mbedtls

mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-01-31 00:32:50 +00:00

Author	SHA1	Message	Date
Przemek Stekiel	68e7544de8	parse_groups: curve -> group adaptations Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-07-06 12:16:44 +02:00
Przemek Stekiel	45255e4c71	Adapt names (curves -> groups) Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-07-05 09:26:26 +02:00
Pengyu Lv	b078607f04	cert_write: Support write any for extended key usage Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>	2023-07-04 17:30:21 +08:00
Manuel Pégourié-Gonnard	56b159a12a	Merge pull request #7627 from mprse/ffdh_tls13_v2 Make use of FFDH keys in TLS 1.3 v.2	2023-07-03 10:12:33 +02:00
Dave Rodgman	c23d2222ea	Merge pull request #7728 from waleed-elmelegy-arm/crypt_and_hash-decrypt-fix Fix crypt_and_hash decrypt issue when used with stream cipher	2023-06-30 11:42:35 +01:00
Andrzej Kurek	60de0b198a	Move the overallocation test to test suites This way the compiler does not complain about an overly large allocation made. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-27 09:26:08 -04:00
Andrzej Kurek	aae3208c29	Add an mbedtls_calloc(SIZE_MAX/2, SIZE_MAX/2) test It should return NULL and not a valid pointer. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-27 09:26:08 -04:00
Andrzej Kurek	e35f3a23be	Add a calloc selftest for more than a page Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-27 09:26:08 -04:00
Andrzej Kurek	ecaf6fb8b2	Documentation and cosmetic fixes Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-27 09:26:08 -04:00
Andrzej Kurek	9032711dc7	Move the calloc buffer initialization test to selftest.c This way it's more in line with the 2.28 version. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-27 09:26:08 -04:00
Manuel Pégourié-Gonnard	39a0a76fcc	SSL programs: improve command-line error reporting Every now and then, I see of these programs failing with a super-long usage message that gives no clue as to what went wrong. (Recently it happened with a test case in ssl-opt.sh with a fairly long command line that was entirely correct, except some options were not valid in this config - the test should have been skipped but wasn't due to some other bug. It took me longer to figure out than it should have, and could have if the program had simply reported which param was not recognized.) Also, have an explicit "help" command, separate "help_ciphersuites", and have default usage message that's not multiple screens long. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-06-27 09:28:24 +02:00
Manuel Pégourié-Gonnard	3eea9a461c	SSL programs: allow invoking without arguments All options have reasonable default so the programs don't need arguments to do something useful. It is widely accepted for programs that can work without arguments need not insist on the user passing arguments, see 'ls', 'wc', 'sort', 'more' and any number of POSIX utilities that all work without arguments. It is also the historical behaviour of those programs, and something relied one by at least a few team members. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-06-26 11:29:35 +02:00
Manuel Pégourié-Gonnard	0b74434e2a	SSL programs: group options processing in 1 place Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2023-06-26 11:28:00 +02:00
Paul Elliott	458b96b1a7	Merge pull request #7638 from AndrzejKurek/cert-apps-use-ips Use better IP parsing in x509 apps	2023-06-20 17:21:04 +01:00
Przemek Stekiel	7d42c0d0e5	Code cleanup #2 Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-06-13 12:30:40 +02:00
Przemek Stekiel	75a5a9c205	Code cleanup Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-06-13 09:57:23 +02:00
Waleed Elmelegy	46549cb5fa	Replace function calls in crypt_and_hash program with locals Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>	2023-06-12 14:53:02 +01:00
Waleed Elmelegy	7d39cc410c	Fix crypt_and_hash decrypt issue when used with stream cipher crypt_and_hash decryption fails when used with a stream cipher mode of operation due to the input not being multiple of block size, this only applies to block cipher modes and not stream ciphers.This change exempts CTR, CFB & OFB modes from this check. Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>	2023-06-09 16:58:23 +01:00
Dave Rodgman	05d71ffe5b	Merge remote-tracking branch 'origin/development' into sha3-updated	2023-06-07 18:02:04 +01:00
Andrzej Kurek	0624e460fb	Add a guard for IP parsing in cert_req app Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-07 08:54:35 -04:00
Andrzej Kurek	cd17ecfe85	Use better IP parsing in x509 programs Remove unnecessary duplicated code. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-07 08:50:05 -04:00
Przemek Stekiel	ff9fcbcace	ssl_client2, ssl_server2: code optimization + guards adaptation Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-06-06 12:53:40 +02:00
