mbedtls

mirror of https://github.com/yuzu-mirror/mbedtls.git synced 2025-12-06 07:12:32 +01:00

Author	SHA1	Message	Date
Dave Rodgman	e467d62042	Add casts for NEON Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-21 17:09:46 +00:00
Dave Rodgman	c37ad4432b	misc type fixes in ssl Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-21 17:09:46 +00:00
Dave Rodgman	df4d42106a	Use standard byte conversion fns in lms Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-21 17:09:46 +00:00
Dave Rodgman	a3d0f61aec	Use MBEDTLS_GET_UINTxx_BE macro Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-21 17:09:46 +00:00
Dave Rodgman	b2e8419b50	Fix types in entropy_poll.c Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-21 17:09:46 +00:00
Dave Rodgman	e4a6f5a7ec	Use size_t cast for pointer subtractions Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-21 17:09:46 +00:00
Manuel Pégourié-Gonnard	d4dc354185	Merge pull request #8541 from yanrayw/issue/ssl-fix-missing-guard ssl_tls: add missing macro guard	2023-11-21 14:57:47 +00:00
Ryan Everett	9f176a2766	Fix status assignments when loading persistent keys Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2023-11-21 11:49:57 +00:00
Jerry Yu	60e997205d	replace check string The output has been changed Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:59:25 +08:00
Jerry Yu	713ce1f889	various improvement - improve change log entry - improve comments - remove unnecessary statement - change type of client_age Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:59:25 +08:00
Jerry Yu	d84c14f80c	improve code style Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:59:24 +08:00
Jerry Yu	9cb953a402	improve document Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:59:24 +08:00
Jerry Yu	8e0174ac05	Add maximum ticket lifetime check Also add comments for age cast Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:59:24 +08:00
Jerry Yu	472a69260b	fix build failure Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:59:20 +08:00
Jerry Yu	cf9135100e	fix various issues - fix CI failure due to wrong usage of ticket_lifetime - Improve document and comments Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:58:19 +08:00
Jerry Yu	342a555eef	rename ticket received Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:58:19 +08:00
Jerry Yu	25ba4d40ef	rename `ticket_creation` to `ticket_creation_time` Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:58:19 +08:00
Jerry Yu	46c7926f74	Add maximum ticket lifetime check Also add comments for age cast Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:58:19 +08:00
Jerry Yu	28e7c554f4	Change the bottom of tolerance window The unit of ticket time has been changed to milliseconds. And age difference might be negative Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:58:19 +08:00
Jerry Yu	31b601aa15	improve comments Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:58:18 +08:00
Jerry Yu	ec6d07870d	Replace `start` with `ticket_creation` Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:58:18 +08:00
Jerry Yu	f16efbc78d	fix various issues - Add comments for ticket test hooks - improve code style. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:58:18 +08:00
Jerry Yu	cebffc3446	change time unit of ticket to milliseconds Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-21 09:58:18 +08:00
Valerio Setti	d0eebc1f94	ccm/gcm: improve code maintainability Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-11-20 15:17:53 +01:00
Gilles Peskine	473ff34d59	Merge pull request #8489 from valeriosetti/issue8482 Make CCM* and CCM independent	2023-11-20 14:07:14 +00:00
Ronald Cron	97137f91b6	Merge pull request #7071 from yuhaoth/pr/tls13-ticket-add-max_early_data_size-field TLS 1.3 EarlyData: add `max_early_data_size` field for ticket	2023-11-20 08:04:57 +00:00
Paul Elliott	5fa986c8cb	Move handling of mutex->is_valid into threading_helpers.c This is now a field only used for testing. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-11-16 15:13:05 +00:00
Ryan Everett	975d411d92	Only set slot to OCCUPIED on successful key loading Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2023-11-16 13:37:51 +00:00
