mbedtls

mirror of https://github.com/yuzu-mirror/mbedtls.git synced 2025-12-06 07:12:32 +01:00

Author	SHA1	Message	Date
Gilles Peskine	b377229b65	MBEDTLS_PSA_INJECT_ENTROPY: check the seed file UID The seed file UID is part of the library's stable interface. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-29 00:28:34 +02:00
Gilles Peskine	f13469da48	MBEDTLS_PSA_INJECT_ENTROPY: check the lifecycle of the seed file The seed file is part of the stable interface of PSA_CRYPTO_INJECT_ENTROPY, because it has to survive a library upgrade on a device. So check that its existence and content are as expected at each point in the tested life cycle. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-29 00:28:34 +02:00
Gilles Peskine	fb4c3fe4ea	Modernize remove_seed_file() This function was written before the PSA storage layer switched to the PSA ITS API as its storage abstraction. Now we can just call PSA ITS functions unconditionally. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-29 00:28:34 +02:00
Gilles Peskine	c548468b69	MBEDTLS_PSA_INJECT_ENTROPY: Skip incompatible tests When MBEDTLS_PSA_INJECT_ENTROPY is enabled, we disable standard entropy sources, so mbedtls_entropy_func() doesn't work out of the box. Disable tests that rely on it. MBEDTLS_PSA_INJECT_ENTROPY is intended for PSA-only environments anyway, so it doesn't matter if some legacy features don't work normally. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-28 23:45:36 +02:00
Gilles Peskine	c2d16b2159	MBEDTLS_PSA_INJECT_ENTROPY: Make sure the seed file exist when running tests The seed file must exist before running tests. Because the location is somewhat platform- and configuration-dependent, and to be friendly to developers who run test suites individually and aren't familiar with this feature, rely on the test framework code rather than on test scripts to create the seed file. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-28 23:45:36 +02:00
Gilles Peskine	14d6b1124b	Merge pull request #7419 from yuhaoth/test/random-time-test-fail Workaround random `test_suite_platform` fail in time test	2023-04-28 13:17:31 +02:00
Valerio Setti	7c0f91be10	test: use define for initializing ssl_message_queue struct Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-28 12:20:34 +02:00
Przemek Stekiel	6d85afa0cc	Fix naming: FFDH key -> DH key and fix guard in psa_validate_key_type_and_size_for_key_generation Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-28 11:42:17 +02:00
Valerio Setti	00a256f7b2	test: fix USE_PSA_INIT position in test_suite_ssl Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-28 09:37:35 +02:00
Kusumit Ghoderao	0f2f996b92	change binary_string_parser for big-endian input Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-28 10:07:10 +05:30
Dave Rodgman	e93c90e881	Merge pull request #7433 from oberon-microsystems/fix-psa-aead-chacha20-test-dependency	2023-04-27 19:13:53 +01:00
Kusumit-Silabs	b6ad6823f0	Update tests/suites/test_suite_psa_crypto.function Co-authored-by: Gilles Peskine <gilles.peskine@arm.com> Signed-off-by: Kusumit-Silabs <89393006+silabs-Kusumit@users.noreply.github.com>	2023-04-27 22:42:19 +05:30
Kusumit Ghoderao	af0225e4de	change binary_string_parser for big-endian input Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-27 20:06:58 +05:30
Kusumit Ghoderao	c6fdf1b683	Add tests with INPUT_INTEGER as key_type_arg Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-27 17:03:20 +05:30
Kusumit Ghoderao	12e0b4b452	Use key_type_arg for determining input method Remove input_types_arg variable in test function Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-27 16:58:23 +05:30
Przemek Stekiel	2c9fc07cc4	Fix FFDH tests dependencies Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-27 12:41:32 +02:00
Przemek Stekiel	2e7c33d530	Use import_with_data for testing FFDH invalid key length Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-27 12:31:42 +02:00
Paul Elliott	16648be171	Add Curve 448 tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-04-26 22:23:27 +01:00
Gilles Peskine	578613322a	Add test cases with a question mark The test framework used to treat them specially (but no longer does). Add these test cases as non-regression for how the test framework allows "?" and especially "??" (which I think in the very distant path needed special handling because the test data was embedded in a .c file, and thus ?? could be interpreted as the prefix of a trigraph). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:50:57 +02:00
Gilles Peskine	9a75131da1	Fix wrong comment Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	5472242b67	Explain the format argument expected by the test functions Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	fa83a7ec1e	Fix typos in test descriptions Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	7768a8e0a6	Remove string hack for mbedtls_mpi_mod_int testing Now that the test framework can pass arbitrary values of type mbedtls_mpi_sint, just do that. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	6f5082bf4d	Allow more signed integer types in test function arguments Now that the C code supports the full range of intmax_t, allow any size of signed integer type in the .data file parser. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	872948cc72	Support larger integer test arguments: C part Change the type of signed integer arguments from int32_t to intmax_t. This allows the C code to work with test function arguments with a range larger than int32_t. A subsequent commit will change the .datax generator to support larger types. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	4ea4ad082b	parse_function_arguments: stricter type parsing Use normalization the equality comparisons instead of loose regular expressions to determine the type of an argument of a test function. Now declarations are parsed in a stricter way: there can't be ignored junk at the beginning or at the end. For example, `long long unsigned int x` was accepted as a test function argument (but not `long long unsigned x`), although this was misleading since the value was truncated to the range of int. Now only recognized types are accepted. The new code is slightly looser in that it accepts `char const` as well as `const char`. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	b3c2eaf00f	Support different types in the parameter store The test framework stores size_t and int32_t values in the parameter store by converting them all to int. This is ok in practice, since we assume int covers int32_t and we don't have test data larger than 2GB. But it's confusing and error-prone. So make the parameter store a union, which allows size_t values not to be potentially truncated and makes the code a little clearer. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	5226eb5cd3	Simplify parsing of integers in .datax files In the .datax parser, since we're calling strtol() anyway, rely on it for verification. This makes the .datax parser very slightly more liberal (leading spaces and '+' are now accepted), and changes the interpretation of numbers with leading zeros to octal. Before, an argument like :0123: was parsed as decimal, but an argument like :0123+1: was parsed as a C expression and hence the leading zero marked an octal representation. Now, a leading zero is always interpreted according to C syntax, namely indicating octal. There are no nonzero integer constants with a leading zero in a .data file, so this does not affect existing test cases. In the .datax generator, allow negative arguments to be 'int' (before, they were systematically treated as 'exp' even though they didn't need to be). In the .datax parser, validate the range of integer constants. They have to fit in int32_t. In the .datax generator, use 'exp' instead of 'int' for integer constants that are out of range. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	a9946952b4	Exercise string parsing in the test framework Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	1a24895bfd	Simplify string escapes Treat backslash as a universal escape character: "\n" is a newline, backslash escapes any non-alphanumeric character. This affects some test cases that had "\," standing for backslash-comma. With the new uniform treatment of backslashes, this needs to be "\\,". Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:39:54 +02:00
Gilles Peskine	bc3db2e30a	printf testing: exercise integer parsing in the test framework Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:38:40 +02:00
Gilles Peskine	187932639b	Remove stdint.h substitute for older MSVC We now require at least Visual Studio 2013, which has stdint.h per https://learn.microsoft.com/en-us/previous-versions/visualstudio/visual-studio-2013/y4hta57s(v=vs.120) so the workaround to define C99 types on pre-C99 MSVC is no longer needed. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:38:40 +02:00
Gilles Peskine	6c607e5a55	Remove declarations of the nonstandard function strcasecmp It is no longer used. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:38:40 +02:00
Gilles Peskine	017f0b7369	Stop supporting non-canonical case in mpi_write_string test data We're using the non-standard function strcasecmp() just so that the case of digits beyond 9 can be different in the library and in the test data. Use matching case in the test data, and use a standard function for the comparison. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:38:40 +02:00
David Horstmann	9643575d92	Limit OIDs to 128 components The longest OID known by oid-info.com is 34 components[1], so 128 should be plenty and will limit the potential for attacks. [1] http://oid-info.com/get/1.3.6.1.4.1.1248.1.1.2.1.3.21.69.112.115.111.110.32.83.116.121.108.117.115.32.80.114.111.32.52.57.48.48 Signed-off-by: David Horstmann <david.horstmann@arm.com>	2023-04-26 11:50:14 +01:00
Janos Follath	91a618375a	Merge pull request #7427 from minosgalanakis/ecp/7258_ecp_mod_p256K1_add_test_cases ECP: Add Unit Tests for secp256k1	2023-04-26 08:52:24 +01:00
Przemek Stekiel	654bef0be0	Fix typos, comments, style, optimize macros Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-26 09:07:20 +02:00
Przemek Stekiel	9e65a81ef8	Remove redundant test case (PSA_ALG_FFDH key agreement is now supported) Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-26 09:04:32 +02:00
Przemek Stekiel	b231c9dd23	Add FFDH key agreement tests Tests were generated using the python script. Please find code below: """ generate_ffdh_key_agreement_tests.py Script to generate test vectors for FFDH key agreement. Example usage: generate_ffdh_key_agreement_tests.py """ import os import sys import random DHM_RFC7919_FFDHE2048_P_BIN = bytes([ \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, \ 0xAD, 0xF8, 0x54, 0x58, 0xA2, 0xBB, 0x4A, 0x9A, \ 0xAF, 0xDC, 0x56, 0x20, 0x27, 0x3D, 0x3C, 0xF1, \ 0xD8, 0xB9, 0xC5, 0x83, 0xCE, 0x2D, 0x36, 0x95, \ 0xA9, 0xE1, 0x36, 0x41, 0x14, 0x64, 0x33, 0xFB, \ 0xCC, 0x93, 0x9D, 0xCE, 0x24, 0x9B, 0x3E, 0xF9, \ 0x7D, 0x2F, 0xE3, 0x63, 0x63, 0x0C, 0x75, 0xD8, \ 0xF6, 0x81, 0xB2, 0x02, 0xAE, 0xC4, 0x61, 0x7A, \ 0xD3, 0xDF, 0x1E, 0xD5, 0xD5, 0xFD, 0x65, 0x61, \ 0x24, 0x33, 0xF5, 0x1F, 0x5F, 0x06, 0x6E, 0xD0, \ 0x85, 0x63, 0x65, 0x55, 0x3D, 0xED, 0x1A, 0xF3, \ 0xB5, 0x57, 0x13, 0x5E, 0x7F, 0x57, 0xC9, 0x35, \ 0x98, 0x4F, 0x0C, 0x70, 0xE0, 0xE6, 0x8B, 0x77, \ 0xE2, 0xA6, 0x89, 0xDA, 0xF3, 0xEF, 0xE8, 0x72, \ 0x1D, 0xF1, 0x58, 0xA1, 0x36, 0xAD, 0xE7, 0x35, \ 0x30, 0xAC, 0xCA, 0x4F, 0x48, 0x3A, 0x79, 0x7A, \ 0xBC, 0x0A, 0xB1, 0x82, 0xB3, 0x24, 0xFB, 0x61, \ 0xD1, 0x08, 0xA9, 0x4B, 0xB2, 0xC8, 0xE3, 0xFB, \ 0xB9, 0x6A, 0xDA, 0xB7, 0x60, 0xD7, 0xF4, 0x68, \ 0x1D, 0x4F, 0x42, 0xA3, 0xDE, 0x39, 0x4D, 0xF4, \ 0xAE, 0x56, 0xED, 0xE7, 0x63, 0x72, 0xBB, 0x19, \ 0x0B, 0x07, 0xA7, 0xC8, 0xEE, 0x0A, 0x6D, 0x70, \ 0x9E, 0x02, 0xFC, 0xE1, 0xCD, 0xF7, 0xE2, 0xEC, \ 0xC0, 0x34, 0x04, 0xCD, 0x28, 0x34, 0x2F, 0x61, \ 0x91, 0x72, 0xFE, 0x9C, 0xE9, 0x85, 0x83, 0xFF, \ 0x8E, 0x4F, 0x12, 0x32, 0xEE, 0xF2, 0x81, 0x83, \ 0xC3, 0xFE, 0x3B, 0x1B, 0x4C, 0x6F, 0xAD, 0x73, \ 0x3B, 0xB5, 0xFC, 0xBC, 0x2E, 0xC2, 0x20, 0x05, \ 0xC5, 0x8E, 0xF1, 0x83, 0x7D, 0x16, 0x83, 0xB2, \ 0xC6, 0xF3, 0x4A, 0x26, 0xC1, 0xB2, 0xEF, 0xFA, \ 0x88, 0x6B, 0x42, 0x38, 0x61, 0x28, 0x5C, 0x97, \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF ]) DHM_RFC7919_FFDHE2048_G_BIN = bytes([ 0x02 ]) DHM_RFC7919_FFDHE3072_P_BIN = bytes([ \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, \ 0xAD, 0xF8, 0x54, 0x58, 0xA2, 0xBB, 0x4A, 0x9A, \ 0xAF, 0xDC, 0x56, 0x20, 0x27, 0x3D, 0x3C, 0xF1, \ 0xD8, 0xB9, 0xC5, 0x83, 0xCE, 0x2D, 0x36, 0x95, \ 0xA9, 0xE1, 0x36, 0x41, 0x14, 0x64, 0x33, 0xFB, \ 0xCC, 0x93, 0x9D, 0xCE, 0x24, 0x9B, 0x3E, 0xF9, \ 0x7D, 0x2F, 0xE3, 0x63, 0x63, 0x0C, 0x75, 0xD8, \ 0xF6, 0x81, 0xB2, 0x02, 0xAE, 0xC4, 0x61, 0x7A, \ 0xD3, 0xDF, 0x1E, 0xD5, 0xD5, 0xFD, 0x65, 0x61, \ 0x24, 0x33, 0xF5, 0x1F, 0x5F, 0x06, 0x6E, 0xD0, \ 0x85, 0x63, 0x65, 0x55, 0x3D, 0xED, 0x1A, 0xF3, \ 0xB5, 0x57, 0x13, 0x5E, 0x7F, 0x57, 0xC9, 0x35, \ 0x98, 0x4F, 0x0C, 0x70, 0xE0, 0xE6, 0x8B, 0x77, \ 0xE2, 0xA6, 0x89, 0xDA, 0xF3, 0xEF, 0xE8, 0x72, \ 0x1D, 0xF1, 0x58, 0xA1, 0x36, 0xAD, 0xE7, 0x35, \ 0x30, 0xAC, 0xCA, 0x4F, 0x48, 0x3A, 0x79, 0x7A, \ 0xBC, 0x0A, 0xB1, 0x82, 0xB3, 0x24, 0xFB, 0x61, \ 0xD1, 0x08, 0xA9, 0x4B, 0xB2, 0xC8, 0xE3, 0xFB, \ 0xB9, 0x6A, 0xDA, 0xB7, 0x60, 0xD7, 0xF4, 0x68, \ 0x1D, 0x4F, 0x42, 0xA3, 0xDE, 0x39, 0x4D, 0xF4, \ 0xAE, 0x56, 0xED, 0xE7, 0x63, 0x72, 0xBB, 0x19, \ 0x0B, 0x07, 0xA7, 0xC8, 0xEE, 0x0A, 0x6D, 0x70, \ 0x9E, 0x02, 0xFC, 0xE1, 0xCD, 0xF7, 0xE2, 0xEC, \ 0xC0, 0x34, 0x04, 0xCD, 0x28, 0x34, 0x2F, 0x61, \ 0x91, 0x72, 0xFE, 0x9C, 0xE9, 0x85, 0x83, 0xFF, \ 0x8E, 0x4F, 0x12, 0x32, 0xEE, 0xF2, 0x81, 0x83, \ 0xC3, 0xFE, 0x3B, 0x1B, 0x4C, 0x6F, 0xAD, 0x73, \ 0x3B, 0xB5, 0xFC, 0xBC, 0x2E, 0xC2, 0x20, 0x05, \ 0xC5, 0x8E, 0xF1, 0x83, 0x7D, 0x16, 0x83, 0xB2, \ 0xC6, 0xF3, 0x4A, 0x26, 0xC1, 0xB2, 0xEF, 0xFA, \ 0x88, 0x6B, 0x42, 0x38, 0x61, 0x1F, 0xCF, 0xDC, \ 0xDE, 0x35, 0x5B, 0x3B, 0x65, 0x19, 0x03, 0x5B, \ 0xBC, 0x34, 0xF4, 0xDE, 0xF9, 0x9C, 0x02, 0x38, \ 0x61, 0xB4, 0x6F, 0xC9, 0xD6, 0xE6, 0xC9, 0x07, \ 0x7A, 0xD9, 0x1D, 0x26, 0x91, 0xF7, 0xF7, 0xEE, \ 0x59, 0x8C, 0xB0, 0xFA, 0xC1, 0x86, 0xD9, 0x1C, \ 0xAE, 0xFE, 0x13, 0x09, 0x85, 0x13, 0x92, 0x70, \ 0xB4, 0x13, 0x0C, 0x93, 0xBC, 0x43, 0x79, 0x44, \ 0xF4, 0xFD, 0x44, 0x52, 0xE2, 0xD7, 0x4D, 0xD3, \ 0x64, 0xF2, 0xE2, 0x1E, 0x71, 0xF5, 0x4B, 0xFF, \ 0x5C, 0xAE, 0x82, 0xAB, 0x9C, 0x9D, 0xF6, 0x9E, \ 0xE8, 0x6D, 0x2B, 0xC5, 0x22, 0x36, 0x3A, 0x0D, \ 0xAB, 0xC5, 0x21, 0x97, 0x9B, 0x0D, 0xEA, 0xDA, \ 0x1D, 0xBF, 0x9A, 0x42, 0xD5, 0xC4, 0x48, 0x4E, \ 0x0A, 0xBC, 0xD0, 0x6B, 0xFA, 0x53, 0xDD, 0xEF, \ 0x3C, 0x1B, 0x20, 0xEE, 0x3F, 0xD5, 0x9D, 0x7C, \ 0x25, 0xE4, 0x1D, 0x2B, 0x66, 0xC6, 0x2E, 0x37, \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF ]) DHM_RFC7919_FFDHE3072_G_BIN = bytes([ 0x02 ]) DHM_RFC7919_FFDHE4096_P_BIN = bytes([ \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, \ 0xAD, 0xF8, 0x54, 0x58, 0xA2, 0xBB, 0x4A, 0x9A, \ 0xAF, 0xDC, 0x56, 0x20, 0x27, 0x3D, 0x3C, 0xF1, \ 0xD8, 0xB9, 0xC5, 0x83, 0xCE, 0x2D, 0x36, 0x95, \ 0xA9, 0xE1, 0x36, 0x41, 0x14, 0x64, 0x33, 0xFB, \ 0xCC, 0x93, 0x9D, 0xCE, 0x24, 0x9B, 0x3E, 0xF9, \ 0x7D, 0x2F, 0xE3, 0x63, 0x63, 0x0C, 0x75, 0xD8, \ 0xF6, 0x81, 0xB2, 0x02, 0xAE, 0xC4, 0x61, 0x7A, \ 0xD3, 0xDF, 0x1E, 0xD5, 0xD5, 0xFD, 0x65, 0x61, \ 0x24, 0x33, 0xF5, 0x1F, 0x5F, 0x06, 0x6E, 0xD0, \ 0x85, 0x63, 0x65, 0x55, 0x3D, 0xED, 0x1A, 0xF3, \ 0xB5, 0x57, 0x13, 0x5E, 0x7F, 0x57, 0xC9, 0x35, \ 0x98, 0x4F, 0x0C, 0x70, 0xE0, 0xE6, 0x8B, 0x77, \ 0xE2, 0xA6, 0x89, 0xDA, 0xF3, 0xEF, 0xE8, 0x72, \ 0x1D, 0xF1, 0x58, 0xA1, 0x36, 0xAD, 0xE7, 0x35, \ 0x30, 0xAC, 0xCA, 0x4F, 0x48, 0x3A, 0x79, 0x7A, \ 0xBC, 0x0A, 0xB1, 0x82, 0xB3, 0x24, 0xFB, 0x61, \ 0xD1, 0x08, 0xA9, 0x4B, 0xB2, 0xC8, 0xE3, 0xFB, \ 0xB9, 0x6A, 0xDA, 0xB7, 0x60, 0xD7, 0xF4, 0x68, \ 0x1D, 0x4F, 0x42, 0xA3, 0xDE, 0x39, 0x4D, 0xF4, \ 0xAE, 0x56, 0xED, 0xE7, 0x63, 0x72, 0xBB, 0x19, \ 0x0B, 0x07, 0xA7, 0xC8, 0xEE, 0x0A, 0x6D, 0x70, \ 0x9E, 0x02, 0xFC, 0xE1, 0xCD, 0xF7, 0xE2, 0xEC, \ 0xC0, 0x34, 0x04, 0xCD, 0x28, 0x34, 0x2F, 0x61, \ 0x91, 0x72, 0xFE, 0x9C, 0xE9, 0x85, 0x83, 0xFF, \ 0x8E, 0x4F, 0x12, 0x32, 0xEE, 0xF2, 0x81, 0x83, \ 0xC3, 0xFE, 0x3B, 0x1B, 0x4C, 0x6F, 0xAD, 0x73, \ 0x3B, 0xB5, 0xFC, 0xBC, 0x2E, 0xC2, 0x20, 0x05, \ 0xC5, 0x8E, 0xF1, 0x83, 0x7D, 0x16, 0x83, 0xB2, \ 0xC6, 0xF3, 0x4A, 0x26, 0xC1, 0xB2, 0xEF, 0xFA, \ 0x88, 0x6B, 0x42, 0x38, 0x61, 0x1F, 0xCF, 0xDC, \ 0xDE, 0x35, 0x5B, 0x3B, 0x65, 0x19, 0x03, 0x5B, \ 0xBC, 0x34, 0xF4, 0xDE, 0xF9, 0x9C, 0x02, 0x38, \ 0x61, 0xB4, 0x6F, 0xC9, 0xD6, 0xE6, 0xC9, 0x07, \ 0x7A, 0xD9, 0x1D, 0x26, 0x91, 0xF7, 0xF7, 0xEE, \ 0x59, 0x8C, 0xB0, 0xFA, 0xC1, 0x86, 0xD9, 0x1C, \ 0xAE, 0xFE, 