yuzu-mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-mirror/mbedtls.git synced 2025-12-06 07:12:32 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
25540 commits 89 branches 205 tags 114 MiB
Commit graph

25540 commits

This branch
This branch
All branches
Author SHA1 Message Date
Gabor Mezei b6653f3e27
Update comments 
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>
 2023-05-12 12:34:12 +02:00
Gabor Mezei dcaf99ebb8
Add another round in the Koblitz reduction 
The addition can result in an overflow so another round is needed
in the reduction.

Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>
 2023-05-12 12:34:05 +02:00
Yanray Wang 012b6bb99e all.sh: test AES built-in implementation in AES-128-bit key only 
Signed-off-by: Yanray Wang <yanray.wang@arm.com>
 2023-05-12 11:21:56 +08:00
Antonio de Angelis 1a0feb394c Set LANGUAGES explicitly in CMakeLists.txt project() 
When Mbed TLS is built as a TF-M subproject with a recent
enough version of cmake (i.e. 3.22), GNUInstallDirs complains
about LANGUAGES not being set in project when the short
signature is used. So make sure to use the normal signature,
i.e. set the LANGUAGES option explicitly

Signed-off-by: Antonio de Angelis <antonio.deangelis@arm.com>
 2023-05-11 18:39:20 +02:00
Bence Szépkúti e06d863267
Merge pull request #7538 from bensze01/in-tree-redirects 
Add in-tree configuration file for Readthedocs redirects
 2023-05-11 15:07:06 +02:00
Przemek Stekiel ea52e1a43f Add changelog entry (FFDH driver dispatch) 
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
 2023-05-11 12:23:12 +02:00
Yanray Wang d896fcb0d5 nist_kw.c: remove non-128-bit data if aes_128bit_only enabled 
Signed-off-by: Yanray Wang <yanray.wang@arm.com>
 2023-05-11 18:09:42 +08:00
Przemek Stekiel c80e7506a0 Handle simple copy import/export before driver dispatch 
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
 2023-05-11 12:06:00 +02:00
Przemek Stekiel c4019fa74f Fix peer vs our key missmatch in ffdh key agreement transparent driver 
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
 2023-05-11 12:06:00 +02:00
Przemek Stekiel a59255f04f Adapt guards in ffdh driver 
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
 2023-05-11 12:06:00 +02:00
Przemek Stekiel c49163e786 Adapt test driver configuration for FFDH 
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
 2023-05-11 12:06:00 +02:00
Przemek Stekiel bfba51d672 Add FFDH support for transparent drivers(generate, export public key) 
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
 2023-05-11 12:05:53 +02:00
Yanray Wang 93533b51a8 gcm.c: do not set length for some arrays in selftest 
Signed-off-by: Yanray Wang <yanray.wang@arm.com>
 2023-05-11 17:57:17 +08:00
Yanray Wang d329c69fba gcm selftest: remove non-128-bit data if aes_128bit_only enabled 
This commit sets a loop_limit to omit AES-GCM-192 and AES-GCM-256
if MBEDTLS_AES_ONLY_128_BIT_KEY_LENGTH enabled.

Signed-off-by: Yanray Wang <yanray.wang@arm.com>
 2023-05-11 17:57:17 +08:00
Yanray Wang dd56add42d cmac selftest: add macro for non-128-bit data/test 
Signed-off-by: Yanray Wang <yanray.wang@arm.com>
 2023-05-11 17:57:17 +08:00
Yanray Wang 59c2dfa48c aes selftest: determine selftest loop limit in runtime 
Signed-off-by: Yanray Wang <yanray.wang@arm.com>
 2023-05-11 17:56:21 +08:00
Minos Galanakis 013167ed7f bignum_common.py: Addressed minor typos 
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
 2023-05-11 10:54:44 +01:00
Przemek Stekiel dccb20204a Add test component for accelerated FFDH 
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
 2023-05-11 11:31:51 +02:00
Bence Szépkúti 71f41deebc Work around Readthedocs command parsing bug 
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2023-05-11 10:41:03 +02:00
Yanray Wang 62c9991a5b aes selftest: remove non-128-bit data if aes_128bit_only enabled 
Signed-off-by: Yanray Wang <yanray.wang@arm.com>
 2023-05-11 11:11:17 +08:00
Paul Elliott 481a6a8edb
Merge pull request #7482 from gabor-mezei-arm/6029_use_core_api_in_ecp_mod_koblitz 
[Bignum] Use core API in ecp_mod_koblitz()
 2023-05-10 17:24:46 +01:00
Andrzej Kurek 199eab97e7 Add partial support for URI SubjectAltNames 
Only exact matching without normalization is supported.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
 2023-05-10 09:57:19 -04:00
Mukesh Bharsakle 4823d5ff0e
Merge branch 'Mbed-TLS:development' into update-pkparse-tests-to-use-AES 2023-05-10 12:35:19 +01:00
Yanray Wang 463351d824 ChangeLog: remove issue number as this is a new feature 
Signed-off-by: Yanray Wang <yanray.wang@arm.com>
 2023-05-10 18:10:03 +08:00
Yanray Wang 7265bab8ad mbedtls_config.h: remove empty * line before closing */ line 
Signed-off-by: Yanray Wang <yanray.wang@arm.com>
 2023-05-10 17:50:58 +08:00
Yanray Wang d2ae432364 mbedtls_config.h: rewrite comment for AES_ONLY_128_BIT_KEY_LENGTH 
Signed-off-by: Yanray Wang <yanray.wang@arm.com>
 2023-05-10 17:49:34 +08:00
Manuel Pégourié-Gonnard 1d046fa0dd
Merge pull request #6010 from mprse/ffdh_import_export 
FFDH 1, 2A, 2B: FFDH add support for import/export key, key agreement, key generation + tests
 2023-05-10 11:40:54 +02:00
Yanray Wang a30c72fc44 rewrite ChangeLog 
Signed-off-by: Yanray Wang <yanray.wang@arm.com>
 2023-05-10 10:13:39 +08:00
Yanray Wang ab4fb0d34c aes.h: rewrite comment for aes round key buf 
Signed-off-by: Yanray Wang <yanray.wang@arm.com>
 2023-05-10 10:06:14 +08:00
Yanray Wang 5dd429c8df generate_psa_tests.py: fix typo 
Signed-off-by: Yanray Wang <yanray.wang@arm.com>
 2023-05-10 09:58:51 +08:00
Pengyu Lv a57f677474 cert_audit: Fix DER files missed from parsing 
Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>
 2023-05-10 09:41:33 +08:00
Pengyu Lv ee870a6e83 cert_audit: Remove merge_auditdata 
We maintain a dict with unique AudiData objects
(AuditData with unique underlying X.509 objects).
We don't need merge_auditdata anymore.

Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>
 2023-05-10 09:41:33 +08:00
Pengyu Lv e09d27e723 cert_audit: Use dictionary to store parsed AuditData 
Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>
 2023-05-10 09:41:33 +08:00
Pengyu Lv 31e3d12be9 cert_audit: Output format improvement 
We should print all the information for each objects
found every line. This makes it easy to analyze the
output.

Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>
 2023-05-10 09:41:33 +08:00
Pengyu Lv 13f2ef4949 cert_audit: Calculate identifier for X.509 objects 
The identifier is calculated SHA1 hex string from
the DER encoding of each X.509 objects. It's useful
for finding out the identical X.509 objects.

Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>
 2023-05-10 09:41:33 +08:00
Pengyu Lv fd72d9f556 cert_audit: Fix bug in check_cryptography_version 
check_cryptography_version didn't provide helpful
message with Python < 3.6, because re.Match object
is not subscriptable.

Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>
 2023-05-10 09:41:33 +08:00
Pengyu Lv 0b4832bbf5 cert_audit: Sort the outputs by not_valid_after date 
Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>
 2023-05-10 09:41:33 +08:00
Pengyu Lv fe13bd3d0e cert_audit: Merge audit_data for identical X.509 objects 
Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>
 2023-05-10 09:41:33 +08:00
Pengyu Lv e245c0c734 cert_audit: Support parsing file with multiple PEMs 
Previously, if a file had multiple PEM objects, only
the first one would be parsed. This commit add the
support so that we could parse all the PEM objects
in the file.

Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>
 2023-05-10 09:41:33 +08:00
Bence Szépkúti 09f8df86ac Reword the API token explanation in redirects.yaml 
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2023-05-09 21:07:30 +02:00
Bence Szépkúti 6a89a04ffe Use if statement for post_build control flow 
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2023-05-09 20:11:51 +02:00
David Horstmann 4dfa368681 Fix demo scripts for out-of-tree builds 
Allow demo scripts to be run from the build directory for out-of-tree
builds.

If the executable is not found in the source tree then search in the
current directory in case the script is being run from a build
directory.

Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2023-05-09 18:30:05 +01:00
Gilles Peskine 8d42cfddd6
Merge pull request #7539 from gilles-peskine-arm/mbedtls_error_pair_t-smaller 
Halve size of mbedtls_error_pair_t
 2023-05-09 15:55:51 +02:00
Bence Szépkúti ddfd0a27df
Merge pull request #7399 from lpy4105/issue/7014/certificate-audit-script 
cert_audit: Add test certificate date audit script
 2023-05-09 13:10:01 +02:00
Pol Henarejos 2d8076978a
Fix coding style. 
Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
 2023-05-09 11:44:57 +02:00
Pengyu Lv eb2c39ed2b Install cryptography only on linux platform 
Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>
 2023-05-09 02:15:58 +00:00
Gilles Peskine 97edeb4fb8
Merge pull request #6866 from mprse/extract-key-ids 
Extracting SubjectKeyId and AuthorityKeyId in case of x509 V3 extensions v.2
 2023-05-08 20:38:29 +02:00
Kusumit Ghoderao 9016bc4ed2 Clean up commented code 
Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>
 2023-05-08 16:04:05 +05:30
Kusumit Ghoderao 3fc4ca7272 Limit max input cost to 32bit 
Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>
 2023-05-08 15:57:41 +05:30
Kusumit Ghoderao d0422f30c5 Enable empty salt as input for pbkdf2 
Signed-off-by: Kusumit Ghoderao <Kusumit.Ghoderao@silabs.com>
 2023-05-08 15:56:19 +05:30