mbedtls

mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-01-27 06:35:22 +00:00

Author	SHA1	Message	Date
Gilles Peskine	e1efbf7f36	Changelog: when adding a new function, state its name Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-06-09 18:50:50 +02:00
Gilles Peskine	c23a6d4feb	Changelog: make some long entries about TLS 1.3 more to the point Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-06-09 18:50:06 +02:00
Gilles Peskine	26a51cfe54	Changelog: list deprecations in the dedicated section Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-06-09 18:49:07 +02:00
Gilles Peskine	8df3623bee	Changelog: clarify some cmake-related entries as being about cmake Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-06-09 18:48:21 +02:00
Gilles Peskine	fed024dd52	Changelog: mention bug id in bugfix entry Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-06-09 18:44:51 +02:00
Gilles Peskine	d99083f7a4	Changelog: remove bugfix entry that's actually a robustness improvement If the key agreement or the public key export in ssl_write_client_key_exchange() fails, the handshake enters a failed state. The only valid thing you can do in a failed handshake is to abort it, which calls mbedtls_ssl_handshake_free(), which destroys ecdh_psa_privey. While it's good hygiene to destroy the key in the function that creates it, it would have been cleaned up a little later in the normal course of things anyway, so there wasn't an actual bug. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-06-09 18:38:35 +02:00
Gilles Peskine	3ea721e234	Changelog: Remove redundant entry about USE_PSA_CRYPTO in reduced configs The entry for “Fix several bugs…” already covers this. This is borderline an internal detail anyway. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-06-09 18:36:47 +02:00
Gilles Peskine	10301d4322	Changelog: Consolidate and clarify Armv8 SHA2 acceleration support Consolidate the entries for SHA512 and SHA256 since they are being released together. List the algorithms generically as SHA-2 since this also applies to SHA224 and SHA384. Clearly state that the instructions are only supported when building for Aarch64 (64-bit ARMv8+) and not for Aarch32 (32-bit ARMv8+). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-06-09 18:32:22 +02:00
Dave Rodgman	11930699f1	Merge pull request #5827 from wernerlewis/time_utc Use ASN1 UTC tags for dates before 2000	2022-06-08 13:54:19 +01:00
Paul Elliott	5f2bc754d6	Merge pull request #5792 from yuhaoth/pr/add-tls13-moving-state-tests Pr/add-tls13-moving-state-tests	2022-06-08 13:39:52 +01:00
Ronald Cron	5313f034b4	Add change log Add change log for the bug fixed in "fix move state to handshake over fail" commit Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2022-06-08 09:26:03 +02:00
Dave Rodgman	4b55a89327	Merge pull request #5887 from tom-daubney-arm/mbedtls_x509_crt_ext_types_accessor Add accessor for x509 certificate extension types	2022-06-06 21:51:38 +01:00
Andrzej Kurek	e6487ab490	Add a changelog entry for the cookie parsing bounds bug Co-authored-by: Gilles Peskine <Gilles.Peskine@arm.com> Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2022-06-06 15:31:08 -04:00
Dave Rodgman	5e03d9e601	Merge pull request #5837 from robert-shade/robert-shade/add_subdirectory_support Allow building as a subdir	2022-06-06 14:11:06 +01:00
Przemek Stekiel	452a415476	Changelog: HKDF-Expand and HKDF-Extract as separate algorithms in the PSA API Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-06-03 16:18:15 +02:00
Werner Lewis	acd01e58a3	Use ASN1 UTC tags for dates before 2000 Signed-off-by: Werner Lewis <werner.lewis@arm.com>	2022-06-01 16:24:28 +01:00
Thomas Daubney	3d3cfc5553	Add Changelog entry Add Changelog entry for changes made in this PR. Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>	2022-06-01 10:23:50 +01:00
Gilles Peskine	f940693960	Merge pull request #5725 from tom-daubney-arm/x25519_program Rewrite x25519 example program	2022-05-31 11:27:22 +02:00
Gilles Peskine	09858ae664	Merge pull request #5813 from mprse/deprecate_mbedtls_cipher_setup_psa Deprecate mbedtls_cipher_setup_psa()	2022-05-31 10:56:52 +02:00
Dave Rodgman	3527880849	Add Changelog entry Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2022-05-30 17:55:13 +01:00
Dave Rodgman	a636d1f192	Merge pull request #5714 from daverodgman/k-stachowiak_static-runtime-option-msvc Enable static linking of the common runtime in MSVC	2022-05-25 14:47:58 +01:00
Dave Rodgman	32c995afa3	Merge pull request #5724 from Biswa96/cmake-mingw cmake: Fix runtime library install location in mingw	2022-05-25 13:34:43 +01:00
Robert Shade	591e729b54	Allow building as a subdir Fixes #5688 Signed-off-by: Robert Shade <robert.shade@gmail.com>	2022-05-21 12:55:12 -04:00
Thomas Daubney	eff0f3f5be	Add changelog entry Add changelog entry for bug fix in sample program. Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>	2022-05-20 18:46:02 +01:00
