Added support for AES-ECB to the PSA Crypto implementation #3480
Conversation
PSA_ALG_ECB_NO_PADDING came in to the PSA Crypto API spec v1.0.0, but was not implemented yet in the mbed TLS implementation. Signed-off-by: Steven Cooreman <[email protected]>
|
Does this need a changelog entry? |
|
I think yes, this counts as a new feature so it should have a changelog entry. |
gilles-peskine-arm
added
component-crypto
Signed-off-by: Steven Cooreman <[email protected]>
| { | ||
| PSA_ASSERT( psa_cipher_set_iv( &operation, iv->x, iv->len ) ); |
There was a problem hiding this comment.
| { | |
| PSA_ASSERT( psa_cipher_set_iv( &operation, iv->x, iv->len ) ); | |
| { | |
| PSA_ASSERT( psa_cipher_set_iv( &operation, iv->x, iv->len ) ); |
| if( iv->len > 0 ) { | ||
| PSA_ASSERT( psa_cipher_set_iv( &operation, iv->x, iv->len ) ); |
There was a problem hiding this comment.
| if( iv->len > 0 ) { | |
| PSA_ASSERT( psa_cipher_set_iv( &operation, iv->x, iv->len ) ); | |
| if( iv->len > 0 ) | |
| { | |
| PSA_ASSERT( psa_cipher_set_iv( &operation, iv->x, iv->len ) ); |
There was a problem hiding this comment.
Minor: The brace { is still misplaced here and at other occasions.
There was a problem hiding this comment.
Done now, sorry for the oversight.
| if( iv->len > 0 ) { | ||
| PSA_ASSERT( psa_cipher_set_iv( &operation, iv->x, iv->len ) ); |
There was a problem hiding this comment.
| if( iv->len > 0 ) { | |
| PSA_ASSERT( psa_cipher_set_iv( &operation, iv->x, iv->len ) ); | |
| if( iv->len > 0 ) | |
| { | |
| PSA_ASSERT( psa_cipher_set_iv( &operation, iv->x, iv->len ) ); |
There was a problem hiding this comment.
Done now, sorry for the oversight.
| if( alg != PSA_ALG_ECB_NO_PADDING ) { | ||
| PSA_ASSERT( psa_cipher_generate_iv( &operation1, |
There was a problem hiding this comment.
| if( alg != PSA_ALG_ECB_NO_PADDING ) { | |
| PSA_ASSERT( psa_cipher_generate_iv( &operation1, | |
| if( alg != PSA_ALG_ECB_NO_PADDING ) | |
| { | |
| PSA_ASSERT( psa_cipher_generate_iv( &operation1, |
There was a problem hiding this comment.
Done now, sorry for the oversight.
| if( iv_length > 0 ) { | ||
| PSA_ASSERT( psa_cipher_set_iv( &operation2, |
There was a problem hiding this comment.
| if( iv_length > 0 ) { | |
| PSA_ASSERT( psa_cipher_set_iv( &operation2, | |
| if( iv_length > 0 ) | |
| { | |
| PSA_ASSERT( psa_cipher_set_iv( &operation2, |
There was a problem hiding this comment.
Done now, sorry for the oversight.
| if( alg != PSA_ALG_ECB_NO_PADDING ) { | ||
| PSA_ASSERT( psa_cipher_generate_iv( &operation1, |
There was a problem hiding this comment.
| if( alg != PSA_ALG_ECB_NO_PADDING ) { | |
| PSA_ASSERT( psa_cipher_generate_iv( &operation1, | |
| if( alg != PSA_ALG_ECB_NO_PADDING ) | |
| { | |
| PSA_ASSERT( psa_cipher_generate_iv( &operation1, |
There was a problem hiding this comment.
Done now, sorry for the oversight.
| if( iv_length > 0 ) { | ||
| PSA_ASSERT( psa_cipher_set_iv( &operation2, |
There was a problem hiding this comment.
| if( iv_length > 0 ) { | |
| PSA_ASSERT( psa_cipher_set_iv( &operation2, | |
| if( iv_length > 0 ) | |
| { | |
| PSA_ASSERT( psa_cipher_set_iv( &operation2, |
There was a problem hiding this comment.
Done now, sorry for the oversight.
There was a problem hiding this comment.
Looks good to me, thanks @stevew817 for your work!
There's just a bunch of trivial style issues remaining as indicated in the comments.
ronald-cron-arm
added
the
needs-review
Signed-off-by: Steven Cooreman <[email protected]>
|
|
||
| status = PSA_SUCCESS; | ||
|
|
||
| exit: |
There was a problem hiding this comment.
Since there's no cleanup, it would be more readable to use return( status ) instead of goto exit (and return( whatever ); instead of status = whatever; goto exit;). I don't consider it a blocker.
|
@hanno-arm I'd appreciate it if you could give your thumbs up now that all your requested changes have been incorporated. This PR has been open for over two months already. |
There was a problem hiding this comment.
Apologies for the delay, @stevew817, and thank you for making the requested changes. LGTM
hanno-becker
removed
the
needs-review
|
All the mbedTLS tests have passed (at the time of writing, only the MbedOS tests are still running). |
bensze01
added
the
approved
bensze01
modified the milestones:
September 2020 Sprint,
PSA Crypto: Q2-Q3 Implement missing v1.0 spec functionality
Description
This PR implements support for
PSA_ALG_ECB_NO_PADDINGas defined in the PSA Crypto API spec v1.0.0. Feature was requested in #3277.Status
READY
Requires Backporting
NO
Migrations
NO
Todos
Steps to test or reproduce
Tested through the PSA Crypto test suite.