0x13, 0x09, 0x85, 0x13, 0x92, 0x70, \ 0xB4, 0x13, 0x0C, 0x93, 0xBC, 0x43, 0x79, 0x44, \ 0xF4, 0xFD, 0x44, 0x52, 0xE2, 0xD7, 0x4D, 0xD3, \ 0x64, 0xF2, 0xE2, 0x1E, 0x71, 0xF5, 0x4B, 0xFF, \ 0x5C, 0xAE, 0x82, 0xAB, 0x9C, 0x9D, 0xF6, 0x9E, \ 0xE8, 0x6D, 0x2B, 0xC5, 0x22, 0x36, 0x3A, 0x0D, \ 0xAB, 0xC5, 0x21, 0x97, 0x9B, 0x0D, 0xEA, 0xDA, \ 0x1D, 0xBF, 0x9A, 0x42, 0xD5, 0xC4, 0x48, 0x4E, \ 0x0A, 0xBC, 0xD0, 0x6B, 0xFA, 0x53, 0xDD, 0xEF, \ 0x3C, 0x1B, 0x20, 0xEE, 0x3F, 0xD5, 0x9D, 0x7C, \ 0x25, 0xE4, 0x1D, 0x2B, 0x66, 0x9E, 0x1E, 0xF1, \ 0x6E, 0x6F, 0x52, 0xC3, 0x16, 0x4D, 0xF4, 0xFB, \ 0x79, 0x30, 0xE9, 0xE4, 0xE5, 0x88, 0x57, 0xB6, \ 0xAC, 0x7D, 0x5F, 0x42, 0xD6, 0x9F, 0x6D, 0x18, \ 0x77, 0x63, 0xCF, 0x1D, 0x55, 0x03, 0x40, 0x04, \ 0x87, 0xF5, 0x5B, 0xA5, 0x7E, 0x31, 0xCC, 0x7A, \ 0x71, 0x35, 0xC8, 0x86, 0xEF, 0xB4, 0x31, 0x8A, \ 0xED, 0x6A, 0x1E, 0x01, 0x2D, 0x9E, 0x68, 0x32, \ 0xA9, 0x07, 0x60, 0x0A, 0x91, 0x81, 0x30, 0xC4, \ 0x6D, 0xC7, 0x78, 0xF9, 0x71, 0xAD, 0x00, 0x38, \ 0x09, 0x29, 0x99, 0xA3, 0x33, 0xCB, 0x8B, 0x7A, \ 0x1A, 0x1D, 0xB9, 0x3D, 0x71, 0x40, 0x00, 0x3C, \ 0x2A, 0x4E, 0xCE, 0xA9, 0xF9, 0x8D, 0x0A, 0xCC, \ 0x0A, 0x82, 0x91, 0xCD, 0xCE, 0xC9, 0x7D, 0xCF, \ 0x8E, 0xC9, 0xB5, 0x5A, 0x7F, 0x88, 0xA4, 0x6B, \ 0x4D, 0xB5, 0xA8, 0x51, 0xF4, 0x41, 0x82, 0xE1, \ 0xC6, 0x8A, 0x00, 0x7E, 0x5E, 0x65, 0x5F, 0x6A, \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF ]) DHM_RFC7919_FFDHE4096_G_BIN = bytes([ 0x02 ]) DHM_RFC7919_FFDHE6144_P_BIN = bytes([ \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, \ 0xAD, 0xF8, 0x54, 0x58, 0xA2, 0xBB, 0x4A, 0x9A, \ 0xAF, 0xDC, 0x56, 0x20, 0x27, 0x3D, 0x3C, 0xF1, \ 0xD8, 0xB9, 0xC5, 0x83, 0xCE, 0x2D, 0x36, 0x95, \ 0xA9, 0xE1, 0x36, 0x41, 0x14, 0x64, 0x33, 0xFB, \ 0xCC, 0x93, 0x9D, 0xCE, 0x24, 0x9B, 0x3E, 0xF9, \ 0x7D, 0x2F, 0xE3, 0x63, 0x63, 0x0C, 0x75, 0xD8, \ 0xF6, 0x81, 0xB2, 0x02, 0xAE, 0xC4, 0x61, 0x7A, \ 0xD3, 0xDF, 0x1E, 0xD5, 0xD5, 0xFD, 0x65, 0x61, \ 0x24, 0x33, 0xF5, 0x1F, 0x5F, 0x06, 0x6E, 0xD0, \ 0x85, 0x63, 0x65, 0x55, 0x3D, 0xED, 0x1A, 0xF3, \ 0xB5, 0x57, 0x13, 0x5E, 0x7F, 0x57, 0xC9, 0x35, \ 0x98, 0x4F, 0x0C, 0x70, 0xE0, 0xE6, 0x8B, 0x77, \ 0xE2, 0xA6, 0x89, 0xDA, 0xF3, 0xEF, 0xE8, 0x72, \ 0x1D, 0xF1, 0x58, 0xA1, 0x36, 0xAD, 0xE7, 0x35, \ 0x30, 0xAC, 0xCA, 0x4F, 0x48, 0x3A, 0x79, 0x7A, \ 0xBC, 0x0A, 0xB1, 0x82, 0xB3, 0x24, 0xFB, 0x61, \ 0xD1, 0x08, 0xA9, 0x4B, 0xB2, 0xC8, 0xE3, 0xFB, \ 0xB9, 0x6A, 0xDA, 0xB7, 0x60, 0xD7, 0xF4, 0x68, \ 0x1D, 0x4F, 0x42, 0xA3, 0xDE, 0x39, 0x4D, 0xF4, \ 0xAE, 0x56, 0xED, 0xE7, 0x63, 0x72, 0xBB, 0x19, \ 0x0B, 0x07, 0xA7, 0xC8, 0xEE, 0x0A, 0x6D, 0x70, \ 0x9E, 0x02, 0xFC, 0xE1, 0xCD, 0xF7, 0xE2, 0xEC, \ 0xC0, 0x34, 0x04, 0xCD, 0x28, 0x34, 0x2F, 0x61, \ 0x91, 0x72, 0xFE, 0x9C, 0xE9, 0x85, 0x83, 0xFF, \ 0x8E, 0x4F, 0x12, 0x32, 0xEE, 0xF2, 0x81, 0x83, \ 0xC3, 0xFE, 0x3B, 0x1B, 0x4C, 0x6F, 0xAD, 0x73, \ 0x3B, 0xB5, 0xFC, 0xBC, 0x2E, 0xC2, 0x20, 0x05, \ 0xC5, 0x8E, 0xF1, 0x83, 0x7D, 0x16, 0x83, 0xB2, \ 0xC6, 0xF3, 0x4A, 0x26, 0xC1, 0xB2, 0xEF, 0xFA, \ 0x88, 0x6B, 0x42, 0x38, 0x61, 0x1F, 0xCF, 0xDC, \ 0xDE, 0x35, 0x5B, 0x3B, 0x65, 0x19, 0x03, 0x5B, \ 0xBC, 0x34, 0xF4, 0xDE, 0xF9, 0x9C, 0x02, 0x38, \ 0x61, 0xB4, 0x6F, 0xC9, 0xD6, 0xE6, 0xC9, 0x07, \ 0x7A, 0xD9, 0x1D, 0x26, 0x91, 0xF7, 0xF7, 0xEE, \ 0x59, 0x8C, 0xB0, 0xFA, 0xC1, 0x86, 0xD9, 0x1C, \ 0xAE, 0xFE, 0x13, 0x09, 0x85, 0x13, 0x92, 0x70, \ 0xB4, 0x13, 0x0C, 0x93, 0xBC, 0x43, 0x79, 0x44, \ 0xF4, 0xFD, 0x44, 0x52, 0xE2, 0xD7, 0x4D, 0xD3, \ 0x64, 0xF2, 0xE2, 0x1E, 0x71, 0xF5, 0x4B, 0xFF, \ 0x5C, 0xAE, 0x82, 0xAB, 0x9C, 0x9D, 0xF6, 0x9E, \ 0xE8, 0x6D, 0x2B, 0xC5, 0x22, 0x36, 0x3A, 0x0D, \ 0xAB, 0xC5, 0x21, 0x97, 0x9B, 0x0D, 0xEA, 0xDA, \ 0x1D, 0xBF, 0x9A, 0x42, 0xD5, 0xC4, 0x48, 0x4E, \ 0x0A, 0xBC, 0xD0, 0x6B, 0xFA, 0x53, 0xDD, 0xEF, \ 0x3C, 0x1B, 0x20, 0xEE, 0x3F, 0xD5, 0x9D, 0x7C, \ 0x25, 0xE4, 0x1D, 0x2B, 0x66, 0x9E, 0x1E, 0xF1, \ 0x6E, 0x6F, 0x52, 0xC3, 0x16, 0x4D, 0xF4, 0xFB, \ 0x79, 0x30, 0xE9, 0xE4, 0xE5, 0x88, 0x57, 0xB6, \ 0xAC, 0x7D, 0x5F, 0x42, 0xD6, 0x9F, 0x6D, 0x18, \ 0x77, 0x63, 0xCF, 0x1D, 0x55, 0x03, 0x40, 0x04, \ 0x87, 0xF5, 0x5B, 0xA5, 0x7E, 0x31, 0xCC, 0x7A, \ 0x71, 0x35, 0xC8, 0x86, 0xEF, 0xB4, 0x31, 0x8A, \ 0xED, 0x6A, 0x1E, 0x01, 0x2D, 0x9E, 0x68, 0x32, \ 0xA9, 0x07, 0x60, 0x0A, 0x91, 0x81, 0x30, 0xC4, \ 0x6D, 0xC7, 0x78, 0xF9, 0x71, 0xAD, 0x00, 0x38, \ 0x09, 0x29, 0x99, 0xA3, 0x33, 0xCB, 0x8B, 0x7A, \ 0x1A, 0x1D, 0xB9, 0x3D, 0x71, 0x40, 0x00, 0x3C, \ 0x2A, 0x4E, 0xCE, 0xA9, 0xF9, 0x8D, 0x0A, 0xCC, \ 0x0A, 0x82, 0x91, 0xCD, 0xCE, 0xC9, 0x7D, 0xCF, \ 0x8E, 0xC9, 0xB5, 0x5A, 0x7F, 0x88, 0xA4, 0x6B, \ 0x4D, 0xB5, 0xA8, 0x51, 0xF4, 0x41, 0x82, 0xE1, \ 0xC6, 0x8A, 0x00, 0x7E, 0x5E, 0x0D, 0xD9, 0x02, \ 0x0B, 0xFD, 0x64, 0xB6, 0x45, 0x03, 0x6C, 0x7A, \ 0x4E, 0x67, 0x7D, 0x2C, 0x38, 0x53, 0x2A, 0x3A, \ 0x23, 0xBA, 0x44, 0x42, 0xCA, 0xF5, 0x3E, 0xA6, \ 0x3B, 0xB4, 0x54, 0x32, 0x9B, 0x76, 0x24, 0xC8, \ 0x91, 0x7B, 0xDD, 0x64, 0xB1, 0xC0, 0xFD, 0x4C, \ 0xB3, 0x8E, 0x8C, 0x33, 0x4C, 0x70, 0x1C, 0x3A, \ 0xCD, 0xAD, 0x06, 0x57, 0xFC, 0xCF, 0xEC, 0x71, \ 0x9B, 0x1F, 0x5C, 0x3E, 0x4E, 0x46, 0x04, 0x1F, \ 0x38, 0x81, 0x47, 0xFB, 0x4C, 0xFD, 0xB4, 0x77, \ 0xA5, 0x24, 0x71, 0xF7, 0xA9, 0xA9, 0x69, 0x10, \ 0xB8, 0x55, 0x32, 0x2E, 0xDB, 0x63, 0x40, 0xD8, \ 0xA0, 0x0E, 0xF0, 0x92, 0x35, 0x05, 0x11, 0xE3, \ 0x0A, 0xBE, 0xC1, 0xFF, 0xF9, 0xE3, 0xA2, 0x6E, \ 0x7F, 0xB2, 0x9F, 0x8C, 0x18, 0x30, 0x23, 0xC3, \ 0x58, 0x7E, 0x38, 0xDA, 0x00, 0x77, 0xD9, 0xB4, \ 0x76, 0x3E, 0x4E, 0x4B, 0x94, 0xB2, 0xBB, 0xC1, \ 0x94, 0xC6, 0x65, 0x1E, 0x77, 0xCA, 0xF9, 0x92, \ 0xEE, 0xAA, 0xC0, 0x23, 0x2A, 0x28, 0x1B, 0xF6, \ 0xB3, 0xA7, 0x39, 0xC1, 0x22, 0x61, 0x16, 0x82, \ 0x0A, 0xE8, 0xDB, 0x58, 0x47, 0xA6, 0x7C, 0xBE, \ 0xF9, 0xC9, 0x09, 0x1B, 0x46, 0x2D, 0x53, 0x8C, \ 0xD7, 0x2B, 0x03, 0x74, 0x6A, 0xE7, 0x7F, 0x5E, \ 0x62, 0x29, 0x2C, 0x31, 0x15, 0x62, 0xA8, 0x46, \ 0x50, 0x5D, 0xC8, 0x2D, 0xB8, 0x54, 0x33, 0x8A, \ 0xE4, 0x9F, 0x52, 0x35, 0xC9, 0x5B, 0x91, 0x17, \ 0x8C, 0xCF, 0x2D, 0xD5, 0xCA, 0xCE, 0xF4, 0x03, \ 0xEC, 0x9D, 0x18, 0x10, 0xC6, 0x27, 0x2B, 0x04, \ 0x5B, 0x3B, 0x71, 0xF9, 0xDC, 0x6B, 0x80, 0xD6, \ 0x3F, 0xDD, 0x4A, 0x8E, 0x9A, 0xDB, 0x1E, 0x69, \ 0x62, 0xA6, 0x95, 0x26, 0xD4, 0x31, 0x61, 0xC1, \ 0xA4, 0x1D, 0x57, 0x0D, 0x79, 0x38, 0xDA, 0xD4, \ 0xA4, 0x0E, 0x32, 0x9C, 0xD0, 0xE4, 0x0E, 0x65, \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF ]) DHM_RFC7919_FFDHE6144_G_BIN = bytes([ 0x02 ]) DHM_RFC7919_FFDHE8192_P_BIN = bytes([ \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, \ 0xAD, 0xF8, 0x54, 0x58, 0xA2, 0xBB, 0x4A, 0x9A, \ 0xAF, 0xDC, 0x56, 0x20, 0x27, 0x3D, 0x3C, 0xF1, \ 0xD8, 0xB9, 0xC5, 0x83, 0xCE, 0x2D, 0x36, 0x95, \ 0xA9, 0xE1, 0x36, 0x41, 0x14, 0x64, 0x33, 0xFB, \ 0xCC, 0x93, 0x9D, 0xCE, 0x24, 0x9B, 0x3E, 0xF9, \ 0x7D, 0x2F, 0xE3, 0x63, 0x63, 0x0C, 0x75, 0xD8, \ 0xF6, 0x81, 0xB2, 0x02, 0xAE, 0xC4, 0x61, 0x7A, \ 0xD3, 0xDF, 0x1E, 0xD5, 0xD5, 0xFD, 0x65, 0x61, \ 0x24, 0x33, 0xF5, 0x1F, 0x5F, 0x06, 0x6E, 0xD0, \ 0x85, 0x63, 0x65, 0x55, 0x3D, 0xED, 0x1A, 0xF3, \ 0xB5, 0x57, 0x13, 0x5E, 0x7F, 0x57, 0xC9, 0x35, \ 0x98, 0x4F, 0x0C, 0x70, 0xE0, 0xE6, 0x8B, 0x77, \ 0xE2, 0xA6, 0x89, 0xDA, 0xF3, 0xEF, 0xE8, 0x72, \ 0x1D, 0xF1, 0x58, 0xA1, 0x36, 0xAD, 0xE7, 0x35, \ 0x30, 0xAC, 0xCA, 0x4F, 0x48, 0x3A, 0x79, 0x7A, \ 0xBC, 0x0A, 0xB1, 0x82, 0xB3, 0x24, 0xFB, 0x61, \ 0xD1, 0x08, 0xA9, 0x4B, 0xB2, 0xC8, 0xE3, 0xFB, \ 0xB9, 0x6A, 0xDA, 0xB7, 0x60, 0xD7, 0xF4, 0x68, \ 0x1D, 0x4F, 0x42, 0xA3, 0xDE, 0x39, 0x4D, 0xF4, \ 0xAE, 0x56, 0xED, 0xE7, 0x63, 0x72, 0xBB, 0x19, \ 0x0B, 0x07, 0xA7, 0xC8, 0xEE, 0x0A, 0x6D, 0x70, \ 0x9E, 0x02, 0xFC, 0xE1, 0xCD, 0xF7, 0xE2, 0xEC, \ 0xC0, 0x34, 0x04, 0xCD, 0x28, 0x34, 0x2F, 0x61, \ 0x91, 0x72, 0xFE, 0x9C, 0xE9, 0x85, 0x83, 0xFF, \ 0x8E, 0x4F, 0x12, 0x32, 0xEE, 0xF2, 0x81, 0x83, \ 0xC3, 0xFE, 0x3B, 0x1B, 0x4C, 0x6F, 0xAD, 0x73, \ 0x3B, 0xB5, 0xFC, 0xBC, 0x2E, 0xC2, 0x20, 0x05, \ 0xC5, 0x8E, 0xF1, 0x83, 0x7D, 0x16, 0x83, 0xB2, \ 0xC6, 0xF3, 0x4A, 0x26, 0xC1, 0xB2, 0xEF, 0xFA, \ 0x88, 0x6B, 0x42, 0x38, 0x61, 0x1F, 0xCF, 0xDC, \ 0xDE, 0x35, 0x5B, 0x3B, 0x65, 0x19, 0x03, 0x5B, \ 0xBC, 0x34, 0xF4, 0xDE, 0xF9, 0x9C, 0x02, 0x38, \ 0x61, 0xB4, 0x6F, 0xC9, 0xD6, 0xE6, 0xC9, 0x07, \ 0x7A, 0xD9, 0x1D, 0x26, 0x91, 0xF7, 0xF7, 0xEE, \ 0x59, 0x8C, 0xB0, 0xFA, 0xC1, 0x86, 0xD9, 0x1C, \ 0xAE, 0xFE, 0x13, 0x09, 0x85, 0x13, 0x92, 0x70, \ 0xB4, 0x13, 0x0C, 0x93, 0xBC, 0x43, 0x79, 0x44, \ 0xF4, 0xFD, 0x44, 0x52, 0xE2, 0xD7, 0x4D, 0xD3, \ 0x64, 0xF2, 0xE2, 0x1E, 0x71, 0xF5, 0x4B, 0xFF, \ 0x5C, 0xAE, 0x82, 0xAB, 0x9C, 0x9D, 0xF6, 0x9E, \ 0xE8, 0x6D, 0x2B, 0xC5, 0x22, 0x36, 0x3A, 0x0D, \ 0xAB, 0xC5, 0x21, 0x97, 0x9B, 0x0D, 0xEA, 0xDA, \ 0x1D, 0xBF, 0x9A, 0x42, 0xD5, 0xC4, 0x48, 0x4E, \ 0x0A, 0xBC, 0xD0, 0x6B, 0xFA, 0x53, 0xDD, 0xEF, \ 0x3C, 0x1B, 0x20, 0xEE, 0x3F, 0xD5, 0x9D, 0x7C, \ 0x25, 0xE4, 0x1D, 0x2B, 0x66, 0x9E, 0x1E, 0xF1, \ 0x6E, 0x6F, 0x52, 0xC3, 0x16, 0x4D, 0xF4, 0xFB, \ 0x79, 0x30, 0xE9, 0xE4, 0xE5, 0x88, 0x57, 0xB6, \ 0xAC, 0x7D, 0x5F, 0x42, 0xD6, 0x9F, 0x6D, 0x18, \ 0x77, 0x63, 0xCF, 0x1D, 0x55, 0x03, 0x40, 0x04, \ 0x87, 0xF5, 0x5B, 0xA5, 0x7E, 0x31, 0xCC, 0x7A, \ 0x71, 0x35, 0xC8, 0x86, 0xEF, 0xB4, 0x31, 0x8A, \ 0xED, 0x6A, 0x1E, 0x01, 0x2D, 0x9E, 0x68, 0x32, \ 0xA9, 0x07, 0x60, 0x0A, 0x91, 0x81, 0x30, 0xC4, \ 0x6D, 0xC7, 0x78, 0xF9, 0x71, 0xAD, 0x00, 0x38, \ 0x09, 0x29, 0x99, 0xA3, 0x33, 0xCB, 0x8B, 0x7A, \ 0x1A, 0x1D, 0xB9, 0x3D, 0x71, 0x40, 0x00, 0x3C, \ 0x2A, 0x4E, 0xCE, 0xA9, 0xF9, 0x8D, 0x0A, 0xCC, \ 0x0A, 0x82, 0x91, 0xCD, 0xCE, 0xC9, 0x7D, 0xCF, \ 0x8E, 0xC9, 0xB5, 0x5A, 0x7F, 0x88, 0xA4, 0x6B, \ 0x4D, 0xB5, 0xA8, 0x51, 0xF4, 0x41, 0x82, 0xE1, \ 0xC6, 0x8A, 0x00, 0x7E, 0x5E, 0x0D, 0xD9, 0x02, \ 0x0B, 0xFD, 0x64, 0xB6, 0x45, 0x03, 0x6C, 0x7A, \ 0x4E, 0x67, 0x7D, 0x2C, 0x38, 0x53, 0x2A, 0x3A, \ 0x23, 0xBA, 0x44, 0x42, 0xCA, 0xF5, 0x3E, 0xA6, \ 0x3B, 0xB4, 0x54, 0x32, 0x9B, 0x76, 0x24, 0xC8, \ 0x91, 0x7B, 0xDD, 0x64, 0xB1, 0xC0, 0xFD, 0x4C, \ 0xB3, 0x8E, 0x8C, 0x33, 0x4C, 0x70, 0x1C, 0x3A, \ 0xCD, 0xAD, 0x06, 0x57, 0xFC, 0xCF, 0xEC, 0x71, \ 0x9B, 0x1F, 0x5C, 0x3E, 0x4E, 0x46, 0x04, 0x1F, \ 0x38, 0x81, 0x47, 0xFB, 0x4C, 0xFD, 0xB4, 0x77, \ 0xA5, 0x24, 0x71, 0xF7, 0xA9, 0xA9, 0x69, 0x10, \ 0xB8, 0x55, 0x32, 0x2E, 0xDB, 0x63, 0x40, 0xD8, \ 0xA0, 0x0E, 0xF0, 0x92, 0x35, 0x05, 0x11, 0xE3, \ 0x0A, 0xBE, 0xC1, 0xFF, 0xF9, 0xE3, 0xA2, 0x6E, \ 0x7F, 0xB2, 0x9F, 0x8C, 0x18, 0x30, 0x23, 0xC3, \ 0x58, 0x7E, 0x38, 0xDA, 0x00, 0x77, 0xD9, 0xB4, \ 0x76, 0x3E, 0x4E, 0x4B, 0x94, 0xB2, 0xBB, 0xC1, \ 0x94, 0xC6, 0x65, 0x1E, 0x77, 0xCA, 0xF9, 0x92, \ 0xEE, 0xAA, 0xC0, 0x23, 0x2A, 0x28, 0x1B, 0xF6, \ 0xB3, 0xA7, 0x39, 0xC1, 0x22, 0x61, 0x16, 0x82, \ 0x0A, 0xE8, 0xDB, 0x58, 0x47, 0xA6, 0x7C, 0xBE, \ 0xF9, 0xC9, 0x09, 0x1B, 0x46, 0x2D, 0x53, 0x8C, \ 0xD7, 0x2B, 0x03, 0x74, 0x6A, 0xE7, 0x7F, 0x5E, \ 0x62, 0x29, 0x2C, 0x31, 0x15, 0x62, 0xA8, 0x46, \ 0x50, 0x5D, 0xC8, 0x2D, 0xB8, 0x54, 0x33, 0x8A, \ 0xE4, 0x9F, 0x52, 0x35, 0xC9, 0x5B, 0x91, 0x17, \ 0x8C, 0xCF, 0x2D, 0xD5, 0xCA, 0xCE, 0xF4, 0x03, \ 0xEC, 0x9D, 0x18, 0x10, 0xC6, 0x27, 0x2B, 0x04, \ 0x5B, 0x3B, 0x71, 0xF9, 0xDC, 0x6B, 0x80, 0xD6, \ 0x3F, 0xDD, 0x4A, 0x8E, 0x9A, 0xDB, 0x1E, 0x69, \ 0x62, 0xA6, 0x95, 0x26, 0xD4, 0x31, 0x61, 0xC1, \ 0xA4, 0x1D, 0x57, 0x0D, 0x79, 0x38, 0xDA, 0xD4, \ 0xA4, 0x0E, 0x32, 0x9C, 0xCF, 0xF4, 0x6A, 0xAA, \ 0x36, 0xAD, 0x00, 0x4C, 0xF6, 0x00, 0xC8, 0x38, \ 0x1E, 0x42, 0x5A, 0x31, 0xD9, 0x51, 0xAE, 0x64, \ 0xFD, 0xB2, 0x3F, 0xCE, 0xC9, 0x50, 0x9D, 0x43, \ 0x68, 0x7F, 0xEB, 0x69, 0xED, 0xD1, 0xCC, 0x5E, \ 0x0B, 0x8C, 0xC3, 0xBD, 0xF6, 0x4B, 0x10, 0xEF, \ 0x86, 0xB6, 0x31, 0x42, 0xA3, 0xAB, 0x88, 0x29, \ 0x55, 0x5B, 0x2F, 0x74, 0x7C, 0x93, 0x26, 0x65, \ 0xCB, 0x2C, 0x0F, 0x1C, 0xC0, 0x1B, 0xD7, 0x02, \ 0x29, 0x38, 0x88, 0x39, 0xD2, 0xAF, 0x05, 0xE4, \ 0x54, 0x50, 0x4A, 0xC7, 0x8B, 0x75, 0x82, 0x82, \ 0x28, 0x46, 0xC0, 0xBA, 0x35, 0xC3, 0x5F, 0x5C, \ 0x59, 0x16, 0x0C, 0xC0, 0x46, 0xFD, 0x82, 0x51, \ 0x54, 0x1F, 0xC6, 0x8C, 0x9C, 0x86, 0xB0, 0x22, \ 0xBB, 0x70, 0x99, 0x87, 0x6A, 0x46, 0x0E, 0x74, \ 0x51, 0xA8, 0xA9, 0x31, 0x09, 0x70, 0x3F, 0xEE, \ 0x1C, 0x21, 0x7E, 0x6C, 0x38, 0x26, 0xE5, 0x2C, \ 0x51, 0xAA, 0x69, 0x1E, 0x0E, 0x42, 0x3C, 0xFC, \ 0x99, 0xE9, 0xE3, 0x16, 0x50, 0xC1, 0x21, 0x7B, \ 0x62, 0x48, 0x16, 0xCD, 0xAD, 0x9A, 0x95, 0xF9, \ 0xD5, 0xB8, 0x01, 0x94, 0x88, 0xD9, 0xC0, 0xA0, \ 0xA1, 0xFE, 0x30, 0x75, 0xA5, 0x77, 0xE2, 0x31, \ 0x83, 0xF8, 0x1D, 0x4A, 0x3F, 0x2F, 0xA4, 0x57, \ 0x1E, 0xFC, 0x8C, 0xE0, 0xBA, 0x8A, 0x4F, 0xE8, \ 0xB6, 0x85, 0x5D, 0xFE, 0x72, 0xB0, 0xA6, 0x6E, \ 0xDE, 0xD2, 0xFB, 0xAB, 0xFB, 0xE5, 0x8A, 0x30, \ 0xFA, 0xFA, 0xBE, 0x1C, 0x5D, 0x71, 0xA8, 0x7E, \ 0x2F, 0x74, 0x1E, 0xF8, 0xC1, 0xFE, 0x86, 0xFE, \ 0xA6, 0xBB, 0xFD, 0xE5, 0x30, 0x67, 0x7F, 0x0D, \ 0x97, 0xD1, 0x1D, 0x49, 0xF7, 0xA8, 0x44, 0x3D, \ 0x08, 0x22, 0xE5, 0x06, 0xA9, 0xF4, 0x61, 0x4E, \ 0x01, 0x1E, 0x2A, 0x94, 0x83, 0x8F, 0xF8, 0x8C, \ 0xD6, 0x8C, 0x8B, 0xB7, 0xC5, 0xC6, 0x42, 0x4C, \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF ]) DHM_RFC7919_FFDHE8192_G_BIN = bytes([ 0x02 ]) def generate_ffdh_key_agreement_test_vectors(P, G): K_B = int.to_bytes(0, 4, "big") P_size = (P.bit_length() + 7) // 8 while(K_B[0] == 0): X = random.randint(2, P-2) Y = random.randint(2, P-2) GX = pow(G, X, P) GY = pow(G, Y, P) K = pow(GY, X, P) K_B = int.to_bytes(K, P_size, "big") print("----- FFDH KA Test Vector: Key Size {} (K without leading zeros) -----".format(P_size)) print("P: " + hex(P)) print("G: " + hex(G)) print("X: " + hex(X)) print("GX: " + hex(GX)) print("GY: " + hex(GY)) print("K: " + hex(K)) print("----------------------------------------------------------------------") K_B = int.to_bytes(0xFFFFFFFF, 4, "big") while(K_B[0] != 0): X = random.randint(2, P-2) Y = random.randint(2, P-2) GX = pow(G, X, P) GY = pow(G, Y, P) K = pow(GY, X, P) K_B = int.to_bytes(K, P_size, "big") print("----- FFDH KA Test Vector: Key Size {} (K with leading zeros) -----".format(P_size)) print("P: " + hex(P)) print("G: " + hex(G)) print("X: " + hex(X)) print("GX: " + hex(GX)) print("GY: " + hex(GY)) print("K: " + hex(K)) print("-------------------------------------------------------------------") def main(): P = int.from_bytes( DHM_RFC7919_FFDHE2048_P_BIN, "big" ) G = int.from_bytes( DHM_RFC7919_FFDHE2048_G_BIN, "big" ) generate_ffdh_key_agreement_test_vectors(P, G) P = int.from_bytes( DHM_RFC7919_FFDHE3072_P_BIN, "big" ) G = int.from_bytes( DHM_RFC7919_FFDHE3072_G_BIN, "big" ) generate_ffdh_key_agreement_test_vectors(P, G) P = int.from_bytes( DHM_RFC7919_FFDHE4096_P_BIN, "big" ) G = int.from_bytes( DHM_RFC7919_FFDHE4096_G_BIN, "big" ) generate_ffdh_key_agreement_test_vectors(P, G) P = int.from_bytes( DHM_RFC7919_FFDHE6144_P_BIN, "big" ) G = int.from_bytes( DHM_RFC7919_FFDHE6144_G_BIN, "big" ) generate_ffdh_key_agreement_test_vectors(P, G) P = int.from_bytes( DHM_RFC7919_FFDHE8192_P_BIN, "big" ) G = int.from_bytes( DHM_RFC7919_FFDHE8192_G_BIN, "big" ) generate_ffdh_key_agreement_test_vectors(P, G) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-26 09:04:32 +02:00
Przemek Stekiel	564eb5864b	Add FFDH key generation tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-26 09:04:32 +02:00
Przemek Stekiel	44babc04dc	Add import/export FFDH key tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-26 09:04:32 +02:00
Przemek Stekiel	1d9c2b63d9	Adapt import/export test for FFDH Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-26 09:04:32 +02:00
Tom Cosgrove	10f40916eb	Merge pull request #7462 from daverodgman/clz_size_opt clz size/perf optimisation	2023-04-26 07:06:30 +01:00
Dave Rodgman	4f30a6aa59	Remove undesirable test Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-25 18:07:29 +01:00
Dave Rodgman	2e863ecde9	Remove unnecessary if to save 16 bytes Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-25 17:40:49 +01:00
Przemek Stekiel	d14e04ea72	Use ASSERT_COMPARE for comapring buffers Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-25 14:31:28 +02:00
Minos Galanakis	4dfed0a186	test_suite_ecp: Refactored `ecp_mod_p256k1` to alignt with `ecp_mod_p192k1` Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-25 13:30:59 +01:00
Minos Galanakis	9c2c81f996	ecp_curves: Renamed `ecp_mod_p256k1` -> `mbedtls_ecp_mod_p256k1` Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-25 13:30:59 +01:00
Minos Galanakis	d6751dcd8b	ecp_curves: Added unit-tests for `secp256k1` This patch introduces basic unit-testing for the `ecp_mod_p256k1()`. The method is exposed through the ecp_invasive interface, and the standard testing data is being provided by the python framework. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-25 13:30:59 +01:00
Minos Galanakis	cfb5a5fade	bignum_core_test_suite: Added `mpi_core_shift_l()` Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-25 12:23:34 +01:00
Valerio Setti	14bfdbf908	test: update guards also for pkwrite and pkparse Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 13:53:21 +02:00
