mbedtls

mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-01-29 21:33:02 +00:00

Author	SHA1	Message	Date
Manuel Pégourié-Gonnard	b76573c662	We now have two LTS branches to backport to. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2024-04-04 10:44:18 +02:00
Paul Elliott	30978ec650	Merge pull request #8874 from stevenwdv/development Fix compilation on macOS without apple-clang	2024-03-29 13:59:36 +00:00
minosgalanakis	e146940714	Merge pull request #1216 from Mbed-TLS/mbedtls-3.6.0_mergeback Mbedtls 3.6.0 mergeback	2024-03-28 14:31:03 +00:00
Minos Galanakis	9860056006	Revert "Autogenerated files for 3.6.0" This reverts commit e8a6833b2878f1c08b8f96fe35e2812367e32ef3. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-03-27 17:36:15 +00:00
minosgalanakis	2ca6c285a0	Merge pull request #1215 from Mbed-TLS/mbedtls-3.6.0rc1-pr Mbedtls 3.6.0rc1 v3.6.0 mbedtls-3.6.0	2024-03-26 14:58:02 +00:00
Minos Galanakis	078f823843	Merge pull request #8990 from tom-cosgrove-arm:record-size-limit-support-is-now-released Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-03-26 12:32:00 +00:00
Minos Galanakis	a11b9d69dd	Merge pull request #8989 from tom-cosgrove-arm:fix-typo-in-psa_key_production_parameters_t-doc Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-03-26 12:31:38 +00:00
Tom Cosgrove	f02c6ef86d	Fix typo in psa_key_production_parameters_t doc: 65535 should be 65537 Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2024-03-26 12:25:07 +00:00
Tom Cosgrove	1b3b1743f5	Record size limit support is released, so remove warning about only for testing Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2024-03-26 12:23:49 +00:00
minosgalanakis	7424296082	Merge pull request #1213 from Mbed-TLS/mbedtls-3.6.0rc0-pr Mbedtls 3.6.0 Release Candidate	2024-03-22 22:50:33 +00:00
Minos Galanakis	e8a6833b28	Autogenerated files for 3.6.0 Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-03-22 16:00:55 +00:00
Minos Galanakis	8d94aec75c	Fix some Changelog typos Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-03-22 16:00:55 +00:00
Minos Galanakis	4492dbd286	Version Bump for 3.6.0 ./scripts/bump_version.sh --version 3.6.0 --so-crypto 16 --so-x509 7 --so-tls 21 Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-03-22 11:46:25 +00:00
Minos Galanakis	2c1daef183	Assemble Changelog Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-03-22 11:46:25 +00:00
Minos Galanakis	96948e9a7b	Merge pull request #8980 from adeaarm/fix_jinja_template Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-03-22 11:44:46 +00:00
Antonio de Angelis	700632eca2	Fix #ifdef guard in driver wrapper template The #ifdef guard in the get_builtin_key() should be PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT to allow for multiple drivers to be plugged into the wrapper. Signed-off-by: Antonio de Angelis <antonio.deangelis@arm.com>	2024-03-22 11:43:19 +00:00
Manuel Pégourié-Gonnard	611f899c0c	Merge pull request #8957 from valeriosetti/issue8836 Unify consistency tests for mbedtls_pk_import_into_psa and mbedtls_pk_copy_from_psa	2024-03-22 08:57:45 +00:00
Manuel Pégourié-Gonnard	e2925efa42	Merge pull request #8967 from ronald-cron-arm/improve-version-selection-tests-titles ssl-opt.sh: Improve version selection test titles	2024-03-22 08:52:39 +00:00
Minos Galanakis	d9d6435bc5	Merge branch 'development-restricted' into mbedtls-3.6.0rc0-pr Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-03-21 15:44:11 +00:00
Manuel Pégourié-Gonnard	2107feb7a6	Merge pull request #8586 from lpy4105/issue/fix-fake-case-listed-in-compat_sh Fix fake cases listed of compat.sh	2024-03-21 15:05:11 +00:00
minosgalanakis	5a9020f5d4	Merge pull request #8941 from daverodgman/branches-3.6lts Update BRANCHES for 3.6	2024-03-21 13:56:34 +00:00
Manuel Pégourié-Gonnard	32a96d656b	Merge pull request #8951 from valeriosetti/issue8938 mbedtls_pk_setup_opaque always uses PKCS#1v1.5 for RSA keys	2024-03-21 09:08:34 +00:00
Ronald Cron	35884a4301	ssl-opt.sh: Improve version selection test titles Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-03-21 09:44:28 +01:00
