
Add pss_rsae sig algs into test conf
2022-06-16 11:40:44 +0800
f249ef7821
refactor get sig algo from pk
2022-06-15 17:23:33 +0800
7898fd456a
Merge pull request #5970 from gabor-mezei-arm/5229_Send_dummy_change_cipher_spec_records_from_server
2022-06-29 09:47:49 +0200
bd10c4e2af
Test accessors to config DN hints for cert request
2022-06-25 03:15:48 -0400
87a9c86d87
Re-enable five tests disabled because of an old OpenSSL bug
2022-06-28 06:10:35 +0000
d86abf2392
Merge pull request #5861 from wernerlewis/csr_subject_comma
2022-06-28 21:00:49 +0200
7d14c19730
Merge pull request #5905 from gilles-peskine-arm/changelog-improvements-20220609-development
2022-06-28 21:00:10 +0200
999ef70b27
Add accessors to config DN hints for cert request
2022-03-11 01:37:23 -0500
2407279fa4
Add tests with specific hash for handshake_ciphersuite_select positive tests
2022-06-27 14:43:30 +0200
9f1176a793
Move preferred_hash_for_sig_alg() check after ssl_pick_cert() and check if hash alg is supported with mbedtls_pk_can_do_ext()
2022-06-24 18:19:19 +0200
ed917bf548
Update description for negative key_opaque_algs tests
2022-06-24 15:03:25 +0200
9f4606e6d2
Rename mbedtls_ssl_get_ciphersuite_sig_pk_ext_XXX in mbedtls_ssl_get_ciphersuite_sig_pk_ext_XXX()
2022-06-24 15:00:50 +0200
8c52ed8d1e
Add negative testing of ciphersuite selection using Opaque algs & usage
2022-05-27 13:14:55 +0200
eb4390b27c
Add Cipersuite selection negative testing by using invalid algs for server-side opaque key
2022-05-27 10:26:02 +0200
0c9c10a401
Introduce mbedtls_ssl_get_ciphersuite_sig_pk_ext_alg() and use it in ssl_pick_cert()
2022-05-12 14:15:06 +0200
9e4b7bd199
Do not force TLS 1.3 on client side for TLS 1.3 middlebox compatibility tests
2022-06-28 16:22:14 +0200
f7044eaec8
Fix name
2022-06-28 16:01:49 +0200
e99ec7cb6a
Merge pull request #5908 from ronald-cron-arm/tls13-fixes-doc
2022-06-28 12:16:17 +0200
9f2596f387
Add MBEDTLS_POLY1305_C and MBEDTLS_CHACHA20_C
2022-06-17 12:50:32 +0800
96ae926572
Typo
2022-06-28 11:45:18 +0200
5471912269
Move switching to handshake transform after sending CCS record
2022-06-28 11:34:56 +0200
05ebf3be74
Revert "Do not encrypt CCS records"
2022-06-28 11:55:35 +0200
4dc874453e
ssl_tls13_parse_certificate_verify(): optimize the code
2022-06-28 11:05:42 +0200
273453f126
Merge pull request #5983 from gstrauss/inline-mbedtls_x509_dn_get_next
2022-06-28 10:13:58 +0200
6b14c69277
Improve documentation
2022-06-24 13:45:04 +0200
11b5332ffc
tls13: Fix certificate extension size write
2022-06-01 14:58:52 +0200
139d0aa9d3
Fix typo in documentation
2022-06-14 18:45:44 +0200
81a334fc02
tls13: Fix buffer overread checks in ssl_tls13_parse_alpn_ext()
2022-05-31 16:04:11 +0200
585cd70d04
tests: ssl: Fix coverity deadcode issue
2022-06-10 15:02:05 +0200
7b8404608a
tls13: Rename ssl_tls13_write_hello_retry_request_coordinate
2022-06-01 17:05:53 +0200
fb508b8f21
tls13: Move state changes up to state main handler
2022-05-31 14:49:55 +0200
63dc463ed6
tls13: Simplify switch to the inbound handshake keys on server side
2022-05-31 14:41:53 +0200
5afb904022
tls13: Move out of place handshake field reset
2022-05-31 12:11:39 +0200
828aff6ead
tls13: Rename server_hello_coordinate to preprocess_server_hello
2022-05-31 12:04:31 +0200
db5dfa1f1c
tls13: Move ServerHello fetch to the ServerHello top handler
2022-05-31 11:44:38 +0200
44b23b10e1
tls13: Document TLS 1.3 handshake implementation
2022-05-31 16:05:13 +0200
9d6a545714
tls13: Re-organize EncryptedExtensions message parsing code
2022-05-30 16:05:38 +0200
154d1b68d6
tls13: Fix wrong usage of MBEDTLS_SSL_CHK_BUF(_READ)_PTR macros
2022-06-01 15:33:26 +0200
c80835943c
tls13: Fix pointer calculation before space check
2022-05-31 16:24:05 +0200
2827106199
tls13: Add missing buffer overread check
2022-06-10 14:43:55 +0200
b94854f8e3
Merge pull request #5973 from ronald-cron-arm/tls13-misc-tests
2022-06-28 09:15:17 +0200
5969a4b5e0
Don't call memcpy(NULL, 0) which has undefined behavior
2022-06-27 23:59:20 +0200
bf918b9cfe
Use headlinese for added functions, per request
2022-06-27 23:34:32 +0200
3dc9ac95ec
Spelling
2022-06-27 23:02:58 +0200
ed5c21dc37
Declare deprecated option for no_deprecated configs
2022-06-27 23:02:09 +0200
01d2f52a32
Inline mbedtls_x509_dn_get_next() in x509.h
2022-06-27 14:12:44 -0400
18399d8d53
Add comment to config_psa.h about enabling PSA_HKDF/PSA_HKDF_EXRACT/PSA_HKDF_EXPAND algs
2022-06-27 13:34:50 +0200
f5b7082f6e
Merge pull request #5811 from polhenarejos/bug_x448
2022-06-27 13:47:24 +0100
251ca25d94
Clarify potential ambiguity in changelog entry
2022-06-27 14:47:15 +0200
9b0e940135
Fix case where final special char exceeds buffer
2022-06-27 12:01:22 +0100
9e30fc94f3
Remove redundant spaces
2022-06-27 12:48:35 +0200
fd8cfe4f8e
Replace parsing with outputting
2022-06-27 09:58:12 +0100
31ecb9600a
Add tests for exceeded buffer size
2022-06-17 15:51:55 +0100
b33dacdb50
Fix parsing of special chars in X509 DN values
2022-05-20 12:48:46 +0100
6a5e01858f
ssl_tls13_parse_certificate_verify(): remove md dependency
2022-06-27 11:53:13 +0200
6230d0d398
mbedtls_x509_sig_alg_gets(): remove md dependency
2022-06-27 11:19:04 +0200
4abd7c2545
Minor phrasing changes
2022-06-27 09:22:49 +0100
129d6adc0e
Use mbedtls-2.28 branch for documentation link
2022-06-27 09:41:28 +0100
4b8aaa4e60
Add clarification on 2.x branch choice
2022-06-27 09:30:11 +0100
f5b86f3b16
Add clarification for 2.x section
2022-06-27 09:20:01 +0100
cf600bc07c
Comment fixes
2022-06-17 15:54:16 +0200
e0d7367a9e
Add change log
2022-06-17 15:38:26 +0200
2b1a43c101
tls13: Add missing overread check in Certificate msg parsing.
