Driver dispatch for PSA asymmetric encryption + RSA tests #5292
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
mprse
added this to To Do
in OBSOLETE - PLEASE SEE https://github.com/orgs/Mbed-TLS/projects/2
via automation
mprse
force-pushed
the
asym_encrypt
branch
4 times, most recently
from
ce99bd8
to
089f9f3
Compare
|
In this PR I also see the problem with windows build (but different than #5139 (comment)): |
mprse
moved this from To Do
to In Development
in OBSOLETE - PLEASE SEE https://github.com/orgs/Mbed-TLS/projects/2
mprse
moved this from In Development
to In Review
in OBSOLETE - PLEASE SEE https://github.com/orgs/Mbed-TLS/projects/2
mprse
changed the title
|
I couldn't find test vectors for all functions/algorithms:
|
mprse
added
needs-review
mprse
added
component-psa
mprse
moved this from In Review
to To Do
in OBSOLETE - PLEASE SEE https://github.com/orgs/Mbed-TLS/projects/2
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
…encrypt Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
…decrypt Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
Tested key types: PSA_ALG_RSA_PKCS1V15_SIGN_RAW PSA_ALG_RSA_PKCS1V15_SIGN(PSA_ALG_SHA_256) Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
Tested algs: PSA_ALG_RSA_PKCS1V15_SIGN(PSA_ALG_SHA_256) Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
gilles-peskine-arm
removed
the
approved
* Remove expected_output_data: since asymmetric encryption is randomized, it can't be useful. * The decryption check needs the private exponent, not the public exponent. * Use PSA macro for the expected ciphertext buffer size. * Move RSA sanity checks to their own function for clarity. * For RSAES-PKCS1-v1_5, check that the result of the private key operation has the form 0x00 0x02 ... 0x00 M where M is the plaintext. * For OAEP, check that the result of the private key operation starts with 0x00. The rest is the result of masking which it would be possible to check here, but not worth the trouble of implementing. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
gilles-peskine-arm
added
needs-ci
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
mprse
moved this from In Development
to In Review
in OBSOLETE - PLEASE SEE https://github.com/orgs/Mbed-TLS/projects/2
|
|
| psa_status_t forced_status_encrypt = forced_status_encrypt_arg; | ||
| psa_status_t expected_status_encrypt = expected_status_encrypt_arg; | ||
| psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT; | ||
| (void)expected_output_data; |
| mbedtls_mpi_init( &X ); | ||
| #endif /* MBEDTLS_BIGNUM_C */ | ||
|
|
||
| int ok = 0; |
There was a problem hiding this comment.
Maybe ret instead of ok?
There was a problem hiding this comment.
We use the convention ret for (0 = success, MBEDTLS_ERR_xxx = error, sometimes >0 = output size). For boolean return values (1 = success, 0 = failure), we use a different variable name. In the test suites it's typically ok.
AndrzejKurek
approved these changes
Mar 10, 2022
bensze01
moved this from In Review
to Has Approval
in OBSOLETE - PLEASE SEE https://github.com/orgs/Mbed-TLS/projects/2
gilles-peskine-arm
approved these changes
Mar 10, 2022
There was a problem hiding this comment.
Thanks for doing those last changes. Looks good to me!
Please backport the improvements related to testing with signature to 2.28. I'm going to merge this pull request without waiting for a backport to avoid bitrot.
OBSOLETE - PLEASE SEE https://github.com/orgs/Mbed-TLS/projects/2
automation
moved this from Has Approval
to Done
Mar 10, 2022
gilles-peskine-arm
added
approved
daverodgman
removed this from Done
in OBSOLETE - PLEASE SEE https://github.com/orgs/Mbed-TLS/projects/2
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
Resolves #5250. Resolves #5249.
Driver dispatch for PSA asymmetric encryption.
Status
READY
Requires Backporting
Yes 2.x?
Migrations
NO
Todos
psa_asymmetric_decrypt