mbedtls

mirror of https://github.com/yuzu-mirror/mbedtls.git synced 2025-12-06 07:12:32 +01:00

Author	SHA1	Message	Date
Przemek Stekiel	da4fba64b8	Further code optimizations Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-06-06 12:31:09 +02:00
Przemek Stekiel	63973ab80e	Add test for invalid IP length (+use der format in tests) Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-06-06 11:44:25 +02:00
Przemek Stekiel	63a4cdd1eb	Add test to parse ipV4 and ipV6 addresses Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-06-06 11:44:25 +02:00
Kusumit Ghoderao	f28e0f5bed	Fix code style Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-06-06 15:05:48 +05:30
Kusumit Ghoderao	c63d140436	Add negative cases for pbkdf2 output Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-06-06 15:05:45 +05:30
Kusumit Ghoderao	2b5c91b757	Add RFC tests for pbkdf2 output Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-06-06 15:05:44 +05:30
Kusumit Ghoderao	e70a8bbb08	Change derive_input test cases for implemented output_bytes The tests earlier reported PSA_ERROR_NOT_SUPPORTED as final output as the output_bytes function was not implemented for pbkdf2. The test cases have now been modified to the correct error codes. Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-06-06 15:05:43 +05:30
Kusumit Ghoderao	81797fc270	Add cost and password steps to derive_output_test function Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-06-06 15:05:42 +05:30
Manuel Pégourié-Gonnard	02b10d8266	Add missing include Fix build failures with config full Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-06-06 10:33:54 +02:00
Manuel Pégourié-Gonnard	6076f4124a	Remove hash_info.[ch] Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-06-06 10:33:54 +02:00
Manuel Pégourié-Gonnard	2d6d993662	Use MD<->PSA functions from MD light As usual, just a search-and-replace plus: 1. Removing things from hash_info.[ch] 2. Adding new auto-enable MD_LIGHT in build-info.h 3. Including md_psa.h where needed Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-06-06 10:33:54 +02:00
Manuel Pégourié-Gonnard	8857984b2f	Replace hash_info macro with MD macro Now the MD macro also accounts for PSA-only hashes. Just a search-and-replace, plus manually removing the definition in hash_info.h. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-06-06 10:33:54 +02:00
Manuel Pégourié-Gonnard	9b41eb8533	Replace hash_info_get_type with MD function Mostly a search and replace with just two manual changes: 1. Now PK and TLS need MD light, so auto-enable it. 2. Remove the old function in hash_info.[ch] Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-06-06 10:33:54 +02:00
Gilles Peskine	5c3d6e277c	Merge pull request #7575 from AndrzejKurek/URI-SAN-verification Add partial support for URI SubjectAltNames verification	2023-06-05 16:46:47 +02:00
Gilles Peskine	b47fb4cdd8	Merge pull request #7676 from valeriosetti/issue7485 PK: add support for check_pair() with "opaque" EC keys	2023-06-05 15:51:03 +02:00
Gilles Peskine	84b547b5ee	Merge pull request #7400 from AndrzejKurek/cert-write-sans Add a possibility to generate certificates with a Subject Alternative Name	2023-06-05 15:38:38 +02:00
valerio	6c666c6c8d	test: add key pair check verification for opaque EC keys Signed-off-by: valerio <valerio.setti@nordicsemi.no>	2023-06-05 11:05:40 +02:00
Manuel Pégourié-Gonnard	f37b94b5bf	Merge pull request #7533 from valeriosetti/issue7484 PK: add support for private key writing with "opaque" EC keys	2023-06-05 10:53:53 +02:00
David Horstmann	02127ab022	Allow subidentifiers of size UINT_MAX Make overflow check more accurate and add testcases Signed-off-by: David Horstmann <david.horstmann@arm.com>	2023-06-02 15:51:17 +01:00
Tom Cosgrove	9dc219ff9b	Merge pull request #7668 from tom-daubney-arm/code_size_md_light Remove certain null pointer checks when only MD_LIGHT enabled	2023-06-02 13:09:00 +01:00
Thomas Daubney	5903e9c428	Modify tests in response to review comments. Address the way the tests have been modified in response to review comments. Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>	2023-06-02 10:43:08 +01:00
Paul Elliott	805a0a2d06	Merge pull request #7591 from minosgalanakis/ecp/6028_xtract_fast_reduction_curve25519 [Bignum] Implement fast reduction curve25519	2023-06-01 17:43:35 +01:00
valerio	f6853a8751	test: optimizing test_suite_pkwrite code Signed-off-by: valerio <valerio.setti@nordicsemi.no>	2023-06-01 11:06:40 +02:00
Gilles Peskine	6a88d05f96	Merge pull request #7629 from xkqian/bignum/test_read_write_named_modulu [Bignum] Bignum/test read write named modulu	2023-06-01 10:11:10 +02:00
Manuel Pégourié-Gonnard	7b1136836c	Merge pull request #7438 from valeriosetti/issue7074 Avoid parse/unparse private ECC keys in PK with USE_PSA when !ECP_C	2023-06-01 10:06:45 +02:00
Gilles Peskine	a1b416670e	Merge pull request #7547 from silabs-Kusumit/PBKDF2_input_validation PBKDF2: Input Validation	2023-06-01 10:05:34 +02:00
Kusumit Ghoderao	b20f13a41b	Change input cost type to uint64_t and fix max iteration test case Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-31 12:51:02 +05:30
Xiaokang Qian	6824bad4fc	Change coding style to fix multi lines into one line Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-31 02:19:47 +00:00
Thomas Daubney	cd33413a55	Modify tests to suit new behaviour Prevent the null argument test from running when only MBEDTLS_MD_LIGHT is enabled. Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>	2023-05-30 16:43:32 +01:00
Jerry Yu	bffe31cbfb	change path of mbedtls_x509_crl_parse input data - Move data_files/crl-malformed-trailing-spaces.pem->data_files/parse_input/crl-malformed-trailing-spaces.pem - Move data_files/crl-idp.pem->data_files/parse_input/crl-idp.pem - Move data_files/crl-idpnc.pem->data_files/parse_input/crl-idpnc.pem Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-05-29 17:28:45 +08:00
Jerry Yu	87f647776b	change path of mbedtls_x509_csr_parse_file input data - Move data_files/test_csr_v3_all_malformed_attributes_sequence_tag.csr.der->data_files/parse_input/test_csr_v3_all_malformed_attributes_sequence_tag.csr.der - Move data_files/test_csr_v3_all_malformed_attributes_id_tag.csr.der->data_files/parse_input/test_csr_v3_all_malformed_attributes_id_tag.csr.der - Move data_files/test_csr_v3_all_malformed_attributes_extension_request.csr.der->data_files/parse_input/test_csr_v3_all_malformed_attributes_extension_request.csr.der - Move data_files/test_csr_v3_all_malformed_attributes_extension_request_set_tag.csr.der->data_files/parse_input/test_csr_v3_all_malformed_attributes_extension_request_set_tag.csr.der - Move data_files/test_csr_v3_all_malformed_attributes_extension_request_sequence_tag.csr.der->data_files/parse_input/test_csr_v3_all_malformed_attributes_extension_request_sequence_tag.csr.der - Move data_files/test_csr_v3_all_malformed_attributes_len1.csr.der->data_files/parse_input/test_csr_v3_all_malformed_attributes_len1.csr.der - Move data_files/test_csr_v3_all_malformed_attributes_len2.csr.der->data_files/parse_input/test_csr_v3_all_malformed_attributes_len2.csr.der - Move data_files/test_csr_v3_all_malformed_attributes_extension_request_sequence_len1.csr.der->data_files/parse_input/test_csr_v3_all_malformed_attributes_extension_request_sequence_len1.csr.der - Move data_files/test_csr_v3_all_malformed_attributes_extension_request_sequence_len2.csr.der->data_files/parse_input/test_csr_v3_all_malformed_attributes_extension_request_sequence_len2.csr.der - Move data_files/test_csr_v3_all_malformed_extensions_sequence_tag.csr.der->data_files/parse_input/test_csr_v3_all_malformed_extensions_sequence_tag.csr.der - Move data_files/test_csr_v3_all_malformed_extension_id_tag.csr.der->data_files/parse_input/test_csr_v3_all_malformed_extension_id_tag.csr.der - Move data_files/test_csr_v3_all_malformed_extension_data_tag.csr.der->data_files/parse_input/test_csr_v3_all_malformed_extension_data_tag.csr.der - Move data_files/test_csr_v3_all_malformed_extension_data_len1.csr.der->data_files/parse_input/test_csr_v3_all_malformed_extension_data_len1.csr.der - Move data_files/test_csr_v3_all_malformed_extension_data_len2.csr.der->data_files/parse_input/test_csr_v3_all_malformed_extension_data_len2.csr.der - Move data_files/test_csr_v3_all_malformed_extension_key_usage_bitstream_tag.csr.der->data_files/parse_input/test_csr_v3_all_malformed_extension_key_usage_bitstream_tag.csr.der - Move data_files/test_csr_v3_all_malformed_extension_subject_alt_name_sequence_tag.csr.der->data_files/parse_input/test_csr_v3_all_malformed_extension_subject_alt_name_sequence_tag.csr.der - Move data_files/test_csr_v3_all_malformed_extension_ns_cert_bitstream_tag.csr.der->data_files/parse_input/test_csr_v3_all_malformed_extension_ns_cert_bitstream_tag.csr.der - Move data_files/test_csr_v3_all_malformed_duplicated_extension.csr.der->data_files/parse_input/test_csr_v3_all_malformed_duplicated_extension.csr.der - Move data_files/test_csr_v3_all_malformed_extension_type_oid.csr.der->data_files/parse_input/test_csr_v3_all_malformed_extension_type_oid.csr.der Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-05-29 17:28:45 +08:00
Jerry Yu	a3e249cb2b	change path of mbedtls_x509_csr_info input data - Copy data_files/server1.req.md5->data_files/parse_input/server1.req.md5 - Copy data_files/server1.req.sha1->data_files/parse_input/server1.req.sha1 - Copy data_files/server1.req.sha224->data_files/parse_input/server1.req.sha224 - Copy data_files/server1.req.sha256->data_files/parse_input/server1.req.sha256 - Copy data_files/server1.req.sha384->data_files/parse_input/server1.req.sha384 - Copy data_files/server1.req.sha512->data_files/parse_input/server1.req.sha512 - Move data_files/server1.req.commas.sha256->data_files/parse_input/server1.req.commas.sha256 - Move data_files/server5.req.sha1->data_files/parse_input/server5.req.sha1 - Move data_files/server5.req.sha224->data_files/parse_input/server5.req.sha224 - Move data_files/server5.req.sha256->data_files/parse_input/server5.req.sha256 - Move data_files/server5.req.sha384->data_files/parse_input/server5.req.sha384 - Move data_files/server5.req.sha512->data_files/parse_input/server5.req.sha512 - Move data_files/server9.req.sha1->data_files/parse_input/server9.req.sha1 - Move data_files/server9.req.sha224->data_files/parse_input/server9.req.sha224 - Move data_files/server9.req.sha256->data_files/parse_input/server9.req.sha256 - Move data_files/server9.req.sha384->data_files/parse_input/server9.req.sha384 - Move data_files/server9.req.sha512->data_files/parse_input/server9.req.sha512 - Move data_files/server1-ms.req.sha256->data_files/parse_input/server1-ms.req.sha256 - Move data_files/test_csr_v3_all.csr.der->data_files/parse_input/test_csr_v3_all.csr.der - Move data_files/test_csr_v3_nsCertType.csr.der->data_files/parse_input/test_csr_v3_nsCertType.csr.der - Move data_files/test_csr_v3_subjectAltName.csr.der->data_files/parse_input/test_csr_v3_subjectAltName.csr.der - Move data_files/test_csr_v3_keyUsage.csr.der->data_files/parse_input/test_csr_v3_keyUsage.csr.der Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-05-29 17:28:44 +08:00
Jerry Yu	e8e7bbb59d	change path of x509_parse_san input data - Move data_files/server5-othername.crt->data_files/parse_input/server5-othername.crt - Move data_files/server5-nonprintable_othername.crt->data_files/parse_input/server5-nonprintable_othername.crt - Move data_files/server5-directoryname.crt.der->data_files/parse_input/server5-directoryname.crt.der - Move data_files/server5-directoryname-seq-malformed.crt.der->data_files/parse_input/server5-directoryname-seq-malformed.crt.der - Move data_files/server5-second-directoryname-oid-malformed.crt.der->data_files/parse_input/server5-second-directoryname-oid-malformed.crt.der - Copy data_files/cert_example_multi.crt->data_files/parse_input/cert_example_multi.crt - Move data_files/multiple_san.crt->data_files/parse_input/multiple_san.crt - Copy data_files/server4.crt->data_files/parse_input/server4.crt - Move data_files/server5-unsupported_othername.crt->data_files/parse_input/server5-unsupported_othername.crt - Move data_files/test_cert_rfc822name.crt.der->data_files/parse_input/test_cert_rfc822name.crt.der Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-05-29 17:28:43 +08:00
Jerry Yu	1c3cfb3ed6	change path of x509parse_crt_file input data - Move data_files/server1_pathlen_int_max.crt->data_files/parse_input/server1_pathlen_int_max.crt - Move data_files/server1_pathlen_int_max-1.crt->data_files/parse_input/server1_pathlen_int_max-1.crt - Copy data_files/server7_int-ca.crt->data_files/parse_input/server7_int-ca.crt - Move data_files/server7_pem_space.crt->data_files/parse_input/server7_pem_space.crt - Move data_files/server7_all_space.crt->data_files/parse_input/server7_all_space.crt - Move data_files/server7_trailing_space.crt->data_files/parse_input/server7_trailing_space.crt - Move data_files/cli-rsa-sha256-badalg.crt.der->data_files/parse_input/cli-rsa-sha256-badalg.crt.der Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-05-29 17:28:42 +08:00