2022-06-10 17:03:54 +0200
e7b9b6b380
tls13: Add checks of overread check failures
2022-06-10 17:24:31 +0200
ad8c17b9c6
tls: Add overread/overwrite check failure tracking
2022-06-10 17:18:09 +0200
e3dac4aaa1
tls13: Add Certificate msg parsing tests with invalid vector lengths
2022-06-10 17:21:51 +0200
a8d79b9eb6
ssl-opt.sh: Remove one pattern check
2022-06-27 09:05:35 +0200
07040bb179
Merge pull request #5951 from xkqian/tls13_add_alpn
2022-06-27 08:33:03 +0200
9738a8d0fd
Merge pull request #943 from ronald-cron-arm/tls13-fix-key-usage-checks
2022-06-27 08:32:17 +0200
0ff241a1ea
Remove largely useless bit of test log to silence GCC 12
2022-06-25 14:29:23 +0200
668b31f210
Fix the wrong variable being used for TLS record size checks
2022-06-10 14:11:31 +0100
f8a478795c
Add guidance for generating deprecated list
2022-06-24 11:02:54 +0100
21a1b2d374
Enable "Sending app data" SSL unit tests for TLS 1.3
2022-06-15 17:11:35 +0200
c78511b59a
ssl-opt.sh: Enable some authentication tests for TLS 1.3
2022-06-15 16:48:34 +0200
1938588e80
tls13: Align some debug messages with TLS 1.2 ones
2022-06-15 16:26:13 +0200
a4417c13a1
ssl-opt.sh: Add Small/Large packets TLS 1.3 tests
2022-06-23 16:06:28 +0200
ba80d4d60b
ssl-opt.sh: Enable Event-driven I/O tests for TLS 1.3
2022-06-23 16:03:02 +0200
2cffd284bc
ssl-opt.sh: Enable Non-blocking I/O tests for TLS 1.3
2022-06-23 15:51:23 +0200
0b776e282a
Change some comments for alpn
2022-06-24 09:04:59 +0000
93a7f7d7f8
Merge pull request #5954 from wernerlewis/x509_next_merged
2022-06-24 09:59:22 +0200
fc425ee9a4
Merge pull request #5838 from mprse/HKDF_2
2022-06-24 09:28:17 +0200
95d5f549f1
Fix coding styles
2022-06-24 02:29:26 +0000
016cec17e8
Add deprecated macros to migration guide
2022-06-23 12:33:35 +0100
745fcde406
Add reference to 2.x docs to migration guide
2022-06-23 12:19:27 +0100
3e5585b45d
Replace TEST_ASSERT macro uses
2022-06-23 15:12:10 +0100
ac80a66395
Reduce buffer sizes to expected size
2022-06-23 11:58:02 +0100
5708b45154
Add a changelog entry for the session resumption + CID bug Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-23 08:00:14 -0400
4f799fc333
Merge pull request #941 from mpg/buf-overread-use-psa-static-ecdh-dev
2022-06-23 11:57:33 +0200
4cfaae5b6b
Save code size by calling get_type only once
2022-06-23 09:43:39 +0200
1b0ebdf363
Zeroize hkdf_label buffer
2022-06-23 09:22:49 +0200
38ab400dc4
Adapt code to be consistent with the existing code
2022-06-23 09:05:40 +0200
c740345c5b
Adress review comments
2022-06-23 03:24:12 +0000
f9c13fe69f
ssl-opt.sh: Add positive check in successful "keyUsage client-auth" tests
2022-06-22 14:35:17 +0200
ba65fbbe30
Fix comments
2022-06-22 14:35:05 +0200
96ec831385
Do not encrypt CCS records
2022-06-22 13:17:28 +0200
7e2dbafe2d
Add test for dummy CCS records
2022-05-24 16:05:29 +0200
7b39bf178e
Send dummy change_cipher_spec records from TLS 1.3 server
2022-05-24 16:04:14 +0200
acb3992251
Add ALPN extension to the server side
2022-06-17 10:18:48 +0000
b33bd19197
Enable HKDF EXTRACT/EXPAND algs
2022-06-21 09:58:51 +0200
d5ae365b97
Use PSA HKDF-Extrat/Expand algs instead mbedtls_psa_hkdf_extract(), mbedtls_psa_hkdf_xpand()
2022-05-13 12:10:08 +0200
88e7101d03
Remove mbedtls_psa_hkdf_extract(), mbedtls_psa_hkdf_expand()
2022-05-13 12:08:50 +0200
0c9e74bd55
Remove mbedtls_psa_hkdf_expand() and mbedtls_psa_hkdf_extract() tests
2022-05-12 14:38:48 +0200
a82a8b9f4b
Mark internal int SSL functions CHECK_RETURN_CRITICAL
2022-06-17 10:53:58 +0200
a3115dc0e6
Mark static int SSL functions CHECK_RETURN_CRITICAL
2022-06-17 10:52:54 +0200
66b0d61718
Add comments when can_do() is safe to use
2022-06-17 10:49:29 +0200
19a567ba43
Fix impact evaluation
2022-06-16 09:50:04 +0200
22e84de971
Improve contract of mbedtls_pk_ec/rsa()
2022-06-10 09:48:38 +0200
1c91b0c434
Clarify warning about mbedtls_pk_ec/rsa()
2022-06-10 09:40:58 +0200
b64fb62ead
Fix unchecked return value from internal function
2022-06-10 09:34:20 +0200
32a38dfec5
Add ChangeLog for potential overread with USE_PSA
2022-06-15 10:50:18 +0200
e0469b5908
Merge pull request #931 from AndrzejKurek/clihlo_cookie_pxy_fix
2022-06-20 19:35:54 +0200
76851ae3a6
Add warnings to test code and data about storage format stability
2022-06-20 19:10:35 +0200
228d99b57e
Document how to interpret negative reports
2022-06-20 18:51:44 +0200
6100d3c93c
Remove redundant sentence
2022-06-20 18:51:18 +0200
4b873874a3
Backward compatibility: the key store with drivers
2022-06-20 18:50:09 +0200
9956efaf32
Backward compatibility: the key store
2022-06-20 18:48:52 +0200
43e51fa88c
Backward compatibility: add a note about the configuration
2022-06-20 18:48:06 +0200
98473c4523
Officially deprecate MBEDTLS_PSA_CRYPTO_SE_C
2022-06-20 18:46:22 +0200
7973399f7b
Add compatibility notes regarding values embedded in the key store
2022-06-20 18:41:20 +0200
f070a5e5d5
Document how PSA identifiers are generally constructed
2022-06-20 18:40:45 +0200
36aeb7f163
Merge pull request #5834 from mprse/HKDF_1
2022-06-20 15:27:46 +0200
c3e9abedff
Add change log
2022-06-17 17:23:06 +0200
12657cdcc6
Remove binary int use
2022-06-20 11:47:57 +0100
90c46c376b
Use consistent test case names
2022-06-20 11:46:58 +0100
2f1d51070c
Fix incorrect param in function declaration
2022-06-20 11:45:01 +0100
b3acb053fb
Add mbedtls_x509_dn_get_next function
2022-06-17 15:59:58 +0100
eb8570f174
Fix missing newline
2022-06-17 14:59:36 +0100
5cab9dafb7
fix whitespace
2022-06-17 13:48:29 +0100
57080461f7
Add test-case for checking curve order
2022-06-17 13:41:18 +0100
44baacd089
Update documenation of PSA_ALG_RSA_PSS
2022-06-17 10:25:05 +0100
8988e23690
Add missing break
2022-06-17 10:19:56 +0100
30c5a2520e
tls13: Fix certificate key usage checks
2022-06-16 19:31:06 +0200
d28f5a98f1
ssl-opt.sh: Add certificate key usage tests for TLS 1.3
2022-06-16 19:27:25 +0200
903c979376
programs: ssl: Add one RSA PSS signature algorithm
2022-06-16 16:55:31 +0200
ca3c6a5698
Merge pull request #5817 from xkqian/tls13_add_server_name
2022-06-16 08:30:09 +0200
6194053feb
ASN.1: test that we can parse what we can write
2022-06-15 21:17:25 +0200
b7e215f6bc
Fix copypasta in test data
2022-06-15 21:16:42 +0200
755ddff25c
Fix print format in a debug message Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-15 07:31:40 -0400
ca35f5bed0
test_suite_ssl: Use a zero fragment offset in a test with a too short record Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-15 07:19:40 -0400
cbe14ec967
Improve variable extracting operations by using MBEDTLS_GET macros Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-15 07:17:28 -0400
75fe8c7e54
Change place of ssl_tls13_check_ephemeral_key_exchange
2022-06-15 09:42:45 +0000
4ccd226cbf
Merge pull request #5864 from xkqian/tls13_add_comprehensive_cases
2022-06-15 09:18:11 +0200
fb665a8452
Adress the comments about styles and pick_cert
2022-06-15 03:57:21 +0000
6c9fd61565
exercise_key_agreement_key: add special handling for HKDF_EXPAND
2022-06-14 14:41:42 +0200
7cf872557a
Rearrange the session resumption code Previously, the transforms were populated before extension parsing, which resulted in the client rejecting a server hello that contained a connection ID. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-14 07:12:33 -0400
d898745f70
exercise_key_agreement_key: provide SALT for HKDF_EXTRACT
2022-06-14 11:41:52 +0200
69c4679b22
Adapt macro name to meet requested criteria: MBEDTLS_PSA_BUILTIN_ALG_ANY_HKDF->BUILTIN_ALG_ANY_HKDF
2022-06-10 12:59:51 +0200
3ed16231ab
Refine server side SNI test cases
2022-06-14 08:24:04 +0000
07aad0710c
Refine function name ssl_tls13_pick_key_cert
2022-06-14 05:35:09 +0000
81802f43a2
Select certificate base on the received signature list
2022-06-10 13:25:22 +0000
b7c12a466f
Refactor compat scripts
2022-06-12 20:53:02 +0800
2c2730a372
ASN.1 write tests: test with larger buffer
2022-06-10 20:15:44 +0200
321a08944b
Fix bug whereby 0 was written as 0200 rather than 020100
2022-06-10 20:13:33 +0200
c9a30fba74
Add MPI write tests when the MPI object has a leading zero limb
2022-06-10 20:12:45 +0200
0ab804a794
Fix mismatch between test data and test description
2022-06-10 20:12:25 +0200
d8579b7673
Uncomment mbedtls_asn1_write_mpi tests with leading 1 bit
2022-06-10 20:10:37 +0200
96d5439da5
Fix incorrect changelog entry Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-08 12:00:52 -0400
9b938b7c37
Share code with base class in generate_tls13_compat_tests.py
2022-06-10 03:10:59 +0000
fb1a3fe7f3
