9bd28dc1e1
Update changed log
...
Signed-off-by: Asfandyar Orakzai <asfandyar.orakzai@silabs.com >
2022-11-02 16:36:14 +01:00
22cdd0ccd3
Update some internal comments
...
The refactoring of fill_random had left some obsolete bits in comments.
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com >
2022-11-02 16:00:01 +01:00
dd54324765
Increase iterations for some statistical tests
...
I ran into a sequence where the assertion `stats[8] > 0` failed for the
range 1..272 with 100 iterations.
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com >
2022-11-02 16:00:01 +01:00
009d195a56
Move mbedtls_mpi_core_fill_random to the proper .c file
...
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com >
2022-11-02 16:00:01 +01:00
5980f2bd36
Implement mbedtls_mpi_core_fill_random
...
Turn mpi_fill_random_internal() into mbedtls_mpi_core_fill_random(). It
had basically the right code except for how X is passed to the function.
Write unit tests.
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com >
2022-11-02 15:59:36 +01:00
909e03c52f
Bignum core: fill_random: prototype
...
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com >
2022-11-02 15:59:16 +01:00
f1ed5815ba
Merge pull request #6512 from yanesca/extract_uint_table_lookup_core
...
Implement mbedtls_mpi_core_ct_uint_table_lookup()
2022-11-02 13:58:19 +00:00
df0ad658a3
tls13: Add allowed extesions constants.
...
- And refactor check_received_extension
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-11-02 21:35:27 +08:00
90c6836271
Merge pull request #6524 from daverodgman/fix-duplicate-header
...
Remove duplicate function prototype
2022-11-02 13:06:08 +00:00
ea63f69303
Merge pull request #6514 from daverodgman/update_pr_template
...
Update PR template
2022-11-02 13:05:09 +00:00
28f85e6683
Fix const time in mpi_core_ct_uint_table_lookup test
...
Signed-off-by: Janos Follath <janos.follath@arm.com >
2022-11-02 10:20:35 +00:00
340846ec7e
Merge pull request #6515 from daverodgman/psalinks
...
Update PSA links in README.md
2022-11-02 10:02:19 +00:00
0877dc8f55
Improve documentation for psa_crypto_cipher.h
...
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com >
2022-11-02 09:29:50 +00:00
1630447eed
Move declaration of mbedtls_cipher_info_from_psa into psa_crypto_cipher.h
...
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com >
2022-11-02 09:25:38 +00:00
5f8dfb5393
Merge pull request #6521 from daverodgman/fix_ssl_zeroize
...
Fix zeroization at NULL pointer
2022-11-01 20:50:38 +00:00
b256640d72
Improve list formatting
...
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com >
2022-11-01 20:40:48 +00:00
f3928fb3e0
Reinstate note about all PRs receiving review
...
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com >
2022-11-01 20:39:04 +00:00
ba864848e7
Remove duplicate function prototype
...
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com >
2022-11-01 16:41:09 +00:00
5875f5f96b
Add Changelog
...
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com >
2022-11-01 16:28:03 +00:00
29b9b2b699
Fix zeroization at NULL pointer
...
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com >
2022-11-01 16:08:14 +00:00
8904a2db29
mpi_core_ct_uint_table_lookup: style and docs
...
Signed-off-by: Janos Follath <janos.follath@arm.com >
2022-10-31 16:51:56 +00:00
119e5d7a6b
Update CONTRIBUTING.md, and refer to this from the template
...
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com >
2022-10-31 15:57:31 +00:00
12cee78ea7
Update PSA links in README.md
...
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com >
2022-10-31 15:34:11 +00:00
ef67d38bc0
Fix memory leak in mpi_core_ct_uint_table_lookup test
...
Signed-off-by: Janos Follath <janos.follath@arm.com >
2022-10-31 15:11:49 +00:00
3d973314b2
Update PR template
...
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com >
2022-10-31 14:54:24 +00:00
88e3177fcc
Make pylint happy
...
Signed-off-by: Janos Follath <janos.follath@arm.com >
2022-10-31 14:32:46 +00:00
e8734d8a55
Apply suggestions from code review
...
Two spelling fixes (changelog & a comment)
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com >
2022-10-31 14:30:24 +00:00
55fd0b9fc1
Merge pull request #6121 from daverodgman/pr277
...
cert_write - add a way to set extended key usages - rebase
2022-10-31 13:27:49 +00:00
7d8b3c9342
Merge pull request #6510 from gilles-peskine-arm/all.sh-simplify-20221028-development
...
Remove a few redundancies from all.sh
2022-10-31 12:00:18 +00:00
133f4e427b
Test mpi_core_table_lookup for constant timeness
...
Signed-off-by: Janos Follath <janos.follath@arm.com >
2022-10-31 11:32:55 +00:00
032924f297
Add mbedtls_mpi_core_ct_uint_table_lookup tests
...
Signed-off-by: Janos Follath <janos.follath@arm.com >
2022-10-31 11:32:55 +00:00
e50f2f1a8e
Add mbedtls_mpi_core_ct_uint_table_lookup
...
This will be needed for extracting modular exponentiation from the
prototype. The function signature is kept aligned to the prototype, but
the implementation is new. (The implementation of this function in the
prototype has further optimisations which are out of scope for now.)
The function is not reused in the bignum counterpart as it will become
redundant soon.
This function is meant to be static, but doesn't have the qualifier as
it is not used yet and would cause compiler warnings. The
MBEDTLS_STATIC_TESTABLE macro will be added in a later commit.
Signed-off-by: Janos Follath <janos.follath@arm.com >
2022-10-31 11:32:55 +00:00
2dc2757cca
Merge pull request #6457 from minosgalanakis/minos/6017_update_modulus_lifecycle
...
Bignum: Updated the modulus lifecyle
2022-10-31 11:28:37 +00:00
1a22bef116
Merge pull request #6190 from daverodgman/invalid-ecdsa-pubkey
...
Improve ECDSA verify validation
2022-10-31 09:37:26 +00:00
7a485c1fdf
Add ext id and utilities
...
- Remove `MBEDTLS_SSL_EXT_*`
- Add macros and functions for translating iana identifer.
- Add internal identity for extension
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
c4bf5d658e
fix various issues
...
- Signature of
- mbedtls_tls13_set_hs_sent_ext_mask
- check_received_extension and issues
- Also fix comment issue.
- improve readablity.
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
03112ae022
change input extension_type
...
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
0c354a211b
introduce sent/recv extensions field
...
And remove `extensions_present`
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
ffa1582793
move get_extension mask
...
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
9872eb2d69
change return type for unexpected extension
...
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
43ff252688
Remove unnecessary checks.
...
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
d15992d3ce
fix wrong setting of unrecognized ext
...
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
6ba9f1c959
Add extension check for NewSessionTicket
...
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
2c5363e58b
Add extension check for ServerHello and HRR
...
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
2eaa76044b
Add extension check for Certificate
...
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
c55a6af9eb
Add extensions check for CertificateRequest
...
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
cbd082f396
Add extension check for EncryptedExtensions
...
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
e18dc7eb9a
Add forbidden extensions check for ClientHello
...
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
471dee5a12
Add debug helpers to track extensions
...
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com >
2022-10-31 16:41:42 +08:00
da6017cbe3
Group cpp_dummy_build test into an existing component
...
No need to do yet another build just to compile an additional trivial program.
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com >
2022-10-30 21:18:14 +01:00