Jerry Yu	85b0758b41	change path of x509_cert_info input data - Copy data_files/server1.crt->data_files/parse_input/server1.crt - Move data_files/server1.crt.der->data_files/parse_input/server1.crt.der - Copy data_files/server2.crt->data_files/parse_input/server2.crt - Copy data_files/server2.crt.der->data_files/parse_input/server2.crt.der - Copy data_files/test-ca.crt->data_files/parse_input/test-ca.crt - Move data_files/test-ca.crt.der->data_files/parse_input/test-ca.crt.der - Copy data_files/cert_md5.crt->data_files/parse_input/cert_md5.crt - Copy data_files/cert_sha1.crt->data_files/parse_input/cert_sha1.crt - Copy data_files/cert_sha224.crt->data_files/parse_input/cert_sha224.crt - Copy data_files/cert_sha256.crt->data_files/parse_input/cert_sha256.crt - Copy data_files/cert_sha384.crt->data_files/parse_input/cert_sha384.crt - Copy data_files/cert_sha512.crt->data_files/parse_input/cert_sha512.crt - Copy data_files/server9.crt->data_files/parse_input/server9.crt - Copy data_files/server9-sha224.crt->data_files/parse_input/server9-sha224.crt - Copy data_files/server9-sha256.crt->data_files/parse_input/server9-sha256.crt - Copy data_files/server9-sha384.crt->data_files/parse_input/server9-sha384.crt - Copy data_files/server9-sha512.crt->data_files/parse_input/server9-sha512.crt - Copy data_files/server5-sha1.crt->data_files/parse_input/server5-sha1.crt - Copy data_files/server5-sha224.crt->data_files/parse_input/server5-sha224.crt - Copy data_files/server5.crt->data_files/parse_input/server5.crt - Copy data_files/server5-sha384.crt->data_files/parse_input/server5-sha384.crt - Copy data_files/server5-sha512.crt->data_files/parse_input/server5-sha512.crt - Copy data_files/server5-othername.crt->data_files/parse_input/server5-othername.crt - Copy data_files/server5-nonprintable_othername.crt->data_files/parse_input/server5-nonprintable_othername.crt - Copy data_files/server5-directoryname.crt.der->data_files/parse_input/server5-directoryname.crt.der - Move data_files/server5-two-directorynames.crt.der->data_files/parse_input/server5-two-directorynames.crt.der - Move data_files/server5-fan.crt->data_files/parse_input/server5-fan.crt - Copy data_files/server1.cert_type.crt->data_files/parse_input/server1.cert_type.crt - Copy data_files/server1.key_usage.crt->data_files/parse_input/server1.key_usage.crt - Copy data_files/keyUsage.decipherOnly.crt->data_files/parse_input/keyUsage.decipherOnly.crt - Copy data_files/cert_example_multi.crt->data_files/parse_input/cert_example_multi.crt - Copy data_files/multiple_san.crt->data_files/parse_input/multiple_san.crt - Copy data_files/cert_example_multi_nocn.crt->data_files/parse_input/cert_example_multi_nocn.crt - Move data_files/rsa_single_san_uri.crt.der->data_files/parse_input/rsa_single_san_uri.crt.der - Move data_files/rsa_multiple_san_uri.crt.der->data_files/parse_input/rsa_multiple_san_uri.crt.der - Move data_files/test-ca-any_policy.crt->data_files/parse_input/test-ca-any_policy.crt - Move data_files/test-ca-any_policy_ec.crt->data_files/parse_input/test-ca-any_policy_ec.crt - Move data_files/test-ca-any_policy_with_qualifier.crt->data_files/parse_input/test-ca-any_policy_with_qualifier.crt - Move data_files/test-ca-any_policy_with_qualifier_ec.crt->data_files/parse_input/test-ca-any_policy_with_qualifier_ec.crt - Move data_files/test-ca-multi_policy.crt->data_files/parse_input/test-ca-multi_policy.crt - Move data_files/test-ca-multi_policy_ec.crt->data_files/parse_input/test-ca-multi_policy_ec.crt - Move data_files/test-ca-unsupported_policy.crt->data_files/parse_input/test-ca-unsupported_policy.crt - Move data_files/test-ca-unsupported_policy_ec.crt->data_files/parse_input/test-ca-unsupported_policy_ec.crt - Move data_files/server1.ext_ku.crt->data_files/parse_input/server1.ext_ku.crt - Copy data_files/server4.crt->data_files/parse_input/server4.crt - Copy data_files/server3.crt->data_files/parse_input/server3.crt - Move data_files/bitstring-in-dn.pem->data_files/parse_input/bitstring-in-dn.pem - Move data_files/non-ascii-string-in-issuer.crt->data_files/parse_input/non-ascii-string-in-issuer.crt Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-05-29 17:28:42 +08:00
Jerry Yu	2d412c6b24	change path of mbedtls_x509_crl_info input data - Copy data_files/crl_expired.pem->data_files/parse_input/crl_expired.pem - Move data_files/crl_md5.pem->data_files/parse_input/crl_md5.pem - Move data_files/crl_sha1.pem->data_files/parse_input/crl_sha1.pem - Move data_files/crl_sha224.pem->data_files/parse_input/crl_sha224.pem - Copy data_files/crl_sha256.pem->data_files/parse_input/crl_sha256.pem - Move data_files/crl_sha384.pem->data_files/parse_input/crl_sha384.pem - Move data_files/crl_sha512.pem->data_files/parse_input/crl_sha512.pem - Copy data_files/crl-rsa-pss-sha1.pem->data_files/parse_input/crl-rsa-pss-sha1.pem - Copy data_files/crl-rsa-pss-sha224.pem->data_files/parse_input/crl-rsa-pss-sha224.pem - Copy data_files/crl-rsa-pss-sha256.pem->data_files/parse_input/crl-rsa-pss-sha256.pem - Copy data_files/crl-rsa-pss-sha384.pem->data_files/parse_input/crl-rsa-pss-sha384.pem - Copy data_files/crl-rsa-pss-sha512.pem->data_files/parse_input/crl-rsa-pss-sha512.pem - Copy data_files/crl-ec-sha1.pem->data_files/parse_input/crl-ec-sha1.pem - Move data_files/crl-ec-sha224.pem->data_files/parse_input/crl-ec-sha224.pem - Copy data_files/crl-ec-sha256.pem->data_files/parse_input/crl-ec-sha256.pem - Move data_files/crl-ec-sha384.pem->data_files/parse_input/crl-ec-sha384.pem - Move data_files/crl-ec-sha512.pem->data_files/parse_input/crl-ec-sha512.pem Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-05-29 17:28:40 +08:00
Xiaokang Qian	254f94bb43	Add test code for big endian write/read Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-29 07:46:40 +00:00
Xiaokang Qian	da5cf4896e	Add intermediate variable to represent the bytes of big num Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-29 07:13:50 +00:00
Dave Rodgman	ec85b85468	code style Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-05-26 12:42:48 +01:00
Dave Rodgman	0fec4395ac	Move base64 test interfaces into base64_internal.h Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-05-26 12:42:48 +01:00
Dave Rodgman	3108645d67	Document and test that memcpy_if may have src == dest Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-05-26 12:42:48 +01:00
Dave Rodgman	1e8b6ac09c	Improve tests for mbedtls_ct_uchar_in_range_if Remove tests from base64. Improve coverage in constant_time tests. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-05-26 12:42:48 +01:00
Dave Rodgman	8f5e5c18d8	Make memmove_left more efficient Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-05-26 12:42:48 +01:00
Dave Rodgman	14bec1490f	tests Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-05-26 12:42:48 +01:00
Paul Elliott	981d8b6fc7	Merge pull request #7566 from paul-elliott-arm/core_ecp_mod_p448 [Bignum] Convert ecp_mod_p448 over to using core functions	2023-05-25 17:11:57 +01:00
Xiaokang Qian	ebc2478e06	Move const result to the first parameter Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-25 06:22:29 +00:00
Xiaokang Qian	b3366c556c	Update comments about how to generate mod_read_write data Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-25 03:35:46 +00:00
Xiaokang Qian	dfaf90f3d1	Add test data for function ecp_mod_random Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-25 03:14:40 +00:00
Xiaokang Qian	b8cf6226f2	Add test function ecp_mod_random Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-25 03:14:40 +00:00
Xiaokang Qian	5e4e287dbe	Add test data for ecp mod read write Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-25 03:14:40 +00:00
Xiaokang Qian	16a36e64d9	Add mod test functions for unit read write Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-25 03:14:40 +00:00
Kusumit Ghoderao	5e7ef203e3	Add test case for PSA_VENDOR_PBKDF2_MAX_ITERATIONS Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-24 22:59:42 +05:30
Janos Follath	a0aa5d8f7e	Merge pull request #7582 from xkqian/bignum/test_add_sub_named_moduli [Bignum] Add add_sub test cases for named moduli curves	2023-05-24 14:42:24 +01:00
Kusumit Ghoderao	0202ccc9cc	Add tests with direct and key output Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-24 12:38:40 +05:30
Xiaokang Qian	b5844e47c0	Change assert to equal base one comments Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-24 02:11:06 +00:00
Valerio Setti	e50a75f6ff	test: add exception in analyze_outcomes.py and fix test for montgomery curves The exception in analyze_outcomes.py follows previous commit in which a test in test_suite_pkparse was set with the ECP_C guard for a different parsing of the private key between the legacy and PSA implementations. The wrong guard in test_suite_ecp.function instead was erroneously added in a past commit and it was setting a non-existing symbol of mbedTLS so those tests were basically never executed. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-23 15:12:07 +02:00
Valerio Setti	ed25edb1a2	test_suite_pkparse: fix failure When the key is imported into an ecp_keypair structure it is read by means of mbedtls_mpi_read_binary_le() and then checked with mbedtls_ecp_check_privkey() which returns error (as expected). When the key is imported in PSA then it is read using mbedtls_ecp_read_key() which fixes the errors in the test before importing. This cause the test itself to fail. As a consequence I set the dependency to ECP_C because it's the only case in which the key is imported in an ecp_keypair structure. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-23 15:12:07 +02:00
Valerio Setti	7237d5ff5b	test: minor enhancement for using the new private key format Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-23 15:12:07 +02:00
Manuel Pégourié-Gonnard	9dc9204b77	Merge pull request #7554 from valeriosetti/issue7073-reshape Avoid parse/unparse public ECC keys in PK with USE_PSA when !ECP_C	2023-05-23 15:08:45 +02:00
Minos Galanakis	c2c967b1f0	ecp.py: Added tests for `mbedtls_ecp_mod_p255_raw` This patch introduces the `EcpP255Raw` test class for testing the curve using the preestablished `ecp_mod_p_generic_raw()` test. The test's logic has been updated accordingly. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-05-23 09:57:09 +01:00
Xiaokang Qian	967b477954	Add test data "modulus-1" and "modulus-2" for every curve Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-23 06:07:32 +00:00
Andrzej Kurek	51cef9ce38	Add missing AES_C dependency in x509 tests Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-22 15:20:48 -04:00
Valerio Setti	a7cb845705	pk: add checks for the returned ECC family Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-22 18:39:43 +02:00
Paul Elliott	26070670d6	Merge pull request #7565 from gabor-mezei-arm/7263_split_out_Koblitz_raw_functions [Bignum] Split out _raw Koblitz reduction functions	2023-05-22 16:03:17 +01:00
Xiaokang Qian	f33b4a5aed	Update comments how to generate the randoms to make it reproducible Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-22 10:55:46 +00:00
Xiaokang Qian	10b6daf755	Fix the comments of sum in ecp function Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-22 02:28:06 +00:00
Xiaokang Qian	be860a14ce	Generate test data with special seed 2,3,4 Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-19 07:39:48 +00:00
Xiaokang Qian	bead774daa	Fix the limb mismatch issue on 32-bit platform Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-19 07:39:48 +00:00
Xiaokang Qian	6d02c2fefc	Compare the libs of two input value and add comments Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-19 07:39:48 +00:00
Xiaokang Qian	c304e53209	Remove useless parameters for ecp_mod_add_sub Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-19 07:39:48 +00:00
Xiaokang Qian	61b0c1c3dd	Refine code to align with the styles of ecp_mod_mul_inv Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-19 07:39:48 +00:00
Xiaokang Qian	4dd1c0a475	Add test data for ecp_add_sub Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-19 07:39:48 +00:00
Xiaokang Qian	9fe2587ccf	Add add_sub test data for named moduli curves Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-19 07:39:48 +00:00
Xiaokang Qian	5fc7846507	Add add_sub test cases for named moduli curves Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-19 07:39:48 +00:00
Janos Follath	399fa48e95	Merge pull request #7479 from xkqian/bignumber_test_mul_inv_named_moduli [Bignum] Bignumber test mul inv named moduli	2023-05-18 11:55:01 +01:00
Paul Elliott	aa266f29e6	Merge pull request #7602 from mprse/AuthorityKeyId_leak_fix Fix for memory leak while parsing AuthorityKeyId ext	2023-05-18 09:57:56 +01:00
Xiaokang Qian	c8f677d33e	Both compare the least significant limb 1 and the left limbs 0 Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-18 03:41:31 +00:00
Xiaokang Qian	c1f5e54d2d	Remove useless parameter iret for ecp mul_inv cases Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-18 02:02:48 +00:00
Andrzej Kurek	a194904055	Fix subjectAltName test prerequisites Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-17 15:23:56 -04:00
Andrzej Kurek	5da1d751e9	Add missing memory deallocation Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-17 15:23:56 -04:00
Andrzej Kurek	13c43f682e	Fix a copy-paste typo Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-17 15:23:56 -04:00
Andrzej Kurek	76c9662e8e	Add a test for SubjectAltName writing to a certificate Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-17 15:23:54 -04:00
Valerio Setti	483738ed67	tests: fixes for using the new public key raw format Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-17 15:38:39 +02:00
Valerio Setti	92c3f36866	test_suite_debug: fix USE_PSA_INIT/DONE guards in a test Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-17 15:38:34 +02:00
Manuel Pégourié-Gonnard	b1c0afe484	Merge pull request #7595 from valeriosetti/deprecate_pk_ec Set mbedtls_pk_ec() as internal function when ECP_C is not defined	2023-05-17 12:27:03 +02:00
Xiaokang Qian	11dd5c0b36	Compare final result with ASSERT_COMPARE Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	c81272461e	Check all of the limbs of result Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	1ae7ca435b	Re-order the variable orders and rename them Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	78b93b1902	Refine error check for mbedtls_ecp_modulus_setup Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	afdea64b50	Remove the useless modulus validaty Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	631f63d29d	Remove modulus double free Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	d3e86a170a	Add back 255 bit test data for SECP224K1 test cases Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	5b6bedfaf3	Add comments to the data file for the cureve secp224k1 Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	424da8aa36	Revert to 224bit random data no need leading bit "1" Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	b7f9950234	Increase bit size to 225 for SECP224K1 test cases Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	86cb08ba27	Add comments about how the mod_inv data is generated Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	d244c83dfe	Update ecp mul_inv test cases Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	e4dc798b59	Change coding styles of white space Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	8ca64374b1	Tidy up ecp mul_inv_test code Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	3d0c2be8c2	Add ecp test cases for mont mul and inv after named moduli setup Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Xiaokang Qian	5e25f80d8a	Add ecp test function for mont mul and inv Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>	2023-05-17 10:02:52 +00:00
