Missing test coverage for PBKDF2_HMAC with some hash disabled

Mbed-TLS / mbedtls

An open source, portable, easy to use, readable and flexible TLS library, and reference implementation of the PSA Cryptography API. Releases are on a varying cadence, typically around 3 - 6 months between releases.

https://www.trustedfirmware.org/projects/mbed-tls/

Other

5.56k stars 2.61k forks source link

Missing test coverage for PBKDF2_HMAC with some hash disabled #9576

Open gilles-peskine-arm opened 2 months ago

gilles-peskine-arm commented 2 months ago

In Mbed TLS 3.6 and in development at the time of writing, PSA_ALG_PBKDF2_HMAC is not in the default configuration, so we don't enable it in depends.py where we remove hashes. As a consequence, we never test PSA_ALG_PBKDF2_HMAC on an unsupported hash.

The goal of this task is to fill the test gap, both in 3.6 and 4.0. Then we can remove the corresponding ignore list entry in analyze_outcomes.py.

ronald-cron-arm commented 1 month ago

Fixed in 4.0 by #9292