mbedtls

mirror of https://github.com/yuzu-emu/mbedtls.git synced 2024-11-25 19:35:39 +01:00

Author	SHA1	Message	Date
Andrzej Kurek	7e6075b7fd	Merge pull request #3499 from AndrzejKurek/fi-duplicate-buffers-revert Revert a part of the sensitive information duplication changes	2020-07-21 11:03:50 +02:00
Andrzej Kurek	4353b698ed	hmac_drbg: make no reseeding behaviour explicit Add a flag to the hmac_drbg context that will signal that reseeding is not required. Change tests and one ecdsa call to not use reseeding, as was the previous case. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-19 09:00:18 -04:00
Andrzej Kurek	fac2f9b4ce	aes: move the fake key operations to AES_SCA_COUNTERMEASURES define Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-19 05:01:44 -04:00
Andrzej Kurek	f6265441b0	hmac_drbg: fix default value of the prediction resistance in ctx After changing the possible prediction resistance values to have more hamming distance between them, 0 (default initialization value) no longer meant no prediction resistance. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-18 07:09:04 -04:00
Andrzej Kurek	6bc37fa4e2	hmac_drbg: set_entropy_len can now return an error Make mbedtls_hmac_drbg_set_entropy_len return an error in case of a too long entropy length setting. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-18 06:05:03 -04:00
Andrzej Kurek	9167aa96f8	hmac_drbg: change two variables to be volatile Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-18 06:02:59 -04:00
Andrzej Kurek	e78775eed2	Use a fake random key in AES calculations Create an additional field in the AES context to store a randomized fake key. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-18 05:21:32 -04:00
Andrzej Kurek	8917326d7b	Introduce sha256 security review fixes Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-18 00:42:39 -04:00
Andrzej Kurek	3403969645	Add a comment regarding remaining space check Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-17 05:49:47 -04:00
Andrzej Kurek	a9a5ff5f31	aes: add a comment about expected keybits value. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-17 03:28:32 -04:00
Andrzej Kurek	11ddf25828	Add minor FI countermeasures improvements Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-17 03:28:32 -04:00
Andrzej Kurek	189ee74a82	Add a platform function to return a random uint32_t Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-17 03:28:32 -04:00
Andrzej Kurek	3ed65d2b84	Add a return from pk_get_ueccpubkey if uecc_public_key_read_binary fails Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-17 02:17:38 -04:00
Andrzej Kurek	c3b69edd2f	Increase hamming distance by changing UECC_SUCCESS from 0 to FFAAAA Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-16 11:33:34 -04:00
Andrzej Kurek	a798e5d5cc	Introduce additional buffer size checks to pk.c Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-16 11:32:53 -04:00
Andrzej Kurek	ddc2db4c13	x509.c: Remove one unnecessary cast Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-16 04:41:48 -04:00
Andrzej Kurek	cf3e35cc58	Revert a part of sensitive information duplication from tinycrypt Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-15 22:32:30 -04:00
Andrzej Kurek	afec8853c5	Revert a part of the sensitive information duplication changes Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-15 16:31:27 -04:00
Andrzej Kurek	c417c783e5	Merge pull request #3481 from AndrzejKurek/fi_duplicate_buffers_2 Duplicate sensitive buffer and buffer length information	2020-07-15 11:56:36 +02:00
Andrzej Kurek	45e719983f	Minor formatting and cosmetic changes Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-08 10:09:44 -04:00
Andrzej Kurek	ca60937cf9	Add buffer and context clearing upon suspected FI Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-08 09:25:49 -04:00
Andrzej Kurek	0919b142b6	Formatting changes Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-06 15:28:59 -04:00
Andrzej Kurek	84bde419e1	Add FI countermeasures to the ssl module This commit adds mainly buffer pointer and length duplication and checks, but also some hamming distance and return values checking improvements. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-06 15:27:34 -04:00
Andrzej Kurek	74f7d0f03d	Duplicate sensitive buffer and buffer length information Detect FI attacks on buffer pointers and buffer lengths. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-07-06 14:28:12 -04:00
Shelly Liberman	a24c8414cf	Merge pull request #3439 from piotr-now/fic_switch Add FI countermeasures for sensitive switch instructions	2020-07-05 10:55:13 +03:00
Andrzej Kurek	1206cf1ff4	Merge pull request #3467 from AndrzejKurek/cipher-wrap-aes-128-optimize Wrap AES 192 and 256 info structures in an !AES_ONLY_128_BIT_KEY_LENGTH define	2020-07-01 10:36:58 +01:00