Przemek Stekiel	da97ad9f14	Use valid MD5 dependency for test Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-05-17 09:26:42 +02:00
Gilles Peskine	ff7a346201	Merge pull request #7416 from bharsaklemukesh975/update-pkparse-tests-to-use-AES Updating test-ca.key to use AES instead of DES	2023-05-16 19:15:16 +02:00
Paul Elliott	4fa8334bae	Convert curve 448 to use ecp core functions Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-05-16 17:51:48 +01:00
Paul Elliott	f0806bee66	Merge pull request #7489 from minosgalanakis/ecp/7246_xtrack_core_shift_l [Bignum]: Introduce left shift from prototype	2023-05-16 17:13:19 +01:00
Gabor Mezei	03558b847e	Add `_raw` function to P256K1 Modified the testing to use the generic fast reduction test function. Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-05-16 17:30:03 +02:00
Gabor Mezei	e42bb6294e	Add `_raw` function to P224K1 Modified the testing to use the generic fast reduction test function. Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-05-16 17:30:03 +02:00
Gabor Mezei	dacfe56370	Add `_raw` function to P192K1 Modified the testing to use the generic fast reduction test function. Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-05-16 17:29:57 +02:00
Przemek Stekiel	69482f9499	Add test to cover memory leak in authorityCertIssuer case Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-05-16 10:33:02 +02:00
Paul Elliott	926bcb04fe	Merge pull request #7532 from AndrzejKurek/remove-leading-zeroes-ip-parsing Disallow leading zeroes when parsing IPv4 addresses	2023-05-15 13:59:10 +01:00
Valerio Setti	77a75685ed	pk: align library and tests code to the new internal functions Note = programs are not aligned to this change because: - the original mbedtls_pk_ec is not ufficially deprecated - that function is used in tests when ECP_C is defined, so the legacy version of that function is available in that case Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-15 11:18:46 +02:00
Andrzej Kurek	199eab97e7	Add partial support for URI SubjectAltNames Only exact matching without normalization is supported. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-10 09:57:19 -04:00
Mukesh Bharsakle	4823d5ff0e	Merge branch 'Mbed-TLS:development' into update-pkparse-tests-to-use-AES	2023-05-10 12:35:19 +01:00
Manuel Pégourié-Gonnard	1d046fa0dd	Merge pull request #6010 from mprse/ffdh_import_export FFDH 1, 2A, 2B: FFDH add support for import/export key, key agreement, key generation + tests	2023-05-10 11:40:54 +02:00
Gilles Peskine	97edeb4fb8	Merge pull request #6866 from mprse/extract-key-ids Extracting SubjectKeyId and AuthorityKeyId in case of x509 V3 extensions v.2	2023-05-08 20:38:29 +02:00
Przemek Stekiel	67d3f52617	Use int instead uint in test function arguments Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-05-08 11:15:59 +02:00
Przemek Stekiel	ed9fb78739	Fix parsing of KeyIdentifier (tag length error case) + test Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-05-08 11:15:54 +02:00
Jerry Yu	8beb25041e	fix wrong target detection For mingw with `-std=c99`, WIN32 is not defined. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-05-06 13:45:12 +08:00
Pol Henarejos	d06c6fc45b	Merge branch 'development' into sha3 Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2023-05-05 16:01:18 +02:00
Jerry Yu	484a9e138f	Remove `delay milliseconds` test Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-05-05 17:03:29 +08:00
Yanray Wang	a9808ce4b4	Add AES 128-bit key dependency in test_suite_ssl.data Since handshake_fragmentation uses cipher "TLS-DHE-RSA-WITH-AES-256-CBC-SHA256" by default. The corresponding test should be skipped when MBEDTLS_AES_ONLY_128_BIT_KEY_LENGTH is enabled. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-05 11:21:31 +08:00
Yanray Wang	d98ae2f075	Add AES 128-bit key dependency in test_suite_psa_crypto.data Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-05 11:21:31 +08:00
Yanray Wang	ecb6a02fa9	Add AES 128-bit key dependency for tests data Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-05 11:21:30 +08:00
Jethro Beekman	e3d98fcbf6	Add pkwrite tests for X25519/X448 DER Signed-off-by: Jethro Beekman <jethro@fortanix.com>	2023-05-04 13:01:47 +02:00
Jethro Beekman	abbba5ed43	Add derive public test for X25519/X448 Signed-off-by: Jethro Beekman <jethro@fortanix.com>	2023-05-04 13:01:47 +02:00
Jethro Beekman	0167244be4	Read and write X25519 and X448 private keys Signed-off-by: Jethro Beekman <jethro@fortanix.com> Co-authored-by: Gijs Kwakkel <gijs.kwakkel@fortanix.com> Signed-off-by: Gijs Kwakkel <gijs.kwakkel@fortanix.com>	2023-05-04 13:01:47 +02:00
Manuel Pégourié-Gonnard	e4072c00c8	Merge pull request #7548 from jethrogb/jb/mbedtls_pem_write_buffer mbedtls_pem_write_buffer: Correctly report needed buffer size for all possible line lengths and counts	2023-05-04 12:54:56 +02:00
Paul Elliott	b6432832d0	Merge pull request #7490 from paul-elliott-arm/test_ecp_mod_p448 [Bignum] Add unit tests for ecp_mod_p448	2023-05-04 11:39:44 +01:00
Gilles Peskine	2eff33cb6f	Merge pull request #6716 from gilles-peskine-arm/test-argument-types-union Support larger integer test arguments	2023-05-04 10:05:20 +02:00
Jethro Beekman	2593ec4bee	Use TEST_EQUAL instead of TEST_ASSERT Signed-off-by: Jethro Beekman <jethro@fortanix.com>	2023-05-03 17:47:29 +02:00
Jethro Beekman	3477a672b9	Fix cross-platform compilation issue Signed-off-by: Jethro Beekman <jethro@fortanix.com>	2023-05-03 17:47:27 +02:00
Przemek Stekiel	8194285cf1	Fix parsing of authorityCertSerialNumber (use valid tags) Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-05-03 16:19:16 +02:00
Jethro Beekman	746df88e90	mbedtls_pem_write_buffer: Correctly report needed buffer size for all possible line lengths and counts Signed-off-by: Jethro Beekman <jethro@fortanix.com>	2023-05-03 15:30:49 +02:00
Gilles Peskine	f292b9de82	Fix pastapasta Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-05-03 14:49:21 +02:00
Gilles Peskine	3c96e0fe70	typo Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-05-03 14:49:21 +02:00
Gilles Peskine	55ad28a9e7	Document a known issue with testing of mbedtls_x509_crt_parse_path The parse_path tests are known to fail when compiled for a 32-btt architecture and run via qemu-user on Linux on a 64-bit host. This is due to a known bug in Qemu: https://gitlab.com/qemu-project/qemu/-/issues/263 Document this, and add test cases to parse the files involved to confirm that the problem is only with parse_path. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-05-03 14:49:21 +02:00
Gilles Peskine	1e5fec6a79	Improve testing of mbedtls_x509_crt_parse_file Check the number of certificates found, as was done in the test of mbedtls_x509_crt_parse_path(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-05-03 14:49:18 +02:00
Kusumit Ghoderao	056f0c5047	Make output_byte return not_supported for pbkdf2 As output functionality is not added yet return PSA_SUCCESS for now if inputs are passed correctly. If input validation fails operation is aborted and output_bytes will return PSA_ERROR_BAD_STATE Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-03 17:33:27 +05:30
Manuel Pégourié-Gonnard	f57273c817	Merge pull request #7496 from valeriosetti/issue7480 Fix test gap in PK write: private (opaque) -> public	2023-05-03 12:39:49 +02:00
Kusumit Ghoderao	7c05c00988	Add test cases for pbkdf2 input functions Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-03 14:20:37 +05:30
Gilles Peskine	d3ca5e5897	Merge pull request #7328 from mprse/ec-jpake-fix1 Fix the JPAKE driver interface for user+peer	2023-05-02 20:42:25 +02:00
Gilles Peskine	c70d9eab8a	Merge pull request #7412 from silabs-Kusumit/PBKDF2_implementation PBKDF2: Implement input_integer	2023-05-02 20:41:23 +02:00
Valerio Setti	9a855f21aa	test: check for exact length of returned pub key Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-02 15:45:39 +02:00
Valerio Setti	f5451717af	test: optimize code for pk_write_public_from_private() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-02 15:45:39 +02:00
Valerio Setti	84554e9830	test: use better naming for the newly introduced test function Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-02 15:45:39 +02:00
Valerio Setti	d860a79029	test: fix wrong private key file Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-02 15:45:39 +02:00
Valerio Setti	1751341b68	test: add test function for public key derivation starting from private one Data test cases are also included in the commit. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-05-02 15:45:39 +02:00
Manuel Pégourié-Gonnard	f317df98ea	Merge pull request #7461 from valeriosetti/issue7460-part1 Fixing USE_PSA_INIT/DONE in SSL/X509/PK test suites	2023-05-02 10:44:13 +02:00
Kusumit Ghoderao	d60dfc0e43	Add test for parse_binary_string Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-05-02 10:47:50 +05:30
Andrzej Kurek	6f400a376e	Disallow leading zeroes when parsing IPv4 addresses Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-01 06:23:42 -04:00
Gilles Peskine	b377229b65	MBEDTLS_PSA_INJECT_ENTROPY: check the seed file UID The seed file UID is part of the library's stable interface. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-29 00:28:34 +02:00
Gilles Peskine	f13469da48	MBEDTLS_PSA_INJECT_ENTROPY: check the lifecycle of the seed file The seed file is part of the stable interface of PSA_CRYPTO_INJECT_ENTROPY, because it has to survive a library upgrade on a device. So check that its existence and content are as expected at each point in the tested life cycle. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-29 00:28:34 +02:00
Gilles Peskine	fb4c3fe4ea	Modernize remove_seed_file() This function was written before the PSA storage layer switched to the PSA ITS API as its storage abstraction. Now we can just call PSA ITS functions unconditionally. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-29 00:28:34 +02:00
Gilles Peskine	c548468b69	MBEDTLS_PSA_INJECT_ENTROPY: Skip incompatible tests When MBEDTLS_PSA_INJECT_ENTROPY is enabled, we disable standard entropy sources, so mbedtls_entropy_func() doesn't work out of the box. Disable tests that rely on it. MBEDTLS_PSA_INJECT_ENTROPY is intended for PSA-only environments anyway, so it doesn't matter if some legacy features don't work normally. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-28 23:45:36 +02:00
Gilles Peskine	c2d16b2159	MBEDTLS_PSA_INJECT_ENTROPY: Make sure the seed file exist when running tests The seed file must exist before running tests. Because the location is somewhat platform- and configuration-dependent, and to be friendly to developers who run test suites individually and aren't familiar with this feature, rely on the test framework code rather than on test scripts to create the seed file. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-28 23:45:36 +02:00
Gilles Peskine	14d6b1124b	Merge pull request #7419 from yuhaoth/test/random-time-test-fail Workaround random `test_suite_platform` fail in time test	2023-04-28 13:17:31 +02:00
Valerio Setti	7c0f91be10	test: use define for initializing ssl_message_queue struct Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-28 12:20:34 +02:00
Przemek Stekiel	6d85afa0cc	Fix naming: FFDH key -> DH key and fix guard in psa_validate_key_type_and_size_for_key_generation Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-28 11:42:17 +02:00
Valerio Setti	00a256f7b2	test: fix USE_PSA_INIT position in test_suite_ssl Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-28 09:37:35 +02:00
Kusumit Ghoderao	0f2f996b92	change binary_string_parser for big-endian input Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-28 10:07:10 +05:30
Dave Rodgman	e93c90e881	Merge pull request #7433 from oberon-microsystems/fix-psa-aead-chacha20-test-dependency	2023-04-27 19:13:53 +01:00
Kusumit-Silabs	b6ad6823f0	Update tests/suites/test_suite_psa_crypto.function Co-authored-by: Gilles Peskine <gilles.peskine@arm.com> Signed-off-by: Kusumit-Silabs <89393006+silabs-Kusumit@users.noreply.github.com>	2023-04-27 22:42:19 +05:30
Kusumit Ghoderao	af0225e4de	change binary_string_parser for big-endian input Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-27 20:06:58 +05:30
Kusumit Ghoderao	c6fdf1b683	Add tests with INPUT_INTEGER as key_type_arg Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-27 17:03:20 +05:30
Kusumit Ghoderao	12e0b4b452	Use key_type_arg for determining input method Remove input_types_arg variable in test function Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-27 16:58:23 +05:30
Przemek Stekiel	2c9fc07cc4	Fix FFDH tests dependencies Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-27 12:41:32 +02:00
Przemek Stekiel	2e7c33d530	Use import_with_data for testing FFDH invalid key length Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-27 12:31:42 +02:00
Paul Elliott	16648be171	Add Curve 448 tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-04-26 22:23:27 +01:00
Gilles Peskine	578613322a	Add test cases with a question mark The test framework used to treat them specially (but no longer does). Add these test cases as non-regression for how the test framework allows "?" and especially "??" (which I think in the very distant path needed special handling because the test data was embedded in a .c file, and thus ?? could be interpreted as the prefix of a trigraph). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:50:57 +02:00