Valerio Setti	8bb93bb44c	test: fix max value in test_mx32 Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 13:47:18 +02:00
valerio	e50831c639	test: minor fix for non-initialized variable Signed-off-by: valerio <valerio.setti@nordicsemi.no>	2023-04-24 13:47:18 +02:00
valerio	32f2ac9a18	test: proper positioning of USE_PSA_INIT + added missing exit labels Signed-off-by: valerio <valerio.setti@nordicsemi.no>	2023-04-24 13:47:18 +02:00
Valerio Setti	285dae83dd	test: fix USE_PSA_INIT/DONE for SSL test suite Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 13:47:18 +02:00
Valerio Setti	569c171015	test: fix USE_PSA_INIT/DONE for x509 test suite Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 13:47:18 +02:00
Valerio Setti	b79f7db9b0	test: fix USE_PSA_INIT/DONE for PK test suite Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 13:47:18 +02:00
Manuel Pégourié-Gonnard	0281d7630b	Merge pull request #7449 from valeriosetti/issue7446 Clean up & improve PK write test functions	2023-04-24 13:05:16 +02:00
Valerio Setti	bf974b9b1c	test_suite_pkwrite: replace memcpy with memmove Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 10:26:24 +02:00
Valerio Setti	547b3a4ab5	fix typos Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 10:24:37 +02:00
Valerio Setti	7bacaf859a	fix new line difference in Windows Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 08:53:00 +02:00
Gilles Peskine	935a987b2b	Merge pull request #7436 from AndrzejKurek/x509-verify-san-ip x509 SAN IP parsing	2023-04-21 22:00:58 +02:00
Dave Rodgman	bbf881053d	Document undefined case. Clarify test code. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-21 12:54:40 +01:00
Dave Rodgman	678e63007c	Remove test-case for all-zero Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-20 12:28:59 +01:00
Jerry Yu	ad2091d9c2	fix grammar issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-20 10:01:42 +08:00
Dave Rodgman	d54cb83584	Fix tests Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-19 18:46:17 +01:00
Dave Rodgman	fe8a8cd100	Size/perf optimisation for mbedtls_mpi_core_clz Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-19 17:59:12 +01:00
Kusumit Ghoderao	7415539173	Fix code style Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-19 21:00:27 +05:30
Kusumit Ghoderao	3b27a7f6bf	Fix hex_string converter Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-19 17:20:25 +05:30
Kusumit Ghoderao	a14ae5a0c9	Fix input_integer testing Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-19 14:16:26 +05:30
Jerry Yu	d3c7d538f1	Improve comments about the time_delay test. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-19 14:07:59 +08:00
Minos Galanakis	357b9e1342	test_suite_ecp: Refactored `ecp_mod_p224k1` to alignt with `ecp_mod_p192k1` Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-18 14:13:20 +01:00
Minos Galanakis	e5dab975c6	ecp_curves: Added unit-tests for `secp224k1` This patch introduces basic unit-testing for the `ecp_mod_p224k1()`. The method is exposed through the ecp_invasive interface, and the standard testing data is being provided by the python framework. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-18 14:13:20 +01:00
Andrzej Kurek	af04f6307f	Add an IPv4 mapped IPv6 test Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-04-18 07:26:59 -04:00
Janos Follath	3c3b94a31b	Merge pull request #7424 from gabor-mezei-arm/7256_unit_tests_for_p192k1 Add unit tests for ecp_mod_p192k1()	2023-04-18 12:19:40 +01:00
Valerio Setti	2280895784	test: properly check written PEM buffer len Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-18 12:59:06 +02:00
Valerio Setti	232a006a46	test: fix extension in DER test files Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-18 12:53:19 +02:00
Valerio Setti	15cac17da5	test: fix dependencies in DER and PEM tests Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-18 11:32:58 +02:00
Valerio Setti	c9cb5324b7	test: specify input file type through enum Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-18 11:20:36 +02:00
Jerry Yu	ed9b9a7579	Add warning to reserve the reason The test has some issues we can not avoid. Put it in code to avoid it is re-inroduced again Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-18 17:09:03 +08:00
Jerry Yu	d1190a5af3	Update comments and remove delay seconds test Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-18 17:01:50 +08:00
Valerio Setti	3401b306ab	test: use proper macros for checks Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-18 10:42:53 +02:00
Jerry Yu	4852bb823f	remove time delay tests See #1517. They often failed on the CI. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-18 15:02:21 +08:00
Valerio Setti	28567abf4f	test: add DER file format for pkwrite tests Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-17 18:43:55 +02:00
Valerio Setti	c60bc5e700	test: add support for DER format in pkwrite tests Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-17 18:43:06 +02:00
Valerio Setti	8959095e87	test: memory footprint optimization for pkwrite tests Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-17 17:34:42 +02:00
Paul Elliott	4359badbb2	Merge pull request #7331 from mprse/ec-jpake-fix2 PSA PAKE: Check input_length against PSA_PAKE_INPUT_SIZE() in psa_pake_input	2023-04-17 16:31:09 +01:00
Jerry Yu	2f1e85f47e	fix comments issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-17 16:53:37 +08:00
Manuel Pégourié-Gonnard	6942cc3da7	Merge pull request #7410 from valeriosetti/issue7390 Define (private) "light" subset of ECP	2023-04-14 13:24:06 +02:00
Dave Rodgman	f33c7e3344	Code style Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 15:34:43 +01:00
Dave Rodgman	9145dc46ed	Ensure variables initialised Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 15:00:07 +01:00
Dave Rodgman	c07df36f9e	More fixes for big-endian Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 14:54:12 +01:00
Andrzej Kurek	fe050815c8	Introduce an additional test for IPV4 parsing Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-04-13 09:20:05 -04:00
Andrzej Kurek	e404612580	Replace old macro in test_suite_x509parse MD_CAN_SHAXXX should be now used. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-04-13 09:19:58 -04:00
Dave Rodgman	b169671c50	Tidy-up Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 13:46:46 +01:00
Dave Rodgman	df2d5b1ca1	Fix compile error Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 13:41:09 +01:00
Dave Rodgman	0a05e703db	Tidy-up Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 13:19:40 +01:00
Dave Rodgman	9dc8b6a6a2	Test fixes for big-endian Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 12:53:35 +01:00
Gabor Mezei	00c9c7a81b	Remove unneeded limb variables Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-04-13 13:13:14 +02:00
Gabor Mezei	b70f5f1881	Add checks to guarantee positive input parameters Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-04-13 13:12:00 +02:00
Gabor Mezei	b86ead3cb2	Add generated tests for ecp_mod_p192k1 Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-04-13 12:47:59 +02:00
Janos Follath	6d3ec55849	Merge pull request #7329 from minosgalanakis/ecp/unify_test_cases ecp: Unify test cases	2023-04-12 13:23:16 +01:00
Stephan Koch	78109f596a	Fix derive_ecjpake_to_pms dependency to PSA_WANT_ALG_TLS12_ECJPAKE_TO_PMS. Signed-off-by: Stephan Koch <koch@oberon.ch>	2023-04-12 14:19:36 +02:00
Minos Galanakis	6d2ee70e75	test_suite_ecp: Removed `MBEDTLS_ECP_DP_SECP_GENERIC_ENABLED` dependency. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-12 09:44:02 +01:00
Stephan Koch	25c739baf7	Fix PSA AEAD ChaCha20 test dependency. Signed-off-by: Stephan Koch <koch@oberon.ch>	2023-04-11 17:54:31 +02:00
Valerio Setti	9cea093700	test: resolve remaining disparities in test_suite_ssl Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 16:19:11 +02:00
Glenn Strauss	7bd00e0708	use MBEDTLS_PK_CAN_ECDSA_SOME instead of MBEDTLS_ECDSA_C in test data dependencies Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>	2023-04-11 08:29:43 -04:00
Glenn Strauss	700ffa0744	use MBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA_BASED_ON_USE_PSA instead of MBEDTLS_SHA256_C in test data dependencies Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>	2023-04-11 08:29:42 -04:00
Glenn Strauss	6f545acfaf	Add mbedtls_x509_crt_parse_cn_inet_pton() tests Extended from https://github.com/Mbed-TLS/mbedtls/pull/2906 contributed by Eugene K <eugene.kobyakov@netfoundry.io> Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>	2023-04-11 08:29:42 -04:00
Eugene K	3208b0b391	add IP SAN tests changes per mbedTLS standards Signed-off-by: Eugene K <eugene.kobyakov@netfoundry.io>	2023-04-11 08:29:42 -04:00
Valerio Setti	0c477d32e2	test: include also test_suite_ecp for the coverage analysis Only some test cases are skipped for which ECP_C is mandatory, but the other ones are included. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 11:33:50 +02:00
Valerio Setti	6c496a1553	solve disparities for ECP_LIGHT between ref/accel Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 11:33:50 +02:00
Valerio Setti	5278986d2d	psa: fix ECP guards for key derivation Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 11:33:50 +02:00
Valerio Setti	d49cbc1493	test: fix remaining failures in test due to the ECP_LIGHT symbol Changes in test_suite_psa_crypto are to enforce the dependency on ECP_C which is mandatory for some key's derivation. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 11:33:50 +02:00
Manuel Pégourié-Gonnard	6a327a5fdc	Merge pull request #7393 from valeriosetti/issue7389 PK tests: use PSA to generate keypairs when USE_PSA is enabled	2023-04-11 11:27:14 +02:00
Gilles Peskine	02c52a08cd	Merge pull request #7287 from yanrayw/7285-followup-of-PR6500 6500 follow-up: enhancements to the new ssl_helpers test module	2023-04-11 09:31:37 +02:00
Valerio Setti	7816c24f2d	test: fix guards position in test_suite_pk Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 09:16:24 +02:00
Valerio Setti	b3f20da313	test: fix error handling in the new pk_genkey_ec() function Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 09:16:24 +02:00
Valerio Setti	12a063abb7	test: use proper macros for PSA init/done Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 09:16:24 +02:00
Valerio Setti	0b304421d8	ecp: revert changes to ECP module and related tests/programs Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 09:16:24 +02:00
Valerio Setti	b6891b13f6	pk: add alternate function for keypair generation using PSA Instead of using the legacy mbedtls_ecp_gen_keypair() which makes use of ECP's math, when USE_PSA_CRYPTO is enabled then the new function pk_genkey_ec() is used in test_suite_pk. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 09:16:24 +02:00
Manuel Pégourié-Gonnard	b16a50eeab	Merge pull request #7392 from valeriosetti/issue7388 PK: use PSA to complete public key when USE_PSA is enabled	2023-04-11 09:09:06 +02:00
Jerry Yu	c9c3e62b3e	workaround the assert fail with tollerance Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-11 14:08:23 +08:00
Jerry Yu	fce8577f73	try to reproduce random assert fail Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-11 14:07:38 +08:00
Mukesh Bharsakle	1a4cc5e92c	updating test-ca.key to use AES instead of DES Signed-off-by: Mukesh Bharsakle <bharsaklemukesh975@gmail.com>	2023-04-10 14:05:42 +01:00
Manuel Pégourié-Gonnard	f740767c00	Merge pull request #7391 from valeriosetti/issue7387 PK: don't use mbedtls_ecp_check_pub_priv() when USE_PSA is enabled	2023-04-07 10:17:18 +02:00
Valerio Setti	3fddf250dc	test: use proper macros for PSA init/done Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-07 08:45:34 +02:00
Valerio Setti	34f6755b34	pkparse: add new function for deriving public key from private using PSA Instead of using the legacy mbedtls_ecp_mul() function which makes use of ECP's math, this commit adds a new function named pk_derive_public_key() which implements the same behavior using PSA functions. The flow is simple: - import the private key into PSA - export its public part Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-07 08:45:34 +02:00
Minos Galanakis	92278dc407	test_suite_ecp: Updated dependency macros for ecp_raw_generic. This patch introduces a new local hash define of `MBEDTLS_ECP_DP_SECP_GENERIC_ENABLED` to replace the removed curve specific macros, introduced in upstream. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-06 16:27:44 +01:00
Minos Galanakis	1358648f77	test_suite_ecp: Introduced `ecp_mod_p_generic_raw` This patch replaces similiarly structured test functions for: * MBEDTLS_ECP_DP_SECP192R1 * MBEDTLS_ECP_DP_SECP224R1 * MBEDTLS_ECP_DP_SECP256R1 * MBEDTLS_ECP_DP_SECP384R1 * MBEDTLS_ECP_DP_BP512R1R1 with a more generic version, which adjusts the parameters, based on the `curve_id` field, provided by the testing data. The python test framework has been updated to provide that extra field. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-06 16:27:12 +01:00
Dave Rodgman	0b3de6fcec	Merge pull request #7288 from ronald-cron-arm/tls13-server-version-negotiation TLS: TLS 1.2 / 1.3 version negotiation on server side	2023-04-06 16:26:19 +01:00
Kusumit Ghoderao	02326d5083	Test key_derivation_input_integer function Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-06 17:47:59 +05:30
Ronald Cron	8c1ce223eb	tests: ssl: Restore !MBEDTLS_SSL_PROTO_TLS1_3 dependency Restore the dependency on !MBEDTLS_SSL_PROTO_TLS1_3 of the DTLS fragmentation tests. That way the test is not run on Windows 2013 (as in development) where there is an issue with MBEDTLS_PRINTF_SIZET when running those tests. I will address this issue in a separate PR. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-04-06 13:20:40 +02:00
Ronald Cron	097ba146e7	tls: srv: Set hybrid TLS 1.2/1.3 as default configuration Set hybrid TLS 1.2/1.3 as default server configuration if both TLS 1.2 and TLS 1.3 are enabled at build time. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-04-06 10:26:18 +02:00
Ronald Cron	43263c045a	tests: ssl: Extend move to handshake state tests Extend move to handshake state tests to reach most of TLS 1.2 and 1.3 handshake states. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-04-06 10:26:18 +02:00
Ronald Cron	3b35455a69	tls: srv: Allow server hybrid TLS 1.2 and 1.3 configuration Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-04-06 10:26:18 +02:00
Ronald Cron	ea8a1ea17a	tests: ssl: Add some missing dependencies Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-04-06 10:26:17 +02:00
Minos Galanakis	00bd8925a7	bignum: Removed merge scaffolding. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-05 16:13:11 +01:00
Przemek Stekiel	39dbe23845	Release memory for subject alt name in test Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	79354c3c4d	Use MBEDTLS_MD_CAN_SHA1 macro as test dependency Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	09720e2228	Remove redundant test cases Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	019842119d	Adapt test for authority_key_id (parsing subject alt name) Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	75653b1df0	Add indication of extension error while parsing authority/subject key id Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	6ec839a1f9	x509_get_authority_key_id: add length check + test Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	8661fed943	Fix tests dependencies Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	9a511c5bdf	Rename back mbedtls_x509_parse_general_name->mbedtls_x509_parse_subject_alt_name Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
toth92g	9085cff438	Removing obsolete test after merging and correcting missing macro Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:28 +02:00
toth92g	8d435a0c8b	Renaming x509_get_subject_alt_name to x509_get_general_names and mbedtls_x509_parse_subject_alt_name to mbedtls_x509_parse_general_name so they can be used not only to collect subject alt name, but the V3 authority cert issuer that is also GeneralName type. Also updated the x509_get_general_names function to be able to parse rfc822Names Test are also updated according these changes. Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:28 +02:00
toth92g	5042b104c2	- Removing obsolete test files (DER strings are used instead of them to minimize resource usage) - Renaming test functions to match the naming conventions Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:28 +02:00
toth92g	357b297b16	Correcting tests: - Wrong condition was checked (ref_ret != 0 instead of ref_ret == 0) - tags were not checked (nor lengths) - Using ASSERT_COMPARE where possible Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:27 +02:00