Valerio Setti	9b7a8b2a0c	ccm/gcm: reaplace CIPHER_C functions with BLOCK_CIPHER_C ones Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-11-16 11:48:00 +01:00
Yanray Wang	19e4dc8df7	tls: fix unused parameter in mbedtls_ssl_cipher_to_psa Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-11-16 18:05:51 +08:00
Yanray Wang	1a369d68aa	ssl_tls: add missing guard for mbedtls_ssl_cipher_to_psa Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-11-16 15:17:33 +08:00
Manuel Pégourié-Gonnard	dc848955d6	Merge pull request #8519 from mpg/block-cipher [G2] Add internal module block_cipher	2023-11-15 11:53:22 +00:00
Valerio Setti	5e378d70e6	ssl_misc: remove DES from the list of key types supporting CBC Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-11-15 09:18:14 +01:00
Dave Rodgman	cba4091581	Merge pull request #8516 from mschulz-at-hilscher/fixes/divided-assembler-syntax-error-gcc493 Fixes invalid default choice of thumb assembler syntax.	2023-11-14 17:57:37 +00:00
Matthias Schulz	90c8c3235b	Update library/constant_time_impl.h Co-authored-by: Dave Rodgman <dave.rodgman@arm.com> Signed-off-by: Matthias Schulz <140500342+mschulz-at-hilscher@users.noreply.github.com>	2023-11-14 16:35:50 +01:00
Matthias Schulz	3f80ffb9ff	Update library/constant_time_impl.h Co-authored-by: Dave Rodgman <dave.rodgman@arm.com> Signed-off-by: Matthias Schulz <140500342+mschulz-at-hilscher@users.noreply.github.com>	2023-11-14 16:35:45 +01:00
Manuel Pégourié-Gonnard	752dd39a69	Merge pull request #8508 from valeriosetti/issue6323 [G3] Driver-only cipher+aead: TLS: ssl-opt.sh	2023-11-14 11:39:06 +00:00
Yanray Wang	c43479103a	aesce: fix unused parameter Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-11-14 11:09:56 +08:00
Matthias Schulz	e94525bd17	Updated comments. Signed-off-by: Matthias Schulz <mschulz@hilscher.com>	2023-11-13 14:01:02 +01:00
Matthias Schulz	35842f52f2	Simplified check. Signed-off-by: Matthias Schulz <mschulz@hilscher.com>	2023-11-13 13:57:05 +01:00
Ryan Everett	34d6a5c3df	Move enum definition to satisfy `check_names.py` Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2023-11-13 09:52:12 +00:00
Matthias Schulz	ca8981c1ee	Added proposed fixes Signed-off-by: Matthias Schulz <mschulz@hilscher.com>	2023-11-13 10:04:19 +01:00
Matthias Schulz	be1e9c5951	Pop only when pushed. Signed-off-by: Matthias Schulz <mschulz@hilscher.com>	2023-11-13 09:33:33 +01:00
Tom Cosgrove	08ea9bfa1f	Merge pull request #8487 from yanrayw/issue/6909/rename_tls13_conf_early_data TLS 1.3: Rename early_data and max_early_data_size configuration function	2023-11-10 19:35:46 +00:00
Manuel Pégourié-Gonnard	76fa16cab3	block_cipher: add encrypt() Test data copied from existing test suites. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-11-10 12:14:53 +01:00
Manuel Pégourié-Gonnard	3e0884fc53	block_cipher: add setkey() Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-11-10 11:52:10 +01:00
Yanray Wang	0287b9d260	padlock.c: guard mbedtls_padlock_xcryptcbc by CIPHER_MODE_CBC Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-11-10 18:21:22 +08:00
Manuel Pégourié-Gonnard	21718769d1	Start adding internal module block_cipher.c Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-11-10 11:21:17 +01:00
Yanray Wang	cd25d22526	cipher.c: remove checks for CBC,XTS,KW,KWP in cipher_setkey We have checks for CBC, XTS and KW modes in check_config.h. This means we should never get a successful build with above three modes. Therefore, the checks in cipher_setkey is not necessary as other error will be emitted if asking for those modes in the cipher. Additionally, removing the checks can save extra code size. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-11-10 15:40:58 +08:00
Valerio Setti	01c4fa3e88	ssl: move MBEDTLS_SSL_HAVE internal symbols to ssl.h This is useful to properly define MBEDTLS_PSK_MAX_LEN when it is not defined explicitly in mbedtls_config.h Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-11-10 08:12:07 +01:00
Yanray Wang	111159b89c	BLOCK_CIPHER_NO_DECRYPT: call encrypt direction unconditionally Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-11-10 15:03:23 +08:00
Matthias Schulz	5ffc42442d	Fix preprocessor syntax error. Signed-off-by: Matthias Schulz <mschulz@hilscher.com>	2023-11-09 15:44:24 +01:00
