TeamHepta/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2026-05-12 23:04:31 +02:00
Code Issues Packages Projects Releases Wiki Activity
18,329 Commits 179 Branches 280 Tags
ce04f2473782317ef2fb81d9700f7c8f734efe95
Commit Graph

6303 Commits

Author SHA1 Message Date
Dave Rodgman
ce04f24737 Add -O2 to some CFLAGS which were not setting it 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2024-01-04 10:34:31 +00:00
Dave Rodgman
374b188468 Don't specify gcc unless the test requires it 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2024-01-04 10:30:57 +00:00
Dave Rodgman
b046b9a96b Enable -O2 in depends.py 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2024-01-04 10:26:22 +00:00
Dave Rodgman
5b00fb111f Use gcc in test_psa_compliance 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2024-01-04 10:26:17 +00:00
Dave Rodgman
b0660c22d9 Ensure test_psa_compliance uses gcc 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2024-01-04 10:26:07 +00:00
Dave Rodgman
e0a2f6d08d Ensure clang is present 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2024-01-04 10:24:34 +00:00
Dave Rodgman
62be456449 Use clang by default 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2024-01-04 10:24:30 +00:00
David Horstmann
ec4c47f62b Move MPI initialization to start of function 
This prevents a call to mbedtls_mpi_free() on uninitialized data when
USE_PSA_INIT() fails.

Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2023-12-08 18:36:07 +00:00
Bence Szépkúti
e1c6c4c962 Do not run Valgrind tests in PR jobs 
Co-authored-by: Dave Rodgman <dave.rodgman@arm.com>
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2023-12-06 16:47:51 +00:00
Ronald Cron
ba77a66475 Align forced ciphersuite with test description 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2023-11-29 10:15:14 +08:00
Ronald Cron
6f2183f756 ssl-opt.sh: Remove unnecessary symmetric crypto dependencies 
Same test cases as in the previous commit.
Remove the redundant symmetric crypto dependency.
The dependency is ensured by the fact that:
1) the test case forces a cipher suite
2) ssl-opt.sh enforces automatically that the
   forced ciphersuite is available.
3) The fact that the forced ciphersuite is
   available implies that the symmetric
   cipher algorithm it uses is available as
   well.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2023-11-29 10:15:12 +08:00
Ronald Cron
237e3f8e53 ssl-opt.sh: Fix some symmetric crypto dependencies 
Fix some dependencies on symmetric crypto that
were not correct in case of driver but not
builtin support. Revealed by "Analyze driver
test_psa_crypto_config_accel_cipher_aead vs reference
test_psa_crypto_config_reference_cipher_aead" in
analyze_outcomes.py.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2023-11-29 10:13:50 +08:00
Ronald Cron
a8b474f42f ssl-opt.sh: Add a check of the list of supported ciphersuites 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2023-11-29 10:11:47 +08:00
Ronald Cron
46a660a2c5 ssl-opt.sh: Fix getting the list of supported ciphersuites. 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2023-11-29 10:11:17 +08:00
Gilles Peskine
c3a9bdb2b5 Detect enabled GCC/Clang sanitizers 
Occasionally we want tests to take advantage of sanitizers, or work around
them.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-22 18:00:31 +01:00
Dave Rodgman
b9c70581a0 Merge pull request #8222 from tgonzalezorlandoarm/tg/backport-psa-low-hash-mac-size 
Backport 2.28: Start testing the PSA built-in drivers: hashes
 2023-11-21 15:39:36 +00:00
Gilles Peskine
181844fa1f Merge pull request #8491 from mschulz-at-hilscher/mbedtls-2.28 
Backport 2.28: "CSR parsing with critical fields fails" #8377
 2023-11-20 14:07:31 +00:00
Gilles Peskine
d4084fd899 Readability improvement 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-16 15:56:52 +01:00
Gilles Peskine
c41133b90d Add documentation 
Explain the goals of metatests, how to write them, and how to read their
output.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-16 15:56:52 +01:00
Gilles Peskine
e38eb79e89 Add metatests for mutex usage 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-16 15:56:23 +01:00
Gilles Peskine
ee8af06887 Run metatests in selected components 
Run metatests in some components, covering both GCC and Clang, with ASan,
MSan or neither.