Piotr Nowicki	78fc139121	Add FI countermeasures for sensitive switch instructions Signed-off-by: Piotr Nowicki <piotr.nowicki@arm.com>	2020-06-30 14:11:52 +02:00
Andrzej Kurek	77647bd03b	Wrap AES 192 and 256 info structures in !AES_ONLY_128_BIT_KEY_LENGTH This reduces the code size by not compiling in unnecessary info structures when using only 128 bit AES. Co-authored by: AnttiKauppila <antti.kauppila@arm.com> Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-06-30 05:03:19 -04:00
Andrzej Kurek	98c847a483	Merge pull request #3395 from AndrzejKurek/sha-flow_ctrl Add flow control to sha256	2020-06-22 11:30:53 +01:00
Andrzej Kurek	e5425a0944	Merge pull request #3408 from AndrzejKurek/hamming-distance-improvements Hamming distance improvements	2020-06-22 08:28:55 +01:00
Andrzej Kurek	3a0df03364	Increase the Hamming distance of uECC_generate_random_int returns Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-06-12 06:32:13 -04:00
Piotr Nowicki	f523c47578	Merge pull request #3403 from piotr-now/sca_memmove Add mbedtls_platform_memmove() as a secured memcmp()	2020-06-10 14:52:02 +02:00
Piotr Nowicki	ce0aab4474	Add new error code PLATFORM_ALLOC_FAILED for mbedtls_platform_memmove() Signed-off-by: Piotr Nowicki <piotr.nowicki@arm.com>	2020-06-10 13:51:32 +02:00
Andrzej Kurek	78f77eb4e6	Add flow control to sha256 Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-06-10 05:12:34 -04:00
Piotr Nowicki	c520b90507	Merge pull request #3390 from piotr-now/rndelay_comment Add comment for mbedtls_platform_random_delay() and returning an FAULT_DETECTED error on potential FI attack detection	2020-06-10 09:13:10 +02:00
Piotr Nowicki	5d5841f450	Add mbedtls_platform_memmove() as a secured memcmp() Signed-off-by: Piotr Nowicki <piotr.nowicki@arm.com>	2020-06-09 14:31:55 +02:00
Piotr Nowicki	e048b91d25	Add returning a FAULT_DETECTED error on suspected FI attacks The change applies to the places where we prevent double synchronous FI attacks with random delay, and where we do not respond to their detection. The response to such an attack should be to return the appropriate error code. Signed-off-by: Piotr Nowicki <piotr.nowicki@arm.com>	2020-06-09 12:00:42 +02:00
Andrzej Kurek	8f52a8a8c0	Improve the Hamming distance of ssl_hs_is_proper_fragment return values Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-06-08 11:02:22 -04:00
Andrzej Kurek	090365fe60	Improve the usage of uECC_RNG_Function Since the mbed TLS implementation of rng wrapper returns the size of random data generated upon success - check for it explicitly. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-06-08 11:00:51 -04:00
Piotr Nowicki	b06ec05dc0	Add comment for mbedtls_platform_random_delay() Signed-off-by: Piotr Nowicki <piotr.nowicki@arm.com>	2020-06-08 14:21:38 +02:00
Andrzej Kurek	478b05c34c	Merge pull request #3355 from AndrzejKurek/fi_error_codes Change the default value of status variables to an error	2020-06-08 08:57:33 +01:00
Andrzej Kurek	fd56f409b3	Change the default value of status variables to an error Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-06-05 12:26:07 -04:00
Andrzej Kurek	0da03c70e9	Merge pull request #3379 from AndrzejKurek/fi_check_loops Add flow control to tinycrypt verification	2020-06-01 17:05:41 +01:00
Andrzej Kurek	e601bcee00	Add flow control to tinycrypt verification Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-06-01 07:31:15 -04:00
Piotr Nowicki	e071e42480	Merge pull request #3336 from piotr-now/baremetal_flowmon Increasing resistance to fault injection attacks related with memory operations.	2020-06-01 08:09:26 +02:00
Piotr Nowicki	f0ab6d62ac	Added some descriptions of functions Signed-off-by: Piotr Nowicki <piotr.nowicki@arm.com>	2020-05-27 15:35:44 +02:00
Piotr Nowicki	1a9d33e8c8	Start comparison from a random location in the uECC_vli_equal. This increases security and increases resistance to the side channel leakage. Signed-off-by: Piotr Nowicki <piotr.nowicki@arm.com>	2020-05-27 15:34:49 +02:00
Andrzej Kurek	fc7c69df25	Merge pull request #3330 from AndrzejKurek/merge-2.16-8b34fef Merge mbedtls-2.16 commit `8b34fef` into baremetal	2020-05-27 10:00:59 +01:00
Andrzej Kurek	8ac4a55402	test_suite_x509parse: shorten test names Change "Certificate" to "CRT" to shorten the test name and blend in between surrounding tests. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-05-25 10:21:14 -04:00
Andrzej Kurek	220e61478f	Add a x509 prerequisite in x509_internal.h Lack of this requirement caused warning when compiling the x509 test suites with config-thread.h from example configs, resulting in an error when running from test-ref-configs.pl. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2020-05-21 10:13:38 -04:00

1 2 3 4 5 ...

10543 Commits