Matthias Schulz	2e068cef09	fixes invalid default choice of thumb assembler syntax. Signed-off-by: Matthias Schulz <mschulz@hilscher.com>	2023-11-09 15:25:52 +01:00
Matthias Schulz	ee10b8470a	Fix compiler error on gcc 4.5.2. Signed-off-by: Matthias Schulz <mschulz@hilscher.com>	2023-11-09 15:19:28 +01:00
Matthias Schulz	9916b06ce7	Fix uninitialized variable warnings. Signed-off-by: Matthias Schulz <mschulz@hilscher.com>	2023-11-09 14:25:01 +01:00
Manuel Pégourié-Gonnard	7d7ce0e66a	Merge pull request #8495 from lpy4105/issue/6322/driver-only-cipher_aead-tls [G3] Driver-only cipher+aead: TLS: main test suite	2023-11-09 11:10:34 +00:00
Yanray Wang	f03b49122c	aes.c: guard RSb and RTx properly If we enabled AES_DECRYPT_ALT and either AES_SETKEY_DEC_ALT or AES_USE_HARDWARE_ONLY, this means RSb and RTx are not needed. This commit extends how we guard RSb and RTx for the combinations of these configurations. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-11-09 11:43:21 +08:00
Gilles Peskine	4dec9ebdc2	Merge pull request #8378 from mschulz-at-hilscher/fixes/issue-8377 Fixes "CSR parsing with critical fields fails"	2023-11-08 18:07:04 +00:00
Dave Rodgman	0d22539de0	Merge pull request #8468 from daverodgman/mbedtls-3.5.1-pr Mbed TLS 3.5.1	2023-11-08 18:01:32 +00:00
Ryan Everett	5567e3a34b	Make empty key slots explicit Add new status field to key slots, and use it. Signed-off-by: Ryan Everett <ryan.everett@arm.com>	2023-11-08 13:28:20 +00:00
Dave Rodgman	28d40930ae	Restore bump version Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-08 11:40:08 +00:00
Yanray Wang	004a60c087	aes.c: remove non-functional code Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-11-08 19:05:31 +08:00
Pengyu Lv	2bd56de3f4	ssl: replace MBEDTLS_SSL_HAVE_*_CBC with two seperate macros MBEDTLS_SSL_HAVE_<block_cipher>_CBC equals MBEDTLS_SSL_HAVE_<block_cipher> and MBEDTLS_SSL_HAVE_CBC. Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-11-08 14:21:19 +08:00
Pengyu Lv	65458fa969	ssl: MBEDTLS_SSL_HAVE_* in ssl_misc.h Done by commands: ``` sed -i "300,$ s/MBEDTLS_$AES\\|CAMELLIA\\|ARIA\\|CHACHAPOLY$_C/MBEDTLS_SSL_HAVE_\1/g" ssl_misc.h sed -i "300,$ s/MBEDTLS_$GCM\\|CCM$_C/MBEDTLS_SSL_HAVE_\1/g" ssl_misc.h sed -i "300,$ s/MBEDTLS_CIPHER_MODE_$CBC$/MBEDTLS_SSL_HAVE_\1/g" ssl_misc.h ``` Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-11-08 12:16:29 +08:00
Pengyu Lv	829dd2048a	ssl: use MBEDTLS_SSL_HAVE_* in ssl_ciphersuites.c Mainly done by the commands, with some manual adjust. ``` sed -i "s/MBEDTLS_$AES\\|CAMELLIA\\|ARIA\\|CHACHAPOLY$_C/MBEDTLS_SSL_HAVE_\1/g" ssl_ciphersuites.c sed -i "s/MBEDTLS_$GCM\\|CCM$_C/MBEDTLS_SSL_HAVE_\1/g" ssl_ciphersuites.c sed -i "s/MBEDTLS_CIPHER_MODE_$CBC$/MBEDTLS_SSL_HAVE_\1/g" ssl_ciphersuites.c ``` Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-11-08 12:01:26 +08:00
Pengyu Lv	f1b86b088f	ssl: add macro to indicate CBC mode is available Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-11-08 11:28:42 +08:00
Pengyu Lv	e870cc8c86	ssl: add macro for available key types Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-11-08 11:28:36 +08:00
Tom Cosgrove	53199b1c0a	Merge pull request #6720 from yuhaoth/pr/tls13-early-data-receive-0_rtt-and-eoed TLS 1.3: EarlyData SRV: Write early data extension in EncryptedExtension	2023-11-07 13:59:13 +00:00
Yanray Wang	4995e0c31b	cipher.c: return error for ECB-decrypt under BLOCK_CIPHER_NO_DECRYPT - fix remaining dependency in test_suite_psa_crypto.data Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-11-07 17:51:32 +08:00
Tom Cosgrove	4122c16abd	Merge pull request #6945 from lpy4105/issue/6935/ticket_flags-kex-mode-determination TLS 1.3: SRV: Check ticket_flags on kex mode determination when resumption	2023-11-07 09:26:21 +00:00
Jerry Yu	7cca7f6820	move ext print to the end of write client hello pre_shared_key extension is done at the end. The information should be print after that Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-07 15:19:13 +08:00
Jerry Yu	1ccd6108e8	Revert "fix miss sent extensions mask" This reverts commit `06b364fdfd`. It has been set in write_binders Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-07 14:57:44 +08:00
Jerry Yu	7ef9fd8989	fix various issues - Debug message - Improve comments Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-07 14:31:37 +08:00
