mbedtls

Author	SHA1	Message	Date
Kusumit Ghoderao	3d5edb8eef	Add input password function for pbkdf2 cmac Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-07-04 15:17:00 +05:30
Kusumit Ghoderao	2cd649684a	Add pbkdf2_cmac to key derivation setup Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-07-04 15:17:00 +05:30
Kusumit Ghoderao	857cd4b3ee	Add AES_CMAC_PRF_128 output size macro Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-07-04 15:16:59 +05:30
Kusumit Ghoderao	3ab146f99e	Add builtin pbkdf2 cmac guard for all the pbkdf2 functions Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-07-04 15:16:59 +05:30
Kusumit Ghoderao	dd45667a18	Define struct for pbkdf2_cmac Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-07-04 15:16:59 +05:30
Kusumit Ghoderao	3cb6e41dfa	Add define for builtin pbkdf2_cmac Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-07-04 15:16:59 +05:30
Manuel Pégourié-Gonnard	aaad2b6bfc	Rename some local variables Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-07-04 11:35:16 +02:00
Pengyu Lv	b687c03183	Fix the command for server9-sha.crt The new command could generate parse_input/server9-sha.crt correctly. Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	49c56e651d	Add target for parse_input/cert_example_multi_nocn.crt Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	19e949e644	Fix typo and long line format Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	736d2bb715	Update crl-rsa-pss-*.pem manually The rules will be in a seperate PR. Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Jerry Yu	59f392cd4d	upgrade server9-bad-saltlen.crt Upgrade scripts ```python import subprocess from asn1crypto import pem, x509,core output_filename="server9-bad-saltlen.crt" tmp_filename="server9-bad-saltlen.crt.tmp" tmp1_filename="server9-bad-saltlen.crt.tmp1" subprocess.check_call(rf''' openssl x509 -req -extfile server5.crt.openssl.v3_ext \ -passin "pass:PolarSSLTest" -CA test-ca.crt -CAkey test-ca.key \ -set_serial 24 -days 3650 \ -sigopt rsa_padding_mode:pss -sigopt rsa_pss_saltlen:max \ -sigopt rsa_mgf1_md:sha256 -sha256 \ -in server9.csr -out {output_filename} ''',shell=True) with open(output_filename,'rb') as f: _,_,der_bytes=pem.unarmor(f.read()) target_certificate=x509.Certificate.load(der_bytes) with open(tmp_filename,'wb') as f: f.write(target_certificate['tbs_certificate'].dump()) subprocess.check_call(rf'openssl dgst -sign test-ca.key -passin "pass:PolarSSLTest" \ -sigopt rsa_padding_mode:pss -sigopt rsa_pss_saltlen:32 \ -sigopt rsa_mgf1_md:sha256 -out {tmp1_filename} {tmp_filename}', shell=True) with open(tmp1_filename,'rb') as f: signature_value= core.OctetBitString(f.read()) with open(output_filename,'wb') as f: target_certificate['signature_value']=signature_value f.write(pem.armor('CERTIFICATE',target_certificate.dump())) ``` Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	4ad45c01b9	Update server9*.crt Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	8c40c573b2	Add server9-bad-{mgfhash,saltlen}.crt Signed-off-by: Jerry Yu <jerry.h.yu@arm.com> Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	b5ac935e44	Add rules to generate server9*.crt Except for server9-bad-saltlen.crt and server9-bad-mgfhash.crt. Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Jerry Yu	4ca9520582	Update server1-nospace.crt Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-07-04 17:30:21 +08:00
Jerry Yu	0efdfcbfd3	Update v1 crt files Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	0d545a1815	Update cert_example_multi_nocn.crt Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	e025cb2096	Add rules to generate cert_example_multi_nocn.crt Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	d9ba29733e	Update server5.[e]ku-*.crt Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	1ca5c0eae9	Add rules to generate server5.[e]ku-*.crt Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	b078607f04	cert_write: Support write any for extended key usage Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	5b91dc7265	Update server2.ku-*.crt Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	0063599e6f	Add rules to generate server2.ku-*.crt Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	55ee7f8e13	Add rule for server2-badsign.crt Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Jerry Yu	0f381fd02f	Update test-ca2.ku-*.crt Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-07-04 17:30:21 +08:00