Address comments about python syntax
2022-06-09 06:37:33 +0000
ae25bb043c
Fix null pointer dereference in mpi_mod_int(0, 2)
2022-06-09 19:32:46 +0200
9b3278b263
Doc: the SHA256/SHA512 options also cover SHA224/SHA384
2022-06-09 19:09:38 +0200
76c1c6b9c1
Changelog: minor copyediting
2022-06-09 18:51:18 +0200
e1efbf7f36
Changelog: when adding a new function, state its name
2022-06-09 18:50:50 +0200
c23a6d4feb
Changelog: make some long entries about TLS 1.3 more to the point
2022-06-09 18:50:06 +0200
26a51cfe54
Changelog: list deprecations in the dedicated section
2022-06-09 18:49:07 +0200
8df3623bee
Changelog: clarify some cmake-related entries as being about cmake
2022-06-09 18:48:21 +0200
fed024dd52
Changelog: mention bug id in bugfix entry
2022-06-09 18:44:51 +0200
d99083f7a4
Changelog: remove bugfix entry that's actually a robustness improvement
2022-06-09 18:38:35 +0200
3ea721e234
Changelog: Remove redundant entry about USE_PSA_CRYPTO in reduced configs
2022-06-09 18:36:47 +0200
10301d4322
Changelog: Consolidate and clarify Armv8 SHA2 acceleration support
2022-06-09 18:32:22 +0200
75fe3fb1d7
psa_crypto.c: add MBEDTLS_PSA_BUILTIN_ALG_ANY_HKDF macro to limit number of #if conditions
2022-06-09 14:44:55 +0200
b1847a234e
Re-structure to share more common code
2022-06-08 07:49:31 +0000
ed4d217874
Add missing test dependencies for cookie parsing Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-08 11:57:57 -0400
b58cf0d172
Split a debug message into two - for clarity Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-08 11:53:59 -0400
078e9bcda6
Add the mbedtls prefix to ssl_check_dtls_clihlo_cookie Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-08 11:47:33 -0400
271c3052fb
Merge pull request #5892 from AndrzejKurek/ssl-opt-client-kill-fix
2022-06-08 14:27:01 +0100
11930699f1
Merge pull request #5827 from wernerlewis/time_utc
2022-06-08 13:54:19 +0100
5f2bc754d6
Merge pull request #5792 from yuhaoth/pr/add-tls13-moving-state-tests
2022-06-08 13:39:52 +0100
3a833271aa
Merge pull request #5727 from SiliconLabs/feature/PSEC-3207-TLS13-hashing-HMAC-to-PSA
2022-06-08 11:53:35 +0200
96287d98d8
Remove the certificate key check against the received signature
2022-06-08 08:37:53 +0000
d9aaf768b5
Fixing CI complains. Signed-off-by: pespacek <peter.spacek@silabs.com>
2022-06-08 09:44:11 +0200
5313f034b4
Add change log
2022-05-31 12:29:00 +0200
9850fa8e8d
Refine ssl_tls13_pick_cert()
2022-06-08 06:58:05 +0000
b088a900f4
test_suite_psa_crypto_storage_format: disable KA(ECDH,HKDF_EXTRACT/EXPAND...) test cases
2022-06-07 15:34:18 +0200
d9e1287e64
crypto_config_test_driver_extension.h add HKDF_EXTRACT/EXPAND algs
2022-06-07 14:19:39 +0200
b06acd734b
Fixing PSA return status Signed-off-by: pespacek <peter.spacek@silabs.com>
2022-06-07 13:07:21 +0200
23c5be6b94
Enable SNI test for both tls12 and tls13
2022-06-07 02:04:34 +0000
00e5eaad62
test: ssl: Remove more TLS 1.2 dependencies in handshake state tests
2022-06-07 10:38:29 +0200
bdddaef9bb
test: ssl: Enable client authentication in handshake state tests
2022-06-07 10:34:59 +0200
209cae9c42
tls13: server: Fix state update in CLIENT_CERTIFICATE
2022-06-07 10:30:19 +0200
670913f4dc
Fixing return value for ssl_tls13_write_certificate_body() Signed-off-by: pespacek <peter.spacek@silabs.com>
2022-06-07 10:53:39 +0200
4b55a89327
Merge pull request #5887 from tom-daubney-arm/mbedtls_x509_crt_ext_types_accessor
2022-06-06 21:51:38 +0100
e6487ab490
Add a changelog entry for the cookie parsing bounds bug Co-authored-by: Gilles Peskine <Gilles.Peskine@arm.com> Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-06 14:54:58 -0400
cfb01948c8
Add cookie parsing tests to test_suite_ssl Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-06-06 13:08:23 -0400
c8183cc492
Add missing sid_len in calculations of cookie sizes This could lead to a potential buffer overread with small MBEDTLS_SSL_IN_CONTENT_LEN. Change the bound calculations so that it is apparent what lengths and sizes are used.
2022-06-06 14:42:41 -0400
140b589ec6
Fix a bug with executing ssl-client2 in ssl-opt.sh in a subshell When executing eval in the background, the next "$!" gives the eval PID, not the ssl-client2 pid. This causes problems when a client times out and the script tries to kill it. Instead, it kills the parent eval call. This caused problems with subsequent proxy tests receiving old packets from a client from a previous test. Moving the "&" to inside the eval call fixes the problem. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-05-27 06:44:19 -0400
364fd8bb71
More SSL debug messages for ClientHello parsing
2022-02-15 23:53:36 +0100
5c9c2ce86d
Add correct test dependencies
2022-06-06 16:36:43 +0100
a5f39e0ec2
Move accessor definition
2022-06-06 15:42:32 +0100
5e03d9e601
Merge pull request #5837 from robert-shade/robert-shade/add_subdirectory_support
2022-06-06 14:11:06 +0100
b57a44bf9b
is_kdf_alg_supported: Adapt impl to new build flags for HKDF EXTRACT/EXPAND
2022-06-06 08:33:45 +0200
221391b3d2
generate_psa_tests.py: REVERT adapt OpFail test generator for HKDF-Exract/Expand algs
2022-06-06 07:56:41 +0200
66867731aa
derive_output tests: fix output key length to be consistent with teh description
2022-06-03 16:14:55 +0200
cde3f783f5
Make info valid only after secret for HKDF-EXPAND + adapt tests
2022-06-03 16:12:27 +0200
0586f4c4ea
Make salt mandatory for HKDF-EXTRACT + adapt tests
2022-06-03 16:00:25 +0200
6994e3e0c2
fix various issues
2022-06-06 11:25:28 +0800
0e99391afe
derive_output test: fix output key bit length
2022-06-03 15:01:14 +0200
3e8249cde0
Add PSA_WANT_ALG_HKDF_EXPAND, PSA_WANT_ALG_HKDF_EXTRACT, adapt code and dependencies
2022-06-03 14:05:07 +0200
452a415476
Changelog: HKDF-Expand and HKDF-Extract as separate algorithms in the PSA API
2022-06-03 09:10:02 +0200
73f97d4841
PSA_ALG_HKDF: add salt processing warning
2022-06-03 09:05:08 +0200
f0f0bd068b
test_suite_psa_crypto_metadata: add test cases for the HKDF-Extract/Expand algorithms
2022-06-03 08:43:32 +0200
a29b488296
Optimize code by adding PSA_ALG_IS_ANY_HKDF macro
2022-06-02 11:37:03 +0200
129aeb9b0e
Update test cases and support sni ca override
2022-06-02 09:29:18 +0000
459ee35062
Fix typo and style
2022-06-02 11:16:52 +0200
acd01e58a3
Use ASN1 UTC tags for dates before 2000
2022-05-10 12:23:13 +0100
f2d32e6c3d
fix tls13_only test fail
2022-06-01 18:05:18 +0800
8399cccd2e
Merge pull request #5829 from paul-elliott-arm/fix_ct_uninit_memory_access
2022-06-01 11:42:51 +0200
3d3cfc5553
Add Changelog entry
2022-05-31 14:34:35 +0100
3ff4fc6997
Add test data
2022-05-31 14:17:24 +0100
bd5466ab7e
Add test for accessor
2022-05-31 14:16:42 +0100
979aa49d1c
Add accessor for x509 certificate extension types
2022-04-21 11:53:55 +0100
7bf3358a2d
Remove duplicated tests
2022-06-01 16:55:17 +0800
1443537da3
fix test fail when WANT_READ/WRITE returned
2022-06-01 15:53:31 +0800
f4f0f6961a
Enable requires_openssl_tls1_3 in sni test cases
2022-06-01 00:42:27 +0000
ac41edfc5e
Enable requires_gnutls_tls1_3 in sni test cases
2022-05-31 13:22:13 +0000
66537f40b6
fix certificate request fail
2022-05-31 19:53:05 +0800
1e7c438b67
remove tls1.3 dependancy
2022-05-31 19:51:38 +0800
f940693960
Merge pull request #5725 from tom-daubney-arm/x25519_program
2022-05-31 11:27:22 +0200
09858ae664
Merge pull request #5813 from mprse/deprecate_mbedtls_cipher_setup_psa
2022-05-31 10:56:52 +0200
2ccd97b8ef
Change test case name to sni
2022-05-31 08:30:17 +0000
07c2e5e6d5
Merge pull request #5860 from superna9999/4745-psa-jpake-api-fixes
2022-05-31 08:27:32 +0100
66adf3155c
Update comments
2022-05-31 15:23:29 +0800
df0a71a0b0
Add handshake version test
2022-05-26 10:43:30 +0800
b3d86de3ea
fix hanshake wrapup fail
2022-05-20 16:50:13 +0800
0a92d6c8eb
fix move state to handshake over fail
2022-05-16 16:54:46 +0800
df65b66003
Add handshake over test
2022-05-10 17:27:18 +0800
85e5c81c37
fix check test cases fail
2022-05-07 13:26:56 +0800
d9d049d180
revert dbg config
2022-05-01 10:16:10 +0800
4dec0e5329
fix state undeclare error
2022-04-30 22:53:38 +0800
d8c57feaf9
Add moving state test for TLS1.3
2022-04-30 15:15:34 +0800
023ff7acb1
Move dependes_on of move handshakes state
2022-04-29 17:00:19 +0800
d5d5b60c07
Add comprehensive test cases for TLS1.3 server side
2022-05-23 09:16:20 +0000
3527880849
Add Changelog entry
2022-05-30 17:48:17 +0100
b88dbdded6
fix issue #2020 Fixed a bug that the little-endian Microblaze does not work when MBEDTLS_HAVE_ASM is defined.
