mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-02-14 00:40:50 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
32,654 Commits 170 Branches 263 Tags
Commit Graph

32654 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Valerio Setti
9a9c9a53c1 compat.sh: do not use DHE-PSK key exchange in gnutls tests 
DHE-PSK is being removed from Mbed TLS so we cannot use this key
exchange with gnutls testing.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-24 11:49:59 +01:00
Valerio Setti
5c730c1d54 ssl-opt.sh: remove DHE-PSK only test cases 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-24 11:49:59 +01:00
Janos Follath
1532ea42ac
Merge pull request #9918 from davidhorstmann-arm/clarify-x509-security-md 
Add X.509 formatting validation to SECURITY.md
 2025-01-23 16:09:50 +00:00
David Horstmann
0704fbf1eb Fix missing-word typo 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2025-01-23 10:28:06 +00:00
David Horstmann
faa1a0fe50 Add paragraph on undefined behaviour 
Add a note that we do aim to protect against undefined behaviour and
undefined behaviour in certificate parsing is in scope.

Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2025-01-22 14:48:58 +00:00
David Horstmann
2fe0da7947 Add X.509 formatting validation to SECURITY.md 
Clarify that strict formatting of X.509 certificates is not checked by
Mbed TLS and that it therefore should not be used to construct a CA.

Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2025-01-22 14:27:22 +00:00
David Horstmann
5a77c230b1
Merge pull request #9909 from gilles-peskine-arm/psa-storage-test-cases-never-supported-negative-dev 
Switch generate_psa_test.py to automatic dependencies for negative test cases
 2025-01-21 18:34:25 +00:00
Gilles Peskine
7dc570905e Update submodule 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-01-20 19:43:41 +01:00
Gilles Peskine
13c418dcee Add ignore list entries for ECDH/FFDH algorithm without key type 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-01-20 16:00:46 +01:00
Gilles Peskine
fe683e7a1b Remove test coverage exceptions that are no longer needed 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-01-20 16:00:46 +01:00
Gilles Peskine
08c4362ad1 Update submodules 
Catch up with https://github.com/Mbed-TLS/mbedtls-framework/pull/104 =
"Switch generate_psa_test.py to automatic dependencies for negative test cases"

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-01-20 16:00:44 +01:00
Ronald Cron
6daf4ef507
Merge pull request #9914 from Harry-Ramsey/remove-tf-psa-crypto-test 
Remove check_test_dependencies TF-PSA-Crypto test from Mbed TLS
 2025-01-20 10:38:53 +00:00
Ronald Cron
bff7733714
Merge pull request #9913 from valeriosetti/issue9892 
Remove deprecated function mbedtls_x509write_crt_set_serial()
 2025-01-20 10:11:57 +00:00
Harry Ramsey
cec956263d Update framework pointer 
This commit updates the framework pointer to include modified
collect_test_cases.py which can run independently for TF-PSA-Crypto.

Signed-off-by: Harry Ramsey <harry.ramsey@arm.com>
 2025-01-20 08:41:40 +00:00
Harry Ramsey
28eed1abff Update TF-PSA-Crypto pointer 
This commit updates TF-PSA-Crypto pointer to include the moved test in
Mbed TLS via TF-PSA-Crypto.

Signed-off-by: Harry Ramsey <harry.ramsey@arm.com>
 2025-01-20 08:41:31 +00:00
Harry Ramsey
e65bfe6449 Remove check_test_dependencies TF-PSA-Crypto test from Mbed TLS 
This commit removes the check_test_dependencies from Mbed TLS as it has
been added to TF-PSA-Crypto.

Signed-off-by: Harry Ramsey <harry.ramsey@arm.com>
 2025-01-17 09:20:23 +00:00
Valerio Setti
19846f5561 changelog: add note for mbedtls_x509write_crt_set_serial() deprecation 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-16 15:06:19 +01:00
Valerio Setti
6487da15e9 tests: remove usage of mbedtls_x509write_crt_set_serial 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-16 15:02:15 +01:00
Valerio Setti
6b64a1ba37 x509: remove definition and implementation of x509write_crt_set_serial 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-16 15:00:10 +01:00
Ronald Cron
99d82166a3
Merge pull request #9888 from valeriosetti/issue101-development 
Move pkgconfig.sh to the framework
 2025-01-14 10:46:20 +00:00
Valerio Setti
dff650eb34 framework: update reference 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-14 09:46:18 +01:00
Valerio Setti
ba8500b6b9 components-build-system.sh: fix path of pkgconfig.sh 
The script was moved to the framework sub-repo.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-14 09:46:07 +01:00
Valerio Setti
3533e9b761 Move files out of Mbed TLS 
The following files are moved to the framework repo (deleted here):

tests/scripts/pkgconfig.sh

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-14 09:46:07 +01:00
Ronald Cron
67ba14c0ba
Merge pull request #9863 from valeriosetti/issue86-development 
Move most of min_requirements.py to the framework
 2025-01-13 15:05:29 +00:00
Valerio Setti
7459ef2425 framework: update reference 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-13 13:17:07 +01:00
Valerio Setti
3730e4a6b7 scripts: add new min_requirements.py script 
This call into the "old" script that has been moved to the framework
repository. The *.requirements.txt files are kept on this repo though.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-13 13:16:40 +01:00
Valerio Setti
f62b8baf27 Move files out of Mbed TLS 
The following files are moved to the framework repo (deleted here):