Przemek Stekiel	da4fba64b8	Further code optimizations Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-06-06 12:31:09 +02:00
Przemek Stekiel	316c19ef93	Adapt guards, dependencies + optimizations Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com> Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-06-06 12:31:09 +02:00
Przemek Stekiel	e7db09bede	Move FFDH helper functions and macros to more suitable locations Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-06-06 12:31:08 +02:00
Przemek Stekiel	6d7da5ee1e	Add FFDH support in client2, server2 applications Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-06-06 12:31:08 +02:00
Gilles Peskine	84b547b5ee	Merge pull request #7400 from AndrzejKurek/cert-write-sans Add a possibility to generate certificates with a Subject Alternative Name	2023-06-05 15:38:38 +02:00
Andrzej Kurek	f994bc51ad	Refactor code in cert_write.c This way is more robust. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-02 05:10:17 -04:00
Dave Rodgman	7f97675b64	Merge pull request #5237 from davidhorstmann-arm/demo-out-of-tree	2023-05-19 21:27:24 +01:00
Andrzej Kurek	5eebfb8fd0	Enable escaping ';' in cert_write.c SANs This might get used in URIs. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-17 15:23:56 -04:00
Andrzej Kurek	446e53d401	Fix a code style issue Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-17 15:23:56 -04:00
Andrzej Kurek	f70f460e5f	Fix temporary IP parsing error Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-17 15:23:56 -04:00
Andrzej Kurek	ed557930bb	Update ip_string_to_bytes to cert_req version Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-17 15:23:56 -04:00
Andrzej Kurek	5da1d751e9	Add missing memory deallocation Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-17 15:23:56 -04:00
Andrzej Kurek	1bc7df2540	Add documentation and a changelog entry Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-17 15:23:56 -04:00
Andrzej Kurek	ccdd975286	Add a certificate exercising all supported SAN types This will be used for comparison in unit tests. Add a possibility to write certificates with SAN in cert_write. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-05-17 11:45:36 -04:00
Paul Elliott	aba165b58c	Merge pull request #7586 from gilles-peskine-arm/gitignore-objects-at-root Ignore *.o everywhere	2023-05-15 13:57:24 +01:00
Gilles Peskine	8075f76708	Ignore .o everywhere We don't commit .o files anywhere, not even as test data. So ignore them everywhere. This resolves .o files not being ignored under 3rdparty/p256-m. Also remove a redundant ignore of .exe in a subdirectory. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-05-12 13:58:05 +02:00
Gilles Peskine	1f9d8a43c2	Fuzz programs: print an error if loading the reproducer fails The fuzz programs were returning a nonzero status if they failed to load the reproducer, but that's discreet and not informative. Make them also print an error message. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-05-12 13:18:08 +02:00
David Horstmann	4dfa368681	Fix demo scripts for out-of-tree builds Allow demo scripts to be run from the build directory for out-of-tree builds. If the executable is not found in the source tree then search in the current directory in case the script is being run from a build directory. Signed-off-by: David Horstmann <david.horstmann@arm.com>	2023-05-09 18:30:05 +01:00
Gilles Peskine	97edeb4fb8	Merge pull request #6866 from mprse/extract-key-ids Extracting SubjectKeyId and AuthorityKeyId in case of x509 V3 extensions v.2	2023-05-08 20:38:29 +02:00
Pol Henarejos	d06c6fc45b	Merge branch 'development' into sha3 Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2023-05-05 16:01:18 +02:00
Dave Rodgman	417c4c8b2c	Merge pull request #5770 from mstorsjo/win32-fallback-timer Use QueryPerformanceCounter as fallback timer on non-x86 mingw	2023-05-05 14:31:41 +01:00
Gilles Peskine	53a9ac576d	Merge pull request #7443 from mprse/psa_init_in_programs Init PSA in ssl and x509 programs	2023-04-28 12:49:11 +02:00
Przemek Stekiel	94cf710edc	Revert increase of MEMORY_HEAP_SIZE in ssl_client2 Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-24 16:35:40 +02:00
Przemek Stekiel	5346396c48	Fix code-style Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-24 09:01:41 +02:00
Przemek Stekiel	758aef60c5	Add guards for mbedtls_psa_crypto_free() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-24 08:10:01 +02:00
Przemek Stekiel	774f9debf2	Init PSA in fuzz programs Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-24 08:07:20 +02:00
Przemek Stekiel	2c1ef0967c	Init PSA in pkey programs Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-19 10:16:53 +02:00
Przemek Stekiel	a8c560a799	Free psa crypto at the end of programs when initialized Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-04-19 10:15:26 +02:00

... 2 3 4 5 6 ...

2590 Commits