2021-05-31 17:07:28 +0900
ccffab38a3
Remove linkage documentation on PAKE cipher-suite helpers
2022-05-30 15:49:21 +0200
a3344f7bac
Merge pull request #5767 from leorosen/avoid-null-args
2022-05-30 11:40:21 +0100
52625b739e
Merge pull request #5876 from tom-cosgrove-arm/fix-typos-220526
2022-05-30 11:35:55 +0100
1bc0ca4ed3
Merge pull request #5875 from Summer-ARM/mbedtls-psa-crypto-config
2022-05-30 09:41:48 +0100
0557c94fef
Add back SNI related code to validate_certificate
2022-05-30 08:10:53 +0000
f2a942073e
Fix SNI test failure
2022-05-20 06:44:24 +0000
9b2b7716b0
Change mbedtls_ssl_parse_server_name_ext base on comments
2022-05-17 02:57:00 +0000
40a3523eb7
Add support of server name extension to server side
2022-05-07 09:02:40 +0000
1c1d3550ec
Merge pull request #5777 from xkqian/tls13_parse_cert_certverify
2022-05-30 09:00:05 +0200
e7a5da597f
Remove SNI related code
2022-05-30 00:59:29 +0000
5ed8a0ec73
Overall PSA PAKE API style issues fixes
2022-05-27 09:47:53 +0200
5892aa69e3
Fix typo in PSA_ALG_JPAKE documentation
2022-05-27 09:44:47 +0200
1e21144194
Fix spelling and typographical errors found by cspell
2022-05-26 11:51:00 +0100
f0b4253c68
Remove duplicated PSA_WANT_ALG_CMAC in crypto_config.h
2022-05-26 09:38:33 +0800
9a4e1dd8a6
Add back openssl client auth test
2022-05-26 00:58:11 +0000
aca9048b5f
Change base on review
2022-05-19 07:19:31 +0000
989f06d52d
Change some comments base on review
2022-05-17 01:50:15 +0000
63e713e8ab
Fix comments
2022-05-15 04:26:57 +0000
c3017f620f
Remove useless guards and refine checking
2022-05-13 05:55:41 +0000
189ded2b07
Remove coordinate functions and change state machine in server side
2022-05-10 08:12:17 +0000
6b916b1616
Add client certificate parse and certificate verify
2022-04-25 07:29:34 +0000
a636d1f192
Merge pull request #5714 from daverodgman/k-stachowiak_static-runtime-option-msvc
2022-05-25 14:47:58 +0100
32c995afa3
Merge pull request #5724 from Biswa96/cmake-mingw
2022-05-25 13:34:43 +0100
8fba70f66c
Merge pull request #5749 from yuhaoth/pr/add-tls13-finished-message-and-wrapup
2022-05-25 12:02:06 +0100
ef15751f08
PSA PAKE API typos in documentation fixes
2022-05-25 11:49:45 +0200
72ab56a1fe
Overall PSA PAKE API style issues fixes
2022-05-25 11:48:37 +0200
eb93a6f1d8
Use PSA_ALG_NONE in PSA_PAKE_OPERATION_INIT to init psa_algorithm_t
2022-05-25 11:41:05 +0200
2056ce5111
Fix PSA_PAKE_OUTPUT_MAX_SIZE/PSA_PAKE_INPUT_MAX_SIZE commment about parameters to PSA_PAKE_OUTPUT_SIZE/PSA_PAKE_INPUT_SIZE
2022-05-25 11:38:15 +0200
413550c529
Change memcmp call
2022-05-23 16:11:31 +0100
5491f857d2
skip openssl client auth test
2022-05-23 22:36:16 +0800
090378c685
change exit code of cli auth test
2022-05-23 21:03:52 +0800
3493587e05
FEATURE: mbedtls_md() in ssl_tls13_write_certificate_verify_body() replaced withpsa_hash_compute() Signed-off-by: pespacek <peter.spacek@silabs.com>
2022-05-20 15:43:32 +0200
a1378105cf
FEATURE: use psa_hash_xxx rather than mbedtls_md_xxx for TLS 1.3. ssl_tls13_parse_certificate_verify() Signed-off-by: pespacek <peter.spacek@silabs.com>
2022-04-26 15:03:11 +0200
69e348db85
Merge pull request #5833 from superna9999/5826-create-mbedtls-pk-can-do-psa
2022-05-23 10:58:32 +0200
7eaadae941
fix no x509 info fail.