Gilles Peskine	9a75131da1	Fix wrong comment Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	5472242b67	Explain the format argument expected by the test functions Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	fa83a7ec1e	Fix typos in test descriptions Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	7768a8e0a6	Remove string hack for mbedtls_mpi_mod_int testing Now that the test framework can pass arbitrary values of type mbedtls_mpi_sint, just do that. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	6f5082bf4d	Allow more signed integer types in test function arguments Now that the C code supports the full range of intmax_t, allow any size of signed integer type in the .data file parser. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	872948cc72	Support larger integer test arguments: C part Change the type of signed integer arguments from int32_t to intmax_t. This allows the C code to work with test function arguments with a range larger than int32_t. A subsequent commit will change the .datax generator to support larger types. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	4ea4ad082b	parse_function_arguments: stricter type parsing Use normalization the equality comparisons instead of loose regular expressions to determine the type of an argument of a test function. Now declarations are parsed in a stricter way: there can't be ignored junk at the beginning or at the end. For example, `long long unsigned int x` was accepted as a test function argument (but not `long long unsigned x`), although this was misleading since the value was truncated to the range of int. Now only recognized types are accepted. The new code is slightly looser in that it accepts `char const` as well as `const char`. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	b3c2eaf00f	Support different types in the parameter store The test framework stores size_t and int32_t values in the parameter store by converting them all to int. This is ok in practice, since we assume int covers int32_t and we don't have test data larger than 2GB. But it's confusing and error-prone. So make the parameter store a union, which allows size_t values not to be potentially truncated and makes the code a little clearer. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	5226eb5cd3	Simplify parsing of integers in .datax files In the .datax parser, since we're calling strtol() anyway, rely on it for verification. This makes the .datax parser very slightly more liberal (leading spaces and '+' are now accepted), and changes the interpretation of numbers with leading zeros to octal. Before, an argument like :0123: was parsed as decimal, but an argument like :0123+1: was parsed as a C expression and hence the leading zero marked an octal representation. Now, a leading zero is always interpreted according to C syntax, namely indicating octal. There are no nonzero integer constants with a leading zero in a .data file, so this does not affect existing test cases. In the .datax generator, allow negative arguments to be 'int' (before, they were systematically treated as 'exp' even though they didn't need to be). In the .datax parser, validate the range of integer constants. They have to fit in int32_t. In the .datax generator, use 'exp' instead of 'int' for integer constants that are out of range. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	a9946952b4	Exercise string parsing in the test framework Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:40:02 +02:00
Gilles Peskine	1a24895bfd	Simplify string escapes Treat backslash as a universal escape character: "\n" is a newline, backslash escapes any non-alphanumeric character. This affects some test cases that had "\," standing for backslash-comma. With the new uniform treatment of backslashes, this needs to be "\\,". Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:39:54 +02:00
Gilles Peskine	bc3db2e30a	printf testing: exercise integer parsing in the test framework Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:38:40 +02:00
Gilles Peskine	187932639b	Remove stdint.h substitute for older MSVC We now require at least Visual Studio 2013, which has stdint.h per https://learn.microsoft.com/en-us/previous-versions/visualstudio/visual-studio-2013/y4hta57s(v=vs.120) so the workaround to define C99 types on pre-C99 MSVC is no longer needed. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:38:40 +02:00
Gilles Peskine	6c607e5a55	Remove declarations of the nonstandard function strcasecmp It is no longer used. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:38:40 +02:00
Gilles Peskine	017f0b7369	Stop supporting non-canonical case in mpi_write_string test data We're using the non-standard function strcasecmp() just so that the case of digits beyond 9 can be different in the library and in the test data. Use matching case in the test data, and use a standard function for the comparison. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-04-26 19:38:40 +02:00
David Horstmann	9643575d92	Limit OIDs to 128 components The longest OID known by oid-info.com is 34 components[1], so 128 should be plenty and will limit the potential for attacks. [1] http://oid-info.com/get/1.3.6.1.4.1.1248.1.1.2.1.3.21.69.112.115.111.110.32.83.116.121.108.117.115.32.80.114.111.32.52.57.48.48 Signed-off-by: David Horstmann <david.horstmann@arm.com>	2023-04-26 11:50:14 +01:00
Janos Follath	91a618375a	Merge pull request #7427 from minosgalanakis/ecp/7258_ecp_mod_p256K1_add_test_cases ECP: Add Unit Tests for secp256k1	2023-04-26 08:52:24 +01:00
Przemek Stekiel	654bef0be0	Fix typos, comments, style, optimize macros Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-26 09:07:20 +02:00
Przemek Stekiel	9e65a81ef8	Remove redundant test case (PSA_ALG_FFDH key agreement is now supported) Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-26 09:04:32 +02:00
Przemek Stekiel	b231c9dd23	Add FFDH key agreement tests Tests were generated using the python script. Please find code below: """ generate_ffdh_key_agreement_tests.py Script to generate test vectors for FFDH key agreement. Example usage: generate_ffdh_key_agreement_tests.py """ import os import sys import random DHM_RFC7919_FFDHE2048_P_BIN = bytes([ \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, \ 0xAD, 0xF8, 0x54, 0x58, 0xA2, 0xBB, 0x4A, 0x9A, \ 0xAF, 0xDC, 0x56, 0x20, 0x27, 0x3D, 0x3C, 0xF1, \ 0xD8, 0xB9, 0xC5, 0x83, 0xCE, 0x2D, 0x36, 0x95, \ 0xA9, 0xE1, 0x36, 0x41, 0x14, 0x64, 0x33, 0xFB, \ 0xCC, 0x93, 0x9D, 0xCE, 0x24, 0x9B, 0x3E, 0xF9, \ 0x7D, 0x2F, 0xE3, 0x63, 0x63, 0x0C, 0x75, 0xD8, \ 0xF6, 0x81, 0xB2, 0x02, 0xAE, 0xC4, 0x61, 0x7A, \ 0xD3, 0xDF, 0x1E, 0xD5, 0xD5, 0xFD, 0x65, 0x61, \ 0x24, 0x33, 0xF5, 0x1F, 0x5F, 0x06, 0x6E, 0xD0, \ 0x85, 0x63, 0x65, 0x55, 0x3D, 0xED, 0x1A, 0xF3, \ 0xB5, 0x57, 0x13, 0x5E, 0x7F, 0x57, 0xC9, 0x35, \ 0x98, 0x4F, 0x0C, 0x70, 0xE0, 0xE6, 0x8B, 0x77, \ 0xE2, 0xA6, 0x89, 0xDA, 0xF3, 0xEF, 0xE8, 0x72, \ 0x1D, 0xF1, 0x58, 0xA1, 0x36, 0xAD, 0xE7, 0x35, \ 0x30, 0xAC, 0xCA, 0x4F, 0x48, 0x3A, 0x79, 0x7A, \ 0xBC, 0x0A, 0xB1, 0x82, 0xB3, 0x24, 0xFB, 0x61, \ 0xD1, 0x08, 0xA9, 0x4B, 0xB2, 0xC8, 0xE3, 0xFB, \ 0xB9, 0x6A, 0xDA, 0xB7, 0x60, 0xD7, 0xF4, 0x68, \ 0x1D, 0x4F, 0x42, 0xA3, 0xDE, 0x39, 0x4D, 0xF4, \ 0xAE, 0x56, 0xED, 0xE7, 0x63, 0x72, 0xBB, 0x19, \ 0x0B, 0x07, 0xA7, 0xC8, 0xEE, 0x0A, 0x6D, 0x70, \ 0x9E, 0x02, 0xFC, 0xE1, 0xCD, 0xF7, 0xE2, 0xEC, \ 0xC0, 0x34, 0x04, 0xCD, 0x28, 0x34, 0x2F, 0x61, \ 0x91, 0x72, 0xFE, 0x9C, 0xE9, 0x85, 0x83, 0xFF, \ 0x8E, 0x4F, 0x12, 0x32, 0xEE, 0xF2, 0x81, 0x83, \ 0xC3, 0xFE, 0x3B, 0x1B, 0x4C, 0x6F, 0xAD, 0x73, \ 0x3B, 0xB5, 0xFC, 0xBC, 0x2E, 0xC2, 0x20, 0x05, \ 0xC5, 0x8E, 0xF1, 0x83, 0x7D, 0x16, 0x83, 0xB2, \ 0xC6, 0xF3, 0x4A, 0x26, 0xC1, 0xB2, 0xEF, 0xFA, \ 0x88, 0x6B, 0x42, 0x38, 0x61, 0x28, 0x5C, 0x97, \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF ]) DHM_RFC7919_FFDHE2048_G_BIN = bytes([ 0x02 ]) DHM_RFC7919_FFDHE3072_P_BIN = bytes([ \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, \ 0xAD, 0xF8, 0x54, 0x58, 0xA2, 0xBB, 0x4A, 0x9A, \ 0xAF, 0xDC, 0x56, 0x20, 0x27, 0x3D, 0x3C, 0xF1, \ 0xD8, 0xB9, 0xC5, 0x83, 0xCE, 0x2D, 0x36, 0x95, \ 0xA9, 0xE1, 0x36, 0x41, 0x14, 0x64, 0x33, 0xFB, \ 0xCC, 0x93, 0x9D, 0xCE, 0x24, 0x9B, 0x3E, 0xF9, \ 0x7D, 0x2F, 0xE3, 0x63, 0x63, 0x0C, 0x75, 0xD8, \ 0xF6, 0x81, 0xB2, 0x02, 0xAE, 0xC4, 0x61, 0x7A, \ 0xD3, 0xDF, 0x1E, 0xD5, 0xD5, 0xFD, 0x65, 0x61, \ 0x24, 0x33, 0xF5, 0x1F, 0x5F, 0x06, 0x6E, 0xD0, \ 0x85, 0x63, 0x65, 0x55, 0x3D, 0xED, 0x1A, 0xF3, \ 0xB5, 0x57, 0x13, 0x5E, 0x7F, 0x57, 0xC9, 0x35, \ 0x98, 0x4F, 0x0C, 0x70, 0xE0, 0xE6, 0x8B, 0x77, \ 0xE2, 0xA6, 0x89, 0xDA, 0xF3, 0xEF, 0xE8, 0x72, \ 0x1D, 0xF1, 0x58, 0xA1, 0x36, 0xAD, 0xE7, 0x35, \ 0x30, 0xAC, 0xCA, 0x4F, 0x48, 0x3A, 0x79, 0x7A, \ 0xBC, 0x0A, 0xB1, 0x82, 0xB3, 0x24, 0xFB, 0x61, \ 0xD1, 0x08, 0xA9, 0x4B, 0xB2, 0xC8, 0xE3, 0xFB, \ 0xB9, 0x6A, 0xDA, 0xB7, 0x60, 0xD7, 0xF4, 0x68, \ 0x1D, 0x4F, 0x42, 0xA3, 0xDE, 0x39, 0x4D, 0xF4, \ 0xAE, 0x56, 0xED, 0xE7, 0x63, 0x72, 0xBB, 0x19, \ 0x0B, 0x07, 0xA7, 0xC8, 0xEE, 0x0A, 0x6D, 0x70, \ 0x9E, 0x02, 0xFC, 0xE1, 0xCD, 0xF7, 0xE2, 0xEC, \ 0xC0, 0x34, 0x04, 0xCD, 0x28, 0x34, 0x2F, 0x61, \ 0x91, 0x72, 0xFE, 0x9C, 0xE9, 0x85, 0x83, 0xFF, \ 0x8E, 0x4F, 0x12, 0x32, 0xEE, 0xF2, 0x81, 0x83, \ 0xC3, 0xFE, 0x3B, 0x1B, 0x4C, 0x6F, 0xAD, 0x73, \ 0x3B, 0xB5, 0xFC, 0xBC, 0x2E, 0xC2, 0x20, 0x05, \ 0xC5, 0x8E, 0xF1, 0x83, 0x7D, 0x16, 0x83, 0xB2, \ 0xC6, 0xF3, 0x4A, 0x26, 0xC1, 0xB2, 0xEF, 0xFA, \ 0x88, 0x6B, 0x42, 0x38, 0x61, 0x1F, 0xCF, 0xDC, \ 0xDE, 0x35, 0x5B, 0x3B, 0x65, 0x19, 0x03, 0x5B, \ 0xBC, 0x34, 0xF4, 0xDE, 0xF9, 0x9C, 0x02, 0x38, \ 0x61, 0xB4, 0x6F, 0xC9, 0xD6, 0xE6, 0xC9, 0x07, \ 0x7A, 0xD9, 0x1D, 0x26, 0x91, 0xF7, 0xF7, 0xEE, \ 0x59, 0x8C, 0xB0, 0xFA, 0xC1, 0x86, 0xD9, 0x1C, \ 0xAE, 0xFE, 0x13, 0x09, 0x85, 0x13, 0x92, 0x70, \ 0xB4, 0x13, 0x0C, 0x93, 0xBC, 0x43, 0x79, 0x44, \ 0xF4, 0xFD, 0x44, 0x52, 0xE2, 0xD7, 0x4D, 0xD3, \ 0x64, 0xF2, 0xE2, 0x1E, 0x71, 0xF5, 0x4B, 0xFF, \ 0x5C, 0xAE, 0x82, 0xAB, 0x9C, 0x9D, 0xF6, 0x9E, \ 0xE8, 0x6D, 0x2B, 0xC5, 0x22, 0x36, 0x3A, 0x0D, \ 0xAB, 0xC5, 0x21, 0x97, 0x9B, 0x0D, 0xEA, 0xDA, \ 0x1D, 0xBF, 0x9A, 0x42, 0xD5, 0xC4, 0x48, 0x4E, \ 0x0A, 0xBC, 0xD0, 0x6B, 0xFA, 0x53, 0xDD, 0xEF, \ 0x3C, 0x1B, 0x20, 0xEE, 0x3F, 0xD5, 0x9D, 0x7C, \ 0x25, 0xE4, 0x1D, 0x2B, 0x66, 0xC6, 0x2E, 0x37, \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF ]) DHM_RFC7919_FFDHE3072_G_BIN = bytes([ 0x02 ]) DHM_RFC7919_FFDHE4096_P_BIN = bytes([ \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, \ 0xAD, 0xF8, 0x54, 0x58, 0xA2, 0xBB, 0x4A, 0x9A, \ 0xAF, 0xDC, 0x56, 0x20, 0x27, 0x3D, 0x3C, 0xF1, \ 0xD8, 0xB9, 0xC5, 0x83, 0xCE, 0x2D, 0x36, 0x95, \ 0xA9, 0xE1, 0x36, 0x41, 0x14, 0x64, 0x33, 0xFB, \ 0xCC, 0x93, 0x9D, 0xCE, 0x24, 0x9B, 0x3E, 0xF9, \ 0x7D, 0x2F, 0xE3, 0x63, 0x63, 0x0C, 0x75, 0xD8, \ 0xF6, 0x81, 0xB2, 0x02, 0xAE, 0xC4, 0x61, 0x7A, \ 0xD3, 0xDF, 0x1E, 0xD5, 0xD5, 0xFD, 0x65, 0x61, \ 0x24, 0x33, 0xF5, 0x1F, 0x5F, 0x06, 0x6E, 0xD0, \ 0x85, 0x63, 0x65, 0x55, 0x3D, 0xED, 0x1A, 0xF3, \ 0xB5, 0x57, 0x13, 0x5E, 0x7F, 0x57, 0xC9, 0x35, \ 0x98, 0x4F, 0x0C, 0x70, 0xE0, 0xE6, 0x8B, 0x77, \ 0xE2, 0xA6, 0x89, 0xDA, 0xF3, 0xEF, 0xE8, 0x72, \ 0x1D, 0xF1, 0x58, 0xA1, 0x36, 0xAD, 0xE7, 0x35, \ 0x30, 0xAC, 0xCA, 0x4F, 0x48, 0x3A, 0x79, 0x7A, \ 0xBC, 0x0A, 0xB1, 0x82, 0xB3, 0x24, 0xFB, 0x61, \ 0xD1, 0x08, 0xA9, 0x4B, 0xB2, 0xC8, 0xE3, 0xFB, \ 0xB9, 0x6A, 0xDA, 0xB7, 0x60, 0xD7, 0xF4, 0x68, \ 0x1D, 0x4F, 0x42, 0xA3, 0xDE, 0x39, 0x4D, 0xF4, \ 0xAE, 0x56, 0xED, 0xE7, 0x63, 0x72, 0xBB, 0x19, \ 0x0B, 0x07, 0xA7, 0xC8, 0xEE, 0x0A, 0x6D, 0x70, \ 0x9E, 0x02, 0xFC, 0xE1, 0xCD, 0xF7, 0xE2, 0xEC, \ 0xC0, 0x34, 0x04, 0xCD, 0x28, 0x34, 0x2F, 0x61, \ 0x91, 0x72, 0xFE, 0x9C, 0xE9, 0x85, 0x83, 0xFF, \ 0x8E, 0x4F, 0x12, 0x32, 0xEE, 0xF2, 0x81, 0x83, \ 0xC3, 0xFE, 0x3B, 0x1B, 0x4C, 0x6F, 0xAD, 0x73, \ 0x3B, 0xB5, 0xFC, 0xBC, 0x2E, 0xC2, 0x20, 0x05, \ 0xC5, 0x8E, 0xF1, 0x83, 0x7D, 0x16, 0x83, 0xB2, \ 0xC6, 0xF3, 0x4A, 0x26, 0xC1, 0xB2, 0xEF, 0xFA, \ 0x88, 0x6B, 0x42, 0x38, 0x61, 0x1F, 0xCF, 0xDC, \ 0xDE, 0x35, 0x5B, 0x3B, 0x65, 0x19, 0x03, 0x5B, \ 0xBC, 0x34, 0xF4, 0xDE, 0xF9, 0x9C, 0x02, 0x38, \ 0x61, 0xB4, 0x6F, 0xC9, 0xD6, 0xE6, 0xC9, 0x07, \ 0x7A, 0xD9, 0x1D, 0x26, 0x91, 0xF7, 0xF7, 0xEE, \ 0x59, 0x8C, 0xB0, 0xFA, 0xC1, 0x86, 0xD9, 0x1C, \ 0xAE, 0xFE, 0x13, 0x09, 0x85, 0x13, 0x92, 0x70, \ 0xB4, 0x13, 0x0C, 0x93, 0xBC, 0x43, 0x79, 0x44, \ 0xF4, 0xFD, 0x44, 0x52, 0xE2, 0xD7, 0x4D, 0xD3, \ 0x64, 0xF2, 0xE2, 0x1E, 0x71, 0xF5, 0x4B, 0xFF, \ 0x5C, 0xAE, 0x82, 0xAB, 0x9C, 0x9D, 0xF6, 0x9E, \ 0xE8, 0x6D, 0x2B, 0xC5, 0x22, 0x36, 0x3A, 0x0D, \ 0xAB, 0xC5, 0x21, 0x97, 0x9B, 0x0D, 0xEA, 0xDA, \ 0x1D, 0xBF, 0x9A, 0x42, 0xD5, 0xC4, 0x48, 0x4E, \ 0x0A, 0xBC, 0xD0, 0x6B, 0xFA, 0x53, 0xDD, 0xEF, \ 0x3C, 0x1B, 0x20, 0xEE, 0x3F, 0xD5, 0x9D, 0x7C, \ 0x25, 0xE4, 0x1D, 0x2B, 0x66, 0x9E, 0x1E, 0xF1, \ 0x6E, 0x6F, 0x52, 0xC3, 0x16, 0x4D, 0xF4, 0xFB, \ 0x79, 0x30, 0xE9, 0xE4, 0xE5, 0x88, 0x57, 0xB6, \ 0xAC, 0x7D, 0x5F, 0x42, 0xD6, 0x9F, 0x6D, 0x18, \ 0x77, 0x63, 0xCF, 0x1D, 0x55, 0x03, 0x40, 0x04, \ 0x87, 0xF5, 0x5B, 0xA5, 0x7E, 0x31, 0xCC, 0x7A, \ 0x71, 0x35, 0xC8, 0x86, 0xEF, 0xB4, 0x31, 0x8A, \ 0xED, 0x6A, 0x1E, 0x01, 0x2D, 0x9E, 0x68, 0x32, \ 0xA9, 0x07, 0x60, 0x0A, 0x91, 0x81, 0x30, 0xC4, \ 0x6D, 0xC7, 0x78, 0xF9, 0x71, 0xAD, 0x00, 0x38, \ 0x09, 0x29, 0x99, 0xA3, 0x33, 0xCB, 0x8B, 0x7A, \ 0x1A, 0x1D, 0xB9, 0x3D, 0x71, 0x40, 0x00, 0x3C, \ 0x2A, 0x4E, 0xCE, 0xA9, 0xF9, 0x8D, 0x0A, 0xCC, \ 0x0A, 0x82, 0x91, 0xCD, 0xCE, 0xC9, 0x7D, 0xCF, \ 0x8E, 0xC9, 0xB5, 0x5A, 0x7F, 0x88, 0xA4, 0x6B, \ 0x4D, 0xB5, 0xA8, 0x51, 0xF4, 0x41, 0x82, 0xE1, \ 0xC6, 0x8A, 0x00, 0x7E, 0x5E, 0x65, 0x5F, 0x6A, \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF ]) DHM_RFC7919_FFDHE4096_G_BIN = bytes([ 0x02 ]) DHM_RFC7919_FFDHE6144_P_BIN = bytes([ \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, \ 0xAD, 0xF8, 0x54, 0x58, 0xA2, 0xBB, 0x4A, 0x9A, \ 0xAF, 0xDC, 0x56, 0x20, 0x27, 