mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2025-01-25 17:40:58 +00:00
Merge remote-tracking branch 'upstream-public/pr/1900' into mbedtls-2.7
Add a Changelog entry
This commit is contained in:
commit
9eb78b4dab
|
@ -11,6 +11,10 @@ Bugfix
|
||||||
This improves compliance to RFC 4492, and as a result, solves
|
This improves compliance to RFC 4492, and as a result, solves
|
||||||
interoperability issues with BouncyCastle. Raised by milenamil in #1157.
|
interoperability issues with BouncyCastle. Raised by milenamil in #1157.
|
||||||
|
|
||||||
|
Changes
|
||||||
|
* Improve compatibility with some alternative CCM implementations by using
|
||||||
|
CCM test vectors from RAM.
|
||||||
|
|
||||||
= mbed TLS 2.7.5 branch released 2018-07-25
|
= mbed TLS 2.7.5 branch released 2018-07-25
|
||||||
|
|
||||||
Security
|
Security
|
||||||
|
|
|
@ -358,7 +358,8 @@ int mbedtls_ccm_auth_decrypt( mbedtls_ccm_context *ctx, size_t length,
|
||||||
*/
|
*/
|
||||||
|
|
||||||
#define NB_TESTS 3
|
#define NB_TESTS 3
|
||||||
|
#define CCM_SELFTEST_PT_MAX_LEN 24
|
||||||
|
#define CCM_SELFTEST_CT_MAX_LEN 32
|
||||||
/*
|
/*
|
||||||
* The data is the same for all tests, only the used length changes
|
* The data is the same for all tests, only the used length changes
|
||||||
*/
|
*/
|
||||||
|
@ -378,7 +379,7 @@ static const unsigned char ad[] = {
|
||||||
0x10, 0x11, 0x12, 0x13
|
0x10, 0x11, 0x12, 0x13
|
||||||
};
|
};
|
||||||
|
|
||||||
static const unsigned char msg[] = {
|
static const unsigned char msg[CCM_SELFTEST_PT_MAX_LEN] = {
|
||||||
0x20, 0x21, 0x22, 0x23, 0x24, 0x25, 0x26, 0x27,
|
0x20, 0x21, 0x22, 0x23, 0x24, 0x25, 0x26, 0x27,
|
||||||
0x28, 0x29, 0x2a, 0x2b, 0x2c, 0x2d, 0x2e, 0x2f,
|
0x28, 0x29, 0x2a, 0x2b, 0x2c, 0x2d, 0x2e, 0x2f,
|
||||||
0x30, 0x31, 0x32, 0x33, 0x34, 0x35, 0x36, 0x37,
|
0x30, 0x31, 0x32, 0x33, 0x34, 0x35, 0x36, 0x37,
|
||||||
|
@ -389,7 +390,7 @@ static const size_t add_len[NB_TESTS] = { 8, 16, 20 };
|
||||||
static const size_t msg_len[NB_TESTS] = { 4, 16, 24 };
|
static const size_t msg_len[NB_TESTS] = { 4, 16, 24 };
|
||||||
static const size_t tag_len[NB_TESTS] = { 4, 6, 8 };
|
static const size_t tag_len[NB_TESTS] = { 4, 6, 8 };
|
||||||
|
|
||||||
static const unsigned char res[NB_TESTS][32] = {
|
static const unsigned char res[NB_TESTS][CCM_SELFTEST_CT_MAX_LEN] = {
|
||||||
{ 0x71, 0x62, 0x01, 0x5b, 0x4d, 0xac, 0x25, 0x5d },
|
{ 0x71, 0x62, 0x01, 0x5b, 0x4d, 0xac, 0x25, 0x5d },
|
||||||
{ 0xd2, 0xa1, 0xf0, 0xe0, 0x51, 0xea, 0x5f, 0x62,
|
{ 0xd2, 0xa1, 0xf0, 0xe0, 0x51, 0xea, 0x5f, 0x62,
|
||||||
0x08, 0x1a, 0x77, 0x92, 0x07, 0x3d, 0x59, 0x3d,
|
0x08, 0x1a, 0x77, 0x92, 0x07, 0x3d, 0x59, 0x3d,
|
||||||
|
@ -403,7 +404,13 @@ static const unsigned char res[NB_TESTS][32] = {
|
||||||
int mbedtls_ccm_self_test( int verbose )
|
int mbedtls_ccm_self_test( int verbose )
|
||||||
{
|
{
|
||||||
mbedtls_ccm_context ctx;
|
mbedtls_ccm_context ctx;
|
||||||
unsigned char out[32];
|
/*
|
||||||
|
* Some hardware accelerators require the input and output buffers
|
||||||
|
* would be in RAM, because the flash is not accessible.