toth92g	2d2fb3a5a7	Correting findings: Using DER format instead of PEM while testing to minimize the resource usage. Comparation of byte arrays in test are now done via the dedicated ASSERT_COMPARE test macro for better understanding Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:27 +02:00
toth92g	0e2e2d6841	x509parse tests used only last 16 bits of the return values. They are updated to check the whole 32 bit value Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:27 +02:00
toth92g	3c2243c6d5	Replacing hard-coded literals with macros of the library in the new x509parse tests Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:27 +02:00
toth92g	a41954d0cf	Extracting SubjectKeyId and AuthorityKeyId in case of x509 V3 extensions. Updating mbedtls_x509_crt_free function to also free the new dynamic elements (issuer field of AuthorityKeyId). A few tests are also added which test the feature with a correct certificate and multiple ones with erroneous ASN1 tags. Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:27 +02:00
Dave Rodgman	56f59d749c	Merge pull request #7394 from mprse/fix_pkcs7_test_alloc Fix memory allocations in pkcs7_verify test	2023-04-04 15:46:59 +01:00
Janos Follath	13c73de6de	Merge pull request #6233 from tom-cosgrove-arm/issue-6226-core-mul Bignum: extract core_mul from the prototype	2023-04-04 13:36:22 +01:00
Ronald Cron	219f978097	Merge pull request #7059 from ronald-cron-arm/psa-crypto-misc PSA cryptography miscellaneous	2023-04-04 10:54:03 +02:00
Valerio Setti	98680fc2ed	ecp: revert changes to ECP module and test suite Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-04 10:22:59 +02:00
Przemek Stekiel	9735be5ef3	Fix memory allocations in pkcs7_verify test Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 09:07:10 +02:00
Manuel Pégourié-Gonnard	86d5d4bf31	Merge pull request #7103 from valeriosetti/issue6622 Some MAX_SIZE macros are too small when PSA ECC is accelerated	2023-04-03 16:23:27 +02:00
Valerio Setti	0fe1ee27e5	pk: add an alternative function for checking private/public key pairs Instead of using the legacy mbedtls_ecp_check_pub_priv() function which was based on ECP math, we add a new option named eckey_check_pair_psa() which takes advantage of PSA. Of course, this is available when MBEDTLS_USE_PSA_CRYPTO in enabled. Tests were also fixed accordingly. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-03 15:00:21 +02:00
Gabor Mezei	f8b55d6358	Fix code style issues Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-04-03 14:13:46 +02:00
Valerio Setti	c6ecdad42d	test: disable all RSA algs and fix tests All RSA associated algs are now forcedly disabled both on library and driver sides. Some PSA driver tests required to be fixed because they were just requiring for not having the built-in version, but they didn't check if the driver one was present (kind of assuming that RSA was always supported on the driver side). Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-03 08:26:35 +02:00
Dave Rodgman	dd48c6e3df	Merge pull request #7385 from daverodgman/timing_alignment Fix cast alignment warning in timing.c	2023-03-31 19:48:34 +01:00
Dave Rodgman	d43b42ebfa	Whitespace fix Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-31 18:04:34 +01:00
Dave Rodgman	4ffc9d80f7	Test that setting reset actually does something Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-31 17:07:26 +01:00
Gabor Mezei	87223ab1ce	Add generated test for core_mul Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-03-31 16:17:06 +02:00
Tom Cosgrove	e16a945421	Add unit tests for mbedtls_mpi_core_mul() The test cases use the following MPI values. The .data file only includes those (a, b) values where a <= b; the test code does a * b and b * a. 0 1 80 ff 100 fffe ffff 10000 ffffffff 100000000 20000000000000 7f7f7f7f7f7f7f7f 8000000000000000 ffffffffffffffff 10000000000000000 10000000000000001 1234567890abcdef0 fffffffffffffffffefefefefefefefe 100000000000000000000000000000000 1234567890abcdef01234567890abcdef0 ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff 1234567890abcdef01234567890abcdef01234567890abcdef01234567890abcdef0 4df72d07b4b71c8dacb6cffa954f8d88254b6277099308baf003fab73227f34029643b5a263f66e0d3c3fa297ef71755efd53b8fb6cb812c6bbf7bcf179298bd9947c4c8b14324140a2c0f5fad7958a69050a987a6096e9f055fb38edf0c5889eca4a0cfa99b45fbdeee4c696b328ddceae4723945901ec025076b12b The lines in the .data file were generated by the following script ``` #!/usr/bin/env perl # # mpi-test-core-mul.pl - generate MPI tests in Perl for mbedtls_mpi_core_mul() # use strict; use warnings; use Math::BigInt; use sort 'stable'; my $echo = 0; my @mul_mpis = qw( 0 1 80 ff 100 fffe ffff 10000 ffffffff 100000000 20000000000000 7f7f7f7f7f7f7f7f 8000000000000000 ffffffffffffffff 10000000000000000 10000000000000001 1234567890abcdef0 fffffffffffffffffefefefefefefefe 100000000000000000000000000000000 1234567890abcdef01234567890abcdef0 ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff 1234567890abcdef01234567890abcdef01234567890abcdef01234567890abcdef0 4df72d07b4b71c8dacb6cffa954f8d88254b6277099308baf003fab73227f34029643b5a263f66e0d3c3fa297ef71755efd53b8fb6cb812c6bbf7bcf179298bd9947c4c8b14324140a2c0f5fad7958a69050a987a6096e9f055fb38edf0c5889eca4a0cfa99b45fbdeee4c696b328ddceae4723945901ec025076b12b ); generate_tests(); sub generate_tests { generate_mbedtls_mpi_core_mul(); } sub generate_mbedtls_mpi_core_mul { my $sub_name = (caller(0))[3]; # e.g. main::generate_mbedtls_mpi_sub_mpi my ($ignore, $test_name) = split("main::generate_", $sub_name); my @cases = (); for my $ah (@mul_mpis) { for my $bh (@mul_mpis) { my $a = Math::BigInt->from_hex($ah); my $b = Math::BigInt->from_hex($bh); next if $a > $b; # don't need to repeat test cases my $r = $a * $b; my $rh = $r->to_hex(); my $desc = "$test_name #NUMBER: 0x$ah * 0x$bh = 0x$rh"; my $case = output($test_name, str($ah), str($bh), str($rh)); push(@cases, [$case, $desc]); } } output_cases("", @cases); } sub output_cases { my ($explain, @cases) = @_; my $count = 1; for my $c (@cases) { my ($case, $desc, $dep) = @$c; $desc =~ s/NUMBER/$count/; $count++; if (defined($explain) && $desc =~ /EXPLAIN/) { $desc =~ s/EXPLAIN/$explain/; $explain = ""; } my $depends = ""; $depends = "depends_on:$dep\n" if defined($dep) && length($dep); print <<EOF; $desc $depends$case EOF } } sub output { return join(":", @_); } sub str { return '"' . $_[0] . '"'; } ``` Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com> Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-03-31 16:16:05 +02:00
Dave Rodgman	b8f5ba826b	Merge pull request #6891 from yuhaoth/pr/add-milliseconds-platform-function Add milliseconds platform time function	2023-03-31 11:47:37 +01:00
Ronald Cron	e6e6b75ad3	psa: Remove MBEDTLS_PSA_CRYPTO_DRIVERS configuration option The support for the PSA crypto driver interface is not optional anymore as the implementation of the PSA cryptography interface has been restructured around the PSA crypto driver interface (see psa-crypto-implementation-structure.md). There is thus no purpose for the configuration options MBEDTLS_PSA_CRYPTO_DRIVERS anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-03-31 09:07:54 +02:00
Paul Elliott	03d557db35	Merge pull request #6900 from AndrzejKurek/san-dirname Add support for directoryName subjectAltName	2023-03-30 18:37:26 +01:00
Janos Follath	54118a1720	Merge pull request #7352 from gabor-mezei-arm/6349_fix_merge Remove obsolete ecp_fix_negative function	2023-03-30 14:48:13 +01:00
Andrzej Kurek	43d7131c14	Fix rfc822name test arguments Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:41:32 -04:00
Andrzej Kurek	532b8d41af	Move an x509 malformation test Now, that the errors are not silently ignored anymore, instead of expecting a <malformed> tag in parsed data, the test case returns an error. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:40:36 -04:00
Andrzej Kurek	d90376ef46	Add a test for a malformed directoryname sequence Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:38:45 -04:00
Andrzej Kurek	d348632a6a	Switch from PEM to DER format for new x509 directoryname test This simplifies generating malformed data and doesn't require the PEM support for tests. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:03:01 -04:00
Andrzej Kurek	151d85d82c	Introduce a test for a malformed directoryname SAN Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:03:01 -04:00
Andrzej Kurek	d40c2b65a6	Introduce proper memory management for SANs DirectoryName parsing performs allocation that has to be handled. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:03:01 -04:00
Andrzej Kurek	e12b01d31b	Add support for directoryName subjectAltName Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:03:01 -04:00
Valerio Setti	e4758aa34b	test: add a companion test for another curve (x25519) and fix issues Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-29 10:28:06 +02:00
Valerio Setti	1a6d96f59e	test: use full config as test starting point and solve issues Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-29 10:28:06 +02:00
Valerio Setti	659aa686c8	test: use BUILTIN symbols in as weierstrass key derivation guard Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-29 10:27:18 +02:00
Valerio Setti	a532983e56	test: add legacy dependency for weierstrass key derivation Weierstrass key derivation still depends on ECP_C (no driver dispatch yet), so the legacy dependency is still mandatory here. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-29 10:27:18 +02:00
Gabor Mezei	df9c029dd5	Remove obsolete ecp_fix_negative function Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-03-28 18:43:07 +02:00
Janos Follath	0f5086847c	Merge pull request #7343 from minosgalanakis/ecp/sec-384-update-test-macro-deps ecp: Updated ecp384 depedency macro	2023-03-28 15:04:10 +01:00
Paul Elliott	f04848cc3b	Revert "Add generated files" This reverts commit `df2b5da57f`. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-27 21:20:52 +01:00
Minos Galanakis	37bdd93730	ecp_mod_p224_raw: Added `MBEDTLS_ECP_DP_SECP224R1_ENABLED` as a dependency Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-03-27 18:19:22 +01:00
Paul Elliott	d01a3bca05	Merge tag 'v3.4.0' into mbedtls-3.4.0_mergeback Mbed TLS 3.4.0	2023-03-27 18:09:49 +01:00
Janos Follath	445c3bfcac	Merge pull request #7222 from minosgalanakis/bignum/6851_extract_Secp384r1_fast_reduction Bignum: Extract secp384r1 fast reduction from the prototype	2023-03-27 16:56:30 +01:00
Manuel Pégourié-Gonnard	c584c27426	Disable built-in SHA-256 in accel_hash too Now that Entropy doesn't need it any more, we can have driver-only SHA-256 (and 224 with it) in the non-USE_PSA component too. This reveals a missing PSA_INIT in a PK test using SHA-256. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-24 10:43:40 +01:00
Manuel Pégourié-Gonnard	e9319772b3	Fix failures in test_suite_random Appeared after the dependencies were changed to use MD_CAN. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-24 10:43:40 +01:00
Manuel Pégourié-Gonnard	33783b4646	Manually fix two remaining instances of old macros Unless I missed something, all remaining instance of all macros are in files where it makes sense to use these. I went over the output of: git grep -c -E 'MBEDTLS_(MD5\|RIPEMD160\|SHA[0-9])_C' and I think all the files listed fall into one of the following acceptable categories: - documentation and historical documents: Changelog, docs//.md - config files and related: mbedtls_config.h, configs/*.h, check_config.h, config_psa.h, etc. - scripts that build/modify configs: all.sh, depends.py, set_psa_test_dependencies.py, etc. - implementation of MD or PSA or related: md.h, psa_util.h, etc. and corresponding test suites - implementation of hashes: md5.c, sha256.h, etc. and corresponding test suites - two example programs using a low-level hash API: hash/hello.c, pkey/ecdsa.c - test/benchmark.c, test/selftest.c: actually want our built-in implementations - a function in test_suite_psa_crypto_storage_format that is specifically for checking if the hash is built in. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-24 10:43:40 +01:00
Manuel Pégourié-Gonnard	93302422fd	Fix instances of old feature macros being used sed -i -f md.sed include/mbedtls/ssl.h library/hmac_drbg.c programs/pkey/.c programs/x509/.c tests/scripts/generate_pkcs7_tests.py tests/suites/test_suite_random.data Then manually revert programs/pkey/ecdsa.c as it's using a low-level hash API. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-24 10:43:40 +01:00
Manuel Pégourié-Gonnard	2334d3a9b1	Fix driver_wrappers test These were assuming that psa_crypto_init() doesn't call hashes, which is not always correct. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-24 10:43:40 +01:00
Manuel Pégourié-Gonnard	5cd4b6403b	Use MD-light in entropy.c Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-24 10:43:40 +01:00
Przemek Stekiel	038a3a6b95	Extend j-pake input getters tests for user and peer Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-23 13:37:18 +01:00
Przemek Stekiel	b175b146a2	Remove driver_pake_get_role function Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-23 13:37:18 +01:00
Przemek Stekiel	43af7c8a8a	Adapt pake tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-23 13:37:18 +01:00
Manuel Pégourié-Gonnard	ac6db4d649	Merge pull request #7317 from mpg/lift-exclusions Lift exclusions from driver-only hash component	2023-03-23 12:01:01 +01:00
Paul Elliott	df2b5da57f	Add generated files Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-23 10:58:43 +00:00
Paul Elliott	db67e99bbf	Bump library, libcrypto and libx509 versions Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-23 10:57:39 +00:00
Przemek Stekiel	69aba90e5b	Add tests case for step with different buffer size Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-23 08:06:09 +01:00
Valerio Setti	13ce40323f	test_suite_ssl: remove redundant dependencies when the key exchange is specified Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-22 10:40:05 +01:00
Valerio Setti	7a2f39692a	ecdhe: solve disparities in accelerated ECDHE vs reference Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-22 10:37:45 +01:00
Minos Galanakis	37f4cb6d0e	ecp_curves: Minor rework for p384 This patch adjusts formatting, documentation and testing. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-03-21 15:46:50 +00:00
Minos Galanakis	619385d8bc	test_suite_ecp: Added ecp_mod_p384_raw() test case. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-03-21 15:45:17 +00:00
Manuel Pégourié-Gonnard	8965b65bd8	Remove now-spurious dependencies Now that HMAC-DRBG can use driver, so can deterministic ECDSA Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:42:06 +01:00
Manuel Pégourié-Gonnard	91cc8bbc87	Enable ECDSA-det in driver-only hashes component Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:42:06 +01:00
Manuel Pégourié-Gonnard	d111fbdad1	Enable HMAC-DRBG in driver-only hashes component Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:42:05 +01:00
Manuel Pégourié-Gonnard	0d1921c4c2	Enable HKDF in driver-only hashes test Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:42:05 +01:00
Paul Elliott	f1eb5e2a04	Merge branch 'development-restricted' into mbedtls-3.4.0rc0-pr Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-21 15:35:17 +00:00
Manuel Pégourié-Gonnard	7d381f517a	MD: use MD_CAN in test suite and check for parity Split the part the varies between driver/built-in builds to a separate file for convenience. Fix analyze_outcomes.py to be able to exclude specific data files and not just a whole family at once. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:29:31 +01:00
Manuel Pégourié-Gonnard	7224086ebc	Remove legacy_or_psa.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:29:31 +01:00
Manuel Pégourié-Gonnard	23fc437037	SSL: fix test failures 1. Change USE_PSA_CRYPTO_INIT/DONE to MD_OR_USE. 2. Add missing occurrences - some of these were already necessary in principle (in one form or another) but where missing and this was not detected so far as `psa_hash` doesn't complain in case of a missing init, but now MD makes it visible. 3. Add missing include in ssl_test_lib.h. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:29:31 +01:00
Manuel Pégourié-Gonnard	bef824d394	SSL: use MD_CAN macros Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:29:31 +01:00