2022-05-23 14:53:27 +0800
591e729b54
Allow building as a subdir
2022-05-12 14:40:16 -0400
70c0088239
Change use of olen variables
2022-05-20 18:43:09 +0100
eff0f3f5be
Add changelog entry
2022-05-18 14:36:45 +0100
b2f2b027c2
Clarify mbedtls_pk_can_do_ext() return documentation amd add warning on future addition of allowed algs & usage flags
2022-05-20 12:00:56 +0200
e9b4581b16
Clarify BAD_STATE return documentation on bad ordering of input and output steps for psa_pake_input() & psa_pake_output()
2022-05-20 11:39:09 +0200
0d24575ad0
Clarify BAD_STATE return documentation of psa_pake_set_peer()
2022-05-20 11:35:40 +0200
59fa8ee090
Update return documentation of psa_pake_abort()
2022-05-20 11:31:04 +0200
97d74b8abb
Update return documentation of psa_pake_get_implicit_key()
2022-05-20 11:30:31 +0200
407b27b516
Update return documentation of psa_pake_input()
2022-05-20 11:28:23 +0200
664077e3ae
Update return documentation of psa_pake_output()
2022-05-20 11:24:41 +0200
2a6dd9c2a8
Rename & update documentation of function, types, and macros for psa_pake_set_role() and associated
2022-05-20 11:17:10 +0200
16ff788f9d
Update return documentation of psa_pake_set_peer()
2022-05-20 11:04:20 +0200
3585168259
Update return documentation of psa_pake_set_user()
2022-05-20 11:02:37 +0200
71cae6121d
Update return documentation of psa_pake_set_password_key()
2022-05-20 11:00:49 +0200
4721a6f33e
Update return documentation of psa_pake_setup()
2022-05-20 10:53:00 +0200
1614537697
Fix password wording in PSA_ALG_JPAKE documentation
2022-05-20 10:42:36 +0200
7bc71e9c04
Fix output_size documentation of psa_pake_output()
2022-05-20 10:36:14 +0200
cd974d590b
Fix return documentation of PSA_PAKE_OUTPUT_SIZE
2022-05-20 10:30:12 +0200
d5a4825b84
Add missing psa_pake_cs_get_bits()
2022-05-20 10:26:36 +0200
ff9cac72e7
Add missing psa_pake_cs_get_family()
2022-05-20 10:25:15 +0200
0c8ef93c8e
Add missing psa_pake_abort()
2022-05-20 10:23:51 +0200
799106b441
Pass input as const reference and fix documentation of psa_pake_input()
2022-05-20 10:18:53 +0200
47e700e7de
Pass cipher_suite parameter of psa_pake_setup() by const reference
2022-05-20 10:16:41 +0200
0151c55b56
Add documentation of PSA_PAKE_OPERATION_INIT
2022-05-20 10:13:53 +0200
5ff6a7fa97
Add missing psa_pake_cipher_suite_init()
2022-05-20 10:12:01 +0200
fb99302726
Add missing PSA_PAKE_CIPHER_SUITE_INIT
2022-05-20 10:08:58 +0200
c661ff51c9
Fix pk_can_do_ext tests with non-opaque keys
2022-05-20 09:49:04 +0200
a724f7ae17
Document mbedtls_pk_can_do_ext() return for non-allowed algorithms and usage flags
2022-05-20 09:28:12 +0200
81d391f773
Check when usage == 0 in mbedtls_pk_can_do_ext()
2022-05-20 09:26:16 +0200
b80785f1a4
Comment typo fix in mbedtls_pk_can_do_ext()
2022-05-20 09:25:55 +0200
e4d3a6a4e8
Merge pull request #5804 from superna9999/5797-remove-cipher-deps-tls
2022-05-19 21:02:12 +0200
5260ce27ed
Fix uninitialised memory access in constant time functions
2022-05-09 18:15:54 +0100
5c5b116a49
Add pk_can_do_ext test for non-opaque keys
2022-05-19 18:07:53 +0200
afe149d76e
Merge pull request #5846 from bootstrap-prime/development
2022-05-19 16:53:32 +0100
4283a6b121
Merge pull request #5736 from gilles-peskine-arm/psa-raw_key_agreement-buffer_too_small
2022-05-19 16:06:02 +0100
084338d336
Change mbedtls_pk_can_do_ext() usage test logic for opaque keys
2022-05-19 16:22:40 +0200
476d9c45b8
Use MBEDTLS_TEST_DEPRECATED only in tests
2022-05-19 12:26:33 +0200
03d948c47f
Refacor code for HKDF-Extract algorithm
2022-05-19 11:45:20 +0200
2fb0dcd403
psa_hkdf_input: use more suitable condition and add comments
2022-05-19 10:34:37 +0200
fcdd023ba6
derive_output tests: add invalid input secret test for HKDF-Expand
2022-05-19 10:28:58 +0200
e3d67cb263
Improve readability
2022-05-19 15:33:10 +0800
fd5ea0458f
add compute application transform
2022-05-19 14:29:48 +0800
545432310d
remove zeorize from keys
2022-05-19 11:23:25 +0800
cc0a13fcf8
remove unnecessary empty line
2022-05-19 10:14:24 +0800
6dbbf44d78
Fix typos in documentation and constants with typo finding tool
2022-05-17 19:30:44 -0400
306a89094a
Add additional error checking
2022-05-18 14:22:08 +0100
b398d8693f
Update descryption of HKDF-Extract/Expand algs and fix comment
2022-05-18 15:43:54 +0200
8395d7a37d
Change guard of mbedtls_ssl_cipher_to_psa() with USE_PSA_CRYPTO || SSL_PROTO_TLS1_3
2022-05-18 11:44:56 +0200
0fa8ce3498
TLS 1.3 only have AEAD ciphers, drop the PSA_ALG_IS_AEAD() check in mbedtls_ssl_tls13_get_cipher_key_info()
2022-05-17 14:42:57 +0200
b818e16b29
Move out common PSA code from mbedtls_ssl_tls13_generate_handshake_keys/mbedtls_ssl_tls13_generate_application_keys
2022-05-17 09:24:52 +0200
e3b0b8ab67
Remove non-PSA code in mbedtls_ssl_tls13_generate_handshake_keys/mbedtls_ssl_tls13_generate_application_keys
2022-05-17 09:11:45 +0200
93617245c3
Code style fixes
2022-05-12 08:32:03 +0200
689557ca12
Make CIPHER_C guard code as alternate of USE_PSA_CRYPTO in mbedtls_ssl_ciphersuite_get_cipher_key_bitlen()
2022-05-12 08:30:59 +0200
4f4f271850
In mbedtls_ssl_tls13_generate_handshake_keys() and mbedtls_ssl_tls13_generate_application_keys(), avoid calling mbedtls_cipher_info_from_type()
2022-05-05 15:34:39 +0200
a8093f5c48
In mbedtls_ssl_tls13_populate_transform() make sure mbedtls_cipher_info_from_type() is only called when USE_PSA is disabled
2022-05-04 17:44:05 +0200
801abb69a5
Provide a PSA definition of mbedtls_ssl_ciphersuite_get_cipher_key_bitlen() when MBEDTLS_USE_PSA_CRYPTO is defined
2022-05-04 17:38:10 +0200
6ab65e28cf
Merge pull request #5842 from mprse/decrypt_tests
2022-05-18 12:58:50 +0200
ec2ec42828
Fix formatting
2022-05-18 10:23:20 +0100
64042b8d3d
Fix typo
2022-05-18 09:59:55 +0100
bb2d47d956
Remove not used state
2022-05-18 15:24:22 +0800
e8c1fca67c
move trafic set to generic
2022-05-18 14:48:56 +0800
d6e253ded9
fix various issues
2022-05-18 13:59:24 +0800
36becb1b81
update hrr tests
2022-05-12 16:57:20 +0800
a7abc5eaa8
fix ci test fails
2022-05-11 13:32:03 +0800
155493d4f5
fix openssl test fail.