Note that this commit does not cover constant-flow testing builds or Valgrind.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-16 15:56:23 +01:00
Gilles Peskine
6effdff76b Script to run all the metatests (with platform filtering) 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-16 15:56:23 +01:00
Tomás González
5fae560b4a Update new license headers 
Signed-off-by: Tomás González <tomasagustin.gonzalezorlando@arm.com>
 2023-11-13 11:45:12 +00:00
Gilles Peskine
ac5fcd4540 Update license 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-08 19:19:18 +01:00
Gilles Peskine
bfc1844eb2 Merge pull request #8480 from yuhaoth/backports/7649/add-command-for-server9-bad-saltlen 
Backports for #7649 : add command for server9-bad-saltlen
 2023-11-08 19:04:27 +01:00
Dave Rodgman
79659cdf22 Merge pull request #8469 from daverodgman/mbedtls-2.28.6-pr 
Mbedtls 2.28.6
 2023-11-08 18:01:18 +00:00
Dave Rodgman
a645708949 Restore bump version 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2023-11-08 11:50:57 +00:00
Matthias Schulz
9a0ad5c427 Changed the test to reflect mbedTLS's current behavior. 
Signed-off-by: Matthias Schulz <mschulz@hilscher.com>
 2023-11-07 16:40:22 +01:00
Matthias Schulz
5240ab0c98 Backported test cases from https://github.com/Mbed-TLS/mbedtls/pull/8378 
Signed-off-by: Matthias Schulz <mschulz@hilscher.com>
 2023-11-07 16:21:49 +01:00
Dave Rodgman
d6d43ec8a5 Merge pull request #8485 from gilles-peskine-arm/check-files-license-2.28 
Backport 2.28: Check copyright statements and SPDX license statements
 2023-11-06 17:07:48 +00:00
Gilles Peskine
32ffbfd139 Pacify mypy 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-06 13:25:37 +01:00
Gilles Peskine
1b4f036dd4 Also complain if licenses are mentioned 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-06 13:25:37 +01:00
Gilles Peskine
15db6822a3 Check copyright statements and SPDX license identifier 
Enforce a specific copyright statement and a specific SPDX license
identifier where they are present.

Binary files, third-party modules and a few other exceptions are not
checked.

There is currently no check that copyright statements and license
identifiers are present.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-06 13:25:37 +01:00
Gilles Peskine
5136156750 Sort imports 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-06 13:25:37 +01:00
Paul Elliott
8243ebf6b3 Merge pull request #8477 from paul-elliott-arm/full_no_platform_2_28 
[Backport 2.28] Add build preset full_no_platform
 2023-11-06 11:35:12 +00:00
Jerry Yu
0c835dbae3 move script to tests/scripts 
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>
 2023-11-06 10:06:03 +08:00
Jerry Yu
8c31148af0 fix wrong typo and indent issue 
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>
 2023-11-06 10:04:42 +08:00
Jerry Yu
dbb7b467d2 Add server9-bad-saltlen generate command 
Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>
 2023-11-06 10:04:42 +08:00
Paul Elliott
6805037a45 Add build preset full_no_platform 
Add build preset as above, and utilise it in
all.sh:component_test_no_platform.

Signed-off-by: Paul Elliott <paul.elliott@arm.com>
 2023-11-03 19:24:56 +00:00
Dave Rodgman
7ff7965561 Update headers 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2023-11-03 12:04:52 +00:00
Dave Rodgman
1df57fcc0e Merge pull request #8196 from tgonzalezorlandoarm/tg/check_test_cases 
Backport 2.28: Make check_test_cases.py recognize test case name templates in ssl-opt.sh
 2023-11-02 12:22:40 +00:00
Gilles Peskine
e25a619824 Remove dead code 
Do explain why we don't test a smaller buffer in addition to testing the
nominal size and a larger buffer.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
Signed-off-by: Tomás González <tomasagustin.gonzalezorlando@arm.com>
 2023-10-31 09:32:36 +00:00
Tomás González
2bff1bfd47 New test suite for the low-level hash interface 
Some basic test coverage for now:

* Nominal operation.
* Larger output buffer.
* Clone an operation and use it after the original operation stops.

Generate test data automatically. For the time being, only do that for
hashes that Python supports natively. Supporting all algorithms is future
work.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
Signed-off-by: Tomás González <tomasagustin.gonzalezorlando@arm.com>
 2023-10-31 09:32:35 +00:00
Tomás González
734d22c03e Move PSA information and dependency automation into their own module 
This will let us use these features from other modules (yet to be created).

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
Signed-off-by: Tomás González <tomasagustin.gonzalezorlando@arm.com>
 2023-10-31 09:31:20 +00:00
Paul Elliott
f29cc32a06 Merge pull request #8390 from gilles-peskine-arm/20231017-misc-cleanup-2.28 
Backport 2.28: Cleanups in test code
 2023-10-30 18:07:47 +00:00
Tomás González
aaea3a3148 check_test_cases: Unify walk_compat_sh and walk_opt_sh into one 
walk_compat_sh and walk_opt_sh are basically the same now, so:

 * Merge them into one function.
 * Use the --list-test-cases option for both of them.
 * Rename this merged function as collect_from_script which seems
   more appropriate as since it isn't iterating the script but
   calling it.

Signed-off-by: Tomás González <tomasagustin.gonzalezorlando@arm.com>
 2023-10-30 14:23:57 +00:00
Tomás González
cbb2e45e96 ssl-opt: Introduce --list-test-cases option 
Signed-off-by: Tomás González <tomasagustin.gonzalezorlando@arm.com>
 2023-10-30 14:23:56 +00:00
Gilles Peskine
e3d1c76818 Fix invocation with explicit .datax file 
Don't chdir when invoking a test suite executable with an explicit .datax
file. The point of the chdir is to automatically find the .datax file (and
the relative location of the data_files directory) in typical cases. This
conflicts with the expectation that passing a relative path to a .datax file
will work.

(This is what I had originally intended, and what is documented in the
comment, but I forgot to add the argc check in the initial commit.)

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-10-25 17:47:42 +02:00
Gilles Peskine
290e008925 Define try_chdir everywhere 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-10-25 17:47:42 +02:00
Gilles Peskine
460cf76ef5 Note about the lack of Windows support 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-10-25 17:47:42 +02:00