mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-02-16 00:40:52 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
31,223 Commits 170 Branches 263 Tags
Commit Graph

31223 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Manuel Pégourié-Gonnard
60769762d2 Clarify the superset rule 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-26 09:57:22 +02:00
Manuel Pégourié-Gonnard
4ceb71f53d Update and refine notes on restartable ECC and 4.0 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-26 09:45:45 +02:00
Manuel Pégourié-Gonnard
a0465779c9 Clarify summary of PSA limitations 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-10 11:01:57 +02:00
Manuel Pégourié-Gonnard
4975232436 Misc minor clarifications in transition-guards.md 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-10 10:58:51 +02:00
Manuel Pégourié-Gonnard
b50b6387d5 Clarify a comment in all.sh 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-10 10:58:50 +02:00
Manuel Pégourié-Gonnard
3342e80010 Fix some typos & markdown 
Co-authored-by: Gilles Peskine <gilles.peskine@arm.com>
Signed-off-by: Manuel Pégourié-Gonnard <mpg@elzevir.fr>
 2024-09-10 10:58:49 +02:00
Manuel Pégourié-Gonnard
4837f726d1 Add links and missing ) 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-10 10:58:48 +02:00
Manuel Pégourié-Gonnard
32bdf19a01 Minor updates in doc/comments/debug 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-10 10:58:47 +02:00
Manuel Pégourié-Gonnard
06adca465b Add transition-guards.md 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-10 10:58:46 +02:00
Manuel Pégourié-Gonnard
7237563d4b Update psa-migration/strategy.md 
Just reflecting recent/on-going work.

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-10 10:58:45 +02:00
Manuel Pégourié-Gonnard
42a1453d14 Update psa-limitations.md and add summary 
Just reflecting recent/on-going work.

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-10 10:58:44 +02:00
Manuel Pégourié-Gonnard
f59d7b9292
Merge pull request #9493 from yanesca/rsapub_additional_tests 
[3.6] Rsapub additional tests
 2024-09-09 09:36:33 +00:00
Gilles Peskine
d210bf73b2
Merge pull request #9338 from sezrab/analyze_driver_vs_reference_header_correction-3.6 
Backport 3.6:  Fix inconsistent ordering of driver vs reference in analyze_outcomes
 2024-09-05 16:36:02 +00:00
Manuel Pégourié-Gonnard
15fa9ceedd Misc improvements to comments 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-03 10:10:18 +02:00
Manuel Pégourié-Gonnard
33a2918a48
Merge pull request #9390 from eleuzi01/backport-9327 
[Backport 3.6] Remove hacks about asm vs constant-flow testing
 2024-09-03 07:37:07 +00:00
Elena Uziunaite
6496d56329 Make error line consistent with the header 
Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>
 2024-09-02 15:34:02 +01:00
Manuel Pégourié-Gonnard
6cda2cae48
Merge pull request #9509 from eleuzi01/backport-9508 
[Backport 3.6] Fix typo in psa-transition.md
 2024-09-02 10:57:03 +00:00
Manuel Pégourié-Gonnard
9ec6d45e99 Fix code style (for real this time, hopefully) 
For some reason I didn't think about other files in the previous commit.

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-02 12:41:05 +02:00
Manuel Pégourié-Gonnard
4bc15d89cb Fix guards on #include 
The rest of the file uses mbedtls_mpi_uint_t unconditionally, so its
definition should also be #include'd unconditionally.

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-02 11:12:09 +02:00
Manuel Pégourié-Gonnard
126cfedba4 Fix code style 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-09-02 10:42:46 +02:00
Janos Follath
0a75adcf4e Prepare codepath tests for early termination 
Signed-off-by: Janos Follath <janos.follath@arm.com>
 2024-09-02 10:30:47 +02:00
Janos Follath
e9cc10d2af Fix incorrect test result 
Signed-off-by: Janos Follath <janos.follath@arm.com>
 2024-09-02 10:30:47 +02:00
Janos Follath
96cfd7a77a Move bignum code path testing out of the library 
Without this, it's not at all obvious that turning on MBEDTLS_TEST_HOOKS
doesn't change the functional behavior of the code.

Signed-off-by: Janos Follath <janos.follath@arm.com>
 2024-09-02 10:30:47 +02:00
Janos Follath
2f8ad595db Explain the choice of the value of MBEDTLS_MPI_IS_PUBLIC 
Signed-off-by: Janos Follath <janos.follath@arm.com>
 2024-09-02 10:30:47 +02:00
Janos Follath
e86607c498 Initial local variables to secure default 
Unfortunately compilers aren't good at analyzing whether variables are
analyzed on all code paths, and it is better to initialize to the
safe-path values.