Manuel Pégourié-Gonnard	33a13028e5	X.509: fix test failures Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	a946489efd	X.509: use MD_CAN macros Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	fa99afa2bc	PK: fix test failures Introduce MD_OR_USE_PSA_INIT/DONE. This will likely be used everywhere in X.509 and SSL/TLS, but most places in PK only need USE_PSA_INIT/DONE. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	0b8095d96a	PK: use MD_CAN macros sed -i -f md.sed tests/suites/test_suite_pk{,parse,write}.* Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	ebef58d301	OID + misc crypto: use MD_CAN and fix failures After this, only PK, X.509 and TLS remain to be done. Deterministic uses HMAC-DRBG which uses MD, so it needs crypto_init() when using a driver-only hash. Also, remove a special-purpose macro that's no longer needed. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	1d3bf24555	test_suite_psa_crypto: use PSA_WANT Could use MD_CAN, as both are equivalent when MBEDTLS_PSA_CRYPTO_C is defined, but using PSA_WANT is preferable in a PSA context. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	a5f04621bd	PKCS5: use MD_CAN macros sed -i -f md.sed library/pkcs5.c tests/suites/test_suite_pkcs5* include/mbedtls/pkcs5.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	49e67f814f	PKCS5: always use MD As a consequence, MD_C is now enabled in component accel_hash_use_psa. Fix guards in X.509 info function to avoid this causing a failure now. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	c1f10441e0	RSA: use MD_CAN macros sed -i -f md.sed library/rsa.c tests/suites/test_suite_rsa* include/mbedtls/rsa.h tests/suites/test_suite_pkcs1_v* Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	fb8d90a2db	RSA: always use MD light Note: already auto-enabled in build_info.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	52d02a85d3	PEM: use MD_CAN macros sed -i -f md.sed library/pem.c tests/suites/test_suite_pem* include/mbedtls/pem.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	1c2008fa37	PEM: always use MD light Note: PEM_PARSE already auto-enables MD_LIGHT in build_info.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	0baad53ac9	PKCS12: use MD_CAN macros sed -i -f md.sed library/pkcs12.c tests/suites/test_suite_pkcs12.* include/mbedtls/pkcs12.h with md.sed as before. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	be97afe5d4	PKCS12: always use MD light Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	b2eb1f7456	ECJPAKE: use MD_CAN macros sed -i -f md.sed \ library/ecjpake.c \ include/medtls/ecjpake.h \ tests/suites/test_suite_ecjpake.* With md.sed as follows: s/\bMBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_MD5/g s/\bMBEDTLS_HAS_ALG_RIPEMD160_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_RIPEMD160/g s/\bMBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA1/g s/\bMBEDTLS_HAS_ALG_SHA_224_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA224/g s/\bMBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA256/g s/\bMBEDTLS_HAS_ALG_SHA_384_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA384/g s/\bMBEDTLS_HAS_ALG_SHA_512_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA512/g s/\bMBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_MD5/g s/\bMBEDTLS_HAS_ALG_RIPEMD160_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_RIPEMD160/g s/\bMBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA1/g s/\bMBEDTLS_HAS_ALG_SHA_224_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA224/g s/\bMBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA256/g s/\bMBEDTLS_HAS_ALG_SHA_384_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA384/g s/\bMBEDTLS_HAS_ALG_SHA_512_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA512/g s/\bMBEDTLS_HAS_ALG_MD5_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_MD5/g s/\bMBEDTLS_HAS_ALG_RIPEMD160_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_RIPEMD160/g s/\bMBEDTLS_HAS_ALG_SHA_1_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA1/g s/\bMBEDTLS_HAS_ALG_SHA_224_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA224/g s/\bMBEDTLS_HAS_ALG_SHA_256_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA256/g s/\bMBEDTLS_HAS_ALG_SHA_384_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA384/g s/\bMBEDTLS_HAS_ALG_SHA_512_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA512/g s/\bMBEDTLS_MD5_C\b/MBEDTLS_MD_CAN_MD5/g s/\bMBEDTLS_RIPEMD160_C\b/MBEDTLS_MD_CAN_RIPEMD160/g s/\bMBEDTLS_SHA1_C\b/MBEDTLS_MD_CAN_SHA1/g s/\bMBEDTLS_SHA224_C\b/MBEDTLS_MD_CAN_SHA224/g s/\bMBEDTLS_SHA256_C\b/MBEDTLS_MD_CAN_SHA256/g s/\bMBEDTLS_SHA384_C\b/MBEDTLS_MD_CAN_SHA384/g s/\bMBEDTLS_SHA512_C\b/MBEDTLS_MD_CAN_SHA512/g Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	41bc8b6b1e	ECJPAKE: always use MD light This enables access to all available hashes, instead of the previous situation where you had to choose by including MD_C or not. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	ffcda5679a	Make MD_PSA_INIT/DONE available to all suites Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	e0e161b54a	Merge pull request #7296 from valeriosetti/issue7253-part1 driver-only ECDH: enable ECDH-based TLS 1.2 key exchanges -- part 1	2023-03-21 16:09:02 +01:00
Dave Rodgman	3543806026	Merge pull request #7190 from yanrayw/6197_rsa_get_padding_hashID RSA: provide interface to retrieve padding mode and hash_id	2023-03-20 18:34:53 +00:00
Dave Rodgman	d3b6e92967	Merge pull request #997 from gilles-peskine-arm/aesni-intrinsics Implement AESNI with intrinsics	2023-03-20 18:20:51 +00:00
Valerio Setti	fdea36d137	test_suite_ssl: remove redundant ECDH dependencies when the key exchange is specified Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-20 14:02:07 +01:00
Valerio Setti	866aa187e8	ecdh: solve disparities in accelerated ECDH vs reference Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-20 14:02:07 +01:00
Manuel Pégourié-Gonnard	14c194aae9	Merge pull request #7271 from mpg/use-md-light Use md light	2023-03-20 09:01:16 +01:00
Yanray Wang	69bc8403eb	rsa_tests: use TEST_EQUAL instead of TEST_ASSERT Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-17 20:33:08 +08:00
Yanray Wang	e05a21f084	rsa: add a test to check default padding mode and hash_id Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-17 20:09:20 +08:00
Yanray Wang	15d3df7aec	rsa: add positive test cases for getter functions Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-17 19:49:04 +08:00
Yanray Wang	d41684e8bc	rsa.c: rename getter function of hash_id Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-17 18:57:42 +08:00
Paul Elliott	9f02a4177b	Merge pull request #7009 from mprse/csr_write_san Added ability to include the SubjectAltName extension to a CSR - v.2	2023-03-17 10:07:27 +00:00
Manuel Pégourié-Gonnard	6ea8d3414f	Fix a comment Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-17 09:43:50 +01:00
Manuel Pégourié-Gonnard	ec000c1a00	Merge pull request #7242 from mpg/md-dispatch-psa Implement MD dispatch to PSA	2023-03-17 09:42:40 +01:00
Gilles Peskine	28e4dc1e39	Fix use of arithmetic on void* Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-03-16 21:39:47 +01:00
Janos Follath	c18cd0c8e6	Merge pull request #7230 from gabor-mezei-arm/6850_Secp256r1_fast_reduction Extract Secp256r1 fast reduction from the prototype	2023-03-16 19:43:25 +00:00
Dave Rodgman	4a060ffa59	Merge pull request #7303 from daverodgman/msan_bzero_testcase Add tests that cover msan explicit_bzero issue	2023-03-16 17:55:19 +00:00
Gilles Peskine	844f65dc65	Explicitly test AES contexts with different alignments Don't leave it up to chance. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-03-16 14:54:48 +01:00
Dave Rodgman	0a3c72df02	Add explanatory comment Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-16 13:43:32 +00:00
Gilles Peskine	5fcdf49f0e	Move copy-context testing to an auxiliary function This is in preparation for running it multiple times with different alignments. This commit also fixes the fact that we weren't calling mbedtls_aes_free() on the context (we still aren't if the test fails). It's not an issue except possibly in some ALT implementations. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-03-16 14:42:39 +01:00
Gilles Peskine	f99ec202d7	AES context copy test: have one for each key size Don't use all-bytes zero as a string, it's harder to debug. This commit uses the test vectors from FIPS 197 appendix C. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-03-16 14:27:40 +01:00
Gilles Peskine	d50cfddfd7	AES context copy test: clean up Don't use hexcmp to compare binary data. Improve readability. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-03-16 14:25:58 +01:00
Dave Rodgman	5d2024333b	Fix missing line ending Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-16 12:14:51 +00:00
Dave Rodgman	ecd649205d	Add tests that cover msan explicit_bzero issue Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-16 12:02:15 +00:00
Manuel Pégourié-Gonnard	ec31f2917f	Systematically call PSA_INIT for MD tests All tests that call md_setup() or compute a hash of a HMAC may now need it in some builds. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-16 09:48:20 +01:00
Manuel Pégourié-Gonnard	9b14639342	Dispatch according to init status. We shouldn't dispatch to PSA when drivers have not been initialized yet. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-16 09:46:51 +01:00
Manuel Pégourié-Gonnard	7abdf7eee5	Add utility function to check for drivers init This will be used in the next commit. While at it, move driver initialization before RNG init - this will be handy when the entropy module wants to use drivers for hashes. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-16 09:46:51 +01:00
Yanray Wang	f56181a105	ssl_helpers.c: add mbedtls_test prefix for tweak_tls13_certificate* Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-16 14:59:38 +08:00
Yanray Wang	b088bfc453	ssl_helpers.c: add mbedtls_test_ssl prefix for *_exchange_data Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-16 14:59:38 +08:00
Yanray Wang	5f86a42813	ssl_helpers.c: add mbedtls_test prefix for mbedtls_mock_socket_init Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-16 14:59:38 +08:00
Demi Marie Obenour	889534a4d2	Fix segfault in mbedtls_oid_get_numeric_string When passed an empty OID, mbedtls_oid_get_numeric_string would read one byte from the zero-sized buffer and return an error code that depends on its value. This is demonstrated by the test suite changes, which check that an OID with length zero and an invalid buffer pointer does not cause Mbed TLS to segfault. Also check that second and subsequent subidentifiers are terminated, and add a test case for that. Furthermore, stop relying on integer division by 40, use the same loop for both the first and subsequent subidentifiers, and add additional tests. Signed-off-by: Demi Marie Obenour <demiobenour@gmail.com>	2023-03-16 01:06:41 -04:00
Jerry Yu	02d684061b	Adjust time delay tests to fix fails Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-15 19:00:50 +08:00
Gilles Peskine	8d60574b7b	Merge pull request #6500 from yanrayw/split-TLS-connection-func-into-ssl_helpers Move TLS connection helper code from test_suite_ssl.function to ssl_helpers.c	2023-03-15 10:50:03 +01:00
Yanray Wang	ac36115355	test_suite_rsa.function: remove redundant test cases Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-15 16:55:36 +08:00
Yanray Wang	097147540d	test_suite_rsa.function: add tests Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-15 16:42:58 +08:00
Manuel Pégourié-Gonnard	18336dace2	Merge pull request #7196 from mprse/ecjpake-driver-dispatch-peer-user EC J-PAKE: partial fix for role vs user+peer	2023-03-15 09:37:30 +01:00
Przemek Stekiel	c0e6250ff9	Fix documentation and tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-14 11:49:36 +01:00
Gilles Peskine	215ecd0439	Merge pull request #7252 from daverodgman/enable_pkcs7 Enable PKCS 7	2023-03-14 10:39:50 +01:00
Jerry Yu	e7ea823d43	remove extra spaces Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-14 17:33:42 +08:00
Jerry Yu	1f7dd8df9b	fix random fails Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-14 13:12:08 +08:00
Sergey	bef1f6371f	Fix llvm error: variables may be used uninitialized Signed-off-by: Sergey <sergio_nsk@yahoo.de>	2023-03-13 09:30:52 -07:00
Przemek Stekiel	fde112830f	Code optimizations and documentation fixes Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-13 16:28:27 +01:00
Yanray Wang	5ba709c449	Move #define Directive into ssl_helpers.h Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-13 19:20:42 +08:00
Yanray Wang	09a6f7e14f	Move TEST_AVAILABLE_ECC into ssl_helpers.h Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-13 19:20:42 +08:00
Yanray Wang	1db628f254	Move ECJPAKE_TEST_SET_PASSWORD into ssl_helpers.h Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-13 19:20:42 +08:00
Yanray Wang	e64b40520d	Fix build error in CI about test_fail_if_psa_leaking During test of component build_arm_linux_gnueabi_gcc_arm5vte and build_arm_none_eabi_gcc_m0plus. It fails with - error: implicit declaration of function ‘test_fail_if_psa_leaking’ It happens because test_fail_if_psa_leaking is defined in helpers.function. This block of code is not converted into C code while compiling ssl_helpers.c. The function has been moved to psa_crypto_helpers.c in order to fix this build error. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-13 19:20:42 +08:00
Yanray Wang	4d07d1c394	Resolve build errors for ssl_helpers.c and test_suite_ssl.c Since we move many functions from test_suite_ssl.function to ssl_helpers.c in commit 8e2bbdd. This causes various of build errors. This commit fixes all the build errors by - including header files - providing function definition - adding guards for typedef statements and functions Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-13 19:20:42 +08:00
Yanray Wang	e6afd919dd	Move TLS connection related functions to ssl_helpers.c Some functions are renamed in commit d51d285. This change moves all those functions which are used to set up a TLS connection from test_suite_ssl.function into ssl_helpers.c. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-13 19:20:42 +08:00
Yanray Wang	d577a68325	Improve code readability for test_suite_ssl.function Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-13 19:15:53 +08:00
Yanray Wang	bd29683c90	Rewrap the lines to fit code standard in test_suite_ssl.function As the typedef statements and functions are renamed in commit de3caee and commit d51d285 respectively. This commit aims to align code lines to fit code standard and improve code readability. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-13 19:15:53 +08:00
Yanray Wang	f7b62353cb	Rename the functions which are used to set up TLS connection Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-13 19:15:53 +08:00
Yanray Wang	55a6619135	Move the renamed typedef statements to ssl_helpers.h With this change, the renamed typedef statements (commit de3caee) are moved from test_suite_ssl.function into ssl_helpers.h Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-13 19:15:53 +08:00
Yanray Wang	9ef0dce9e3	Rename the typedef statements which are used for TLS connection Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-13 19:15:53 +08:00
Yanray Wang	47907a4bb4	Create ssl_helpers.c to hold functions of TLS connection test_suite_ssl.function contains many functions that are used to set up a TLS connection. To reduce its file size, those functions would be moved to ssl_helpers.c under tests/src. As the start of this implementation, some necessary header files are moved in advance. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-13 19:15:53 +08:00
Dave Rodgman	756b028511	Merge pull request #7171 from daverodgman/pr5527 Fix undefined behavior in ssl_read if buf parameter is NULL	2023-03-13 10:46:29 +00:00
Jerry Yu	c5b48a6f04	Add time test with delay Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-13 15:25:44 +08:00
Przemek Stekiel	18cd6c908c	Use local macros for j-pake slient/server strings Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-12 16:59:28 +01:00
Przemek Stekiel	aa1834254e	Fix code style Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-12 16:59:28 +01:00
Przemek Stekiel	09104b8712	rework psa_pake_set_role to be consistent with requirements and adapt tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-12 16:59:28 +01:00
Przemek Stekiel	f15d335f5b	ecjpake_setup: clean up handling of errors Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-12 16:59:28 +01:00
Dave Rodgman	8e528ece74	Disable test under MBEDTLS_MEMORY_BUFFER_ALLOC_C This test allocates too much memory to work when the alternative memory allocator is used. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-12 13:30:56 +00:00
Dave Rodgman	45bed94406	Add parse failure test when MBEDTLS_RSA_C not set Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-12 10:01:02 +00:00
Dave Rodgman	651fb529f9	Make pkcs7_parse test not depend on MBEDTLS_RSA_C Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-12 10:00:44 +00:00
