mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-02-19 09:40:29 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
31,490 Commits 172 Branches 263 Tags
Commit Graph

1575 Commits

Author SHA1 Message Date
Gilles Peskine
0b8b7a1ee1
Merge pull request #9448 from valeriosetti/psa-use-static-slots-backport 
[Backport 3.6] PSA: use static key slots to store keys
 2024-10-24 07:27:43 +00:00
David Horstmann
0f170ad60b
Merge pull request #9714 from ThePassionate/mbedtls-1022-3.6.0 
[Backport 3.6] net/mbedtls_net_connect: Preventing double close problem
 2024-10-22 16:49:18 +00:00
makejian
66b39d4cf1 net/mbedtls_net_connect: Preventing double close problem 
In the test examples and real usage scenarios, 'mbedtls_net_free' is called after 'mbedtls_net_connect' fails, which will cause the problem of double close the same fd. It is possible to close this closed fd which has been applied by other link.

Signed-off-by: makejian <makejian@xiaomi.com>
 2024-10-22 20:02:51 +08:00
Valerio Setti
a71c75f0fb changelog: fix typo 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2024-10-22 13:31:19 +02:00
Valerio Setti
d218b57d67 changelog: updated description 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2024-10-22 13:31:19 +02:00
Valerio Setti
cc27702ceb changelog: updated description 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2024-10-22 13:31:19 +02:00
Valerio Setti
d65ed17d74 changelog: describe support for static key slot buffers 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2024-10-22 13:31:19 +02:00
Gergely Korcsák
36b0521b5f Fix driver schema json default type requirements 
Signed-off-by: Gergely Korcsák <gergely.korcsak@arm.com>
 2024-10-10 13:15:01 +02:00
Gilles Peskine
2aecb1369f Changelog entry: fix #9551 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-09-20 07:44:36 +02:00
David Horstmann
9cf929d421 Assemble ChangeLog 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-08-28 20:56:16 +01:00
David Horstmann
9f10979853 Merge branch 'mbedtls-3.6-restricted' into mbedtls-3.6.1rc0-pr 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-08-28 20:48:27 +01:00
Ronald Cron
9f44c883f4 Rename some "new_session_tickets" symbols 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-08-28 17:47:46 +02:00
Ronald Cron
c9884b04ad Fix change log 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-08-28 16:36:07 +02:00
Ronald Cron
31b40b3600 Add change logs 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-08-28 10:42:01 +02:00
Gilles Peskine
aa6ef7da50 Changelog entry for psa_crypto_init potentially being called from TLS 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-26 12:01:31 +02:00
Gilles Peskine
069bccdf78 Call psa_crypto_init in the library when required for TLS 1.3 
For backward compatibility with Mbed TLS <=3.5.x, applications must be able
to make a TLS connection with a peer that supports both TLS 1.2 and TLS 1.3,
regardless of whether they call psa_crypto_init(). Since Mbed TLS 3.6.0,
we enable TLS 1.3 in the default configuration, so we must take care of
calling psa_crypto_init() if needed. This is a change from TLS 1.3 in
previous versions, where enabling MBEDTLS_SSL_PROTO_TLS1_3 was a user
choice and could have additional requirement.