Jerry Yu	2bea94ce2e	check the ticket version unconditional Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-07 14:18:17 +08:00
Yanray Wang	0751761b49	max_early_data_size: rename configuration function Rename mbedtls_ssl_tls13_conf_max_early_data_size as mbedtls_ssl_conf_max_early_data_size since in the future this may not be specific to TLS 1.3. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-11-07 11:49:34 +08:00
Yanray Wang	d5ed36ff24	early data: rename configuration function Rename mbedtls_ssl_tls13_conf_early_data as mbedtls_ssl_conf_early_data since in the future this may not be specific to TLS 1.3. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-11-07 11:49:24 +08:00
Pengyu Lv	44670c6eda	Revert "TLS 1.3: SRV: Don't select ephemeral mode on resumption" This reverts commit `dadeb20383`. Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-11-07 09:58:53 +08:00
Dave Rodgman	4b67ac8adf	Merge pull request #8444 from Mbed-TLS/cvv-code-size code size for mbedtls_cipher_validate_values	2023-11-06 12:50:37 +00:00
Yanray Wang	0d76b6ef76	Return an error if asking for decrypt under BLOCK_CIPHER_NO_DECRYPT If MBEDTLS_BLOCK_CIPHER_NO_DECRYPT is enabled, but decryption is still requested in some incompatible modes, we return an error of FEATURE_UNAVAILABLE as additional indication. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-11-06 10:02:10 +08:00
Yanray Wang	de0e2599ad	cipher_wrap.c: remove unnecessary NO_DECRYPT guard for DES Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-11-06 10:02:10 +08:00
Gilles Peskine	8b6b41f6cd	Merge pull request #8434 from valeriosetti/issue8407 [G2] Make TLS work without Cipher	2023-11-04 15:05:00 +00:00
Dave Rodgman	4eb44e4780	Standardise some more headers Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-03 12:15:12 +00:00
Dave Rodgman	ce38adb731	Fix header in ssl_tls13_keys.c Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-03 10:29:25 +00:00
Dave Rodgman	f8be5f6ade	Fix overlooked files Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-02 20:43:00 +00:00
Dave Rodgman	16799db69a	update headers Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-02 19:47:20 +00:00
Dave Rodgman	e91d7c5d68	Update comment to mention IAR Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-11-02 10:36:38 +00:00
Dave Rodgman	b351d60e99	Merge remote-tracking branch 'origin/development' into msft-aarch64	2023-11-01 13:20:53 +00:00
Jerry Yu	960b7ebbcf	move psk check to EE message on client side early_data extension is sent in EE. So it should not be checked in SH message. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-01 10:32:18 +08:00
Jerry Yu	82fd6c11bd	Add selected key and ciphersuite check Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-01 10:32:17 +08:00
Jerry Yu	ce3b95e2c9	move ticket version check Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-01 10:32:17 +08:00
Jerry Yu	454dda3e25	fix various issues - improve output message - Remove unnecessary checks - Simplify test command Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-11-01 10:28:43 +08:00
Dave Rodgman	9ba640d318	Simplify use of __has_builtin Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-31 23:34:02 +00:00
Dave Rodgman	90c8ac2205	Add case for MSVC Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-31 23:27:24 +00:00
Dave Rodgman	64bdeb89b9	Use non-empty definition for fallback Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-31 23:27:04 +00:00
Dave Rodgman	52e7052b6c	tidy up comments Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-31 23:26:44 +00:00
Dave Rodgman	3e5cc175e0	Reduce code size in mbedtls_cipher_validate_values Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-31 18:00:01 +00:00
Dave Rodgman	6d2c1b3748	Restructure mbedtls_cipher_validate_values Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-31 18:00:01 +00:00
Dave Rodgman	fb24a8425a	Introduce MBEDTLS_ASSUME Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-31 17:59:56 +00:00
Yanray Wang	b67b47425e	Rename MBEDTLS_CIPHER_ENCRYPT_ONLY as MBEDTLS_BLOCK_CIPHER_NO_DECRYPT Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-10-31 17:22:06 +08:00