Signed-off-by: Janos Follath <janos.follath@arm.com>
 2024-09-02 10:30:47 +02:00
Janos Follath
42f72b3ea5 Introduce MBEDTLS_MPI_IS_TEST 
A + B + 1 is not a good way to get a number that's neither A nor B.
This can be a problem for example if values later are changed to
A = 0 and B = -1.

Signed-off-by: Janos Follath <janos.follath@arm.com>
 2024-09-02 10:30:47 +02:00
Janos Follath
55be79b500 Add tests for optionally safe code paths in RSA 
Only add the test hooks where it is meaningful. That is, not adding
where the operation is essentially the same or the target is not the
function that is being tested.

Signed-off-by: Janos Follath <janos.follath@arm.com>
 2024-09-02 10:30:47 +02:00
Janos Follath
5fc20fc56a Add tests for optionally safe code paths in bignum 
Not adding _unsafe version to the tests targeting behaviour related to
RR as it is independent from the secret involved in the safe/unsafe
distinction.

Signed-off-by: Janos Follath <janos.follath@arm.com>
 2024-09-02 10:30:47 +02:00
David Horstmann
aae8011eb0
Merge pull request #1288 from Mbed-TLS/mbedtls-3.6.1_mergeback 
Mbedtls 3.6.1 mergeback
 2024-08-30 13:38:02 +01:00
David Horstmann
fbc34eeb69 Revert "Add generated files" 
This reverts commit 0d1117692ee261d6d89e2819a742c64e06e5bd42.

Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-08-30 11:03:51 +01:00
David Horstmann
71c569d44b
Merge pull request #1286 from Mbed-TLS/mbedtls-3.6.1rc0-pr 
Mbedtls 3.6.1rc0 PR
v3.6.1 mbedtls-3.6.1 		2024-08-30 10:11:54 +01:00
David Horstmann
4c8ca72a88 Move some ChangeLog entries to a different section 
2 ChangeLog entries that were originally placed under "Changes" are
more appropriately placed under "Default behaviour changes".

Move these 2 entries to the correct section.

Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-08-28 20:58:24 +01:00
David Horstmann
fedf9a2096 Add CVE IDs to security ChangeLog 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-08-28 20:56:16 +01:00
David Horstmann
18f3bebb6f Update BRANCHES.md 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-08-28 20:56:16 +01:00
David Horstmann
0d1117692e Add generated files 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-08-28 20:56:16 +01:00
David Horstmann
ea44fa7f35 Finalise ChangeLog 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-08-28 20:56:16 +01:00
David Horstmann
1d2dcfce6f Bump version to 3.6.1 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-08-28 20:56:16 +01:00
David Horstmann
9cf929d421 Assemble ChangeLog 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-08-28 20:56:16 +01:00
David Horstmann
636367f757 Don't clean test_keys.h and test_certs.h 
This is in keeping with other generated files (such as generated .data
files) that are added to releases.

Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-08-28 20:56:16 +01:00
David Horstmann
204c4b41f5 Fix typos in make clean target for Windows 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-08-28 20:56:16 +01:00
David Horstmann
9f10979853 Merge branch 'mbedtls-3.6-restricted' into mbedtls-3.6.1rc0-pr 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-08-28 20:48:27 +01:00
Gilles Peskine
72064b202e
Merge pull request #9507 from ronald-cron-arm/disable-new-session-tickets 
3.6: Disable new session tickets at runtime
 2024-08-28 18:20:56 +00:00
Ronald Cron
c46edd4423 Fix/Improve documentation 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-08-28 18:15:36 +02:00
Ronald Cron
9f44c883f4 Rename some "new_session_tickets" symbols 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-08-28 17:47:46 +02:00
Ronald Cron
c9884b04ad Fix change log 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-08-28 16:36:07 +02:00
Ronald Cron
48a9f562ba Improve documentation 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-08-28 13:36:43 +02:00
Ronald Cron
ba45a44f13 Move session tickets getter functions to ssl_misc.h 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-08-28 13:22:26 +02:00
Ronald Cron
31b40b3600 Add change logs 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-08-28 10:42:01 +02:00
Ronald Cron
97dc5832c5 Improve debug logs 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-08-28 10:42:01 +02:00
Ronald Cron
fc76718dcd Move MBEDTLS_ERR_SSL_RECEIVED_NEW_SESSION_TICKET doc 
Move MBEDTLS_ERR_SSL_RECEIVED_NEW_SESSION_TICKET
error code documentation to the documentation of
mbedtls_ssl_read() as we cannot have long error
descriptions because of a limitation in
generate_errors.pl.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-08-28 10:42:01 +02:00