This commit makes the library call psa_crypto_init() when it needs PSA
crypto in a situation where the application might not have called it,
namely, when starting a TLS 1.3 connection.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-25 10:44:39 +02:00
Gilles Peskine
4002e6fdee Merge remote-tracking branch 'mbedtls-3.6' into mbedtls-3.6-restricted 2024-08-23 11:15:11 +02:00
Gilles Peskine
86a4c25136
Merge pull request #9499 from waleed-elmelegy-arm/fix-legacy-compression-issue-3.6 
[Backport 3.6] Fix issue in handling legacy_compression_methods in ssl_tls13_parse_client_hello()
 2024-08-22 18:23:33 +00:00
Gilles Peskine
df0ef8a624
Merge pull request #9281 from mpg/rsapub 
[3.6] Reduce performance regression in RSA public operations
 2024-08-22 16:50:38 +00:00
Waleed Elmelegy
8ac9caf89b Fix the capitalisation in the changelog entry 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-08-22 16:42:18 +00:00
Waleed Elmelegy
d930a3e950 Reduce the wording in changelog entry 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-08-22 16:39:39 +00:00
Waleed Elmelegy
5183e1ab17 Improve the changelog entry for fixing legacy compression issue 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-08-22 16:39:21 +00:00
Waleed Elmelegy
f669fef856 Add chanelog entry for fixing legacy comprssion methods issue 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
 2024-08-22 16:15:06 +00:00
Janos Follath
4c857c49b4 Fix Changelog formatting 
Signed-off-by: Janos Follath <janos.follath@arm.com>
 2024-08-22 15:45:18 +01:00
Janos Follath
5d16334e84
Improve ChangeLog 
Co-authored-by: Gilles Peskine <gilles.peskine@arm.com>
Signed-off-by: Janos Follath <janos.follath@arm.com>
 2024-08-22 14:49:58 +01:00
Manuel Pégourié-Gonnard
273d07b0c0
Merge pull request #9240 from gilles-peskine-arm/psa-keystore-dynamic-3.6 
Backport 3.6: dynamically sized key store
 2024-08-22 12:53:32 +00:00
Janos Follath
6c2086931d Add changelog 
Signed-off-by: Janos Follath <janos.follath@arm.com>
 2024-08-22 12:59:36 +01:00
Elena Uziunaite
d2cb074a3a Tiny fix in ChangeLog pt 2 
Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>
 2024-08-22 13:05:34 +02:00
Elena Uziunaite
c3ed44cc3b Tiny fix in ChangeLog 
Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>
 2024-08-22 13:05:28 +02:00
Gilles Peskine
58da249465 Changelog entry for the RSA memory leak 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-22 13:00:57 +02:00
Manuel Pégourié-Gonnard
f4f3e92ac9 Add a ChangeLog entry 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2024-08-20 22:03:10 +02:00
Elena Uziunaite
b0b71dc5d5 Edit ChangeLog entry 
Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>
 2024-08-20 12:12:50 +01:00
Elena Uziunaite
777e3e77c9 Update ChangeLog 
Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>
 2024-08-19 12:11:29 +01:00
Manuel Pégourié-Gonnard
70658db50a
Merge pull request #9463 from sezrab/psa_util_in_builds_without_psa-3.6 
[Backport 3.6] psa_util.c included in builds without PSA, which can break the build
 2024-08-14 07:16:13 +00:00
Janos Follath
5435850017
Merge pull request #9457 from gilles-peskine-arm/announce-4.0-removals-202408 
3.6 only: Announce the main removals planned for 4.0
 2024-08-12 12:41:37 +00:00
Gilles Peskine
7f9470ac02
Merge pull request #9451 from minosgalanakis/fix-v3.6-issues-9186-and-9188-bp 
[Backport 3.6] Fix v3.6 issues 9186 and 9188 bp
 2024-08-12 09:34:19 +00:00
Gilles Peskine
47bf23f748 PSA PAKE wasn't in 2.28 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-12 11:21:54 +02:00
Gilles Peskine
ce629a6ce7 entropy.h is also going away 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-12 11:21:10 +02:00
Gilles Peskine
ee7332104d Mention interfaces replaced by PSA drivers 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-10 17:22:45 +02:00
Sam Berry
6474d906bb Changelog entry 
Signed-off-by: Sam Berry <sam.berry@arm.com>
 2024-08-09 13:49:44 +01:00
Gilles Peskine
628ad389be Changelog entry for MBEDTLS_PSA_KEY_STORE_DYNAMIC 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-09 13:55:01 +02:00
Gilles Peskine
3b41e1d2a5
Merge pull request #9403 from gilles-peskine-arm/psa-keystore-dynamic-prep-3.6 
Backport 3.6: prepare for dynamic key store
 2024-08-09 08:00:03 +00:00
Gilles Peskine
a11687e543 Revised presentation of cipher suites 
Include patterns on the official names.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-08 14:58:35 +02:00
Gilles Peskine
6df289a56f More relevant characterisation of PSA being from before 3.0 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-08 14:45:57 +02:00
Gilles Peskine
086bc91179 Improve mechanism grouping 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-08 14:45:35 +02:00
Gilles Peskine
5e64de034e Fix missing bits in crypto mechanisms 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-08 14:41:12 +02:00
Manuel Pégourié-Gonnard
e217673996 Merge remote-tracking branch 'public/mbedtls-3.6' into merge-3.6 
* public/mbedtls-3.6: (251 commits)
  Call in_mbedtls_repo
  Move some proj detection code inside pre_check_environment
  Match spacing in pointer types in documentation with the code style
  Rename one more deprecated identifier
  Documentation improvements
  Rename internal function psa_key_production_parameters_are_default
  key_custom: update analyze_outcomes.py
  Test cpp_dummy_build in pedantic mode
  Changelog entry for the move from key_ext to key_custom functions
  Remove some tests of psa_generate_key_ext
  Document the key_ext functions as deprecated
  Documentation: point to key_custom instead of key_ext
  Update PSA wrappers
  Implement psa_generate_key_custom
  all.sh/components: Removed components.sh
  all.sh/components: Moved build_aes_via_padlock to platform component.
  all.sh/components: Moved driver components to configuration crypto.
  all.sh/components: Moved more components to configuration crypto.
  all.sh/components: Fixed a typo in configuration-tls.
  all.sh/components: Moved more components to configuration tls.
  ...
 2024-08-08 09:49:51 +02:00
Gilles Peskine
aada0c869f Mention the PSA transition guide 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-07 23:05:45 +02:00
Gilles Peskine
1b240c7ec1 Announce the main removals planned for 4.0 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-07 22:51:35 +02:00
Gilles Peskine
d865c42776 Changelog entry for the move from key_ext to key_custom functions 
Document psa_generate_key_ext() and psa_key_derivation_output_key_ext() as
deprecated in favor of psa_generate_key_custom() and
psa_key_derivation_output_key_custom(), and no longer declared in C++ builds.

Resolves #9020.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-06 13:12:07 +02:00