7b23c0b46d
Move mbedtls_cf_mem_move_to_left function to the constant-time module
...
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 10:59:04 +01:00
043192d209
Move mbedtls_cf_mpi_uint_cond_assign function to the constant-time module
...
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 10:55:56 +01:00
5cec8b44a8
Move mbedtls_cf_cond_select_sign function to the constant-time module
...
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 10:54:20 +01:00
7533253125
Move mbedtls_cf_uint_if function to the constant-time module
...
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 10:52:42 +01:00
097d4f555e
Move mbedtls_cf_mpi_uint_lt function to the constant-time module
...
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 10:52:01 +01:00
17da4f2a4e
Remove module dependency
...
Elinimate macros defined by modules locally in the functions that are
moving to the new constant-time module.
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 10:04:59 +01:00
9d7bf09333
Move mbedtls_cf_size_gt function to the constant-time module
...
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 10:04:49 +01:00
96584ddd4b
Move mbedtls_cf_size_bool_eq function to the constant-time module
...
There were multiple functions called mbedtls_cf_size_bool_eq. They had exactly
the same behavior, so move the one in bignum.c and remove the other.
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 10:03:55 +01:00
a2bcabceb2
Move mbedtls_cf_size_mask_ge function to the constant-time module
...
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 10:00:17 +01:00
4d6b14624e
Move mbedtls_cf_size_mask_lt function to the constant-time module
...
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 10:00:17 +01:00
d361ccd663
Move mbedtls_cf_size_mask function to the constant-time module
...
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 10:00:17 +01:00
c11cac9f1b
Move mbedtls_cf_uint_mask function to the constant-time module
...
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 10:00:17 +01:00
944c107744
Move contatnt-time memcmp functions to the contant-time module
...
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 10:00:12 +01:00
e41e3e8a8b
Rename function to have suitable name
...
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 09:57:28 +01:00
9055972227
Add a new file for constant-time functions
...
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com >
2021-11-11 09:39:12 +01:00
2290afc2d4
Merge pull request #5142 from mprse/generate_key2_2x
...
Backport 2.x: Generate test cases for PSA key generation
2021-11-10 20:55:38 +01:00
1dbaaba067
Build psa-arch-tests with MISSING_CRYPTO_1_0=1
...
This disables references to the missing multipart AEAD functions.
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 17:44:37 +01:00
d1c6420aba
Move to a fork with Mbed TLS 2.x specific fixes
...
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 17:43:20 +01:00
9ad859929e
Merge pull request #5150 from tom-cosgrove-arm/serialise-builds-of-archives-on-windows_2.x
...
Backport 2.x: Serialise builds of the .a files on Windows
2021-11-10 15:41:40 +00:00
340352ad74
Track upstreaming task in an issue
...
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:35 +01:00
7ccbea6e47
Document the values in EXPECTED_FAILURES
...
Including the issues where the corresponding defects are tracked.
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:35 +01:00
355f8050cc
Move to an updated fork of psa-arch-tests
...
The new fork was rebased on top of the upstream master, removing the
need for most of the downstream patches we carried.
On the other hand, the new fork includes a couple of fixes to problems
that were not addressed by the original fork, or were introduced with the
new version of psa-arch-tests.
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:35 +01:00
b38686500e
Fix typo
...
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:35 +01:00
d6cf089b37
Explain why support_test_psa_compliance is needed
...
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:35 +01:00
bd66d184ff
Keep local clone around even if the test succeeds
...
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:35 +01:00
eda2fb9583
Make directory creation code more compact
...
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:35 +01:00
c2ca135f82
Add licence header to script
...
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:35 +01:00
559f1ce0a3
Make main() suitable to being called from python
...
Don't call sys.exit(), and don't clobber the working directory.
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:34 +01:00
19a124d677
Fix pylint errors
...
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:34 +01:00
6025655598
Simplify regex and use named capture groups
...