2022-04-25 13:30:18 +0800
6622049bcc
test:add state check
2022-04-23 13:53:36 +0800
4d8567fa9e
fix various issues
2022-04-17 10:57:57 +0800
03ed50ba6a
Add handshake wrapup
2022-04-16 17:13:30 +0800
ff2269889d
Add client finished
2022-04-16 16:52:57 +0800
27bdc7c6b6
Implement write server finish
2022-04-16 13:33:27 +0800
69dd8d4091
tls13:finished:add dummy frame work
2022-04-16 12:51:26 +0800
42ed963c72
Update PSA compliance test branch
2022-05-17 17:23:09 +0200
9edf51d8cd
Merge pull request #5785 from gabor-mezei-arm/5460_unify_parsing_sig_alg_ext
2022-05-17 17:01:55 +0200
a478441517
Merge pull request #5748 from yuhaoth/pr/add-tls13-write-certificate-and-verify
2022-05-17 15:47:36 +0100
114203814a
Better check for NULL pointer
2022-05-13 17:43:47 +0100
bbb8b75f20
Fixup comment of mbedtls_pk_can_do_ext()
2022-05-17 14:58:27 +0200
8eb0afb726
Remove duplicate pk_can_do_ext test
2022-05-17 14:58:11 +0200
408f6a60a3
Add usage parameter to mbedtls_pk_can_do_ext()
2022-05-17 14:23:20 +0200
434d4eb74f
Remove invalid comments in pk_can_do_ext()
2022-05-17 11:58:22 +0200
dab56ba2bd
Fix typo in mbedtls_pk_can_do_ext() code documentation
2022-05-17 11:56:55 +0200
cec133a242
Fix typo in mbedtls_pk_can_do_ext() documentation
2022-05-17 11:56:01 +0200
c79ce88152
Fix a timing leak in ecp_mul_mxz()
2022-05-15 13:24:05 +0200
3e56130fb9
psa_raw_key_agreement: return BUFFER_TOO_SMALL when warranted
2022-04-14 00:17:15 +0200
7be11a790d
Use TEST_LE_U in some places where it applies
2022-04-14 00:12:57 +0200
d1465429a2
New test helper macros TEST_LE_U, TEST_LE_S
2022-04-13 23:59:52 +0200
3ff25443c8
Separate the validation of the size macros and of the function
2022-04-14 00:06:33 +0200
d4a258a08f
Improve PSA_RAW_KEY_AGREEMENT_OUTPUT_SIZE validation
2022-04-14 00:01:53 +0200
992bee8b6e
Test psa_raw_key_agreement with a larger/smaller buffer
2022-04-13 23:25:52 +0200
2a045325f9
Merge pull request #5766 from leorosen/fix-var-init
2022-05-16 14:47:00 +0100
8da6da3da2
ssl-opt.sh: add test of RSA Opaque keys with TLS 1.2 server for decryption
2022-05-16 14:37:50 +0200
9b7e29663f
Merge pull request #4211 from ccawley2011/mingw
2022-05-16 12:30:37 +0200
f46019165f
Merge pull request #5840 from bensze01/python_3.10_support
2022-05-16 12:29:36 +0200
a3008e7e2e
Add missing local variable initialization
2022-04-21 17:28:18 -0700
dd428d3650
Fix incorrect error message
2022-05-13 17:43:16 +0100
696956da24
Typo
2022-05-13 16:27:29 +0200
0a4298bbe9
Remove unnecessary duble conversion
2022-05-13 16:25:35 +0200
44f138d539
Add minimum requirements for Python 3.10 support
2022-05-13 15:35:55 +0200
e58ca8bb5e
Add MBEDTLS_TEST_DEPRECATED dependency
2022-05-13 15:48:41 +0200
b89125b81a
Add test without server certificate
2022-05-13 15:45:49 +0800
d87e46f3de
Merge pull request #3641 from okhowang/c99
2022-05-12 14:01:10 +0100
23d1a256ec
fix hrr handler undefine fail
2022-05-12 18:08:59 +0800
61922d1328
Fix mbedtls_cipher_setup_psa() dependencies in tests
2022-05-12 13:51:51 +0200
1cd4f6a873
Merge pull request #5794 from mprse/cipher_dep
2022-05-12 13:09:04 +0200
4014a0408e
Merge pull request #5617 from gilles-peskine-arm/chacha20-rfc7539-test-vector
2022-05-12 12:34:20 +0200
ce1d2397d2
Add tests for mbedtls_pk_can_do_ext() in test_suite_pktest_suite_pk
2022-05-11 14:11:46 +0200
a88b15897d
Add implementation of mbedtls_pk_can_do_ext()
2022-05-11 14:11:25 +0200
0b5295848e
Add definition of mbedtls_pk_can_do_ext()
2022-05-11 10:10:20 +0200
9bc53a2e84
Merge pull request #5806 from josesimoes/fix-3031
2022-05-12 10:50:31 +0200
8b65420f42
Add comment
2022-05-12 09:45:03 +0100
da5f483ad8
all.sh: Fix order of CIPHER dependencies
2022-05-12 09:46:29 +0200
a09f835bd8
Fix CIPHER dependencies dependeny and error messages
2022-05-12 09:34:28 +0200
179d74831f
all.sh: add build/test config crypto_full minus CIPHER Dependency list:
2022-05-02 11:03:35 +0200
10f3a601b4
all.sh: add build/test config full minus CIPHER
2022-05-02 10:55:33 +0200
ea805b4f20
mbedtls_config.h, check_config.h: fix CIPHER dependencies
2022-05-02 10:30:03 +0200
58f591526e
Merge pull request #5732 from daverodgman/warmsocks_spellingfixes
2022-05-12 09:26:29 +0100
34f6ac7c22
Merge pull request #5812 from adeaarm/development
2022-05-12 10:25:02 +0200
c9c6e8d189
Improve comments
2022-05-12 09:22:50 +0100
5a26f3000d
Refactor cert exchange states
2022-05-10 20:46:40 +0800
c450566b85
Update client auth tests
2022-05-10 20:39:21 +0800
f1c3c4e77c
fix various issues
2022-05-10 11:36:35 +0800
c8bdbf72d3
test:add state check for certificate and verify
2022-04-23 12:37:35 +0800
c6e6dbf2e7
fix various issues
2022-04-16 19:42:57 +0800
4ff9e14356
Add server certificate verfiy
2022-04-16 14:57:49 +0800
1bff711a36
tls13:server:add server certificate writing
2022-04-16 14:29:11 +0800
83da34eb59
tls13:server:add dummy write certificate
2022-04-16 13:59:52 +0800
3009a97e00
Minor spelling / grammar improvements
2022-04-22 14:52:41 +0100
65a141a7b0
Fix minor grammatical error
2022-04-20 14:38:51 +0100
5c65c5781f
Fix additional misspellings found by codespell
2022-04-13 14:28:52 -0400
e27e96dd5d
Revert spelling fixes to ChangeLog
2022-04-13 16:15:56 +0100
8b0ecbccf4
Redo of PR#5345. Fixed spelling and typographical errors found by CodeSpell.
2021-12-20 21:14:10 -0800
85fba901ff
Add comment
2022-05-11 16:13:52 +0000
faef649dec
Fix Ubuntu compile error in udp_proxy.c
2022-05-11 16:05:16 +0000
f5f1cfc572
Additional CMake flag for controlling C standard
2022-05-10 17:26:47 +0100
df865c349a
Pass c99 to compiler in CMakeLists.txt
2020-09-03 16:21:30 +0800
86acf05b1e
Update signiture algorithm handling
2022-05-10 13:29:02 +0200
53a3b14823
Update documntation
2022-05-10 13:20:55 +0200
c1051b62aa
Remove MBEDTLS_SSL_SIG_ALG_SET macro
2022-05-10 13:13:58 +0200
3631cf693a
Rename signiture algorithm macros to better suite with TLS 1.2
2022-05-10 12:59:00 +0200
24c7c2be08
Unify MBEDTLS_TLS_SIG_NONE macro definition for TLS 1.2 and 1.3
2022-05-10 12:51:14 +0200
a3d016ce41
Rename and rewrite mbedtls_ssl_sig_hash_set_find function
2022-05-10 12:44:09 +0200
1226590c88
Explicitly set invalid value for the end of the signiture algorithm set
2022-05-09 16:43:21 +0200
15b95a6c52
Use common macro for the invalid signiture algorithm botn in TLS 1.2 and 1.3
2022-05-09 16:37:58 +0200
1a3be088bf
Reorder defines to use previous definitions
2022-05-09 15:41:44 +0200
078e803d2c
Unify parsing of the signature algorithms extension
2022-04-27 21:17:56 +0200
ebf6281ce6
crypto_values.h: fix description
2022-05-11 14:16:05 +0200
398c503f6f
generate_psa_tests.py: adapt OpFail test generator for HKDF-Exract/Expand algs
2022-05-11 14:05:40 +0200
6786a87ccd
derive_output tests: add capacity HKDF-Extract/Expand tests
2022-05-11 12:40:21 +0200
2849e0e4d5
derive_output tests: add negative HKDF-Extract/Expand tests
2022-05-11 12:38:01 +0200
e1036fbe90
derive_output tests: add positive HKDF-Extract/Expand tests
2022-05-11 12:34:53 +0200
ead1bb9987
derive_output test: Adapt for HKDF-Extract/Expand algs
2022-05-11 12:22:57 +0200
17520fe2c5
PSA: Add support for HKDF-Extend and HKDF-Expand algs