Gilles Peskine	3e56130fb9	psa_raw_key_agreement: return BUFFER_TOO_SMALL when warranted psa_raw_key_agreement() returned PSA_ERROR_INVALID_ARGUMENT instead of PSA_ERROR_BUFFER_TOO_SMALL when the output buffer was too small for ECDH, the only algorithm that is currently implemented. Make it return the correct error code. The reason for the wrong error code is that ecdh.c returns MBEDTLS_ERR_ECP_BAD_INPUT_DATA, presumably for similarith with dhm.c. It might make sense to change ecdh.c to use MBEDTLS_ERR_ECP_BUFFER_TOO_SMALL, but dhm.c doesn't have an existing BUFFER_TOO_SMALL error. To minimize the impact of the fix, handle this in the PSA layer. Fixes #5735. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-05-16 19:37:54 +02:00
Dave Rodgman	3383e432bc	Add changelog entry Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2022-05-10 13:46:09 +01:00
Przemek Stekiel	fd750d1d9a	Add change log entry: deprecate mbedtls_cipher_setup_psa Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-05-06 12:45:34 +02:00
Pol Henarejos	f72803d6f9	Removing tabs. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-05-05 20:12:13 +02:00
Pol Henarejos	030e802198	Added Changelog entry. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-05-05 19:28:15 +02:00
Werner Lewis	b374a98e7d	Add ChangeLog entry Signed-off-by: Werner Lewis <werner.lewis@arm.com>	2022-05-04 16:25:53 +01:00
Gilles Peskine	038108388a	Merge pull request #5654 from gilles-peskine-arm/psa-crypto-config-file Support alternative MBEDTLS_PSA_CRYPTO_CONFIG_FILE	2022-04-28 18:17:50 +02:00
Gilles Peskine	4acd3c7ab1	Merge pull request #5776 from mprse/mixed_psk_log Add change log entry for mixed-psk	2022-04-28 18:14:41 +02:00
Gilles Peskine	f21617915f	Merge pull request #2082 from hanno-arm/iotssl-2490 Fix documentation of allowed_pks field in mbedtls_x509_crt_profile	2022-04-28 18:13:55 +02:00
Hanno Becker	002a7b20ec	Adapt ChangeLog Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2022-04-25 11:17:40 +02:00
Przemek Stekiel	b51561b017	Add change log entry for mixed-psk Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2022-04-25 08:52:26 +02:00
Biswapriyo Nath	d7e0ee42b8	cmake: Fix runtime library install location in mingw This install DLLs in bin directory instead of lib. Signed-off-by: Biswapriyo Nath <nathbappai@gmail.com>	2022-04-22 20:59:50 +05:30
Biswapriyo Nath	0f2e87bdf5	cmake: Use GnuInstallDirs to customize install directories Replace custom LIB_INSTALL_DIR with standard CMAKE_INSTALL_LIBDIR variable. For backward compatibility, set CMAKE_INSTALL_LIBDIR if LIB_INSTALL_DIR is set. Signed-off-by: Biswapriyo Nath <nathbappai@gmail.com>	2022-04-22 20:59:28 +05:30
Gilles Peskine	afbfed9397	Merge pull request #5582 from gilles-peskine-arm/ssl-opt-auto-psk Run ssl-opt.sh in more reduced configurations	2022-04-21 12:03:53 +02:00
Paul Elliott	a2da9c7e45	Merge pull request #5631 from gstrauss/enum-tls-vers Unify internal/external TLS protocol version enums	2022-04-19 17:05:26 +01:00
Gilles Peskine	09dc05b880	Merge pull request #5635 from gilles-peskine-arm/psa-test-op-fail PSA: systematically test operation failure	2022-04-15 10:52:47 +02:00
Glenn Strauss	d09b343ffc	Deprecate mbedtls_ssl_conf_(min/max)_version() Deprecate mbedtls_ssl_conf_max_version() Replaced with mbedtls_ssl_conf_max_tls_version() Deprecate mbedtls_ssl_conf_min_version() Replaced with mbedtls_ssl_conf_min_tls_version() (PR feedback from @ronald-cron-arm) Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>	2022-04-14 15:40:14 -04:00
Glenn Strauss	dff84620a0	Unify internal/external TLS protocol version enums Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>	2022-04-14 13:45:20 -04:00
Gilles Peskine	5dc8a0ac5a	Wording improvement Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-14 12:46:06 +02:00
Gilles Peskine	70b8a69b20	Add changelog entry for #3998 fix The fix was in https://github.com/ARMmbed/mbedtls/pull/4989. We forgot to add a changelog entry. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-13 16:14:01 +02:00
Gilles Peskine	43b0943736	Merge pull request #1946 from hanno-arm/alert_reentrant Make mbedtls_ssl_send_alert_message() reentrant	2022-04-12 11:05:20 +02:00
Manuel Pégourié-Gonnard	eaf3086831	Merge pull request #1133 from RonEld/1805 Fix Shared Library compilation issue with Cmake	2022-04-11 09:31:59 +02:00
Krzysztof Stachowiak	8790fa2088	Add ChangeLog entry Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2022-04-08 15:17:47 +01:00
Dave Rodgman	f945e0a475	Update ChangeLog.d/alert_reentrant.txt Co-authored-by: Gilles Peskine <gilles.peskine@arm.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2022-04-08 12:59:30 +01:00
Hanno Becker	8813c03cb0	Add ChangeLog entry Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2022-04-08 12:16:55 +01:00
Gilles Peskine	f4c6eb0a49	Support alternative MBEDTLS_PSA_CRYPTO_CONFIG_FILE When MBEDTLS_PSA_CRYPTO_CONFIG is enabled, support an alternative file to include instead of "psa/crypto_config.h", and an additional file to include after it. This follows the model of the existing MBEDTLS_{,USER_}CONFIG_FILE. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2022-04-07 21:40:22 +02:00

... 2 3 4 5 6 ...

933 Commits