0x3D, 0x3C, 0xF1, \ 0xD8, 0xB9, 0xC5, 0x83, 0xCE, 0x2D, 0x36, 0x95, \ 0xA9, 0xE1, 0x36, 0x41, 0x14, 0x64, 0x33, 0xFB, \ 0xCC, 0x93, 0x9D, 0xCE, 0x24, 0x9B, 0x3E, 0xF9, \ 0x7D, 0x2F, 0xE3, 0x63, 0x63, 0x0C, 0x75, 0xD8, \ 0xF6, 0x81, 0xB2, 0x02, 0xAE, 0xC4, 0x61, 0x7A, \ 0xD3, 0xDF, 0x1E, 0xD5, 0xD5, 0xFD, 0x65, 0x61, \ 0x24, 0x33, 0xF5, 0x1F, 0x5F, 0x06, 0x6E, 0xD0, \ 0x85, 0x63, 0x65, 0x55, 0x3D, 0xED, 0x1A, 0xF3, \ 0xB5, 0x57, 0x13, 0x5E, 0x7F, 0x57, 0xC9, 0x35, \ 0x98, 0x4F, 0x0C, 0x70, 0xE0, 0xE6, 0x8B, 0x77, \ 0xE2, 0xA6, 0x89, 0xDA, 0xF3, 0xEF, 0xE8, 0x72, \ 0x1D, 0xF1, 0x58, 0xA1, 0x36, 0xAD, 0xE7, 0x35, \ 0x30, 0xAC, 0xCA, 0x4F, 0x48, 0x3A, 0x79, 0x7A, \ 0xBC, 0x0A, 0xB1, 0x82, 0xB3, 0x24, 0xFB, 0x61, \ 0xD1, 0x08, 0xA9, 0x4B, 0xB2, 0xC8, 0xE3, 0xFB, \ 0xB9, 0x6A, 0xDA, 0xB7, 0x60, 0xD7, 0xF4, 0x68, \ 0x1D, 0x4F, 0x42, 0xA3, 0xDE, 0x39, 0x4D, 0xF4, \ 0xAE, 0x56, 0xED, 0xE7, 0x63, 0x72, 0xBB, 0x19, \ 0x0B, 0x07, 0xA7, 0xC8, 0xEE, 0x0A, 0x6D, 0x70, \ 0x9E, 0x02, 0xFC, 0xE1, 0xCD, 0xF7, 0xE2, 0xEC, \ 0xC0, 0x34, 0x04, 0xCD, 0x28, 0x34, 0x2F, 0x61, \ 0x91, 0x72, 0xFE, 0x9C, 0xE9, 0x85, 0x83, 0xFF, \ 0x8E, 0x4F, 0x12, 0x32, 0xEE, 0xF2, 0x81, 0x83, \ 0xC3, 0xFE, 0x3B, 0x1B, 0x4C, 0x6F, 0xAD, 0x73, \ 0x3B, 0xB5, 0xFC, 0xBC, 0x2E, 0xC2, 0x20, 0x05, \ 0xC5, 0x8E, 0xF1, 0x83, 0x7D, 0x16, 0x83, 0xB2, \ 0xC6, 0xF3, 0x4A, 0x26, 0xC1, 0xB2, 0xEF, 0xFA, \ 0x88, 0x6B, 0x42, 0x38, 0x61, 0x1F, 0xCF, 0xDC, \ 0xDE, 0x35, 0x5B, 0x3B, 0x65, 0x19, 0x03, 0x5B, \ 0xBC, 0x34, 0xF4, 0xDE, 0xF9, 0x9C, 0x02, 0x38, \ 0x61, 0xB4, 0x6F, 0xC9, 0xD6, 0xE6, 0xC9, 0x07, \ 0x7A, 0xD9, 0x1D, 0x26, 0x91, 0xF7, 0xF7, 0xEE, \ 0x59, 0x8C, 0xB0, 0xFA, 0xC1, 0x86, 0xD9, 0x1C, \ 0xAE, 0xFE, 0x13, 0x09, 0x85, 0x13, 0x92, 0x70, \ 0xB4, 0x13, 0x0C, 0x93, 0xBC, 0x43, 0x79, 0x44, \ 0xF4, 0xFD, 0x44, 0x52, 0xE2, 0xD7, 0x4D, 0xD3, \ 0x64, 0xF2, 0xE2, 0x1E, 0x71, 0xF5, 0x4B, 0xFF, \ 0x5C, 0xAE, 0x82, 0xAB, 0x9C, 0x9D, 0xF6, 0x9E, \ 0xE8, 0x6D, 0x2B, 0xC5, 0x22, 0x36, 0x3A, 0x0D, \ 0xAB, 0xC5, 0x21, 0x97, 0x9B, 0x0D, 0xEA, 0xDA, \ 0x1D, 0xBF, 0x9A, 0x42, 0xD5, 0xC4, 0x48, 0x4E, \ 0x0A, 0xBC, 0xD0, 0x6B, 0xFA, 0x53, 0xDD, 0xEF, \ 0x3C, 0x1B, 0x20, 0xEE, 0x3F, 0xD5, 0x9D, 0x7C, \ 0x25, 0xE4, 0x1D, 0x2B, 0x66, 0x9E, 0x1E, 0xF1, \ 0x6E, 0x6F, 0x52, 0xC3, 0x16, 0x4D, 0xF4, 0xFB, \ 0x79, 0x30, 0xE9, 0xE4, 0xE5, 0x88, 0x57, 0xB6, \ 0xAC, 0x7D, 0x5F, 0x42, 0xD6, 0x9F, 0x6D, 0x18, \ 0x77, 0x63, 0xCF, 0x1D, 0x55, 0x03, 0x40, 0x04, \ 0x87, 0xF5, 0x5B, 0xA5, 0x7E, 0x31, 0xCC, 0x7A, \ 0x71, 0x35, 0xC8, 0x86, 0xEF, 0xB4, 0x31, 0x8A, \ 0xED, 0x6A, 0x1E, 0x01, 0x2D, 0x9E, 0x68, 0x32, \ 0xA9, 0x07, 0x60, 0x0A, 0x91, 0x81, 0x30, 0xC4, \ 0x6D, 0xC7, 0x78, 0xF9, 0x71, 0xAD, 0x00, 0x38, \ 0x09, 0x29, 0x99, 0xA3, 0x33, 0xCB, 0x8B, 0x7A, \ 0x1A, 0x1D, 0xB9, 0x3D, 0x71, 0x40, 0x00, 0x3C, \ 0x2A, 0x4E, 0xCE, 0xA9, 0xF9, 0x8D, 0x0A, 0xCC, \ 0x0A, 0x82, 0x91, 0xCD, 0xCE, 0xC9, 0x7D, 0xCF, \ 0x8E, 0xC9, 0xB5, 0x5A, 0x7F, 0x88, 0xA4, 0x6B, \ 0x4D, 0xB5, 0xA8, 0x51, 0xF4, 0x41, 0x82, 0xE1, \ 0xC6, 0x8A, 0x00, 0x7E, 0x5E, 0x0D, 0xD9, 0x02, \ 0x0B, 0xFD, 0x64, 0xB6, 0x45, 0x03, 0x6C, 0x7A, \ 0x4E, 0x67, 0x7D, 0x2C, 0x38, 0x53, 0x2A, 0x3A, \ 0x23, 0xBA, 0x44, 0x42, 0xCA, 0xF5, 0x3E, 0xA6, \ 0x3B, 0xB4, 0x54, 0x32, 0x9B, 0x76, 0x24, 0xC8, \ 0x91, 0x7B, 0xDD, 0x64, 0xB1, 0xC0, 0xFD, 0x4C, \ 0xB3, 0x8E, 0x8C, 0x33, 0x4C, 0x70, 0x1C, 0x3A, \ 0xCD, 0xAD, 0x06, 0x57, 0xFC, 0xCF, 0xEC, 0x71, \ 0x9B, 0x1F, 0x5C, 0x3E, 0x4E, 0x46, 0x04, 0x1F, \ 0x38, 0x81, 0x47, 0xFB, 0x4C, 0xFD, 0xB4, 0x77, \ 0xA5, 0x24, 0x71, 0xF7, 0xA9, 0xA9, 0x69, 0x10, \ 0xB8, 0x55, 0x32, 0x2E, 0xDB, 0x63, 0x40, 0xD8, \ 0xA0, 0x0E, 0xF0, 0x92, 0x35, 0x05, 0x11, 0xE3, \ 0x0A, 0xBE, 0xC1, 0xFF, 0xF9, 0xE3, 0xA2, 0x6E, \ 0x7F, 0xB2, 0x9F, 0x8C, 0x18, 0x30, 0x23, 0xC3, \ 0x58, 0x7E, 0x38, 0xDA, 0x00, 0x77, 0xD9, 0xB4, \ 0x76, 0x3E, 0x4E, 0x4B, 0x94, 0xB2, 0xBB, 0xC1, \ 0x94, 0xC6, 0x65, 0x1E, 0x77, 0xCA, 0xF9, 0x92, \ 0xEE, 0xAA, 0xC0, 0x23, 0x2A, 0x28, 0x1B, 0xF6, \ 0xB3, 0xA7, 0x39, 0xC1, 0x22, 0x61, 0x16, 0x82, \ 0x0A, 0xE8, 0xDB, 0x58, 0x47, 0xA6, 0x7C, 0xBE, \ 0xF9, 0xC9, 0x09, 0x1B, 0x46, 0x2D, 0x53, 0x8C, \ 0xD7, 0x2B, 0x03, 0x74, 0x6A, 0xE7, 0x7F, 0x5E, \ 0x62, 0x29, 0x2C, 0x31, 0x15, 0x62, 0xA8, 0x46, \ 0x50, 0x5D, 0xC8, 0x2D, 0xB8, 0x54, 0x33, 0x8A, \ 0xE4, 0x9F, 0x52, 0x35, 0xC9, 0x5B, 0x91, 0x17, \ 0x8C, 0xCF, 0x2D, 0xD5, 0xCA, 0xCE, 0xF4, 0x03, \ 0xEC, 0x9D, 0x18, 0x10, 0xC6, 0x27, 0x2B, 0x04, \ 0x5B, 0x3B, 0x71, 0xF9, 0xDC, 0x6B, 0x80, 0xD6, \ 0x3F, 0xDD, 0x4A, 0x8E, 0x9A, 0xDB, 0x1E, 0x69, \ 0x62, 0xA6, 0x95, 0x26, 0xD4, 0x31, 0x61, 0xC1, \ 0xA4, 0x1D, 0x57, 0x0D, 0x79, 0x38, 0xDA, 0xD4, \ 0xA4, 0x0E, 0x32, 0x9C, 0xD0, 0xE4, 0x0E, 0x65, \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF ]) DHM_RFC7919_FFDHE6144_G_BIN = bytes([ 0x02 ]) DHM_RFC7919_FFDHE8192_P_BIN = bytes([ \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, \ 0xAD, 0xF8, 0x54, 0x58, 0xA2, 0xBB, 0x4A, 0x9A, \ 0xAF, 0xDC, 0x56, 0x20, 0x27, 0x3D, 0x3C, 0xF1, \ 0xD8, 0xB9, 0xC5, 0x83, 0xCE, 0x2D, 0x36, 0x95, \ 0xA9, 0xE1, 0x36, 0x41, 0x14, 0x64, 0x33, 0xFB, \ 0xCC, 0x93, 0x9D, 0xCE, 0x24, 0x9B, 0x3E, 0xF9, \ 0x7D, 0x2F, 0xE3, 0x63, 0x63, 0x0C, 0x75, 0xD8, \ 0xF6, 0x81, 0xB2, 0x02, 0xAE, 0xC4, 0x61, 0x7A, \ 0xD3, 0xDF, 0x1E, 0xD5, 0xD5, 0xFD, 0x65, 0x61, \ 0x24, 0x33, 0xF5, 0x1F, 0x5F, 0x06, 0x6E, 0xD0, \ 0x85, 0x63, 0x65, 0x55, 0x3D, 0xED, 0x1A, 0xF3, \ 0xB5, 0x57, 0x13, 0x5E, 0x7F, 0x57, 0xC9, 0x35, \ 0x98, 0x4F, 0x0C, 0x70, 0xE0, 0xE6, 0x8B, 0x77, \ 0xE2, 0xA6, 0x89, 0xDA, 0xF3, 0xEF, 0xE8, 0x72, \ 0x1D, 0xF1, 0x58, 0xA1, 0x36, 0xAD, 0xE7, 0x35, \ 0x30, 0xAC, 0xCA, 0x4F, 0x48, 0x3A, 0x79, 0x7A, \ 0xBC, 0x0A, 0xB1, 0x82, 0xB3, 0x24, 0xFB, 0x61, \ 0xD1, 0x08, 0xA9, 0x4B, 0xB2, 0xC8, 0xE3, 0xFB, \ 0xB9, 0x6A, 0xDA, 0xB7, 0x60, 0xD7, 0xF4, 0x68, \ 0x1D, 0x4F, 0x42, 0xA3, 0xDE, 0x39, 0x4D, 0xF4, \ 0xAE, 0x56, 0xED, 0xE7, 0x63, 0x72, 0xBB, 0x19, \ 0x0B, 0x07, 0xA7, 0xC8, 0xEE, 0x0A, 0x6D, 0x70, \ 0x9E, 0x02, 0xFC, 0xE1, 0xCD, 0xF7, 0xE2, 0xEC, \ 0xC0, 0x34, 0x04, 0xCD, 0x28, 0x34, 0x2F, 0x61, \ 0x91, 0x72, 0xFE, 0x9C, 0xE9, 0x85, 0x83, 0xFF, \ 0x8E, 0x4F, 0x12, 0x32, 0xEE, 0xF2, 0x81, 0x83, \ 0xC3, 0xFE, 0x3B, 0x1B, 0x4C, 0x6F, 0xAD, 0x73, \ 0x3B, 0xB5, 0xFC, 0xBC, 0x2E, 0xC2, 0x20, 0x05, \ 0xC5, 0x8E, 0xF1, 0x83, 0x7D, 0x16, 0x83, 0xB2, \ 0xC6, 0xF3, 0x4A, 0x26, 0xC1, 0xB2, 0xEF, 0xFA, \ 0x88, 0x6B, 0x42, 0x38, 0x61, 0x1F, 0xCF, 0xDC, \ 0xDE, 0x35, 0x5B, 0x3B, 0x65, 0x19, 0x03, 0x5B, \ 0xBC, 0x34, 0xF4, 0xDE, 0xF9, 0x9C, 0x02, 0x38, \ 0x61, 0xB4, 0x6F, 0xC9, 0xD6, 0xE6, 0xC9, 0x07, \ 0x7A, 0xD9, 0x1D, 0x26, 0x91, 0xF7, 0xF7, 0xEE, \ 0x59, 0x8C, 0xB0, 0xFA, 0xC1, 0x86, 0xD9, 0x1C, \ 0xAE, 0xFE, 0x13, 0x09, 0x85, 0x13, 0x92, 0x70, \ 0xB4, 0x13, 0x0C, 0x93, 0xBC, 0x43, 0x79, 0x44, \ 0xF4, 0xFD, 0x44, 0x52, 0xE2, 0xD7, 0x4D, 0xD3, \ 0x64, 0xF2, 0xE2, 0x1E, 0x71, 0xF5, 0x4B, 0xFF, \ 0x5C, 0xAE, 0x82, 0xAB, 0x9C, 0x9D, 0xF6, 0x9E, \ 0xE8, 0x6D, 0x2B, 0xC5, 0x22, 0x36, 0x3A, 0x0D, \ 0xAB, 0xC5, 0x21, 0x97, 0x9B, 0x0D, 0xEA, 0xDA, \ 0x1D, 0xBF, 0x9A, 0x42, 0xD5, 0xC4, 0x48, 0x4E, \ 0x0A, 0xBC, 0xD0, 0x6B, 0xFA, 0x53, 0xDD, 0xEF, \ 0x3C, 0x1B, 0x20, 0xEE, 0x3F, 0xD5, 0x9D, 0x7C, \ 0x25, 0xE4, 0x1D, 0x2B, 0x66, 0x9E, 0x1E, 0xF1, \ 0x6E, 0x6F, 0x52, 0xC3, 0x16, 0x4D, 0xF4, 0xFB, \ 0x79, 0x30, 0xE9, 0xE4, 0xE5, 0x88, 0x57, 0xB6, \ 0xAC, 0x7D, 0x5F, 0x42, 0xD6, 0x9F, 0x6D, 0x18, \ 0x77, 0x63, 0xCF, 0x1D, 0x55, 0x03, 0x40, 0x04, \ 0x87, 0xF5, 0x5B, 0xA5, 0x7E, 0x31, 0xCC, 0x7A, \ 0x71, 0x35, 0xC8, 0x86, 0xEF, 0xB4, 0x31, 0x8A, \ 0xED, 0x6A, 0x1E, 0x01, 0x2D, 0x9E, 0x68, 0x32, \ 0xA9, 0x07, 0x60, 0x0A, 0x91, 0x81, 0x30, 0xC4, \ 0x6D, 0xC7, 0x78, 0xF9, 0x71, 0xAD, 0x00, 0x38, \ 0x09, 0x29, 0x99, 0xA3, 0x33, 0xCB, 0x8B, 0x7A, \ 0x1A, 0x1D, 0xB9, 0x3D, 0x71, 0x40, 0x00, 0x3C, \ 0x2A, 0x4E, 0xCE, 0xA9, 0xF9, 0x8D, 0x0A, 0xCC, \ 0x0A, 0x82, 0x91, 0xCD, 0xCE, 0xC9, 0x7D, 0xCF, \ 0x8E, 0xC9, 0xB5, 0x5A, 0x7F, 0x88, 0xA4, 0x6B, \ 0x4D, 0xB5, 0xA8, 0x51, 0xF4, 0x41, 0x82, 0xE1, \ 0xC6, 0x8A, 0x00, 0x7E, 0x5E, 0x0D, 0xD9, 0x02, \ 0x0B, 0xFD, 0x64, 0xB6, 0x45, 0x03, 0x6C, 0x7A, \ 0x4E, 0x67, 0x7D, 0x2C, 0x38, 0x53, 0x2A, 0x3A, \ 0x23, 0xBA, 0x44, 0x42, 0xCA, 0xF5, 0x3E, 0xA6, \ 0x3B, 0xB4, 0x54, 0x32, 0x9B, 0x76, 0x24, 0xC8, \ 0x91, 0x7B, 0xDD, 0x64, 0xB1, 0xC0, 0xFD, 0x4C, \ 0xB3, 0x8E, 0x8C, 0x33, 0x4C, 0x70, 0x1C, 0x3A, \ 0xCD, 0xAD, 0x06, 0x57, 0xFC, 0xCF, 0xEC, 0x71, \ 0x9B, 0x1F, 0x5C, 0x3E, 0x4E, 0x46, 0x04, 0x1F, \ 0x38, 0x81, 0x47, 0xFB, 0x4C, 0xFD, 0xB4, 0x77, \ 0xA5, 0x24, 0x71, 0xF7, 0xA9, 0xA9, 0x69, 0x10, \ 0xB8, 0x55, 0x32, 0x2E, 0xDB, 0x63, 0x40, 0xD8, \ 0xA0, 0x0E, 0xF0, 0x92, 0x35, 0x05, 0x11, 0xE3, \ 0x0A, 0xBE, 0xC1, 0xFF, 0xF9, 0xE3, 0xA2, 0x6E, \ 0x7F, 0xB2, 0x9F, 0x8C, 0x18, 0x30, 0x23, 0xC3, \ 0x58, 0x7E, 0x38, 0xDA, 0x00, 0x77, 0xD9, 0xB4, \ 0x76, 0x3E, 0x4E, 0x4B, 0x94, 0xB2, 0xBB, 0xC1, \ 0x94, 0xC6, 0x65, 0x1E, 0x77, 0xCA, 0xF9, 0x92, \ 0xEE, 0xAA, 0xC0, 0x23, 0x2A, 0x28, 0x1B, 0xF6, \ 0xB3, 0xA7, 0x39, 0xC1, 0x22, 0x61, 0x16, 0x82, \ 0x0A, 0xE8, 0xDB, 0x58, 0x47, 0xA6, 0x7C, 0xBE, \ 0xF9, 0xC9, 0x09, 0x1B, 0x46, 0x2D, 0x53, 0x8C, \ 0xD7, 0x2B, 0x03, 0x74, 0x6A, 0xE7, 0x7F, 0x5E, \ 0x62, 0x29, 0x2C, 0x31, 0x15, 0x62, 0xA8, 0x46, \ 0x50, 0x5D, 0xC8, 0x2D, 0xB8, 0x54, 0x33, 0x8A, \ 0xE4, 0x9F, 0x52, 0x35, 0xC9, 0x5B, 0x91, 0x17, \ 0x8C, 0xCF, 0x2D, 0xD5, 0xCA, 0xCE, 0xF4, 0x03, \ 0xEC, 0x9D, 0x18, 0x10, 0xC6, 0x27, 0x2B, 0x04, \ 0x5B, 0x3B, 0x71, 0xF9, 0xDC, 0x6B, 0x80, 0xD6, \ 0x3F, 0xDD, 0x4A, 0x8E, 0x9A, 0xDB, 0x1E, 0x69, \ 0x62, 0xA6, 0x95, 0x26, 0xD4, 0x31, 0x61, 0xC1, \ 0xA4, 0x1D, 0x57, 0x0D, 0x79, 0x38, 0xDA, 0xD4, \ 0xA4, 0x0E, 0x32, 0x9C, 0xCF, 0xF4, 0x6A, 0xAA, \ 0x36, 0xAD, 0x00, 0x4C, 0xF6, 0x00, 0xC8, 0x38, \ 0x1E, 0x42, 0x5A, 0x31, 0xD9, 0x51, 0xAE, 0x64, \ 0xFD, 0xB2, 0x3F, 0xCE, 0xC9, 0x50, 0x9D, 0x43, \ 0x68, 0x7F, 0xEB, 0x69, 0xED, 0xD1, 0xCC, 0x5E, \ 0x0B, 0x8C, 0xC3, 0xBD, 0xF6, 0x4B, 0x10, 0xEF, \ 0x86, 0xB6, 0x31, 0x42, 0xA3, 0xAB, 0x88, 0x29, \ 0x55, 0x5B, 0x2F, 0x74, 0x7C, 0x93, 0x26, 0x65, \ 0xCB, 0x2C, 0x0F, 0x1C, 0xC0, 0x1B, 0xD7, 0x02, \ 0x29, 0x38, 0x88, 0x39, 0xD2, 0xAF, 0x05, 0xE4, \ 0x54, 0x50, 0x4A, 0xC7, 0x8B, 0x75, 0x82, 0x82, \ 0x28, 0x46, 0xC0, 0xBA, 0x35, 0xC3, 0x5F, 0x5C, \ 0x59, 0x16, 0x0C, 0xC0, 0x46, 0xFD, 0x82, 0x51, \ 0x54, 0x1F, 0xC6, 0x8C, 0x9C, 0x86, 0xB0, 0x22, \ 0xBB, 0x70, 0x99, 0x87, 0x6A, 0x46, 0x0E, 0x74, \ 0x51, 0xA8, 0xA9, 0x31, 0x09, 0x70, 0x3F, 0xEE, \ 0x1C, 0x21, 0x7E, 0x6C, 0x38, 0x26, 0xE5, 0x2C, \ 0x51, 0xAA, 0x69, 0x1E, 0x0E, 0x42, 0x3C, 0xFC, \ 0x99, 0xE9, 0xE3, 0x16, 0x50, 0xC1, 0x21, 0x7B, \ 0x62, 0x48, 0x16, 0xCD, 0xAD, 0x9A, 0x95, 0xF9, \ 0xD5, 0xB8, 0x01, 0x94, 0x88, 0xD9, 0xC0, 0xA0, \ 0xA1, 0xFE, 0x30, 0x75, 0xA5, 0x77, 0xE2, 0x31, \ 0x83, 0xF8, 0x1D, 0x4A, 0x3F, 0x2F, 0xA4, 0x57, \ 0x1E, 0xFC, 0x8C, 0xE0, 0xBA, 0x8A, 0x4F, 0xE8, \ 0xB6, 0x85, 0x5D, 0xFE, 0x72, 0xB0, 0xA6, 0x6E, \ 0xDE, 0xD2, 0xFB, 0xAB, 0xFB, 0xE5, 0x8A, 0x30, \ 0xFA, 0xFA, 0xBE, 0x1C, 0x5D, 0x71, 0xA8, 0x7E, \ 0x2F, 0x74, 0x1E, 0xF8, 0xC1, 0xFE, 0x86, 0xFE, \ 0xA6, 0xBB, 0xFD, 0xE5, 0x30, 0x67, 0x7F, 0x0D, \ 0x97, 0xD1, 0x1D, 0x49, 0xF7, 0xA8, 0x44, 0x3D, \ 0x08, 0x22, 0xE5, 0x06, 0xA9, 0xF4, 0x61, 0x4E, \ 0x01, 0x1E, 0x2A, 0x94, 0x83, 0x8F, 0xF8, 0x8C, \ 0xD6, 0x8C, 0x8B, 0xB7, 0xC5, 0xC6, 0x42, 0x4C, \ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF ]) DHM_RFC7919_FFDHE8192_G_BIN = bytes([ 0x02 ]) def generate_ffdh_key_agreement_test_vectors(P, G): K_B = int.to_bytes(0, 4, "big") P_size = (P.bit_length() + 7) // 8 while(K_B[0] == 0): X = random.randint(2, P-2) Y = random.randint(2, P-2) GX = pow(G, X, P) GY = pow(G, Y, P) K = pow(GY, X, P) K_B = int.to_bytes(K, P_size, "big") print("----- FFDH KA Test Vector: Key Size {} (K without leading zeros) -----".format(P_size)) print("P: " + hex(P)) print("G: " + hex(G)) print("X: " + hex(X)) print("GX: " + hex(GX)) print("GY: " + hex(GY)) print("K: " + hex(K)) print("----------------------------------------------------------------------") K_B = int.to_bytes(0xFFFFFFFF, 4, "big") while(K_B[0] != 0): X = random.randint(2, P-2) Y = random.randint(2, P-2) GX = pow(G, X, P) GY = pow(G, Y, P) K = pow(GY, X, P) K_B = int.to_bytes(K, P_size, "big") print("----- FFDH KA Test Vector: Key Size {} (K with leading zeros) -----".format(P_size)) print("P: " + hex(P)) print("G: " + hex(G)) print("X: " + hex(X)) print("GX: " + hex(GX)) print("GY: " + hex(GY)) print("K: " + hex(K)) print("-------------------------------------------------------------------") def main(): P = int.from_bytes( DHM_RFC7919_FFDHE2048_P_BIN, "big" ) G = int.from_bytes( DHM_RFC7919_FFDHE2048_G_BIN, "big" ) generate_ffdh_key_agreement_test_vectors(P, G) P = int.from_bytes( DHM_RFC7919_FFDHE3072_P_BIN, "big" ) G = int.from_bytes( DHM_RFC7919_FFDHE3072_G_BIN, "big" ) generate_ffdh_key_agreement_test_vectors(P, G) P = int.from_bytes( DHM_RFC7919_FFDHE4096_P_BIN, "big" ) G = int.from_bytes( DHM_RFC7919_FFDHE4096_G_BIN, "big" ) generate_ffdh_key_agreement_test_vectors(P, G) P = int.from_bytes( DHM_RFC7919_FFDHE6144_P_BIN, "big" ) G = int.from_bytes( DHM_RFC7919_FFDHE6144_G_BIN, "big" ) generate_ffdh_key_agreement_test_vectors(P, G) P = int.from_bytes( DHM_RFC7919_FFDHE8192_P_BIN, "big" ) G = int.from_bytes( DHM_RFC7919_FFDHE8192_G_BIN, "big" ) generate_ffdh_key_agreement_test_vectors(P, G) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-26 09:04:32 +02:00
Przemek Stekiel	564eb5864b	Add FFDH key generation tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-26 09:04:32 +02:00
Przemek Stekiel	44babc04dc	Add import/export FFDH key tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-26 09:04:32 +02:00
Przemek Stekiel	1d9c2b63d9	Adapt import/export test for FFDH Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-26 09:04:32 +02:00
Tom Cosgrove	10f40916eb	Merge pull request #7462 from daverodgman/clz_size_opt clz size/perf optimisation	2023-04-26 07:06:30 +01:00
Dave Rodgman	4f30a6aa59	Remove undesirable test Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-25 18:07:29 +01:00
Dave Rodgman	2e863ecde9	Remove unnecessary if to save 16 bytes Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-25 17:40:49 +01:00
