Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

SHA3 and SHAKE - New API Design #2098

Merged
merged 78 commits into from
Feb 5, 2025
Merged
Changes from 1 commit
Commits
Show all changes
78 commits
Select commit Hold shift + click to select a range
c6ed451
Introduce SHA3/SHAKE layered API design; Only SHA3/SHAKE files updates
manastasova Dec 30, 2024
a05d255
Add changes to ML-KEM based on SHA3/SHAKE new API Design
manastasova Dec 30, 2024
50cf7fa
Add changes to ML-DSA based on SHA3/SHAKE new API Design
manastasova Dec 30, 2024
4b0b92e
Update build files in generated-src
manastasova Dec 30, 2024
eb992ea
Update service indicator in SHA3_Final
manastasova Dec 30, 2024
d40fbec
Initialize |ctx->padded| to 0 for SHAKE inside SHAKE_Init
manastasova Dec 31, 2024
adb910d
Update service indicator at the end of SHAKE_Finalize; The XOF functi…
manastasova Dec 31, 2024
02b8085
Fix conflicts with MLDSA parameters renaming
manastasova Dec 31, 2024
e61be0d
Merge branch 'main' into sha3_absorb_squeeze
manastasova Dec 31, 2024
3008821
Merge branch 'aws:main' into sha3_absorb_squeeze
manastasova Jan 3, 2025
2a1622f
Update SHAKE single-shot and streaming APIs
manastasova Jan 3, 2025
c5d0afd
Update incremental block-wise SHAKE squeezes in MLKEM
manastasova Jan 3, 2025
b6a5590
Update incremental block-wise SHAKE squeezes in MLDSA
manastasova Jan 3, 2025
7ccaeba
Replace |keccak_st->padded| flag with |keccak_st->state| flag
manastasova Jan 3, 2025
7edb6c7
Update MLKEM and MLDSA
manastasova Jan 3, 2025
7386c1b
Update Keccak state flag in SHA3 functions
manastasova Jan 3, 2025
e424771
Address code review comments
manastasova Jan 4, 2025
6597af1
Add export macro to functions in the tests
manastasova Jan 4, 2025
7766425
Merge branch 'aws:main' into sha3_absorb_squeeze
manastasova Jan 6, 2025
ff3cbd8
Rename Absorb and Squeeze functions to Keccak1600_ layer specific
manastasova Jan 6, 2025
680dd43
Update build files in generated-src
manastasova Jan 6, 2025
872d368
Apply suggestions from code review
manastasova Jan 7, 2025
5780ee5
Move all common |ctx->state| flag checks in the FIPS202 layer
manastasova Jan 7, 2025
3f43dde
Merge branch 'sha3_absorb_squeeze' of github.com:manastasova/aws-lc i…
manastasova Jan 7, 2025
07bac7c
Update MLKEM and MLDSA
manastasova Jan 7, 2025
2973e4a
Merge branch 'main' of github.com:aws/aws-lc into sha3_absorb_squeeze
manastasova Jan 7, 2025
86fa4b0
Remove SHAKE_Squeeze service indicator update
manastasova Jan 8, 2025
36ab448
Merge branch 'main' of github.com:aws/aws-lc into sha3_absorb_squeeze
manastasova Jan 8, 2025
b2228b6
Bring back exports
manastasova Jan 8, 2025
14da500
Merge branch 'main' of github.com:aws/aws-lc into sha3_only_rename
manastasova Jan 8, 2025
97b02c6
Only add shanges to Init functions
manastasova Jan 8, 2025
95c7e26
add new line at the end of file
manastasova Jan 8, 2025
077ef78
Merge branch 'main' into sha3_absorb_squeeze
manastasova Jan 8, 2025
b4ce7b2
Merge branch 'main' into sha3_only_rename
manastasova Jan 9, 2025
5b18483
Merge branch 'main' into sha3_only_rename
manastasova Jan 13, 2025
d3bba6b
Merge branch 'main' into sha3_only_rename
manastasova Jan 13, 2025
f48fb78
merge with aws-lc main and sha3/shake_only_Init PR changes
manastasova Jan 13, 2025
6ce3a3b
Allow TLS PSK without server certificate (#2083)
WillChilds-Klein Jan 14, 2025
72373f3
Align guard macros for OPENSSL_cpuid_setup (#2111)
justsmth Jan 14, 2025
820394a
Init variable to avoid "may be used uninitialized" warning (#2114)
manastasova Jan 15, 2025
26544da
SCRUTINICE fixes (#2103)
smittals2 Jan 15, 2025
0239af3