2022-05-10 13:53:33 +0200
5479f5321a
Merge pull request #5772 from superna9999/5762-rsa-decrypt-pk
2022-05-11 11:01:01 +0200
814562afaa
Switch last TEST_ASSERT() in TEST_EQUAL() in pk_wrap_rsa_decrypt_test_vec()
2022-05-11 09:29:57 +0200
d1a954d243
Merge pull request #5707 from yuhaoth/pr/add-tls13-write-hello-retry-request
2022-05-10 17:25:33 +0100
4bfb007dcb
Handle platform differences in gmtime_s
2022-05-06 12:58:00 +0100
3383e432bc
Add changelog entry
2022-05-06 13:12:32 +0100
ad8dc480d4
Remove redundant comment
2022-05-06 12:59:54 +0100
ea5496ceb3
Fix compilation with MinGW32
2021-03-08 23:29:26 +0000
6b6ce3278e
Add definitions for HKDF-Extract and HKDF-Expand algs
2022-05-10 12:38:27 +0200
42650260a9
Merge pull request #5783 from mprse/md_dep_v3
2022-05-10 10:41:32 +0200
f41553b662
fix various issues
2022-05-09 22:20:30 +0800
a745c7d439
Merge pull request #5779 from mprse/rsa_decr_1b
2022-05-09 14:32:05 +0200
9bbb7bacae
Merge pull request #5791 from superna9999/5788-unify-non-opaque-and-opaque-psks
2022-05-09 10:15:16 +0200
ead5cce22c
improve readability
2022-05-09 15:58:50 +0800
4ca9140d43
fix coding style issues
2022-05-09 15:50:57 +0800
66d9e6f405
refactor next state of client hello
2022-05-07 10:50:12 +0800
4833056833
fix ci test fails
2022-05-06 21:35:44 +0800
7f157eb31f
Change alert message
2022-05-06 11:28:00 +0800
b8ac19a296
send alert when second hrr needed
2022-05-05 11:35:53 +0800
ede50ea891
move hrr tests
2022-05-05 11:21:20 +0800
ab8bea23e6
fix comment and name issues in debug helper
2022-05-05 11:19:38 +0800
6a2cd9ebf5
fix various issues
2022-05-05 11:14:19 +0800
b0ac10b4a8
Refactor hrr key_share
2022-05-05 11:10:08 +0800
49ca92892d
refactor HRR routine
2022-05-05 11:05:22 +0800
086edc2807
refactor parse key_share ext
2022-05-05 10:50:38 +0800
fbe3e64b76
fix various issues
2022-04-25 19:31:51 +0800
c1be19f226
misc:minor improvement
2022-04-23 16:11:39 +0800
23f7a6fc5c
share write_body between HRR and ServerHello
2022-04-23 15:16:45 +0800
582dd069b7
Add HRR handler
2022-04-22 21:59:01 +0800
fe24d1c9f5
add named group debug helper
2022-04-11 21:04:47 +0800
cb03677f85
add hrr test
2022-04-15 14:36:19 +0800
93a13f2c38
Share magic word of HRR
2022-04-11 23:00:01 +0800
67a2c37039
tls13:hrr:add empty frame work
2022-04-14 18:52:29 +0800
929c085064
Merge pull request #5537 from xffbai/tls13-write-cert-req-msg
2022-05-09 09:28:36 +0200
aad9b0a286
Update code base on comments
2022-05-09 01:11:21 +0000
a987e1d2f8
Change state machine after encrypted extension and update cases
2022-05-07 01:25:58 +0000
ec6efb98bc
Change variable name to output_len
2022-05-06 09:53:10 +0000
cec9ae6259
Change the code places of CERTIFICATE_REQUEST
2022-05-06 07:28:50 +0000
45c22201b3
Update test cases and encrypted extension state set
2022-05-06 06:54:09 +0000
2f150e184f
Update status and add test cases for client certificate request
2022-04-29 02:01:19 +0000
1f1f1e3372
Temp change to align with client/server hello style
2022-04-27 08:56:03 +0000
9dc4450647
Fix commets issue about coding styles
2022-04-27 02:08:02 +0000
eaf3651e31
Rebase and solve conflicts
2022-04-24 09:07:44 +0000
5ee73d84a9
Address review comments
2022-03-14 02:48:30 +0000
9ca09d497f
Add writing CertificateRequest msg on server side
2022-02-14 12:57:18 +0000
612615fa5e
Merge pull request #5814 from paul-elliott-arm/travis_project
2022-05-06 19:10:36 +0100
b101cb6111
Since the group is unloaded for all curves, it is better to initialize the group also for all curves.
2022-05-06 18:43:58 +0200
23419560c9
Remove prompt to exit in all programs
2022-05-05 11:20:33 +0100
63d3debae0
Revert Coverity project name change
2022-05-06 14:06:09 +0100
25b1f5d2b7
Merge pull request #5545 from xffbai/tls13-write-enc-ext
2022-05-06 13:54:45 +0200
fd750d1d9a
Add change log entry: deprecate mbedtls_cipher_setup_psa
2022-05-06 10:56:00 +0200
c1e41bb2b5
rsa.c: remove redundant include of md.h
2022-05-06 11:42:18 +0200
d3ba7367c9
component_test_crypto_full_no_md: fix order of disabled features
2022-05-06 11:41:56 +0200
6e71282c87
Fix caller list of the MD module
2022-05-06 11:40:20 +0200
ef1fb4a3d3
Deprecate mbedtls_cipher_setup_psa()
2022-05-06 10:55:10 +0200
ef2b98a246
fix coding style issues
2022-05-06 16:40:05 +0800
cb20d202d2
Further code optimization
2022-05-06 08:42:34 +0200
f86eb75c58
fix various issues
2022-05-06 11:16:55 +0800
f72803d6f9
Removing tabs.
2022-05-05 20:12:13 +0200
6729474fbb
Fix key_id and owner_id accessor macros
2022-05-05 14:11:32 +0100
030e802198
Added Changelog entry.
2022-05-05 19:28:15 +0200
aa68d36234
Fix order value for curve x448.
2022-05-05 19:22:29 +0200
2d89b4059d
Merge pull request #5803 from paul-elliott-arm/travis_coverity_fix
2022-05-05 18:11:27 +0100
8ecd66884f
Keep raw PSK when set via mbedtls_ssl_conf_psk() and feed as input_bytes
2022-05-05 11:40:35 +0200
e110d258d9
Add set outbound transform
2022-05-05 10:19:22 +0800
fe2367af26
all.sh: add build/test config crypto_full minus MD
2022-04-28 15:44:18 +0200
1068c224a4
Adapt generated psa no_supported tests for HMAC
2022-05-05 11:52:30 +0200
cd204992f2
Fix dependencies in tests
2022-04-27 15:33:43 +0200
296bfba924
ssl_server2: add key_opaque_algs2 usage info
2022-05-05 11:08:34 +0200
1d25e076f3
ssl_client2: fix default key opaque algs
2022-05-05 11:05:10 +0200
488efa05b6
Fix compiler warnings: initialize local variables: psa_alg, psa_alg2, psa_usage
2022-05-05 09:31:08 +0200
134eb8b6e2
Fix style
2022-05-04 15:18:10 +0200
092128324f
ssl_client2/ss_server2: optimize code for opaque key
2022-05-04 15:11:24 +0200
76a41f5a52
ssl_test_lib: fix compilation flags for default config
2022-05-04 13:55:23 +0200
e5e9ba920f
ssl_server2: refactor opaque code
2022-05-04 11:23:13 +0200
89132a6ab0
Fix call to mbedtls_pk_wrap_as_opaque(): use usage variable instead PSA_KEY_USAGE_SIGN_HASH
2022-05-04 10:32:11 +0200
b58c47a666
ssl_server2: use key opaque algs given from command line
2022-05-02 14:44:46 +0200
344c561292
ssl_server2: Add support for key_opaque_algs2 command line paramtere
2022-05-02 14:17:35 +0200
a17b5c6ba2
ssl_client: use key opaque algs given from command line
2022-05-02 13:50:24 +0200
01396a16da
ssl_test_lib: add function translate given opaque algoritms to psa
2022-05-02 13:41:53 +0200
77fc9ab1ba
Fix typos and code style
2022-04-29 09:51:54 +0200
4ca0d72c3b
ssl server: add key_opaque_algs command line option
2022-04-25 12:46:22 +0200
f1822febc4
ssl client: add key_opaque_algs command line option
2022-04-25 12:45:41 +0200
85d692d1c4
ssl client/server: add parsing function for key_opaque_algs command line option
2022-04-25 12:42:55 +0200
e6e7bf58d1
Merge pull request #5801 from wernerlewis/asn1_memcpy_null
2022-05-04 23:20:14 +0100
b374a98e7d
Add ChangeLog entry
2022-05-04 14:36:23 +0100
b73ed139b7
Change coverity secret token in travis
2022-05-04 12:43:08 +0100
e59a531455
Fix memcpy() UB in mbedtls_asn1_named_data()
2022-05-04 09:44:50 +0100
80f6f32495
Make mbedtls_ssl_psk_derive_premaster() only for when MBEDTLS_USE_PSA_CRYPTO is not selected
2022-05-03 17:56:38 +0200
044a32c4c6