Dave Rodgman	4fa8590b62	Fix test dependency Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-12 09:34:08 +00:00
Dave Rodgman	f8565b3c2b	Add more PKCS #7 tests with expired cert Add test which uses an expired cert but is otherwise OK, which passes if and only if MBEDTLS_HAVE_TIME_DATE is not set. Add similar test which verifies against a different data file, which must fail regardless of MBEDTLS_HAVE_TIME_DATE. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-11 10:26:39 +00:00
Dave Rodgman	cc77fe8e52	Fix PKCS #7 tests when MBEDTLS_HAVE_TIME_DATE unset Ensure that verification of an expired cert still fails, but update the test to handle the different error code. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-11 09:46:13 +00:00
Dave Rodgman	ca43e0d0ac	Fix test file extension Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-10 13:06:01 +00:00
Dave Rodgman	f2f2dbcfd7	Add test case for PKCS7 file with zero signers The test file was created by manually modifying tests/data_files/pkcs7_data_without_cert_signed.der, using ASN.1 JavaScript decoder https://lapo.it/asn1js/ Changes made: The SignerInfos set was truncated to zero length. All the parent sequences, sets, etc were then adjusted for their new reduced length. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-10 12:52:00 +00:00
Dave Rodgman	ac447837d3	Merge pull request #7206 from xkqian/test_memory_management_in_pkcs7 Test memory management in pkcs7	2023-03-10 11:29:50 +00:00
Przemek Stekiel	f3ae020c37	Use user/peer instead role in jpake driver-wrapper tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-10 09:18:03 +01:00
Przemek Stekiel	af94c13b2c	Add tests for user/peer input getters Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-10 09:18:03 +01:00
Przemek Stekiel	0c946e9aa9	Addapt jpake tests and add cases for set_user, set_peer Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-10 09:18:03 +01:00
Gilles Peskine	4da92832b0	Merge pull request #7117 from valeriosetti/issue6862 driver-only ECDSA: enable ECDSA-based TLS 1.2 key exchanges	2023-03-09 20:49:44 +01:00
Gilles Peskine	a25203c5f9	Merge pull request #7208 from paul-elliott-arm/interruptible_sign_hash_new_verify_tests Interruptible_{sign\|verify}_hash: Add public key verification tests	2023-03-09 20:48:13 +01:00
Dave Rodgman	bf4016e5d5	Merge pull request #6567 from mprse/ecjpake-driver-dispatch	2023-03-09 19:23:05 +00:00
Przemek Stekiel	b8eaf635ba	Remove MBEDTLS_SHA256_C from PSA_WANT_ALG_JPAKE config and adapt test dependencies Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-09 12:14:26 +01:00
Valerio Setti	2f081473b6	test: fix disparities in test_suite_ssl Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-08 16:47:28 +01:00
Gabor Mezei	eb591ff94d	Add test generation for ecp_mod_p256_raw Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-03-08 14:12:20 +01:00
Gabor Mezei	ab6ac91a0a	Extract Secp256r1 from the prototype Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-03-08 14:09:50 +01:00
Valerio Setti	c0e7da55c5	test: removing remaning dependencies of PK_WRITE/PK_PARSE from test_suite_psa_crypto suites Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-08 11:03:09 +01:00
Valerio Setti	f9bc5b75f1	test: remove dependencies on PK_WRITE and PK_PARSE from test_suite_psa_crypto suites Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-08 11:03:09 +01:00
Gilles Peskine	a2fc399f57	Merge pull request #6829 from AndrzejKurek/unify-psa-errors Unify PSA to Mbed TLS error translation	2023-03-07 19:55:44 +01:00
Janos Follath	fe780a3c4b	Merge pull request #7184 from gabor-mezei-arm/6349_Secp224r1_fast_reduction Extract Secp224r1 fast reduction from the prototype	2023-03-07 10:57:58 +00:00
Przemek Stekiel	4aa99403f4	Fix configuration for accelerated jpake Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-07 10:50:09 +01:00
Xiaokang Qian	d2988adb31	Add rsa dependencies for pkcs7 corrupt signer info cases Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-03-07 08:38:58 +00:00
Xiaokang Qian	9c703d80ca	Add fuzz bad cases for signer info 1 and 2 Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-03-07 08:38:58 +00:00
Xiaokang Qian	8993a14567	Add unexpected tag cases for signer info 1 and 2 Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-03-07 08:38:58 +00:00
Xiaokang Qian	e8c696ffd1	Add invalid size test case for signer info[2](The third one) Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-03-07 08:38:58 +00:00
Xiaokang Qian	72b4bcac03	Add invalid size test case for signer info 1(the second one) Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-03-07 08:38:55 +00:00
Manuel Pégourié-Gonnard	a5ffa93e43	Merge pull request #7142 from mpg/driver-only-ecdh-starter Driver-only ECDH starter	2023-03-07 09:14:38 +01:00
Paul Elliott	8c092052bd	Add public key verification tests Add public key verification tests, and alter test intent comments to make it obvious that verify_hash_interruptible can do public keys as well as private and keypairs. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-06 17:49:14 +00:00
Manuel Pégourié-Gonnard	228a30d16c	Merge pull request #7120 from mpg/md-light Define "MD light" subset of MD	2023-03-06 11:02:19 +01:00
Dave Rodgman	4693fd9e9e	Merge pull request #7173 from daverodgman/zeroize-platform Use platform-provided secure zeroization	2023-03-06 09:16:12 +00:00
Pol Henarejos	0004a86727	Fix md test with sha3. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2023-03-04 00:22:05 +01:00
Pol Henarejos	f61d6c0a2b	Merge branch 'development' into sha3	2023-03-04 00:03:06 +01:00
Dave Rodgman	45cef61fa4	Merge branch 'development' into md-light Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-03 14:28:13 +00:00
Przemek Stekiel	5a49d3cce3	Replace mbedtls_x509_san_node with mbedtls_x509_subject_alternative_name Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-03 12:58:11 +01:00
Przemek Stekiel	8e83d3aaa9	Add tests for writting SAN to CSR Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-03 12:58:05 +01:00
Andrzej Kurek	8a045ce5e6	Unify PSA to Mbed TLS error translation Move all error translation utilities to psa_util.c. Introduce macros and functions to avoid having a local copy of the error translating function in each place. Identify overlapping errors and introduce a generic function. Provide a single macro for all error translations (unless one file needs a couple of different ones). Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-03 05:23:44 -05:00
Jerry Yu	9a12df022e	Add tests for time rountine Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-03-03 15:31:28 +08:00
Paul Elliott	ddbc6ed6cd	Enable all keys for interruptible op fail tests Due to a misunderstanding about the purpose of the test, I had limited this to ECC keys only, however this defeats the purpose of the test, and left gaps in test coverage. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-02 16:03:43 +00:00
Dave Rodgman	f4385faa6f	Merge pull request #7188 from paul-elliott-arm/interruptible_sign_hash_complete_after_start_fail Interruptible {sign\|verify} hash - Call complete() after start() failure.	2023-03-01 17:18:08 +00:00
Paul Elliott	42585f678b	Merge pull request #7176 from paul-elliott-arm/interruptible_sign_hash_verify_test_improvements Interruptible {sign\|verify} hash verification test improvements	2023-03-01 15:00:45 +00:00
Paul Elliott	ebf2e38662	Merge pull request #7177 from paul-elliott-arm/interruptible_sign_hash_improve_num_ops_testing Interruptible sign hash improve num ops testing	2023-03-01 14:59:44 +00:00
Paul Elliott	de7c31e082	Improve comment wording Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-01 14:43:52 +00:00
Przemek Stekiel	f5dcb8886a	Rework pake input getters tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-01 12:28:21 +01:00
Gilles Peskine	1eae11565d	Merge pull request #6949 from bensze01/replace_pkcs7_fuzzer_tests Replace fuzzer-generated PKCS #7 memory management tests	2023-03-01 10:46:22 +01:00
Paul Elliott	7c17308253	Add num_ops tests to sign and verify interruptible hash This is the only test usable for non-deterministic ECDSA, thus needs this code path testing as well. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-28 17:23:29 +00:00
Paul Elliott	8359c14c14	Add hash corruption test to interruptible verify test Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-28 17:23:29 +00:00
Paul Elliott	c1e0400bac	Add test to check not calling get_num_ops() Make sure that not calling get_num_ops() inbetweeen calls to complete() does not mean that ops get lost (Regression test for previous fix). Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-28 17:20:14 +00:00
Paul Elliott	9e8819f356	Move 'change max_ops' test into ops tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-28 17:20:14 +00:00
Paul Elliott	5770224ef3	Rename max ops tests to ops tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-28 17:20:14 +00:00
Gilles Peskine	7e677fa2c5	Merge pull request #6389 from gilles-peskine-arm/ecdsa-use-psa-without-pkwrite Remove pkwrite dependency in pk using PSA for ECDSA	2023-02-28 18:17:16 +01:00
Paul Elliott	587e780812	Test calling complete() after {sign\|verify}_hash_start fails Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-28 17:13:39 +00:00
Dave Rodgman	17152df58d	Merge pull request #7175 from paul-elliott-arm/interruptible_sign_hash_test_comments Interruptible sign hash test comments	2023-02-28 17:09:43 +00:00
Gilles Peskine	ebb63420cc	Merge pull request #7124 from oberon-microsystems/fix-test-output-length-on-success-only Fix test to check output length on PSA_SUCCESS only	2023-02-28 18:09:33 +01:00
Dave Rodgman	ffb4dc38c8	Merge pull request #7183 from paul-elliott-arm/interruptible_sign_hash_test_max_ops_0 Interruptible {sign\|verify} hash : Change max_ops=min tests to use a value of zero.	2023-02-28 15:56:01 +00:00
Bence Szépkúti	4a2fff6369	Fix expected error code This was overlooked during the rebase. Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>	2023-02-28 16:40:27 +01:00
Gabor Mezei	804cfd32ea	Follow the naming convention Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-02-27 16:50:09 +01:00
Paul Elliott	ac2251dad1	Merge pull request #7076 from mprse/parse_RFC822_name Add parsing of x509 RFC822 name + test	2023-02-27 14:16:13 +00:00
Paul Elliott	cd7e8bce03	Change max_ops=min tests to use zero Zero is the minimum value defined by the spec, just because the internal implementation treats zero and one as the same thing does not mean that other implementations will also do so. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-27 12:21:36 +00:00
Stephan Koch	5819d2c141	Feedback from Arm: guarantee that output_length <= output_size even on error, to reduce the risk that a missing error check escalates into a buffer overflow in the application code Signed-off-by: Stephan Koch <koch@oberon.ch>	2023-02-27 11:49:13 +01:00
oberon-sk	10c0f770ce	asymmetric_encrypt: check output length only if return code is PSA_SUCCESS. Signed-off-by: Stephan Koch <koch@oberon.ch>	2023-02-27 11:48:51 +01:00
Paul Elliott	c2033502f5	Give edge case tests a better name Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-26 18:47:58 +00:00
Paul Elliott	c7f6882995	Add comments to each test case to show intent Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-26 18:47:58 +00:00
Dave Rodgman	21dfce7a5c	Add tests Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-02-25 17:10:38 +00:00
Dave Rodgman	a4e8fb0041	Add tests Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-02-24 15:57:30 +00:00
Bence Szépkúti	248971348b	Replace fuzzer-generated PKCS7 regression tests This commit adds well-formed reproducers for the memory management issues fixed in the following commits: `290f01b3f5` `e7f8c616d0` `f7641544ea` Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>	2023-02-24 15:31:03 +01:00
Przemek Stekiel	6f2d1f419a	Further pake tests optimizations Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-24 10:22:47 +01:00
Przemek Stekiel	083745e097	Fix code style Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-23 17:28:23 +01:00
Przemek Stekiel	d59d2a4dee	Optimize pake tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-23 07:30:40 +01:00
David Horstmann	e91cbcfb2c	Add negative test cases for OID parsing Signed-off-by: David Horstmann <david.horstmann@arm.com>	2023-02-22 18:27:59 +00:00
David Horstmann	0f852c9277	Add tests for OID parsing from string Signed-off-by: David Horstmann <david.horstmann@arm.com>	2023-02-22 18:27:58 +00:00
Janos Follath	406b9172ad	Merge pull request #7044 from minosgalanakis/bignum/6342_add_named_moduli_setup Bignum: Add named moduli setup	2023-02-22 12:14:33 +00:00
Przemek Stekiel	80a8849903	Adapt conditional compilation flags for jpake alg Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-22 11:30:32 +01:00
Przemek Stekiel	3e784d8981	PSA crypto pake: call abort on each failure Adapt driver hook counters in pake driver test. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-22 11:30:32 +01:00
Przemek Stekiel	f62b3bb087	Optimization of pake core functions Adapt pake test (passing NULL buffers is not allowed). Passing the null buffer to psa_pake_output results in a hard fault. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-22 11:30:32 +01:00
Przemek Stekiel	dde6a910bb	Optimize out psa_pake_computation_stage_t Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-22 11:30:32 +01:00
Przemek Stekiel	ca8d2b2589	Add get-data functions for inputs + tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-22 11:30:32 +01:00
Przemek Stekiel	7b730175b3	Simplify psa_pake_computation_stage_s structure Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-22 11:30:32 +01:00
Przemek Stekiel	9a5b812aa8	Cleanup the code Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-22 11:30:31 +01:00
Przemek Stekiel	fcd70e250f	Adapt pake driver wrapper tests for the new design Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-22 11:30:31 +01:00
Przemek Stekiel	e12ed36a6c	Move JPAKE state machine logic from driver to core - Add `alg` and `computation_stage` to `psa_pake_operation_s`. Now when logic is moved to core information about `alg` is required. `computation_stage` is a structure that provides a union of computation stages for pake algorithms. - Move the jpake operation logic from driver to core. This requires changing driver entry points for `psa_pake_output`/`psa_pake_input` functions and adding a `computation_stage` parameter. I'm not sure if this solution is correct. Now the driver can check the current computation stage and perform some action. For jpake drivers `step` parameter is now not used, but I think it needs to stay as it might be needed for other pake algorithms. - Removed test that seems to be redundant as we can't be sure that operation is aborted after failure. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-22 11:30:31 +01:00
Przemek Stekiel	3f9dbac83f	Adapt ake driver tests to the new design Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-22 11:30:31 +01:00
Przemek Stekiel	c6b954686b	Adapt test_suite_psa_crypto_pake test for the new design Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-22 11:30:31 +01:00
Przemek Stekiel	7658a0768b	Add pake driver wrapper tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com> Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-22 11:25:30 +01:00
Gilles Peskine	ffb92b0789	Merge pull request #7105 from davidhorstmann-arm/fix-oid-printing-bug Fix bugs in OID to string conversion	2023-02-21 23:16:44 +01:00
Paul Elliott	48c591cb56	Fix warning with GCC 12 Fix warning about variable being used uninitialised. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-21 16:31:56 +00:00
Gilles Peskine	250a5ac4cb	Merge pull request #7095 from paul-elliott-arm/interruptible_sign_hash_codestyle Implement PSA interruptible sign/verify hash	2023-02-21 15:13:34 +01:00
Manuel Pégourié-Gonnard	d1c001aff7	Fix some dependencies in test_suite_psa_crypto Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-02-21 13:37:17 +01:00
Przemek Stekiel	a006f8c17b	Adapt dependencies for parsing rfc822Name test Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-21 13:36:56 +01:00
Dave Rodgman	e42cedf256	Merge pull request #7077 from daverodgman/pkcs7-fixes-dm-rebased Pkcs7 fixes	2023-02-21 11:53:30 +00:00
Gabor Mezei	f65a059a64	Add test generation for ecp_mod_p224_raw Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-02-21 11:40:27 +01:00
Gabor Mezei	66f88a9d22	Extract Secp224r1 from the prototype Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-02-21 11:32:29 +01:00
David Horstmann	a4fad2ba67	Correct error code in test_suite_x509parse.data Signed-off-by: David Horstmann <david.horstmann@arm.com>	2023-02-20 14:57:47 +00:00
