Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								9a1ba0dd3f 
								
							 
						 
						
							
							
								
								Typo in the documentation of psa_get_key_information  
							
							
							
						 
						
							2018-09-05 11:53:26 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								1906798d4c 
								
							 
						 
						
							
							
								
								Fix some typos and copypasta  
							
							
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								ed522974bd 
								
							 
						 
						
							
							
								
								Clarify how multipart operations get terminated  
							
							
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								971f7064e9 
								
							 
						 
						
							
							
								
								More precise reference for the RSA public key format  
							
							
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								7e19853722 
								
							 
						 
						
							
							
								
								More documentation  
							
							
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								d393e18f90 
								
							 
						 
						
							
							
								
								Add psa_set_key_lifetime  
							
							... 
							
							
							
							It is likely that most implementations won't support this function.
But in case an implementation wants to provide it, standardize its
interface. 
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								e3f694f49a 
								
							 
						 
						
							
							
								
								Remove non-standard hash algorithms  
							
							
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								06dc26350e 
								
							 
						 
						
							
							
								
								Fix macro definitions for ECC keys  
							
							... 
							
							
							
							Public keys and key pairs have different types. 
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								03182e99b6 
								
							 
						 
						
							
							
								
								Fix parameter name in PSA_BLOCK_CIPHER_BLOCK_SIZE  
							
							
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								f5b9fa13e0 
								
							 
						 
						
							
							
								
								Documentation clarifications  
							
							... 
							
							
							
							Clarify or add the documentation of some functions and constants.
Add a note about what the __DOXYGEN_ONLY__ section is for. 
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								2905a7adcc 
								
							 
						 
						
							
							
								
								Fix namespace violation  
							
							
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								609b6a5b67 
								
							 
						 
						
							
							
								
								Get the lifetime of a key slot  
							
							
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								7698bcf338 
								
							 
						 
						
							
							
								
								Basic interface for key policies  
							
							... 
							
							
							
							Get/set the policy of a key slot.
Opaque structure for key policies and field access functions. 
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								92b3073e36 
								
							 
						 
						
							
							
								
								Minor documentation fixes  
							
							
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								3b555710e2 
								
							 
						 
						
							
							
								
								Prototypes for AEAD functions  
							
							... 
							
							
							
							This is still tentative. 
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								428dc5aef1 
								
							 
						 
						
							
							
								
								Prototypes for symmetric cipher functions  
							
							
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								7e4acc5ef8 
								
							 
						 
						
							
							
								
								Document some MAC functions: psa_mac_start  
							
							... 
							
							
							
							Adapt the documentation of hash functions.
State that the key object does not need to remain valid throughout the
operation. 
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								8c9def3e7f 
								
							 
						 
						
							
							
								
								PSA: Implement MAC functions  
							
							... 
							
							
							
							Implement psa_mac_start, psa_mac_update and psa_mac_final.
Implement HMAC anc CMAC.
Smoke tests. 
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								308b91d7db 
								
							 
						 
						
							
							
								
								Wrote documentation for several functions, macros and types  
							
							... 
							
							
							
							Document key import/export functions, hash functions, and asymmetric
sign/verify, as well as some related macros and types.
Nicer formatting for return values: use \retval. 
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								9ef733faa0 
								
							 
						 
						
							
							
								
								Implement hash functions  
							
							... 
							
							
							
							New header file crypto_struct.h. The main file crypto.sh declares
structures which are implementation-defined. These structures must be
defined in crypto_struct.h, which is included at the end so that the
structures can use types defined in crypto.h.
Implement psa_hash_start, psa_hash_update and psa_hash_final. This
should work for all hash algorithms supported by Mbed TLS, but has
only been smoke-tested for SHA-256, and only in the nominal case. 
							
						 
						
							2018-09-05 11:53:25 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								a590529938 
								
							 
						 
						
							
							
								
								Greatly expanded mbedtls_to_psa_error  
							
							... 
							
							
							
							It now covers most cryptography algorithm modules (missing: bignum,
DHM, everything ECC, HMAC_DRBG). 
							
						 
						
							2018-09-05 11:53:24 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								98f0a24255 
								
							 
						 
						
							
							
								
								Improve key type and algorithm encodings  
							
							... 
							
							
							
							Refine the encoding of key types and algorithms so that ranges of bits
make more sense.
Define a few symmetric cipher algorithms. 
							
						 
						
							2018-09-05 11:53:24 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								0189e7512d 
								
							 
						 
						
							
							
								
								PSA crypto: PSA_ASYMMETRIC_SIGN_OUTPUT_SIZE macro  
							
							... 
							
							
							
							Test it for RSA. 
							
						 
						
							2018-09-05 11:53:24 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								20035e3579 
								
							 
						 
						
							
							
								
								PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only)  
							
							... 
							
							
							
							Define hash algorithms and RSA signature algorithms.
New function psa_asymmetric_sign.
Implement psa_asymmetric_sign for RSA PKCS#1 v1.5. 
							
						 
						
							2018-09-05 11:53:24 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								c66ea6a921 
								
							 
						 
						
							
							
								
								PSA key import: support RSA public keys  
							
							... 
							
							
							
							Use different key types for private keys and public keys. 
							
						 
						
							2018-09-05 11:53:24 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								2f9c4dc5ad 
								
							 
						 
						
							
							
								
								Add key management functions  
							
							... 
							
							
							
							Define psa_key_type_t and a first stab at a few values.
New functions psa_import_key, psa_export_key, psa_destroy_key,
psa_get_key_information. Implement them for raw data and RSA.
Under the hood, create an in-memory, fixed-size keystore with room
for MBEDTLS_PSA_KEY_SLOT_COUNT - 1 keys. 
							
						 
						
							2018-09-05 11:53:24 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								62a7e7e65f 
								
							 
						 
						
							
							
								
								Add a Doxygen-only section  
							
							... 
							
							
							
							This is intended to document platform-specific definitions in PSA. 
							
						 
						
							2018-09-05 10:59:02 +03:00 
							
								 
							
						 
					 
				
					
						
							
							
								Gilles Peskine 
							
						 
						
							
							
							
							
								
							
							
								e59236fc17 
								
							 
						 
						
							
							
								
								Add PSA crypto module  
							
							... 
							
							
							
							New module psa_crypto.c (MBEDTLS_PSA_CRYPTO_C):
Platform Security Architecture compatibility layer on top of
libmedcrypto.
Implement psa_crypto_init function which sets up a RNG.
Add a mbedtls_psa_crypto_free function which deinitializes the
library.
Define a first batch of error codes. 
							
						 
						
							2018-09-05 10:59:00 +03:00