Pengyu Lv	dbd1e0d986	tls13: add helpers to check if psk[_ephemeral] allowed by ticket Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-10-31 10:17:17 +08:00
Pengyu Lv	29daf4a36b	tls13: server: fully check ticket_flags with available kex mode. We need to fully check if the provided session ticket could be used in the handshake, so that we wouldn't cause handshake failure in some cases. Here we bring `f8e50a9` back. Example scenario: A client proposes to a server, that supports only the psk_ephemeral key exchange mode, two tickets, the first one is allowed only for pure PSK key exchange mode and the second one is psk_ephemeral only. We need to select the second tickets instead of the first one whose ticket_flags forbid psk_ephemeral and thus cause a handshake failure. Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-10-31 09:34:14 +08:00
Dave Rodgman	b06d701f56	Merge pull request #8406 from beni-sandu/aesni AES-NI: use target attributes for x86 32-bit intrinsics	2023-10-30 17:01:06 +00:00
Tom Cosgrove	3857bad9a2	Merge pull request #8427 from tom-cosgrove-arm/fix-linux-builds-in-conda-forge Fix builds in conda-forge, which doesn't have CLOCK_BOOTTIME	2023-10-30 15:29:26 +00:00
Valerio Setti	467271dede	ssl_misc: ignore ALG_CBC_PKCS7 for MBEDTLS_SSL_HAVE_xxx_CBC Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-10-30 11:40:32 +01:00
Valerio Setti	1ebb6cd68d	ssl_misc: add internal MBEDTLS_SSL_HAVE_[AES/ARIA/CAMELLIA]_CBC symbols These are used in tests to determine whether there is support for one of those keys for CBC mode. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-10-30 11:36:32 +01:00
Jerry Yu	06b364fdfd	fix miss sent extensions mask Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-10-30 17:18:42 +08:00
Pengyu Lv	cfb23b8090	tls13: server: parse pre_shared_key only when some psk is selectable Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-10-30 15:26:26 +08:00
Beniamin Sandu	800f2b7c02	AES-NI: use target attributes for x86 32-bit intrinsics This way we build with 32-bit gcc/clang out of the box. We also fallback to assembly for 64-bit clang-cl if needed cpu flags are not provided, instead of throwing an error. Signed-off-by: Beniamin Sandu <beniaminsandu@gmail.com>	2023-10-27 17:02:22 +01:00
Valerio Setti	36fe8b9f4b	psa_crypto_cipher: add guard for unused variable Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-10-27 09:13:33 +02:00
Valerio Setti	1e21f26d88	psa_crypto_cipher: add helper to validate PSA cipher values Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-10-27 09:13:33 +02:00
Valerio Setti	4a249828a8	psa_crypto_cipher: add mbedtls_cipher_values_from_psa() This commit splits mbedtls_cipher_info_from_psa() in 2 parts: - mbedtls_cipher_values_from_psa() that performs parameters' validation and return cipher's values - mbedtls_cipher_info_from_psa() which then use those values to return the proper cipher_info pointer. Of course this depends on CIPHER_C. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-10-27 09:12:06 +02:00
Valerio Setti	2c2adedd82	psa_crypto_aead: add guard for CIPHER_C dependency Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-10-27 09:12:06 +02:00
Jerry Yu	71c14f1db6	write early data indication in EE msg Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-10-27 10:52:49 +08:00
Jerry Yu	985c967a14	tls13: add more checks for server early data - check if it is enabled - check if it is psk mode - check if it is resumption - check if it is tls13 version Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-10-27 10:52:27 +08:00
Bence Szépkúti	51328162e6	Merge pull request #8374 from sergio-nsk/sergio-nsk/8372/2 Fix compiling AESNI in Mbed-TLS with clang on Windows	2023-10-26 21:21:01 +00:00
Dave Rodgman	2db1e354e3	Merge pull request #8408 from daverodgman/iar-fix-aes Fix MBEDTLS_MAYBE_UNUSED for IAR	2023-10-26 15:53:11 +00:00
Gilles Peskine	b3d0ed2e6e	Merge pull request #8303 from valeriosetti/issue6316 Add test component with all ciphers and AEADs accelerated only	2023-10-26 15:53:10 +00:00
Tom Cosgrove	257f6dd57d	Fix builds in conda-forge, which doesn't have CLOCK_BOOTTIME Fixes #8422 Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2023-10-26 14:04:34 +01:00