Dave Rodgman	716163e824	Improve allocation bounds in testing Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-02-20 14:46:51 +00:00
David Horstmann	5b5a0b618c	Change error codes to more appropriate codes The more precise error codes are borrowed from the ASN1 module. Signed-off-by: David Horstmann <david.horstmann@arm.com>	2023-02-20 14:24:12 +00:00
Przemek Stekiel	5b9e4168cf	Add rfc822Name support in mbedtls_x509_info_subject_alt_name + adapt test Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-20 15:09:50 +01:00
Przemek Stekiel	608e3efc47	Add test for parsing SAN: rfc822Name Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-02-20 15:09:50 +01:00
Minos Galanakis	a30afe2216	ecp_curves: Minor refactoring. This patch introduces the following changes: * Documentation for `mbedtls_ecp_modulus_setup()` moved to `ecp_invasive.h`. * Added invalid modulus selector `MBEDTLS_ECP_MOD_NONE`. * Adjusted negative tests to use invalid selectors. * Reworded documentation. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-02-20 13:53:06 +00:00
Minos Galanakis	36f7c0e69b	test_suite_ecp: Added .data for `ecp_setup_test()` Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-02-20 13:51:49 +00:00
Minos Galanakis	9a1d02d738	test_suite_ecp: Added test for `mbedtls_ecp_modulus_setup()` Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-02-20 13:51:48 +00:00
Janos Follath	ec718afb41	Merge pull request #7051 from gabor-mezei-arm/6376_Secp521r1_fast_reduction Add a raw entry point to Secp521r1 fast reduction	2023-02-20 13:03:12 +00:00
Manuel Pégourié-Gonnard	718eb4f190	Merge pull request #7025 from AndrzejKurek/uri_san Add the uniformResourceIdentifier subtype for the subjectAltName	2023-02-20 11:29:59 +01:00
Paul Elliott	f8e5b56ad8	Fix get_num_ops internal code. Previously calling get_num_ops more than once would have ended up with ops getting double counted, and not calling inbetween completes would have ended up with ops getting missed. Fix this by moving this to where the work is actually done, and add tests for double calls to get_num_ops(). Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-19 18:55:10 +00:00
Manuel Pégourié-Gonnard	b9b630d628	Define "light" subset of MD See docs/architecture/psa-migration/md-cipher-dispatch.md Regarding testing, the no_md component was never very useful, as that's not something people are likely to want to do: it was mostly useful as executable documentation of what depends on MD. It's going to be even less useful when more and more modules auto-enable MD_LIGHT or even MD_C. So, recycle it to test the build with only MD_LIGHT, which is something that might happen in practice, and is necessary to ensure that the division is consistent. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-02-16 22:30:06 +01:00
Manuel Pégourié-Gonnard	ba2412fd21	Remove internal function md_process() It was already marked as internal use only, and no longer used internally. Also, it won't work when we dispatch to PSA. Remove it before the MD_LIGHT split to avoid a corner case: it's technically a hashing function, no HMAC or extra metadata, but we still don't want it in MD_LIGHT really. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-02-16 18:44:46 +01:00
Dave Rodgman	d652dce9ea	Add failing test case (invalid signature) for zero-length data Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-02-16 16:39:34 +00:00
Dave Rodgman	c5874db5b0	Add test-case for signature over zero-length data Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-02-16 16:14:46 +00:00
Paul Elliott	0af1b5367b	Remove some abbrevations from test descriptions. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-16 12:15:39 +00:00
Paul Elliott	96b89b208a	Add comment to indicate non-PSA spec assertion. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-16 12:15:39 +00:00
Paul Elliott	f1743e2440	Add verify call to max ops tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-16 12:15:39 +00:00
Paul Elliott	c86d45e8a1	Remove spurious incorrect comment Comment originated from original version of this code, and the newer comment which was added when it was pulled into a seperate function covers all cases. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	efebad0d67	Run extra complete in failure tests regardless. We do not need to expect to fail, running another complete in either sign or verify after successful completion should also return BAD_STATE. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	01885fa5e5	Fix include guards on auxiliary test function. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	a4cb909fcd	Add max ops tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	76d671ad73	Split state tests into two functions Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	b830b35fb1	Shorten test descriptions. Also mark some tests as being deterministic ECDSA where this was lacking. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	1243f93cca	Fix build fails with non ECDSA / restartable builds Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	6f60037589	Move {min\|max}_complete choice logic into function Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	c9774411d4	Ensure that operation is put into error state if error occurs If an error occurs, calling any function on the same operation should return PSA_ERROR_BAD_STATE, and we were not honouring that for all errors. Add extra failure tests to try and ratify this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	f9c91a7fb5	Store the hash, rather than the pointer For sign and verify, the pointer passed in to the hash is not guaranteed to remain valid inbetween calls, thus we need to store the hash in the operation. Added a test to ensure this is the case. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	0e9d6bd3f8	Replace MBEDTLS_ECP_DP_SECP384R1_ENABLED With more appropriate PSA_WANT_ECC_SECP_R1_384 Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	813f9cdcbb	Non ECDSA algorithms should return not supported Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	ab7c5c8550	Change incorrect define for MAX_OPS_UNLIMITED Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	cb23311bd0	Fix incorrect test dependencies part 2 Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	c4e2be86ef	Fix incorrect test dependancies Test for not having determnistic ECDSA was also being run when no ECDSA, and this fails earlier. Fixed this and added a specific test for no ECDSA. Also fixed (swapped) incorrect test descriptions. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	62dfb95993	Fix broken negative test Test for unsupported deterministic ECDSA was originally passing due to incorrect code, fixing the code unfortunately broke the test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	97ac7d9090	Calculate min/max completes rather than passing in to test Only 2 options were really possible anyway - complete in 1 op, or somewhere between 2 and max ops. Anything else we cannot test due to implementation specifics. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	334d726d40	Ensure ops are tested on successful 'fail' tests Make sure the number of ops is tested in the interruptible failure tests, should they get through the interruptible loop part. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	edfc883568	Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	59ad9457b6	Add {sign/verify}_hash_abort_internal Ensure that num_ops is cleared when manual abort is called, but obviously not when an operation just completes, and test this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	20a360679b	Add State tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	0c68335a42	Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	4cec2f60dc	Add interruptible to psa_op_fail tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	9100797cb3	Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Paul Elliott	712d512007	Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-02-15 23:34:29 +00:00
Gabor Mezei	555b1f7e44	Add check for test Check the bit length of the output of ecp_mod_p521_raw. Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-02-15 18:19:09 +01:00
Gabor Mezei	cf228706cd	Restrict input parameter size for ecp_mod_p521_raw The imput mpi parameter must have twice as many limbs as the modulus. Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-02-15 18:19:08 +01:00
Gabor Mezei	b62ad5d569	Rename function to follow naming convention Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-02-15 18:13:48 +01:00
Gabor Mezei	d8f67b975b	Add test generation for ecp_mod_p521_raw Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-02-15 18:13:48 +01:00
Gilles Peskine	e2a9f86755	Merge pull request #6971 from gabor-mezei-arm/6026_Secp192r1_fast_reduction Extract Secp192r1 fast reduction from the prototype	2023-02-15 16:22:36 +01:00
David Horstmann	895eb7c9b5	Add testcases for overlong encoding of OIDs Signed-off-by: David Horstmann <david.horstmann@arm.com>	2023-02-15 12:09:41 +00:00
David Horstmann	f01de145bd	Add tests for mbedtls_oid_get_numeric_string() Signed-off-by: David Horstmann <david.horstmann@arm.com>	2023-02-15 11:45:51 +00:00
Gilles Peskine	c5e2a4fe67	Merge pull request #6937 from valeriosetti/issue6886 Add test for PK parsing of keys using compressed points	2023-02-14 19:54:29 +01:00
Andrzej Kurek	570a0f808b	Move to DER certificates for new x509 tests Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-02-14 05:52:49 -05:00
Dave Rodgman	319a5675db	Merge pull request #7084 from daverodgman/sizemax-uintmax Assume SIZE_MAX >= INT_MAX, UINT_MAX	2023-02-14 10:06:22 +00:00
Andrzej Kurek	4077372b98	Fix SHA requirement for SAN URI tests Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-02-13 10:18:17 -05:00
Andrzej Kurek	7a05fab716	Added the uniformResourceIdentifier subtype for the subjectAltName. Co-authored-by: Hannes Tschofenig <hannes.tschofenig@arm.com> Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-02-13 10:03:07 -05:00
Valerio Setti	1b08d421a7	test: fix: replace CAN_ECDSA_SOME with CAN_ECDSA_SIGN+CAN_ECDSA_VERIFY when both are needed Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-02-13 15:35:37 +01:00
Valerio Setti	16f02e0196	test: adjust include after PK_CAN_ECDSA_SOME was moved Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-02-13 15:35:37 +01:00
Valerio Setti	d928aeb9ac	test_suite_ssl: use new macros for ECDSA capabilities Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-02-13 15:35:37 +01:00
Valerio Setti	ed02bb1f95	test_suite_debug: replace ECDSA_C with new ECDSA macros Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-02-13 15:35:37 +01:00
Manuel Pégourié-Gonnard	d3d8c852a0	Merge pull request #6997 from valeriosetti/issue6858 driver-only ECDSA: get testing parity in X.509	2023-02-13 15:30:06 +01:00
Gabor Mezei	23d4b8baee	Add check for test Check the bit length of the output of p192_raw. Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-02-13 14:13:33 +01:00
Valerio Setti	178b5bdddf	pk: move MBEDTLS_PK_CAN_ECDSA_SOME macro to pk.h and fix tests Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-02-13 11:15:06 +01:00
Valerio Setti	a119cb64ef	test: remove redundant ECDSA_C dependencies from test_suite_x509parse.data Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-02-13 09:54:49 +01:00
Manuel Pégourié-Gonnard	daa65956c3	Merge pull request #7046 from mpg/cleanup-md-tests Clean up MD tests	2023-02-13 09:51:28 +01:00
Dave Rodgman	641288bc1e	Restore test guards Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-02-11 22:02:04 +00:00
Dave Rodgman	91e832168f	Restore more test guards Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-02-11 20:07:43 +00:00
Dave Rodgman	a476363042	Restore more test guards Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-02-11 18:36:23 +00:00
Dave Rodgman	d26d7445b8	Restore guards on a couple of tests These tests check for failures, but can only fail where SIZE_MAX exceeds some limit (UINT_MAX or UINT32_MAX) and do not fail in this way otherwise - so guards are needed. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-02-11 17:22:03 +00:00
Dave Rodgman	4a5c9ee7f2	Remove redundant SIZE_MAX guards Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-02-10 16:03:44 +00:00
Valerio Setti	25fd51f4af	test: add missing include in test_suite_x509parse Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-02-10 15:21:40 +01:00
Gilles Peskine	b8531c4b0b	Merge pull request #6882 from AndrzejKurek/x509_san_parsing_testing-dev X.509: Fix bug in SAN parsing and enhance negative testing	2023-02-10 15:05:32 +01:00
Dave Rodgman	a22749e749	Merge pull request #6816 from nick-child-ibm/pkcs7_coverage Pkcs7 coverage	2023-02-10 12:55:29 +00:00
Manuel Pégourié-Gonnard	2189fda914	Use TEST_EQUAL in one more place in test_suite_md The only remaining occurrences of TEST_ASSERT are now pointer comparison, to NULL or to a reference md_info. That is, the output of the following command is empty: grep TEST_ASSERT tests/suites/test_suite_md.function \| egrep -v '= NULL\|== md_info\|md_info ==' Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-02-09 09:18:22 +01:00
Manuel Pégourié-Gonnard	a9a1b21ca9	Use ASSERT_COMPARE in test_suite_md Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-02-09 09:15:50 +01:00
Valerio Setti	00a6c6fcbe	test: fix for using proper sign/verify macros Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-02-08 13:52:31 +01:00
Valerio Setti	fcc6933a53	test: fix disparities in x509parse and x509write suites Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-02-08 13:52:31 +01:00
Valerio Setti	683a432a7f	fix code style Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-02-08 13:39:10 +01:00
Valerio Setti	a1e3e3a28f	test: pk: keep PK_WRITE_C only in RSA tests Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-02-08 13:39:10 +01:00
Gilles Peskine	be9e2a1634	The pk_psa_sign test function needs pk_write Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-02-08 13:39:10 +01:00
Pol Henarejos	b3b220cbf8	Correct style. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2023-02-08 12:52:18 +01:00
Nick Child	3dafc6c3b3	pkcs7: Drop support for signature in contentInfo of signed data The contentInfo field of PKCS7 Signed Data structures can optionally contain the content of the signature. Per RFC 2315 it can also contain any of the PKCS7 data types. Add test and comments making it clear that the current implementation only supports the DATA content type and the data must be empty. Return codes should be clear whether content was invalid or unsupported. Identification and fix provided by: - Demi Marie Obenour <demiobenour@gmail.com> - Dave Rodgman <dave.rodgman@arm.com> Signed-off-by: Nick Child <nick.child@ibm.com>	2023-02-07 20:04:52 +00:00
Pol Henarejos	a391a9e472	Bad merge. These tests are not used. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2023-02-07 20:05:31 +01:00
Pol Henarejos	4e747337ee	Merge branch 'development' into sha3 Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2023-02-07 19:55:31 +01:00
Andrzej Kurek	7dcdc132d5	Change SHA256_C to HAS_ALG_SHA256_VIA[..] in x509 tests This way these tests won't be skipped in a configuration with a driver. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-02-07 05:24:34 -05:00
Hanno Becker	5d82c3b99c	X.509: Improve negative testing for SubjectAltName parsing Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-02-07 05:10:29 -05:00
Hanno Becker	db305ff42e	X.509: Improve negative testing for SubjectAltName parsing Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-02-07 05:10:29 -05:00
Valerio Setti	4836374088	test: ECDSA driver only: fixing disparities in tests Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-02-07 08:02:23 +01:00
Manuel Pégourié-Gonnard	cced3521cb	Fix style in test_suite_md.function Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-02-06 12:37:02 +01:00
Nick Child	50886c25f3	pkcs7/test: Add test for parsing a disabled algorithm If the digest algorithm is not compiled into Mbedtls, then any pkcs7 structure which uses this algorithm should fail with MBEDTLS_ERR_PKCS7_INVALID_ALG. Add test for this case. Signed-off-by: Nick Child <nick.child@ibm.com>	2023-02-03 20:33:12 +00:00
Gilles Peskine	0cfb08ddf1	Merge pull request #6922 from mprse/csr_v3 Parsing v3 extensions from a CSR - v.2	2023-02-03 16:41:11 +01:00
Manuel Pégourié-Gonnard	f5e2331f8a	Use TEST_EQUAL when applicable in test_suite_md Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-02-03 12:51:03 +01:00
Manuel Pégourié-Gonnard	b707bedca4	Avoid unnecessary copy in test_suite_md Also avoids buffer with an arbitrary size while at it. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-02-03 12:32:41 +01:00