Pengyu Lv	5a1dbf3d6e	Fix the rule for server5-ss-forgeca.crt Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Jerry Yu	affc294dfe	Add the rule and update server6-ss-child.crt Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-07-04 17:30:21 +08:00
Jerry Yu	4d69b29076	Update server5-selfsigned.crt Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-07-04 17:30:21 +08:00
Yanray Wang	699a6c8a6d	code_size_compare.py: add comment for sys_arch Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-07-04 17:27:45 +08:00
Yanray Wang	4c26db0845	code_size_compare.py: run make clean before build libraries If we don't remove all executable files in current working directory, we might measure code size between different architecture and configuration. This generates a wrong code size comparison report. This commit guarantees it runs `make clean` before build libraries for code size comparison. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-07-04 17:27:45 +08:00
Manuel Pégourié-Gonnard	443589ac53	Merge pull request #7870 from valeriosetti/fix-tls13-guards tls13: fix guards for PSA error translating function	2023-07-04 11:21:14 +02:00
Tom Cosgrove	1940e7bae4	Merge pull request #7671 from yanrayw/7360-code-size-improve-format code size: improve format of csv file	2023-07-04 09:15:48 +01:00
Tom Cosgrove	9b20c6fcc1	Merge pull request #7840 from yanrayw/7381_aes_gen_table AES: use uint8_t for array of pow and log to save RAM usage	2023-07-04 08:34:12 +01:00
Valerio Setti	dbd01cb677	tls13: fix guards for PSA error translating function Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-07-04 09:18:52 +02:00
Gilles Peskine	958346917c	Officially require Python 3.8 Our code is still compatible with Python 3.5 at the time of writing, but we don't want to commit to that. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-07-03 17:59:37 +02:00
Gilles Peskine	552c9ab8c4	Correct Python requirements in releases The wording wasn't quite right for 3.0.0 and up: there's nothing special about Python and sample programs (that was true in the end times of 2.x, but not since 3.0). Python is not needed in a release unless you want to build the tests or you want to integrate PSA drivers without writing your own C wrappers. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-07-03 17:54:26 +02:00
Dave Rodgman	9cf17dad9d	Merge pull request #7851 from daverodgman/fix-unused-aes Fix AES dependencies - build TF-M config cleanly	2023-07-03 16:49:00 +01:00
Andrzej Kurek	cf669b058b	Add a dummy usage of a pointer in tests This way clang with O1 doesn't optimize it. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-07-03 10:42:27 -04:00
Andrzej Kurek	2b3c06edb3	Enable certain documented defines only when generating doxygen Avoid an "unrecognized define" error. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-07-03 10:42:15 -04:00
Gilles Peskine	e554f1b9c0	Merge pull request #7853 from lpy4105/issue/7816/add-commands-for-files-in-parse_input 7831 follow-up: fix wrong dependency name and wrong commands	2023-07-03 16:00:45 +02:00
Dave Rodgman	0d539c222c	Merge pull request #7702 from silabs-Kusumit/PBKDF2_out_of_range_input_cost PBKDF2: Out of range input cost	2023-07-03 09:58:22 +01:00
Dave Rodgman	6f37495ea4	Merge pull request #7626 from SlugFiller/patch-1 Support compilation using CLang on Windows	2023-07-03 09:51:59 +01:00
Manuel Pégourié-Gonnard	56b159a12a	Merge pull request #7627 from mprse/ffdh_tls13_v2 Make use of FFDH keys in TLS 1.3 v.2	2023-07-03 10:12:33 +02:00
Manuel Pégourié-Gonnard	45e009aa97	Merge pull request #7814 from valeriosetti/issue7746 PK: refactor wrappers in the USE_PSA case	2023-07-03 09:32:31 +02:00
Valerio Setti	f7cd419ade	pk: ignore opaque EC keys in pk_setup when they are not supported Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-06-30 18:11:29 +02:00
Valerio Setti	35d1dacd82	pk_wrap: fix: always clear buffer holding private key in eckey_check_pair_psa Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-06-30 18:04:16 +02:00
Gabor Mezei	f4aab6f666	Add comments and remove unneeded defines For `check_names.py` it is enough to appear a macro definition in a comment to validate it. Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-06-30 16:54:55 +02:00
Valerio Setti	38913c16b0	pk_wrap: do not support opaque EC keys when !PK_HAVE_ECC_KEYS Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-06-30 16:18:33 +02:00
Tom Cosgrove	c4a760c538	Merge pull request #7849 from davidhorstmann-arm/fix-string-to-names-retcode Fix false success return code in `mbedtls_x509_string_to_names()`	2023-06-30 14:28:29 +01:00

... 24 25 26 27 28 ...

27331 commits