Ronald Cron	95b735530c	Merge pull request #6719 from yuhaoth/pr/tls13-early-data-add-early-data-of-client-hello TLS 1.3: EarlyData SRV: Add early data extension parser.	2023-10-26 08:31:53 +00:00
Valerio Setti	bbc46b4cc2	cipher: improve code readibility in mbedtls_cipher_setup() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-10-26 09:00:21 +02:00
Dave Rodgman	6e51abf11d	Merge remote-tracking branch 'origin/development' into msft-aarch64 Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 15:17:11 +01:00
Dave Rodgman	d1c4fb07ee	Support older IAR versions Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 15:07:35 +01:00
Valerio Setti	79a02de79f	cipher: check that ctx_alloc_func is not NULL before calling it Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-10-25 12:03:36 +02:00
Valerio Setti	a6c0761c43	cipher_wrap: fix guards for GCM/CCM AES Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-10-25 12:03:36 +02:00
Valerio Setti	e86677d0c3	pkparse: fix missing guards for pkcs5/12 functions Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-10-25 12:03:36 +02:00
Dave Rodgman	5e41937eba	Remove dependency on asm/hwcap.h Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	9fd1b526c3	Use MBEDTLS_ARCH_IS_ARMV8_A not MBEDTLS_ARCH_IS_ARMV8 Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	cb5c9fb0c2	Add volatile to prevent asm being optimised out Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	b34fe8b88b	Fix #error typo Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	90291dfe33	Share some definitions that are common for clang and GCC 5 Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	46267f6a2d	Tidy-up: move GCM code into one place Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	f4ee5d4c94	Code style Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	2c25bdb7cf	Don't use #ifdef on vreinterpretq_xxx Co-authored-by: Jerry Yu <jerry.h.yu@arm.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	f60e44d063	Add link to ACLE docs in comment Co-authored-by: Jerry Yu <jerry.h.yu@arm.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	48b965d941	Update clang version requirements Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	472a1906d5	fix tabs Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	4b8e8dc043	Improve compiler version checking + docs + testing for armclang Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	ece803b0ae	Fix behaviour for Armv8 targets without Neon Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	851cf5a325	Fix runtime detection on A32/T32 Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:24 +01:00
Dave Rodgman	27e3c87fc1	Suppport AESCE on A32 and T32 Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-25 09:06:22 +01:00
Dave Rodgman	d69d3cda34	Merge pull request #8298 from daverodgman/sha-armce-thumb2 Support SHA256 acceleration on Armv8 thumb2 and arm	2023-10-24 21:23:15 +00:00
Dave Rodgman	f842868dd9	Fix MBEDTLS_MAYBE_UNUSED for IAR Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-24 14:18:38 +01:00
Pengyu Lv	7b711710b2	Add check_ticket_flags helper function Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-10-24 17:07:14 +08:00
Dave Rodgman	514590210b	Merge remote-tracking branch 'origin/development' into sha-armce-thumb2 Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-23 15:35:07 +01:00
Dave Rodgman	66d5512571	Remove dependency on asm/hwcap.h Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-10-23 15:12:32 +01:00
Dave Rodgman	bcb810252c	Merge pull request #8363 from daverodgman/iar-fixes-2 Stop IAR warning about goto skipping variable definition	2023-10-23 14:59:15 +01:00
Tom Cosgrove	235e361b6c	Merge pull request #8339 from lpy4105/issue/support-cpuid-for-win32 Support cpuid for win32	2023-10-23 10:43:39 +00:00
Manuel Pégourié-Gonnard	2bf0870e25	Merge pull request #7861 from mpg/cleanup-pk-parse cleanup PK parse - part 1	2023-10-23 08:49:16 +00:00
Matthias Schulz	edc32eaf1a	Uncrustified Signed-off-by: Matthias Schulz <mschulz@hilscher.com>	2023-10-19 16:09:08 +02:00
Sergey Markelov	3898f10fed	Fix #8372 - Error compiling AESNI in Mbed-TLS with clang on Windows It can successfully compile w/ the clang options -maes -mpclmul. Signed-off-by: Sergey Markelov <sergey@solidstatenetworks.com>	2023-10-18 20:24:39 -07:00

1 2 3 4 5 ...

12501 commits