Przemek Stekiel	d14e04ea72	Use ASSERT_COMPARE for comapring buffers Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-25 14:31:28 +02:00
Minos Galanakis	4dfed0a186	test_suite_ecp: Refactored `ecp_mod_p256k1` to alignt with `ecp_mod_p192k1` Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-25 13:30:59 +01:00
Minos Galanakis	9c2c81f996	ecp_curves: Renamed `ecp_mod_p256k1` -> `mbedtls_ecp_mod_p256k1` Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-25 13:30:59 +01:00
Minos Galanakis	d6751dcd8b	ecp_curves: Added unit-tests for `secp256k1` This patch introduces basic unit-testing for the `ecp_mod_p256k1()`. The method is exposed through the ecp_invasive interface, and the standard testing data is being provided by the python framework. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-25 13:30:59 +01:00
Minos Galanakis	cfb5a5fade	bignum_core_test_suite: Added `mpi_core_shift_l()` Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-25 12:23:34 +01:00
Valerio Setti	14bfdbf908	test: update guards also for pkwrite and pkparse Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 13:53:21 +02:00
Valerio Setti	8bb93bb44c	test: fix max value in test_mx32 Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 13:47:18 +02:00
valerio	e50831c639	test: minor fix for non-initialized variable Signed-off-by: valerio <valerio.setti@nordicsemi.no>	2023-04-24 13:47:18 +02:00
valerio	32f2ac9a18	test: proper positioning of USE_PSA_INIT + added missing exit labels Signed-off-by: valerio <valerio.setti@nordicsemi.no>	2023-04-24 13:47:18 +02:00
Valerio Setti	285dae83dd	test: fix USE_PSA_INIT/DONE for SSL test suite Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 13:47:18 +02:00
Valerio Setti	569c171015	test: fix USE_PSA_INIT/DONE for x509 test suite Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 13:47:18 +02:00
Valerio Setti	b79f7db9b0	test: fix USE_PSA_INIT/DONE for PK test suite Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 13:47:18 +02:00
Manuel Pégourié-Gonnard	0281d7630b	Merge pull request #7449 from valeriosetti/issue7446 Clean up & improve PK write test functions	2023-04-24 13:05:16 +02:00
Valerio Setti	bf974b9b1c	test_suite_pkwrite: replace memcpy with memmove Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 10:26:24 +02:00
Valerio Setti	547b3a4ab5	fix typos Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 10:24:37 +02:00
Valerio Setti	7bacaf859a	fix new line difference in Windows Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-24 08:53:00 +02:00
Gilles Peskine	935a987b2b	Merge pull request #7436 from AndrzejKurek/x509-verify-san-ip x509 SAN IP parsing	2023-04-21 22:00:58 +02:00
Dave Rodgman	bbf881053d	Document undefined case. Clarify test code. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-21 12:54:40 +01:00
Dave Rodgman	678e63007c	Remove test-case for all-zero Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-20 12:28:59 +01:00
Jerry Yu	ad2091d9c2	fix grammar issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-20 10:01:42 +08:00
Dave Rodgman	d54cb83584	Fix tests Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-19 18:46:17 +01:00
Dave Rodgman	fe8a8cd100	Size/perf optimisation for mbedtls_mpi_core_clz Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-19 17:59:12 +01:00
Kusumit Ghoderao	7415539173	Fix code style Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-19 21:00:27 +05:30
Kusumit Ghoderao	3b27a7f6bf	Fix hex_string converter Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-19 17:20:25 +05:30
Kusumit Ghoderao	a14ae5a0c9	Fix input_integer testing Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-19 14:16:26 +05:30
Jerry Yu	d3c7d538f1	Improve comments about the time_delay test. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-19 14:07:59 +08:00
Minos Galanakis	357b9e1342	test_suite_ecp: Refactored `ecp_mod_p224k1` to alignt with `ecp_mod_p192k1` Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-18 14:13:20 +01:00
Minos Galanakis	e5dab975c6	ecp_curves: Added unit-tests for `secp224k1` This patch introduces basic unit-testing for the `ecp_mod_p224k1()`. The method is exposed through the ecp_invasive interface, and the standard testing data is being provided by the python framework. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-18 14:13:20 +01:00
Andrzej Kurek	af04f6307f	Add an IPv4 mapped IPv6 test Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-04-18 07:26:59 -04:00
Janos Follath	3c3b94a31b	Merge pull request #7424 from gabor-mezei-arm/7256_unit_tests_for_p192k1 Add unit tests for ecp_mod_p192k1()	2023-04-18 12:19:40 +01:00
Valerio Setti	2280895784	test: properly check written PEM buffer len Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-18 12:59:06 +02:00
Valerio Setti	232a006a46	test: fix extension in DER test files Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-18 12:53:19 +02:00
Valerio Setti	15cac17da5	test: fix dependencies in DER and PEM tests Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-18 11:32:58 +02:00
Valerio Setti	c9cb5324b7	test: specify input file type through enum Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-18 11:20:36 +02:00
Jerry Yu	ed9b9a7579	Add warning to reserve the reason The test has some issues we can not avoid. Put it in code to avoid it is re-inroduced again Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-18 17:09:03 +08:00
Jerry Yu	d1190a5af3	Update comments and remove delay seconds test Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-18 17:01:50 +08:00
Valerio Setti	3401b306ab	test: use proper macros for checks Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-18 10:42:53 +02:00
Jerry Yu	4852bb823f	remove time delay tests See #1517. They often failed on the CI. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-18 15:02:21 +08:00
Valerio Setti	28567abf4f	test: add DER file format for pkwrite tests Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-17 18:43:55 +02:00
Valerio Setti	c60bc5e700	test: add support for DER format in pkwrite tests Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-17 18:43:06 +02:00
Valerio Setti	8959095e87	test: memory footprint optimization for pkwrite tests Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-17 17:34:42 +02:00
Paul Elliott	4359badbb2	Merge pull request #7331 from mprse/ec-jpake-fix2 PSA PAKE: Check input_length against PSA_PAKE_INPUT_SIZE() in psa_pake_input	2023-04-17 16:31:09 +01:00
Jerry Yu	2f1e85f47e	fix comments issues Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-17 16:53:37 +08:00
Manuel Pégourié-Gonnard	6942cc3da7	Merge pull request #7410 from valeriosetti/issue7390 Define (private) "light" subset of ECP	2023-04-14 13:24:06 +02:00
Dave Rodgman	f33c7e3344	Code style Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 15:34:43 +01:00
Dave Rodgman	9145dc46ed	Ensure variables initialised Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 15:00:07 +01:00
Dave Rodgman	c07df36f9e	More fixes for big-endian Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 14:54:12 +01:00
Andrzej Kurek	fe050815c8	Introduce an additional test for IPV4 parsing Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-04-13 09:20:05 -04:00
Andrzej Kurek	e404612580	Replace old macro in test_suite_x509parse MD_CAN_SHAXXX should be now used. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-04-13 09:19:58 -04:00
Dave Rodgman	b169671c50	Tidy-up Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 13:46:46 +01:00
Dave Rodgman	df2d5b1ca1	Fix compile error Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 13:41:09 +01:00
Dave Rodgman	0a05e703db	Tidy-up Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 13:19:40 +01:00
Dave Rodgman	9dc8b6a6a2	Test fixes for big-endian Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-04-13 12:53:35 +01:00
Gabor Mezei	00c9c7a81b	Remove unneeded limb variables Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-04-13 13:13:14 +02:00
Gabor Mezei	b70f5f1881	Add checks to guarantee positive input parameters Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-04-13 13:12:00 +02:00
Gabor Mezei	b86ead3cb2	Add generated tests for ecp_mod_p192k1 Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-04-13 12:47:59 +02:00
Janos Follath	6d3ec55849	Merge pull request #7329 from minosgalanakis/ecp/unify_test_cases ecp: Unify test cases	2023-04-12 13:23:16 +01:00
Stephan Koch	78109f596a	Fix derive_ecjpake_to_pms dependency to PSA_WANT_ALG_TLS12_ECJPAKE_TO_PMS. Signed-off-by: Stephan Koch <koch@oberon.ch>	2023-04-12 14:19:36 +02:00
Minos Galanakis	6d2ee70e75	test_suite_ecp: Removed `MBEDTLS_ECP_DP_SECP_GENERIC_ENABLED` dependency. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-12 09:44:02 +01:00
Stephan Koch	25c739baf7	Fix PSA AEAD ChaCha20 test dependency. Signed-off-by: Stephan Koch <koch@oberon.ch>	2023-04-11 17:54:31 +02:00
Valerio Setti	9cea093700	test: resolve remaining disparities in test_suite_ssl Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 16:19:11 +02:00
Glenn Strauss	7bd00e0708	use MBEDTLS_PK_CAN_ECDSA_SOME instead of MBEDTLS_ECDSA_C in test data dependencies Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>	2023-04-11 08:29:43 -04:00
Glenn Strauss	700ffa0744	use MBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA_BASED_ON_USE_PSA instead of MBEDTLS_SHA256_C in test data dependencies Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>	2023-04-11 08:29:42 -04:00
Glenn Strauss	6f545acfaf	Add mbedtls_x509_crt_parse_cn_inet_pton() tests Extended from https://github.com/Mbed-TLS/mbedtls/pull/2906 contributed by Eugene K <eugene.kobyakov@netfoundry.io> Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>	2023-04-11 08:29:42 -04:00
Eugene K	3208b0b391	add IP SAN tests changes per mbedTLS standards Signed-off-by: Eugene K <eugene.kobyakov@netfoundry.io>	2023-04-11 08:29:42 -04:00
Valerio Setti	0c477d32e2	test: include also test_suite_ecp for the coverage analysis Only some test cases are skipped for which ECP_C is mandatory, but the other ones are included. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 11:33:50 +02:00
Valerio Setti	6c496a1553	solve disparities for ECP_LIGHT between ref/accel Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 11:33:50 +02:00
Valerio Setti	5278986d2d	psa: fix ECP guards for key derivation Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 11:33:50 +02:00
Valerio Setti	d49cbc1493	test: fix remaining failures in test due to the ECP_LIGHT symbol Changes in test_suite_psa_crypto are to enforce the dependency on ECP_C which is mandatory for some key's derivation. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 11:33:50 +02:00
Manuel Pégourié-Gonnard	6a327a5fdc	Merge pull request #7393 from valeriosetti/issue7389 PK tests: use PSA to generate keypairs when USE_PSA is enabled	2023-04-11 11:27:14 +02:00
Gilles Peskine	02c52a08cd	Merge pull request #7287 from yanrayw/7285-followup-of-PR6500 6500 follow-up: enhancements to the new ssl_helpers test module	2023-04-11 09:31:37 +02:00
Valerio Setti	7816c24f2d	test: fix guards position in test_suite_pk Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 09:16:24 +02:00
Valerio Setti	b3f20da313	test: fix error handling in the new pk_genkey_ec() function Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 09:16:24 +02:00
Valerio Setti	12a063abb7	test: use proper macros for PSA init/done Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 09:16:24 +02:00
Valerio Setti	0b304421d8	ecp: revert changes to ECP module and related tests/programs Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 09:16:24 +02:00
Valerio Setti	b6891b13f6	pk: add alternate function for keypair generation using PSA Instead of using the legacy mbedtls_ecp_gen_keypair() which makes use of ECP's math, when USE_PSA_CRYPTO is enabled then the new function pk_genkey_ec() is used in test_suite_pk. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-11 09:16:24 +02:00
Manuel Pégourié-Gonnard	b16a50eeab	Merge pull request #7392 from valeriosetti/issue7388 PK: use PSA to complete public key when USE_PSA is enabled	2023-04-11 09:09:06 +02:00
Jerry Yu	c9c3e62b3e	workaround the assert fail with tollerance Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-11 14:08:23 +08:00
Jerry Yu	fce8577f73	try to reproduce random assert fail Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-04-11 14:07:38 +08:00
Mukesh Bharsakle	1a4cc5e92c	updating test-ca.key to use AES instead of DES Signed-off-by: Mukesh Bharsakle <bharsaklemukesh975@gmail.com>	2023-04-10 14:05:42 +01:00
Manuel Pégourié-Gonnard	f740767c00	Merge pull request #7391 from valeriosetti/issue7387 PK: don't use mbedtls_ecp_check_pub_priv() when USE_PSA is enabled	2023-04-07 10:17:18 +02:00
Valerio Setti	3fddf250dc	test: use proper macros for PSA init/done Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-07 08:45:34 +02:00
Valerio Setti	34f6755b34	pkparse: add new function for deriving public key from private using PSA Instead of using the legacy mbedtls_ecp_mul() function which makes use of ECP's math, this commit adds a new function named pk_derive_public_key() which implements the same behavior using PSA functions. The flow is simple: - import the private key into PSA - export its public part Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-07 08:45:34 +02:00
Minos Galanakis	92278dc407	test_suite_ecp: Updated dependency macros for ecp_raw_generic. This patch introduces a new local hash define of `MBEDTLS_ECP_DP_SECP_GENERIC_ENABLED` to replace the removed curve specific macros, introduced in upstream. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-06 16:27:44 +01:00
Minos Galanakis	1358648f77	test_suite_ecp: Introduced `ecp_mod_p_generic_raw` This patch replaces similiarly structured test functions for: * MBEDTLS_ECP_DP_SECP192R1 * MBEDTLS_ECP_DP_SECP224R1 * MBEDTLS_ECP_DP_SECP256R1 * MBEDTLS_ECP_DP_SECP384R1 * MBEDTLS_ECP_DP_BP512R1R1 with a more generic version, which adjusts the parameters, based on the `curve_id` field, provided by the testing data. The python test framework has been updated to provide that extra field. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-06 16:27:12 +01:00