Remove jent_read_entropy_safe usage from AWS-LC (main) (#2110)
smittals2 Jan 15, 2025
2ddcd83
CDK: Add scrutinice permissions (#2118)
justsmth Jan 15, 2025
94bc599
Address Scrutinice findings (#2121)
justsmth Jan 15, 2025
6933d45
Finalize ML-DSA asn.1 module (#2117)
jakemas Jan 16, 2025
9462df8
Align BN_bn2hex behavior with OpenSSL (#2122)
samuel40791765 Jan 16, 2025
9d433cb
Start making asserts constant-time too
davidben Jan 16, 2024
705f36c
Fix EVP_PKEY_CTX_dup with EC generation
davidben Mar 17, 2024
a03e160
Remove unused flags argument from trust handlers
botovq Mar 21, 2024
507ff49
Document that null STACK_OF(T) can be used with several functions
davidben Mar 22, 2024
863387d
Upstream rebase
manastasova Jan 30, 2025
5a4dc9c
Add a PrivacyInfo plist file
Mar 26, 2024
ebfb590
Switch EVP_CIPHERs to C99 initializers
davidben Mar 29, 2024
b80f99e
Document that our Unicode APIs reject noncharacters
davidben Mar 29, 2024
3001ac9
Rewrite RAND_enable_fork_unsafe_buffering documentation
davidben Mar 29, 2024
8d6b7f5
Disable `-Wcast-function-type-strict` for `BORINGSSL_DEFINE_STACK_OF_…
brianpl Apr 2, 2024
64f25eb
Increase DTLS window size from 64 to 256
nharper Mar 28, 2024
80260d9
Avoid strdup in crypto/err/err.c
davidben Nov 20, 2023
2d90347
Add more debug logging to channelID test failures (#2130)
andrewhop Jan 21, 2025
55742fa
Compress crypto_test_data.cc (#2123)
justsmth Jan 21, 2025
c91bd6a
Prepare AWS-LC v1.43.0 (#2133)
justsmth Jan 22, 2025
a66a1a5
Minor symbols to work with Ruby's mainline (#2132)
samuel40791765 Jan 22, 2025
7fb93e8
ACVP test harness for ML-DSA (#2127)
jakemas Jan 24, 2025
95a9e8a
Remove remaining support for Trusty and Fuchsia operating systems (#2…
torben-hansen Jan 24, 2025
0b9ef21
Avoid mixing SSE and AVX in XTS-mode AVX512 implementation (#2140)
torben-hansen Jan 27, 2025
df51857
Support for ML-DSA public key generation from private key (#2142)
jakemas Jan 28, 2025
9d3b72b
Ed25519ph and Ed25519ctx Support (#2120)
skmcgrail Jan 28, 2025
3b18668
Check for MIPSEB in target.h (#2143)
justsmth Jan 28, 2025
3cdcaa3
Optimize x86/aarch64 MD5 implementation (#2137)
olivergillespie Jan 28, 2025
cb6f877
Support keypair calculation for PQDSA PKEY (#2145)
jakemas Jan 29, 2025
96f8169
Upstream merge
manastasova Jan 30, 2025
7848023
fix
manastasova Jan 30, 2025
1fdb30e
Update comments and exports
manastasova Jan 30, 2025
9c559df
Merge branch 'main' into sha3_absorb_squeeze
manastasova Jan 31, 2025
0973fc2
Merge branch 'main' into sha3_absorb_squeeze
manastasova Feb 4, 2025
2616442
Address PR comments
manastasova Feb 5, 2025
85a0d6f
Address PR comments
manastasova Feb 5, 2025
873f017
Merge branch 'sha3_absorb_squeeze' of github.com:manastasova/aws-lc i…
manastasova Feb 5, 2025
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
CDK: Add scrutinice permissions (#2118)
### Issues:
Addresses P187446337

### Description of changes: 
Grant permissions required for Scrutinice.

By submitting this pull request, I confirm that my contribution is made
under the terms of the Apache 2.0 license and the ISC license.
justsmth authored and manastasova committed Jan 30, 2025
commit 2ddcd8303f6c064a8fb2fa8dbdd55a8ac195fb53
11 changes: 11 additions & 0 deletions tests/ci/cdk/util/iam_policies.py
Original file line number Diff line number Diff line change
@@ -207,6 +207,17 @@ def ecr_power_user_policy_in_json(ecr_repo_names):
"ecr:PutImage"
],
"Resource": ecr_arns
},
{
"Sid": "scrutinice",
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::222961743098:role/scrutini-ecr"
},
"Action": [
"ecr:BatchGetImage",
"ecr:GetDownloadUrlForLayer"
]
}
]
}