|
||||||
|
* Use buffers on the stack to hold the test vectors data.
|
||||||
|
*/
|
||||||
|
unsigned char plaintext[CCM_SELFTEST_PT_MAX_LEN];
|
||||||
|
unsigned char ciphertext[CCM_SELFTEST_CT_MAX_LEN];
|
||||||
size_t i;
|
size_t i;
|
||||||
int ret;
|
int ret;
|
||||||
|
|
||||||
|
@ -422,27 +429,32 @@ int mbedtls_ccm_self_test( int verbose )
|
||||||
if( verbose != 0 )
|
if( verbose != 0 )
|
||||||
mbedtls_printf( " CCM-AES #%u: ", (unsigned int) i + 1 );
|
mbedtls_printf( " CCM-AES #%u: ", (unsigned int) i + 1 );
|
||||||
|
|
||||||
|
memset( plaintext, 0, CCM_SELFTEST_PT_MAX_LEN );
|
||||||
|
memset( ciphertext, 0, CCM_SELFTEST_CT_MAX_LEN );
|
||||||
|
memcpy( plaintext, msg, msg_len[i] );
|
||||||
|
|
||||||
ret = mbedtls_ccm_encrypt_and_tag( &ctx, msg_len[i],
|
ret = mbedtls_ccm_encrypt_and_tag( &ctx, msg_len[i],
|
||||||
iv, iv_len[i], ad, add_len[i],
|
iv, iv_len[i], ad, add_len[i],
|
||||||
msg, out,
|
plaintext, ciphertext,
|
||||||
out + msg_len[i], tag_len[i] );
|
ciphertext + msg_len[i], tag_len[i] );
|
||||||
|
|
||||||
if( ret != 0 ||
|
if( ret != 0 ||
|
||||||
memcmp( out, res[i], msg_len[i] + tag_len[i] ) != 0 )
|
memcmp( ciphertext, res[i], msg_len[i] + tag_len[i] ) != 0 )
|
||||||
{
|
{
|
||||||
if( verbose != 0 )
|
if( verbose != 0 )
|
||||||
mbedtls_printf( "failed\n" );
|
mbedtls_printf( "failed\n" );
|
||||||
|
|
||||||
return( 1 );
|
return( 1 );
|
||||||
}
|
}
|
||||||
|
memset( plaintext, 0, CCM_SELFTEST_PT_MAX_LEN );
|
||||||
|
|
||||||
ret = mbedtls_ccm_auth_decrypt( &ctx, msg_len[i],
|
ret = mbedtls_ccm_auth_decrypt( &ctx, msg_len[i],
|
||||||
iv, iv_len[i], ad, add_len[i],
|
iv, iv_len[i], ad, add_len[i],
|
||||||
res[i], out,
|
ciphertext, plaintext,
|
||||||
res[i] + msg_len[i], tag_len[i] );
|
ciphertext + msg_len[i], tag_len[i] );
|
||||||
|
|
||||||
if( ret != 0 ||
|
if( ret != 0 ||
|
||||||
memcmp( out, msg, msg_len[i] ) != 0 )
|
memcmp( plaintext, msg, msg_len[i] ) != 0 )
|
||||||
{
|
{
|
||||||
if( verbose != 0 )
|
if( verbose != 0 )
|
||||||
mbedtls_printf( "failed\n" );
|
mbedtls_printf( "failed\n" );
|
||||||
|
|
Loading…
Reference in a new issue