Remove mbedtls_ssl_get_psk() and it's usage when MBEDTLS_USE_PSA_CRYPTO is selected
2022-05-03 10:35:56 +0200
cd05f0b9e5
Drop skip PMS generation for opaque XXX-PSK now Opaque PSA key is always present when MBEDTLS_USE_PSA_CRYPTO selected
2022-05-03 10:28:37 +0200
e952a30d47
Remove RAW PSK when MBEDTLS_USE_PSA_CRYPTO is selected
2022-05-03 10:22:14 +0200
61f237afb7
Remove PSA-only code dealing with non-opaque PSA key
2022-05-03 09:57:57 +0200
501c93220d
Import PSK as opaque PSA key for mbedtls_ssl_conf_psk() & mbedtls_ssl_set_hs_psk()
2022-05-03 09:35:09 +0200
4c3b4e079c
Initialize & free PSA in test_multiple_psks()
2022-05-03 09:24:26 +0200
b743d95051
Do not erase input key in psa_tls12_prf_psk_to_ms_set_key()
2022-05-04 11:06:20 +0200
30beca35f1
Guard pk_opaque_rsa_decrypt() with PSA_WANT_KEY_TYPE_RSA_KEY_PAIR
2022-05-03 15:42:13 +0200
9da5e5a2f2
fix coding style issues
2022-05-03 15:46:09 +0800
7c0da07445
Update state check
2022-05-03 15:08:54 +0800
de66d12afc
remove out couter reset
2022-05-03 12:15:19 +0800
39730a70cd
remove variable initial
2022-05-03 12:14:04 +0800
8937eb491a
fix various issues
2022-05-03 12:12:14 +0800
6c26adc900
Do not make pk_opaque_rsa_decrypt() depend on MBEDTLS_RSA_C
2022-05-02 14:43:04 +0200
b32ae72e27
Add PK Opaque RSA decrypt tests
2022-04-22 15:02:47 +0200
1082818003
Implement PK Opaque RSA decrypt
2022-04-22 15:02:27 +0200
068a13d909
Merge pull request #5771 from superna9999/5761-rsa-decrypt-rework-pk-wrap-as-opaque
2022-05-02 09:06:49 +0200
67397fa4fd
Merge pull request #5704 from mprse/mixed_psk_2cx
2022-04-29 10:47:16 +0200
169bf0b8b0
Fix comments (#endif flags)
2022-04-29 07:53:29 +0200
310294f06a
Merge pull request #5759 from tom-daubney-arm/correct_x509_flag_parse_tests
2022-04-28 18:27:36 +0200
2b5d898eb4
Merge pull request #5644 from gilles-peskine-arm/psa-storage-format-test-exercise
2022-04-28 18:20:02 +0200
038108388a
Merge pull request #5654 from gilles-peskine-arm/psa-crypto-config-file
2022-04-28 18:17:50 +0200
4098083ed4
Merge pull request #5745 from superna9999/5712-pk-opaque-rsa-pss-sign-tls
2022-04-28 18:16:44 +0200
ae396bbe66
Merge pull request #5773 from daverodgman/fix_debug_helper
2022-04-28 18:16:12 +0200
4acd3c7ab1
Merge pull request #5776 from mprse/mixed_psk_log
2022-04-28 18:14:41 +0200
f21617915f
Merge pull request #2082 from hanno-arm/iotssl-2490
2022-04-28 18:13:55 +0200
94e371af91
Update mbedtls_pk_wrap_as_opaque() usage in SSL client2 & server2
2022-04-22 13:58:05 +0200
95974974d2
Update mbedtls_pk_wrap_as_opaque() usage in PK & X509write tests
2022-04-22 13:57:44 +0200
a1fc18fa55
Change mbedtls_pk_wrap_as_opaque() signature to specify alg, usage and key_enrollment_algorithm
2022-04-22 13:57:14 +0200
8855e36030
Merge pull request #5674 from superna9999/5668-abstract-tls-mode-cleanup
2022-04-28 12:33:38 +0200
8a4b7fd7c3
Optimize code
2022-04-28 09:22:22 +0200
ad47487e25
Merge pull request #5742 from superna9999/5669-review-test-incompatible-psa
2022-04-28 09:57:13 +0200
ab452cc257
fix name issue
2022-04-28 15:27:08 +0800
8abcee9290
Fix typos
2022-04-28 09:16:28 +0200
bc3cfed43e
check_config.h: Add MBEDTLS_MD_C dependency MBEDTLS_PKCS12_C, MBEDTLS_PKCS1_V15, MBEDTLS_PKCS1_V21, MBEDTLS_PK_C
2022-04-27 14:19:19 +0200
6aadf0b44f
mbedtls_config.h: update dependencies for MBEDTLS_MD_C
2022-04-27 14:46:52 +0200
2230e6c06d
Simplify PSA transform->ivlen set in ssl_tls12_populate_transform()
2022-04-27 10:36:14 +0200
3bf040ed70
Reorganize PSA/!PSA code in mbedtls_ssl_ticket_setup()
2022-04-27 10:35:24 +0200
301711e96e
Simplify mbedtls_ssl_get_base_mode
2022-04-26 16:57:05 +0200
e108d987ea
Simplify mbedtls_ssl_get_mode
2022-04-26 16:50:40 +0200
98136b14e0
Fixup and update comment of disabled USE_PSA_CRYPTO test check in all.sh
2022-04-27 10:00:42 +0200
efffd6410a
Note that MBEDTLS_CONFIG_FILE can't be defined inside the config file
2022-04-26 18:13:01 +0200
1c9eb722fd
Update PSA specific comment in pk_rsa_verify_ext_test_vec()
2022-04-25 14:38:18 +0200
cef55dbd6a
ssl-opt: add state check
2022-04-23 11:02:05 +0800
4d3841a4d1
fix various issues
2022-04-16 12:37:19 +0800
cba64af50d
TLS1.3: add writing encrypted extensions
2022-02-15 10:00:56 +0000
8ba99e736a
Clarify wording of documentation
2022-04-25 10:12:01 +0200
002a7b20ec
Adapt ChangeLog
2018-10-11 11:40:09 +0100
2b9fb88281
Clarify documentation of mbedtls_x509_crt_profile
2018-10-11 11:36:29 +0100
eecd0d2fc3
Merge pull request #5679 from yuhaoth/pr/add-tls13-write-server-hello
2022-04-25 09:28:40 +0200
b51561b017
Add change log entry for mixed-psk
2022-04-25 08:52:26 +0200
a828f4d89c
Merge pull request #5684 from tom-daubney-arm/M-AEAD_decrypt_driver_dispatch_test
2022-04-23 12:10:21 +0200
e65d801580
fix undeclare error
2022-04-23 10:34:35 +0800
d7e0ee42b8
cmake: Fix runtime library install location in mingw
2022-04-22 20:59:50 +0530
0f2e87bdf5
cmake: Use GnuInstallDirs to customize install directories
2022-04-22 20:56:21 +0530
882e02ea7a
Move and fixup check_test_requires_psa_disabled() into check_test_cases()
2022-04-22 16:50:29 +0200
6e6967f6a0
Reorganize PSA INVALID_PADDING handling for test #5 in pk_rsa_verify_ext_test_vec()
2022-04-22 11:32:18 +0200
2f8c2a5fc5
Merge pull request #5753 from tom-cosgrove-arm/fix-missing-prototypes-warnings-a64-sha256-sha512
2022-04-22 16:45:23 +0200
eef30bcea1
Merge pull request #5755 from mpg/ecdsa-range-test
2022-04-22 16:43:44 +0200
72b99edf31
Merge pull request #5381 from mpg/benchmark-ecc-heap
2022-04-22 16:43:11 +0200
955ddd75a3
fix various issues
2022-04-22 22:27:33 +0800
4914d50c73
Fix spelling error in generated helper code
2022-04-22 15:26:47 +0100
b8f7694e6a
Fix Doxygen syntax error in generated code
2022-04-22 15:20:46 +0100
99114f3084
Fix build flags for opaque/raw psk checks
2022-04-22 11:20:09 +0200
85d46fe6cf
ssl-opt.sh: add tests for clent/server psa opaque dhe-psk key exchange
2022-04-19 12:47:48 +0200
cb322eac6b
Enable support for psa opaque DHE-PSK key exchange on the server side
2022-04-19 12:23:37 +0200
b293aaa61b
Enable support for psa opaque DHE-PSK key exchange on the client side
2022-04-19 12:22:38 +0200
b6a0503dda
ssl-opt.sh: add tests for clent/server psa opaque ecdhe-psk key exchange
2022-04-14 10:22:18 +0200
14d11b0877
Enable support for psa opaque ECDHE-PSK key exchange on the server side
2022-04-14 08:33:29 +0200
19b80f8151
Enable support for psa opaque ECDHE-PSK key exchange on the client side
2022-04-14 08:29:31 +0200
Werner Lewis
Dave Rodgman
Tom Cosgrove
Tom Cosgrove
Jerry Yu
Hanno Becker
Andrzej Kurek
Janos Follath
Gilles Peskine
Jan Bruckner
Przemek Stekiel
Leonid Rozenboim
Neil Armstrong
Ronald Cron
Zhangsen Wang
Gabor Mezei
Mansour Moufid
Manuel Pégourié-Gonnard
kXuan
Dominik Gschwind
Martin Man
Aditya Patwardhan
savent
Bence Szépkúti
Tuvshinzaya Erdenekhuu
Thomas Daubney
XiaokangQian
Eduardo Silva
Paul Elliott
Peter Korsgaard
Paul Elliott
Zhangsen Wang
Glenn Strauss
Summer Qin
pespacek
Kazuyuki Kimura
Robert Shade
bootstrap-prime
Aurelien Jarno
Shaun Case
okhowang(王沛文)
Cameron Cawley
Xiaofei Bai
Pol Henarejos
josesimoes
Antonio de Angelis
Biswapriyo Nath