Dave Rodgman	0b3de6fcec	Merge pull request #7288 from ronald-cron-arm/tls13-server-version-negotiation TLS: TLS 1.2 / 1.3 version negotiation on server side	2023-04-06 16:26:19 +01:00
Kusumit Ghoderao	02326d5083	Test key_derivation_input_integer function Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>	2023-04-06 17:47:59 +05:30
Ronald Cron	8c1ce223eb	tests: ssl: Restore !MBEDTLS_SSL_PROTO_TLS1_3 dependency Restore the dependency on !MBEDTLS_SSL_PROTO_TLS1_3 of the DTLS fragmentation tests. That way the test is not run on Windows 2013 (as in development) where there is an issue with MBEDTLS_PRINTF_SIZET when running those tests. I will address this issue in a separate PR. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-04-06 13:20:40 +02:00
Ronald Cron	097ba146e7	tls: srv: Set hybrid TLS 1.2/1.3 as default configuration Set hybrid TLS 1.2/1.3 as default server configuration if both TLS 1.2 and TLS 1.3 are enabled at build time. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-04-06 10:26:18 +02:00
Ronald Cron	43263c045a	tests: ssl: Extend move to handshake state tests Extend move to handshake state tests to reach most of TLS 1.2 and 1.3 handshake states. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-04-06 10:26:18 +02:00
Ronald Cron	3b35455a69	tls: srv: Allow server hybrid TLS 1.2 and 1.3 configuration Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-04-06 10:26:18 +02:00
Ronald Cron	ea8a1ea17a	tests: ssl: Add some missing dependencies Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-04-06 10:26:17 +02:00
Minos Galanakis	00bd8925a7	bignum: Removed merge scaffolding. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-04-05 16:13:11 +01:00
Przemek Stekiel	39dbe23845	Release memory for subject alt name in test Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	79354c3c4d	Use MBEDTLS_MD_CAN_SHA1 macro as test dependency Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	09720e2228	Remove redundant test cases Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	019842119d	Adapt test for authority_key_id (parsing subject alt name) Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	75653b1df0	Add indication of extension error while parsing authority/subject key id Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	6ec839a1f9	x509_get_authority_key_id: add length check + test Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	8661fed943	Fix tests dependencies Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
Przemek Stekiel	9a511c5bdf	Rename back mbedtls_x509_parse_general_name->mbedtls_x509_parse_subject_alt_name Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 17:48:28 +02:00
toth92g	9085cff438	Removing obsolete test after merging and correcting missing macro Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:28 +02:00
toth92g	8d435a0c8b	Renaming x509_get_subject_alt_name to x509_get_general_names and mbedtls_x509_parse_subject_alt_name to mbedtls_x509_parse_general_name so they can be used not only to collect subject alt name, but the V3 authority cert issuer that is also GeneralName type. Also updated the x509_get_general_names function to be able to parse rfc822Names Test are also updated according these changes. Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:28 +02:00
toth92g	5042b104c2	- Removing obsolete test files (DER strings are used instead of them to minimize resource usage) - Renaming test functions to match the naming conventions Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:28 +02:00
toth92g	357b297b16	Correcting tests: - Wrong condition was checked (ref_ret != 0 instead of ref_ret == 0) - tags were not checked (nor lengths) - Using ASSERT_COMPARE where possible Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:27 +02:00
toth92g	2d2fb3a5a7	Correting findings: Using DER format instead of PEM while testing to minimize the resource usage. Comparation of byte arrays in test are now done via the dedicated ASSERT_COMPARE test macro for better understanding Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:27 +02:00
toth92g	0e2e2d6841	x509parse tests used only last 16 bits of the return values. They are updated to check the whole 32 bit value Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:27 +02:00
toth92g	3c2243c6d5	Replacing hard-coded literals with macros of the library in the new x509parse tests Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:27 +02:00
toth92g	a41954d0cf	Extracting SubjectKeyId and AuthorityKeyId in case of x509 V3 extensions. Updating mbedtls_x509_crt_free function to also free the new dynamic elements (issuer field of AuthorityKeyId). A few tests are also added which test the feature with a correct certificate and multiple ones with erroneous ASN1 tags. Signed-off-by: toth92g <toth92g@gmail.com>	2023-04-04 17:48:27 +02:00
Dave Rodgman	56f59d749c	Merge pull request #7394 from mprse/fix_pkcs7_test_alloc Fix memory allocations in pkcs7_verify test	2023-04-04 15:46:59 +01:00
Janos Follath	13c73de6de	Merge pull request #6233 from tom-cosgrove-arm/issue-6226-core-mul Bignum: extract core_mul from the prototype	2023-04-04 13:36:22 +01:00
Ronald Cron	219f978097	Merge pull request #7059 from ronald-cron-arm/psa-crypto-misc PSA cryptography miscellaneous	2023-04-04 10:54:03 +02:00
Valerio Setti	98680fc2ed	ecp: revert changes to ECP module and test suite Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-04 10:22:59 +02:00
Przemek Stekiel	9735be5ef3	Fix memory allocations in pkcs7_verify test Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-04 09:07:10 +02:00
Manuel Pégourié-Gonnard	86d5d4bf31	Merge pull request #7103 from valeriosetti/issue6622 Some MAX_SIZE macros are too small when PSA ECC is accelerated	2023-04-03 16:23:27 +02:00
Valerio Setti	0fe1ee27e5	pk: add an alternative function for checking private/public key pairs Instead of using the legacy mbedtls_ecp_check_pub_priv() function which was based on ECP math, we add a new option named eckey_check_pair_psa() which takes advantage of PSA. Of course, this is available when MBEDTLS_USE_PSA_CRYPTO in enabled. Tests were also fixed accordingly. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-03 15:00:21 +02:00
Gabor Mezei	f8b55d6358	Fix code style issues Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-04-03 14:13:46 +02:00
Valerio Setti	c6ecdad42d	test: disable all RSA algs and fix tests All RSA associated algs are now forcedly disabled both on library and driver sides. Some PSA driver tests required to be fixed because they were just requiring for not having the built-in version, but they didn't check if the driver one was present (kind of assuming that RSA was always supported on the driver side). Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-04-03 08:26:35 +02:00
Dave Rodgman	dd48c6e3df	Merge pull request #7385 from daverodgman/timing_alignment Fix cast alignment warning in timing.c	2023-03-31 19:48:34 +01:00
Dave Rodgman	d43b42ebfa	Whitespace fix Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-31 18:04:34 +01:00
Dave Rodgman	4ffc9d80f7	Test that setting reset actually does something Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-31 17:07:26 +01:00
Gabor Mezei	87223ab1ce	Add generated test for core_mul Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-03-31 16:17:06 +02:00
Tom Cosgrove	e16a945421	Add unit tests for mbedtls_mpi_core_mul() The test cases use the following MPI values. The .data file only includes those (a, b) values where a <= b; the test code does a * b and b * a. 0 1 80 ff 100 fffe ffff 10000 ffffffff 100000000 20000000000000 7f7f7f7f7f7f7f7f 8000000000000000 ffffffffffffffff 10000000000000000 10000000000000001 1234567890abcdef0 fffffffffffffffffefefefefefefefe 100000000000000000000000000000000 1234567890abcdef01234567890abcdef0 ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff 1234567890abcdef01234567890abcdef01234567890abcdef01234567890abcdef0 4df72d07b4b71c8dacb6cffa954f8d88254b6277099308baf003fab73227f34029643b5a263f66e0d3c3fa297ef71755efd53b8fb6cb812c6bbf7bcf179298bd9947c4c8b14324140a2c0f5fad7958a69050a987a6096e9f055fb38edf0c5889eca4a0cfa99b45fbdeee4c696b328ddceae4723945901ec025076b12b The lines in the .data file were generated by the following script ``` #!/usr/bin/env perl # # mpi-test-core-mul.pl - generate MPI tests in Perl for mbedtls_mpi_core_mul() # use strict; use warnings; use Math::BigInt; use sort 'stable'; my $echo = 0; my @mul_mpis = qw( 0 1 80 ff 100 fffe ffff 10000 ffffffff 100000000 20000000000000 7f7f7f7f7f7f7f7f 8000000000000000 ffffffffffffffff 10000000000000000 10000000000000001 1234567890abcdef0 fffffffffffffffffefefefefefefefe 100000000000000000000000000000000 1234567890abcdef01234567890abcdef0 ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff 1234567890abcdef01234567890abcdef01234567890abcdef01234567890abcdef0 4df72d07b4b71c8dacb6cffa954f8d88254b6277099308baf003fab73227f34029643b5a263f66e0d3c3fa297ef71755efd53b8fb6cb812c6bbf7bcf179298bd9947c4c8b14324140a2c0f5fad7958a69050a987a6096e9f055fb38edf0c5889eca4a0cfa99b45fbdeee4c696b328ddceae4723945901ec025076b12b ); generate_tests(); sub generate_tests { generate_mbedtls_mpi_core_mul(); } sub generate_mbedtls_mpi_core_mul { my $sub_name = (caller(0))[3]; # e.g. main::generate_mbedtls_mpi_sub_mpi my ($ignore, $test_name) = split("main::generate_", $sub_name); my @cases = (); for my $ah (@mul_mpis) { for my $bh (@mul_mpis) { my $a = Math::BigInt->from_hex($ah); my $b = Math::BigInt->from_hex($bh); next if $a > $b; # don't need to repeat test cases my $r = $a * $b; my $rh = $r->to_hex(); my $desc = "$test_name #NUMBER: 0x$ah * 0x$bh = 0x$rh"; my $case = output($test_name, str($ah), str($bh), str($rh)); push(@cases, [$case, $desc]); } } output_cases("", @cases); } sub output_cases { my ($explain, @cases) = @_; my $count = 1; for my $c (@cases) { my ($case, $desc, $dep) = @$c; $desc =~ s/NUMBER/$count/; $count++; if (defined($explain) && $desc =~ /EXPLAIN/) { $desc =~ s/EXPLAIN/$explain/; $explain = ""; } my $depends = ""; $depends = "depends_on:$dep\n" if defined($dep) && length($dep); print <<EOF; $desc $depends$case EOF } } sub output { return join(":", @_); } sub str { return '"' . $_[0] . '"'; } ``` Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com> Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-03-31 16:16:05 +02:00
Dave Rodgman	b8f5ba826b	Merge pull request #6891 from yuhaoth/pr/add-milliseconds-platform-function Add milliseconds platform time function	2023-03-31 11:47:37 +01:00
Ronald Cron	e6e6b75ad3	psa: Remove MBEDTLS_PSA_CRYPTO_DRIVERS configuration option The support for the PSA crypto driver interface is not optional anymore as the implementation of the PSA cryptography interface has been restructured around the PSA crypto driver interface (see psa-crypto-implementation-structure.md). There is thus no purpose for the configuration options MBEDTLS_PSA_CRYPTO_DRIVERS anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-03-31 09:07:54 +02:00
Paul Elliott	03d557db35	Merge pull request #6900 from AndrzejKurek/san-dirname Add support for directoryName subjectAltName	2023-03-30 18:37:26 +01:00
Janos Follath	54118a1720	Merge pull request #7352 from gabor-mezei-arm/6349_fix_merge Remove obsolete ecp_fix_negative function	2023-03-30 14:48:13 +01:00
Andrzej Kurek	43d7131c14	Fix rfc822name test arguments Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:41:32 -04:00
Andrzej Kurek	532b8d41af	Move an x509 malformation test Now, that the errors are not silently ignored anymore, instead of expecting a <malformed> tag in parsed data, the test case returns an error. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:40:36 -04:00
Andrzej Kurek	d90376ef46	Add a test for a malformed directoryname sequence Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:38:45 -04:00
Andrzej Kurek	d348632a6a	Switch from PEM to DER format for new x509 directoryname test This simplifies generating malformed data and doesn't require the PEM support for tests. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:03:01 -04:00
Andrzej Kurek	151d85d82c	Introduce a test for a malformed directoryname SAN Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:03:01 -04:00
Andrzej Kurek	d40c2b65a6	Introduce proper memory management for SANs DirectoryName parsing performs allocation that has to be handled. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:03:01 -04:00
Andrzej Kurek	e12b01d31b	Add support for directoryName subjectAltName Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-03-29 11:03:01 -04:00
Valerio Setti	e4758aa34b	test: add a companion test for another curve (x25519) and fix issues Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-29 10:28:06 +02:00
Valerio Setti	1a6d96f59e	test: use full config as test starting point and solve issues Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-29 10:28:06 +02:00
Valerio Setti	659aa686c8	test: use BUILTIN symbols in as weierstrass key derivation guard Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-29 10:27:18 +02:00
Valerio Setti	a532983e56	test: add legacy dependency for weierstrass key derivation Weierstrass key derivation still depends on ECP_C (no driver dispatch yet), so the legacy dependency is still mandatory here. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-29 10:27:18 +02:00
Gabor Mezei	df9c029dd5	Remove obsolete ecp_fix_negative function Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2023-03-28 18:43:07 +02:00
Janos Follath	0f5086847c	Merge pull request #7343 from minosgalanakis/ecp/sec-384-update-test-macro-deps ecp: Updated ecp384 depedency macro	2023-03-28 15:04:10 +01:00
Paul Elliott	f04848cc3b	Revert "Add generated files" This reverts commit `df2b5da57f`. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-27 21:20:52 +01:00
Minos Galanakis	37bdd93730	ecp_mod_p224_raw: Added `MBEDTLS_ECP_DP_SECP224R1_ENABLED` as a dependency Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-03-27 18:19:22 +01:00
Paul Elliott	d01a3bca05	Merge tag 'v3.4.0' into mbedtls-3.4.0_mergeback Mbed TLS 3.4.0	2023-03-27 18:09:49 +01:00