Manuel Pégourié-Gonnard	4ba98f5350	Use MBEDTLS_MD_MAX_SIZE in test_suite_md Not only was the size of 100 arbitrary, it's also not great for testing: using MBEDTLS_MD_MAX_SIZE will get us an ASan error if it ever is too small. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-02-03 12:25:53 +01:00
Manuel Pégourié-Gonnard	c90514ee11	Use MD type not string to in MD test data For all test that want to use a hash, identify it by its numerical type rather than a string. The motivation is that when we isolate the MD-light subset from the larger MD, it won't have support for string identifiers. Do the change for all tests, not just those that will exercise functions in MD-light, for the sake of uniformity and because numerical identifiers just feel better. Note: mbedtls_md_info_from_string is still tested in md_info(). Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-02-03 12:13:10 +01:00
Manuel Pégourié-Gonnard	bae8d2ae13	Merge pull request #7028 from daverodgman/sizeof-brackets Fix use of sizeof without brackets	2023-02-03 10:29:56 +01:00
Manuel Pégourié-Gonnard	d56def5c30	Merge pull request #6946 from valeriosetti/issue6856 driver-only ECDSA: fix testing disparities in ecp, random, se_driver_hal	2023-02-03 08:51:04 +01:00
Dave Rodgman	6dd757a8ba	Fix use of sizeof without brackets Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-02-02 12:40:50 +00:00
Gabor Mezei	2038ce976e	Rename function to follow naming convention Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-01-31 14:40:05 +01:00
Gabor Mezei	51ec06aa51	Add test function for ecp_mod_p192_raw Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-01-31 14:40:05 +01:00
Gilles Peskine	470f10cfc5	Merge pull request #6941 from gabor-mezei-arm/6375_quasi-reduction_function Add function to fix quasi-reduction	2023-01-31 11:25:25 +01:00
Nick Child	a0c15d0fec	pkcs7/test: Add test cases for pkcs7 with 3 signers Previously, a loop in pkcs7_get_signers_info_set was not getting covered by tests. This was because when there are two or less signers, the loop will not execute. Therefore, add new data files for another signer and use three signers to generate a new pkcs7 DER file. Add a test case to make sure that verification is still successfula and use the test script to create ASN1 errors throoughout the stucture: ./generate_pkcs7_tests.py ../data_files/pkcs7_data_3_signed.der This results in the loop being executed. Signed-off-by: Nick Child <nick.child@ibm.com>	2023-01-30 19:30:38 +00:00
Nick Child	951f700909	pkcs7/test: Allocate hash dynamically Rather than using a static array, use the md_info size to allocate dynamically. Signed-off-by: Nick Child <nick.child@ibm.com>	2023-01-30 16:45:04 +00:00
Nick Child	c547447deb	pkcs7/test: Let verify take dynamic number of certs Previously there were two test functions for verify. One allowed for the verification of one certificate and the other allowed for verification of two certificates. Merge these two functions into one function that can take any number of certificates as an argument. Signed-off-by: Nick Child <nick.child@ibm.com>	2023-01-30 16:45:04 +00:00
Nick Child	ec81709516	pkcs7: Ensure all data in asn1 structure is accounted for Several PKCS7 invalid ASN1 Tests were failing due to extra data bytes or incorrect content lengths going unnoticed. Make the parser aware of possible malformed ASN1 data. Signed-off-by: Nick Child <nick.child@ibm.com>	2023-01-30 16:44:58 +00:00
Nick Child	4983ddf747	test/pkcs7: Add more tests for better coverage Add test calls to raw asn1 data with slight syntatical errors Increases %branches covered from 70.4% to 87.7%. Add a script which serves as documentation for how these new test cases were generated: ./generate_pkcs7_tests.py ../data_files/pkcs7_data_cert_signed_sha256.der ./generate_pkcs7_tests.py ../data_files/pkcs7_data_multiple_signed.der Signed-off-by: Nick Child <nick.child@ibm.com>	2023-01-30 15:55:44 +00:00
Nick Child	b781770b3e	test/pkcs7: Add helper function In the future, tests will be added which take in a char buffer and buflen. Rather than duplicate code, have tests which read from file and from buffer use the same helper function Signed-off-by: Nick Child <nick.child@ibm.com>	2023-01-30 15:55:44 +00:00
Nick Child	e8a811650b	test/pkcs7: Add test for expired cert PKCS7 verification should fail if the signing cert is expired. Add test case for this condition. Signed-off-by: Nick Child <nick.child@ibm.com>	2023-01-30 15:55:44 +00:00
Nick Child	ff2746fa56	test/pkcs7: Add test for wrong hash alg Add a test to verify a hash which uses a different digest algorithm than the one specified in the pkcs7. Signed-off-by: Nick Child <nick.child@ibm.com>	2023-01-30 15:55:44 +00:00
Manuel Pégourié-Gonnard	aae61257d1	Merge pull request #6883 from valeriosetti/issue6843 Improve X.509 cert writing serial number management	2023-01-30 13:08:57 +01:00
Valerio Setti	18b9b035ad	test: add test for a full length serial of 0xFF Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-01-27 11:47:57 +01:00
Valerio Setti	a87f839113	test: improve error handling in x509_set_serial_check() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-01-27 11:29:42 +01:00
Manuel Pégourié-Gonnard	169d9e6eb4	Merge pull request #6802 from gilles-peskine-arm/test_suite_psa_crypto_metadata-20221215 Add metadata tests for CCM* and TLS1.2-ECJPAKE-to-PMS	2023-01-27 10:05:00 +01:00
Przemek Stekiel	59f4a18b6f	Fix test dependency SHA1 -> SHA256 Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-01-27 07:14:14 +01:00
Valerio Setti	af4815c6a4	x509: replace/fix name of new function for setting serial Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-01-26 17:43:09 +01:00
Valerio Setti	fa49a8ecdb	test: fix complementary domain testing for !MBEDTLS_ECP_C Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-01-26 17:16:38 +01:00
Przemek Stekiel	d7992df529	Use input files to parse CSR instead of bytes Additionally fix the generation of test_csr_v3_all_malformed_extension_ns_cert_bitstream_tag.csr.der which was incorectly malformed. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-01-25 16:19:50 +01:00
Valerio Setti	de7bb5b361	test: add failing check for secp224r1 with compressed format The test is expected to fail, so we verify that this is really not suppported Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-01-25 14:02:03 +01:00
Valerio Setti	7e57920511	test: driver-only: fix disparities in psa_crypto_se_driver_hal Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-01-25 11:30:46 +01:00
Valerio Setti	4682948c1e	test: driver-only: fix disparities in ECP Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-01-25 11:30:31 +01:00
Przemek Stekiel	94e21e153f	Skip unsupported extensions Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-01-25 11:08:32 +01:00
Przemek Stekiel	92cce3fe6d	Use extension .csr.der to indicate format Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-01-25 10:33:26 +01:00
Przemek Stekiel	f0e25c72d9	Add missing dependencies for negative tests, remove PEM dependency Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-01-25 09:38:01 +01:00
Gabor Mezei	86c90fca3e	Rename variables to follow the naming convention Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-01-24 14:21:10 +01:00
Gabor Mezei	ee2aff2093	Add check for test input The input for fix_quasi_reduction must be in range 0 <= X < 2N. Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-01-24 14:21:05 +01:00
Przemek Stekiel	160968586b	Add negative test cases and use DER format for CSRs Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-01-24 10:57:19 +01:00
Przemek Stekiel	3f948c96e2	Fix typo in test dependencies Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-01-24 10:57:19 +01:00
Przemek Stekiel	685d472db3	Adapt expected output of existing tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-01-24 10:57:19 +01:00
Przemek Stekiel	46a4a4987e	Add tests to very parsing of CSR v3 extensions Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-01-24 10:57:19 +01:00
Manuel Pégourié-Gonnard	4455fd2449	Merge pull request #6531 from AndrzejKurek/depends-py-kex-fixes Depends.py - add exclusive domain tests to key exchange testing	2023-01-24 09:32:05 +01:00
Gabor Mezei	9073f7dd3b	Remove unneeded check The fix_quasi_reduction function changed to static so checking the invalid arguments are not needed anymore. Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-01-23 19:05:37 +01:00
Gabor Mezei	e81a2b85c9	Change the fix_quasi_reduction function to static Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-01-23 18:58:20 +01:00
Gabor Mezei	aaa1d2a276	Move the quasi reduction fixing function to bignum_mod_raw Rename the function to 'fix_quasi_reduction' to better suite its functionality. Also changed the name prefix to suite for the new module. Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-01-23 18:55:57 +01:00
Janos Follath	3e0769b598	Merge pull request #6832 from daverodgman/fast-unaligned-ct Improve efficiency of some constant time functions	2023-01-23 10:55:35 +00:00
Dave Rodgman	58c721e894	Add TEST_CF_SECRET to mbedtls_ct_memcpy_if_eq test Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-01-21 11:13:55 +00:00
Dave Rodgman	22b0d1adbf	Test memcmp with differences starting after the first byte Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-01-21 10:29:00 +00:00
Dave Rodgman	95ec58cc12	Remove not-needed stdio include from tests Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-01-20 14:04:48 +00:00
Dave Rodgman	39188c0a2a	Add unit tests for mbedtls_ct_memcmp and mbedtls_ct_memcpy_if_eq Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-01-20 14:04:48 +00:00
Dave Rodgman	dc3b1540cd	Fix test guards Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-01-20 11:39:00 +00:00
Andrzej Kurek	723b8779f9	Add missing key exchange requirements to test_suite_ssl Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-01-19 18:31:00 -05:00
Andrzej Kurek	a86cef32cf	Add missing KEX DHE-RSA requirement for one ssl test This specific cipher is used to test record splitting. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-01-19 18:27:57 -05:00
Andrzej Kurek	9113df8c8f	Add missing RSA-type dependencies in test_suite_ssl These tests are not run in development because of the overlapping !TLS_1_3 requirement and usage of full config. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-01-19 18:26:31 -05:00
Gilles Peskine	2566679eb8	Add metadata test case for PSA_ALG_TLS12_ECJPAKE_TO_PMS Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-01-19 12:11:20 +01:00
Gilles Peskine	4db02f2324	Add SECRET input validation test cases for PSA_WANT_ALG_TLS12_ECJPAKE_TO_PMS Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-01-19 12:11:19 +01:00
Gilles Peskine	763ffdd2a6	Add metadata test case for PSA_ALG_CCM_STAR_NO_TAG The following shell command (requiring GNU grep) looks for algorithms and key types, as well as IS and GET macros, that lack metadata tests: ``` for x in $(grep -Pho '(?<=^#define )PSA_(ALG\|KEY_TYPE)_(?!CATEGORY_\|NONE\b\|\w+_(BASE\|FLAG\|MASK\|CASE))\w+' include/psa/crypto_values.h include/psa/crypto_extra.h); do grep -qw $x tests/suites/test_suite_psa_crypto_metadata.* \|\| echo $x; done ``` This may have false negatives: it only checks that the constants are mentioned at least once, not that the tests are written correctly. This has false positives: * Types and algorithms that Mbed TLS does not support. * PSA_ALG_ECDSA_IS_DETERMINISTIC, PSA_ALG_DSA_IS_DETERMINISTIC are peculiar auxiliary macros that only apply to very specific algorithms and aren't tested like the other IS macros. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-01-19 12:11:19 +01:00
Gilles Peskine	bba2630549	Add ECJPAKE secret input types to psa/crypto_config.h Add PSA_WANT_KEY_TYPE_PASSWORD and PSA_WANT_KEY_TYPE_PASSWORD_HASH to psa/crypto_config.h, since the types PSA_KEY_TYPE_PASSWORD and PSA_KEY_TYPE_PASSWORD_HASH are used by ECJPAKE. The two key types are always enabled, like PSA_KEY_TYPE_DERIVE. Add the key types to the metadata test suite as well. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-01-19 12:11:19 +01:00
Andrzej Kurek	714ae6551e	Add missing key exchange requirements to test_suite_ssl Some of the tests use mbedtls_test_cli_key_rsa_der and mbedtls_test_cli_crt_rsa_der, and these can be used with specific ciphersuites. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-01-17 10:38:11 -05:00
Gabor Mezei	a38db2a55b	Add missing inlcude Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-01-17 16:34:49 +01:00
Gabor Mezei	65fc9f78d4	Add tests for ecp quasi-reduction Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-01-17 13:16:46 +01:00
Valerio Setti	c60611b986	test: check pkparse with compressed ec Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-01-16 16:27:11 +01:00
Valerio Setti	856cec45eb	test: x509: add more tests for checking certificate serial - added 2 new certificates: 1 for testing a serial which is full lenght and another one for a serial which starts with 0x80 - added also proper Makefile and openssl configuration file to generate these 2 new certificates Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2023-01-12 17:01:45 +01:00
Valerio Setti	b8dc18f3b6	test: fix: remove invalid comment Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2023-01-12 17:01:44 +01:00
Valerio Setti	ea19d2db73	changelog: fixed typos Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2023-01-12 17:01:44 +01:00
Valerio Setti	aad8dbd38d	test: fix tests for x509write_crt_set_serial(_new) Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2023-01-12 17:01:44 +01:00
Valerio Setti	5d164c4e23	fix: add missing deprecation guards Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2023-01-12 17:01:44 +01:00
Valerio Setti	da0afcc2fb	x509: remove direct dependency from BIGNUM_C Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2023-01-12 17:01:44 +01:00
Gilles Peskine	449bd8303e	Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-01-11 14:50:10 +01:00
Manuel Pégourié-Gonnard	28d4d43416	Merge pull request #6863 from valeriosetti/issue6830 Remove uses of mbedtls_ecp_curve_info in TLS (with USE_PSA)	2023-01-10 10:01:17 +01:00
Valerio Setti	2c12185b88	test: fix dependencies on function and data files Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2023-01-09 18:00:39 +01:00
Valerio Setti	1e868ccbac	fix several typos and extra blank spaces Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2023-01-09 17:59:46 +01:00
Valerio Setti	67419f0e11	tls: fix + save code size when DEBUG_C is not enabled Some PSA curves' symbols (PSA_WANT_) were not matching the corresponding MBEDTLS_ECP_DP_. This was fixed together with the removal of extra code when DEBUG_C is not enabled. Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2023-01-04 17:36:00 +01:00
Manuel Pégourié-Gonnard	9502b56192	Fix test function derive_key_exercise() mbedtls_test_psa_setup_key_derivation_wrap() returns 1 for success, 0 for error, so the test here was wrong. This is just a hotfix in order to avoid a testing gap. Larger issues not addressed here: - I don't think we should just exit and mark the test as passed; if we're not doing the actual testing this should be marked as SKIP. - Returning 1 for success and 0 for failure is a violation of our documented coding guidelines. We're also supposed to test with == 0 or != 0. Having consistent conventions is supposed to help avoid errors like this. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-01-04 13:16:53 +01:00
Valerio Setti	73260b6e65	test: extend test_suite_ssl for testing new functions Signed-off-by: Valerio Setti <vsetti@baylibre.com>	2023-01-03 16:05:02 +01:00
Manuel Pégourié-Gonnard	7a389ddc84	Merge pull request #6784 from valeriosetti/issue6702 Make SHA224_C/SHA384_C independent from SHA256_C/SHA512_C	2023-01-03 09:36:58 +01:00
Janos Follath	b4b0bb737d	Merge pull request #5907 from mpg/use-psa-rsa-pss Use PSA more often in `pk_verify_ext()`	2022-12-30 12:33:50 +00:00
Manuel Pégourié-Gonnard	4511ca063a	Use PSS-signed CRL for PSS tests Otherwise, in builds without PKSC1_V15, tests that are supposed to accept the certificate will fail, because once the cert is OK they will move on to checking the CRL and will choke on its non-PSS signature. Tests that are supposed to reject the cert due to an invalid signature from the CA will not check the CRL because they don't recognize the CA as valid, so they have no reason to check the CA's CRL. This was hiding the problem until the recent commit that added a test where the cert is supposed to be accepted. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-12-30 10:13:41 +01:00

... 9 10 11 12 13 ...

5740 commits