scripts/min_requirements.py

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-13 13:16:40 +01:00
Ronald Cron
69dcb6da08
Merge pull request #9853 from valeriosetti/issue73-main 
Move tests/scripts/check_names.py to the framework
 2025-01-09 18:08:28 +00:00
Valerio Setti
e9468eb133 framework: update reference 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-09 17:03:23 +01:00
Valerio Setti
c9e32b44b6 component-basic-checks: fix paths of files moved to framework 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-09 17:01:50 +01:00
Valerio Setti
6f1cedfcf3 Move files out of Mbed TLS 
The following files are moved to the framework repo (deleted here):

tests/scripts/check_names.py

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-09 17:01:50 +01:00
Gilles Peskine
eef2a2e59b
Merge pull request #9841 from gilles-peskine-arm/psa-storage-test-cases-never-supported-positive-dev 
Switch generate_psa_test.py to automatic dependencies for positive test cases
 2025-01-09 11:37:43 +00:00
Gilles Peskine
49e48ef240 Remove test coverage exceptions that are no longer needed 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-01-09 10:42:00 +01:00
Gilles Peskine
46fb5dc301 Update submodules 
Update TF-PSA-Crypto to have the latest framework with
https://github.com/Mbed-TLS/mbedtls-framework/pull/83 .

Update the framework to match.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-01-09 10:42:00 +01:00
Gilles Peskine
bc7c523420 Remove uses of secp244k1 
Remove all code guarded by `PSA_WANT_ECC_SECP_K1_224`, which is not and will
not be implemented. (It would be K1_225 anyway, but we don't intend to
implement it anyway.)

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-01-08 16:51:23 +01:00
Gilles Peskine
a074fe491a Declare the new Python module used by generate_psa_tests.py 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-01-08 16:51:23 +01:00
Gilles Peskine
1701c340eb Fix make dir/file not rebuilding existing files 
Running `make library/foo`, `make programs/foo` or `make tests/foo` only
rebuilt the given target if it was not an existing file, because the
toplevel makefile does not know the file's dependencies and thus thought
that every such target had empty dependencies. Fix this by always invoking
make recursively.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-01-08 16:51:23 +01:00
Ronald Cron
272ba234ec
Merge pull request #9825 from valeriosetti/issue69-main 
Move "easy" basic checks scripts to the framework
 2025-01-08 15:08:49 +00:00
Valerio Setti
5300725d4f framework: updated reference 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-08 14:08:20 +01:00
Valerio Setti
976b53fc85 scripts: fix paths for files moved to framework 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-08 09:59:18 +01:00
Valerio Setti
cb333f24f0 Move files out of Mbed TLS 
The following files are moved to the framework repo (deleted here):

scripts/assemble_changelog.py
tests/scripts/check-doxy-blocks.pl
tests/scripts/check-python-files.sh
tests/scripts/doxygen.sh
scripts/apidoc_full.sh
tests/scripts/recursion.pl

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-08 09:51:04 +01:00
Janos Follath
0d28fcb082
Merge pull request #9798 from NadavTasher/feature/more-debug-prints 
Added debug print in tls13 ssl_tls13_write_key_share_ext
 2025-01-07 16:18:35 +00:00
Manuel Pégourié-Gonnard
69a2182a55
Merge pull request #9767 from Harry-Ramsey/tf-psa-crypto-out-of-source-development 
TF-PSA-Crypto out of source build
 2025-01-07 13:41:54 +00:00
Ronald Cron
9bdec11b31
Merge pull request #9815 from Harry-Ramsey/remove-irrelevant-components 
Remove Irrelevant Components for 4.0
 2025-01-07 13:18:15 +00:00
Harry Ramsey
1e8992b63e Update TF-PSA-Crypto for out of source builds 
This commit updates TF-PSA-Crypto to enable out of source builds by
default.

Signed-off-by: Harry Ramsey <harry.ramsey@arm.com>
 2025-01-07 11:43:46 +00:00
Harry Ramsey
34a0b6dc32 Update framework submodule for CMake TF-PSA-Crypto 
This commit updates the framework submodule to include commits relevant
to running TF-PSA-Crypto using CMake build system.

Signed-off-by: Harry Ramsey <harry.ramsey@arm.com>
 2025-01-07 11:43:42 +00:00
David Horstmann
3dd86cd845
Merge pull request #9777 from hughsie/hughsie/sbom 
Add a SBOM file in CycloneDX format
 2025-01-06 11:51:34 +00:00
Janos Follath
3c4c647328
Merge pull request #9818 from yanesca/remove_USE_PSA_from_standalone_doc_9632 
Remove discussions of MBEDTLS_USE_PSA_CRYPTO in standalone documentation
 2025-01-02 15:45:03 +00:00
Ronald Cron
e457bf1c62
Merge pull request #9833 from Harry-Ramsey/fix-submodule-error-messages-development 
Fix submodule error messages
 2024-12-21 08:57:26 +00:00
minosgalanakis
bd4a00535b
Merge pull request #9842 from eleuzi01/issue-39-2-fw 
Undo temporary changes in all-helpers.sh
 2024-12-20 15:48:40 +00:00