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:34 +01:00
faf7f1b554
Use print(end='') to silence double newline
...
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:34 +01:00
f54a9d2adf
Indicate errors interleaved with test suite output
...
Indicate whether a success or failure is unexpected, or expected and
ignored as they happen.
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:34 +01:00
ab796e656b
Make the changes easier to backport
...
The code replaced in this patch was not compatible with the
development_2.x branch.
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:34 +01:00
9f84911d55
Run the PSA Compliance test suite in all.sh
...
This commit adds a component to all.sh which clones, builds and runs the
compliance test suite.
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com >
2021-11-10 14:56:34 +01:00
8517d17329
Serialise builds of the .a files on Windows
...
This is a workaround for an issue with mkstemp() in older MinGW releases that
causes simultaneous creation of .a files in the same directory to fail.
Fixes #5146
Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com >
2021-11-10 12:28:53 +00:00
5929996569
Add generated test data
...
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com >
2021-11-09 14:41:28 +01:00
e2b50957df
test_case.py: add new line between test cases
...
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com >
2021-11-09 14:40:35 +01:00
292759319f
Fix rebase issue in generate_psa_tests.py
...
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com >
2021-11-09 12:06:37 +01:00
98e38678c2
Adapt generate_key() test code to mbedTLS standards
...
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com >
2021-11-09 12:01:19 +01:00
1ab3a5ca98
generate_psa_tests.py: add key generation result to test case argument list, add comments
...
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com >
2021-11-09 12:01:19 +01:00
0810108f12
Fix issues pointed by CI
...
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com >
2021-11-09 12:01:14 +01:00
c03b7c58d1
Remove unused param and duplicated test cases
...
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com >
2021-11-09 11:55:58 +01:00
32a8b84814
Remove key generation when given argument is invalid from NotSupported class
...
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com >
2021-11-09 11:55:58 +01:00
997caf835c
Add test class for key generation
...
Genertae test_suite_psa_crypto_generate_key.generated.data.
Use test_suite_psa_crypto_generate_key.function as a test function.
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com >
2021-11-09 11:55:58 +01:00
95c3971c81
Merge pull request #5133 from haampie/fix/DT_NEEDED_for_shared_libraries-2.x
...
Backport 2.x: DT_NEEDED for shared builds in makefile
2021-11-05 12:04:33 +01:00
2c4f032bcf
Merge pull request #5050 from gilles-peskine-arm/missing-psa-macros-2.x
...
Backport 2.x: Add missing PSA macros
2021-11-05 10:09:17 +01:00
3ed4263ad7
DT_NEEDED for shared builds in makefile
...
The makefile build specifies -L. -lmbedx509 -lmbedcrypto flags first,
and only then object files referencing symbols from those libraries.
In this order the linker will not add the linked libraries to the
DT_NEEDED section because they are not referenced yet (at least that
happens for me on ubuntu 20.04 with the default gnu compiler tools).
By first specifying the object files and then the linked libraries, we
do end up with libmbedx509 and libmbedcrypto in the DT_NEEDED sections.
This way running dlopen(...) on libmedtls.so just works.
Note that the CMake build does this by default.
Signed-off-by: Harmen Stoppels <harmenstoppels@gmail.com >
2021-11-05 09:31:22 +01:00
5d5f520d3a
An initialization vector IV can have any number of bits between 1 and
...
2^64. So it should be filled to the lower 64-bit in the last step
when computing ghash.
Signed-off-by: openluopworld <wuhanluop@163.com >
2021-11-05 00:13:43 +08:00
1aa7ad7c0f
Merge pull request #5129 from gilles-peskine-arm/base64_invasive_h-2.x
...
Backport 2.x: Fix copypasta in #endif comment
2021-11-04 10:06:12 +00:00
16c2102de2
Fix copypasta in #endif comment
...
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com >
2021-11-03 18:28:40 +01:00