Janos Follath	445c3bfcac	Merge pull request #7222 from minosgalanakis/bignum/6851_extract_Secp384r1_fast_reduction Bignum: Extract secp384r1 fast reduction from the prototype	2023-03-27 16:56:30 +01:00
Manuel Pégourié-Gonnard	c584c27426	Disable built-in SHA-256 in accel_hash too Now that Entropy doesn't need it any more, we can have driver-only SHA-256 (and 224 with it) in the non-USE_PSA component too. This reveals a missing PSA_INIT in a PK test using SHA-256. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-24 10:43:40 +01:00
Manuel Pégourié-Gonnard	e9319772b3	Fix failures in test_suite_random Appeared after the dependencies were changed to use MD_CAN. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-24 10:43:40 +01:00
Manuel Pégourié-Gonnard	33783b4646	Manually fix two remaining instances of old macros Unless I missed something, all remaining instance of all macros are in files where it makes sense to use these. I went over the output of: git grep -c -E 'MBEDTLS_(MD5\|RIPEMD160\|SHA[0-9])_C' and I think all the files listed fall into one of the following acceptable categories: - documentation and historical documents: Changelog, docs//.md - config files and related: mbedtls_config.h, configs/*.h, check_config.h, config_psa.h, etc. - scripts that build/modify configs: all.sh, depends.py, set_psa_test_dependencies.py, etc. - implementation of MD or PSA or related: md.h, psa_util.h, etc. and corresponding test suites - implementation of hashes: md5.c, sha256.h, etc. and corresponding test suites - two example programs using a low-level hash API: hash/hello.c, pkey/ecdsa.c - test/benchmark.c, test/selftest.c: actually want our built-in implementations - a function in test_suite_psa_crypto_storage_format that is specifically for checking if the hash is built in. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-24 10:43:40 +01:00
Manuel Pégourié-Gonnard	93302422fd	Fix instances of old feature macros being used sed -i -f md.sed include/mbedtls/ssl.h library/hmac_drbg.c programs/pkey/.c programs/x509/.c tests/scripts/generate_pkcs7_tests.py tests/suites/test_suite_random.data Then manually revert programs/pkey/ecdsa.c as it's using a low-level hash API. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-24 10:43:40 +01:00
Manuel Pégourié-Gonnard	2334d3a9b1	Fix driver_wrappers test These were assuming that psa_crypto_init() doesn't call hashes, which is not always correct. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-24 10:43:40 +01:00
Manuel Pégourié-Gonnard	5cd4b6403b	Use MD-light in entropy.c Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-24 10:43:40 +01:00
Przemek Stekiel	038a3a6b95	Extend j-pake input getters tests for user and peer Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-23 13:37:18 +01:00
Przemek Stekiel	b175b146a2	Remove driver_pake_get_role function Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-23 13:37:18 +01:00
Przemek Stekiel	43af7c8a8a	Adapt pake tests Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-23 13:37:18 +01:00
Manuel Pégourié-Gonnard	ac6db4d649	Merge pull request #7317 from mpg/lift-exclusions Lift exclusions from driver-only hash component	2023-03-23 12:01:01 +01:00
Paul Elliott	df2b5da57f	Add generated files Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-23 10:58:43 +00:00
Paul Elliott	db67e99bbf	Bump library, libcrypto and libx509 versions Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-23 10:57:39 +00:00
Przemek Stekiel	69aba90e5b	Add tests case for step with different buffer size Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-03-23 08:06:09 +01:00
Valerio Setti	13ce40323f	test_suite_ssl: remove redundant dependencies when the key exchange is specified Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-22 10:40:05 +01:00
Valerio Setti	7a2f39692a	ecdhe: solve disparities in accelerated ECDHE vs reference Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-22 10:37:45 +01:00
Minos Galanakis	37f4cb6d0e	ecp_curves: Minor rework for p384 This patch adjusts formatting, documentation and testing. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-03-21 15:46:50 +00:00
Minos Galanakis	619385d8bc	test_suite_ecp: Added ecp_mod_p384_raw() test case. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2023-03-21 15:45:17 +00:00
Manuel Pégourié-Gonnard	8965b65bd8	Remove now-spurious dependencies Now that HMAC-DRBG can use driver, so can deterministic ECDSA Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:42:06 +01:00
Manuel Pégourié-Gonnard	91cc8bbc87	Enable ECDSA-det in driver-only hashes component Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:42:06 +01:00
Manuel Pégourié-Gonnard	d111fbdad1	Enable HMAC-DRBG in driver-only hashes component Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:42:05 +01:00
Manuel Pégourié-Gonnard	0d1921c4c2	Enable HKDF in driver-only hashes test Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:42:05 +01:00
Paul Elliott	f1eb5e2a04	Merge branch 'development-restricted' into mbedtls-3.4.0rc0-pr Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-03-21 15:35:17 +00:00
Manuel Pégourié-Gonnard	7d381f517a	MD: use MD_CAN in test suite and check for parity Split the part the varies between driver/built-in builds to a separate file for convenience. Fix analyze_outcomes.py to be able to exclude specific data files and not just a whole family at once. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:29:31 +01:00
Manuel Pégourié-Gonnard	7224086ebc	Remove legacy_or_psa.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:29:31 +01:00
Manuel Pégourié-Gonnard	23fc437037	SSL: fix test failures 1. Change USE_PSA_CRYPTO_INIT/DONE to MD_OR_USE. 2. Add missing occurrences - some of these were already necessary in principle (in one form or another) but where missing and this was not detected so far as `psa_hash` doesn't complain in case of a missing init, but now MD makes it visible. 3. Add missing include in ssl_test_lib.h. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:29:31 +01:00
Manuel Pégourié-Gonnard	bef824d394	SSL: use MD_CAN macros Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:29:31 +01:00
Manuel Pégourié-Gonnard	33a13028e5	X.509: fix test failures Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	a946489efd	X.509: use MD_CAN macros Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	fa99afa2bc	PK: fix test failures Introduce MD_OR_USE_PSA_INIT/DONE. This will likely be used everywhere in X.509 and SSL/TLS, but most places in PK only need USE_PSA_INIT/DONE. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	0b8095d96a	PK: use MD_CAN macros sed -i -f md.sed tests/suites/test_suite_pk{,parse,write}.* Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	ebef58d301	OID + misc crypto: use MD_CAN and fix failures After this, only PK, X.509 and TLS remain to be done. Deterministic uses HMAC-DRBG which uses MD, so it needs crypto_init() when using a driver-only hash. Also, remove a special-purpose macro that's no longer needed. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	1d3bf24555	test_suite_psa_crypto: use PSA_WANT Could use MD_CAN, as both are equivalent when MBEDTLS_PSA_CRYPTO_C is defined, but using PSA_WANT is preferable in a PSA context. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	a5f04621bd	PKCS5: use MD_CAN macros sed -i -f md.sed library/pkcs5.c tests/suites/test_suite_pkcs5* include/mbedtls/pkcs5.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	49e67f814f	PKCS5: always use MD As a consequence, MD_C is now enabled in component accel_hash_use_psa. Fix guards in X.509 info function to avoid this causing a failure now. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	c1f10441e0	RSA: use MD_CAN macros sed -i -f md.sed library/rsa.c tests/suites/test_suite_rsa* include/mbedtls/rsa.h tests/suites/test_suite_pkcs1_v* Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	fb8d90a2db	RSA: always use MD light Note: already auto-enabled in build_info.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	52d02a85d3	PEM: use MD_CAN macros sed -i -f md.sed library/pem.c tests/suites/test_suite_pem* include/mbedtls/pem.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	1c2008fa37	PEM: always use MD light Note: PEM_PARSE already auto-enables MD_LIGHT in build_info.h Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	0baad53ac9	PKCS12: use MD_CAN macros sed -i -f md.sed library/pkcs12.c tests/suites/test_suite_pkcs12.* include/mbedtls/pkcs12.h with md.sed as before. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	be97afe5d4	PKCS12: always use MD light Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	b2eb1f7456	ECJPAKE: use MD_CAN macros sed -i -f md.sed \ library/ecjpake.c \ include/medtls/ecjpake.h \ tests/suites/test_suite_ecjpake.* With md.sed as follows: s/\bMBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_MD5/g s/\bMBEDTLS_HAS_ALG_RIPEMD160_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_RIPEMD160/g s/\bMBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA1/g s/\bMBEDTLS_HAS_ALG_SHA_224_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA224/g s/\bMBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA256/g s/\bMBEDTLS_HAS_ALG_SHA_384_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA384/g s/\bMBEDTLS_HAS_ALG_SHA_512_VIA_MD_OR_PSA_BASED_ON_USE_PSA\b/MBEDTLS_MD_CAN_SHA512/g s/\bMBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_MD5/g s/\bMBEDTLS_HAS_ALG_RIPEMD160_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_RIPEMD160/g s/\bMBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA1/g s/\bMBEDTLS_HAS_ALG_SHA_224_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA224/g s/\bMBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA256/g s/\bMBEDTLS_HAS_ALG_SHA_384_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA384/g s/\bMBEDTLS_HAS_ALG_SHA_512_VIA_MD_OR_PSA\b/MBEDTLS_MD_CAN_SHA512/g s/\bMBEDTLS_HAS_ALG_MD5_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_MD5/g s/\bMBEDTLS_HAS_ALG_RIPEMD160_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_RIPEMD160/g s/\bMBEDTLS_HAS_ALG_SHA_1_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA1/g s/\bMBEDTLS_HAS_ALG_SHA_224_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA224/g s/\bMBEDTLS_HAS_ALG_SHA_256_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA256/g s/\bMBEDTLS_HAS_ALG_SHA_384_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA384/g s/\bMBEDTLS_HAS_ALG_SHA_512_VIA_LOWLEVEL_OR_PSA\b/MBEDTLS_MD_CAN_SHA512/g s/\bMBEDTLS_MD5_C\b/MBEDTLS_MD_CAN_MD5/g s/\bMBEDTLS_RIPEMD160_C\b/MBEDTLS_MD_CAN_RIPEMD160/g s/\bMBEDTLS_SHA1_C\b/MBEDTLS_MD_CAN_SHA1/g s/\bMBEDTLS_SHA224_C\b/MBEDTLS_MD_CAN_SHA224/g s/\bMBEDTLS_SHA256_C\b/MBEDTLS_MD_CAN_SHA256/g s/\bMBEDTLS_SHA384_C\b/MBEDTLS_MD_CAN_SHA384/g s/\bMBEDTLS_SHA512_C\b/MBEDTLS_MD_CAN_SHA512/g Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	41bc8b6b1e	ECJPAKE: always use MD light This enables access to all available hashes, instead of the previous situation where you had to choose by including MD_C or not. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	ffcda5679a	Make MD_PSA_INIT/DONE available to all suites Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-21 16:28:00 +01:00
Manuel Pégourié-Gonnard	e0e161b54a	Merge pull request #7296 from valeriosetti/issue7253-part1 driver-only ECDH: enable ECDH-based TLS 1.2 key exchanges -- part 1	2023-03-21 16:09:02 +01:00
Dave Rodgman	3543806026	Merge pull request #7190 from yanrayw/6197_rsa_get_padding_hashID RSA: provide interface to retrieve padding mode and hash_id	2023-03-20 18:34:53 +00:00
Dave Rodgman	d3b6e92967	Merge pull request #997 from gilles-peskine-arm/aesni-intrinsics Implement AESNI with intrinsics	2023-03-20 18:20:51 +00:00
Valerio Setti	fdea36d137	test_suite_ssl: remove redundant ECDH dependencies when the key exchange is specified Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-20 14:02:07 +01:00
Valerio Setti	866aa187e8	ecdh: solve disparities in accelerated ECDH vs reference Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-03-20 14:02:07 +01:00
Manuel Pégourié-Gonnard	14c194aae9	Merge pull request #7271 from mpg/use-md-light Use md light	2023-03-20 09:01:16 +01:00
Yanray Wang	69bc8403eb	rsa_tests: use TEST_EQUAL instead of TEST_ASSERT Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-17 20:33:08 +08:00
Yanray Wang	e05a21f084	rsa: add a test to check default padding mode and hash_id Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-17 20:09:20 +08:00
Yanray Wang	15d3df7aec	rsa: add positive test cases for getter functions Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-17 19:49:04 +08:00
Yanray Wang	d41684e8bc	rsa.c: rename getter function of hash_id Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-03-17 18:57:42 +08:00
Paul Elliott	9f02a4177b	Merge pull request #7009 from mprse/csr_write_san Added ability to include the SubjectAltName extension to a CSR - v.2	2023-03-17 10:07:27 +00:00
Manuel Pégourié-Gonnard	6ea8d3414f	Fix a comment Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-03-17 09:43:50 +01:00
Manuel Pégourié-Gonnard	ec000c1a00	Merge pull request #7242 from mpg/md-dispatch-psa Implement MD dispatch to PSA	2023-03-17 09:42:40 +01:00
Gilles Peskine	28e4dc1e39	Fix use of arithmetic on void* Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-03-16 21:39:47 +01:00
Janos Follath	c18cd0c8e6	Merge pull request #7230 from gabor-mezei-arm/6850_Secp256r1_fast_reduction Extract Secp256r1 fast reduction from the prototype	2023-03-16 19:43:25 +00:00
Dave Rodgman	4a060ffa59	Merge pull request #7303 from daverodgman/msan_bzero_testcase Add tests that cover msan explicit_bzero issue	2023-03-16 17:55:19 +00:00
Gilles Peskine	844f65dc65	Explicitly test AES contexts with different alignments Don't leave it up to chance. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-03-16 14:54:48 +01:00
Dave Rodgman	0a3c72df02	Add explanatory comment Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-03-16 13:43:32 +00:00

... 6 7 8 9 10 ...

5740 commits