Valerio Setti	2833050bb6	test_suite_pk: fix guards in pk_psa_sign() If the public key is exported with mbedtls_pk_write_pubkey_der() it should be re-imported with mbedtls_pk_parse_public_key(). Alternative options (when PK_WRITE is not defined), i.e. mbedtls_ecp_point_write_binary() and mbedtls_rsa_write_pubkey(), export the key in a different format which cannot be parsed by pk_parse module so mbedtls_ecp_point_read_binary() and mbedtls_rsa_parse_pubkey() should be used respectively in this case. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-21 05:24:12 +01:00
minosgalanakis	e331dde17d	Merge pull request #1208 from Mbed-TLS/origin/dev/minosgalanakis/development-restricted-merge-19032024 Merge development on restricted 10/03/2024	2024-03-20 18:56:15 +00:00
Valerio Setti	ea01efa589	add changelog Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-20 17:19:08 +01:00
Valerio Setti	144c27b0f3	pkwrite: add new internal symbol for the max supported public key DER length This is also used in pk_psa_sign() to properly size buffers holding the public key. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-20 17:10:35 +01:00
Valerio Setti	027796c0cc	test_suite_pk: uniformly generate RSA and EC keys in pk_psa_sign() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-20 16:55:35 +01:00
Valerio Setti	6fb2586dfd	test_suite_pk: fix guards in pk_psa_sign() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-20 16:55:14 +01:00
Valerio Setti	1b533ab205	test_suite_pk: test also RSA OAEP in pk_wrap_rsa_decrypt_test_vec() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-20 15:43:33 +01:00
Valerio Setti	d45836a1c3	pk_wrap: fix algorithm selection in rsa_opaque_decrypt() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-20 15:42:55 +01:00
Valerio Setti	480dfc7ad7	test_suite_pk: fix guards in pk_psa_sign() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-20 12:24:29 +01:00
Valerio Setti	237424b84f	test_suite_pk: simplify pk_copy_from_psa_success() Use mbedtls_test_key_consistency_psa_pk() to verify that the generated PK contexts match with the original PSA keys instead of doing sign/verify and encrypt/decrypt. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-20 12:10:38 +01:00
Minos Galanakis	b70f0fd9a9	Merge branch 'development' into 'development-restricted' Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-03-19 22:24:40 +00:00
Valerio Setti	f71c060cb2	test_suite_pk: properly size buffers for public keys in pk_psa_sign() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-19 19:35:37 +01:00
Valerio Setti	aa9cc49879	test_suite_pk: test also RSA keys with PKCS1 v2.1 padding mode in pk_psa_sign() Previously only only PKCS1 v1.5 was tested. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-19 19:03:55 +01:00
Gilles Peskine	4fc5b71cbb	Merge pull request #1207 from ronald-cron-arm/binder-overread tls13: srv: Fix potential stack buffer overread	2024-03-19 17:01:23 +01:00
Valerio Setti	4f3262de2d	pk_wrap: fix algorithm selection in rsa_opaque_sign_wrap() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-19 15:55:32 +01:00
Valerio Setti	d971b7834b	test_suite_pk: fix RSA issue in pk_psa_sign() when !PK_[PARSE\|WRITE]_C are defined This bug was not found until now because: - !PK_[WRITE\|PARSE]_C is only tested in component_full_no_pkparse_pkwrite() - the test only case concerning RSA key had MBEDTLS_PK_WRITE_C as dependency so it was not executed in that component. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-19 15:55:32 +01:00
Valerio Setti	c262561424	test_suite_pk: rename some variables in pk_psa_sign() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-19 15:55:32 +01:00
Valerio Setti	d38480b0e0	test_suite_pk: reshape pk_psa_sign() The behavior of the functions is kept intact. Changes concern: - generate the initial PK context using PSA parameters only; this allows to remove 1 input parameter for the test function. - add/fix comments. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-19 15:55:32 +01:00
Ronald Cron	a5c5c58107	tls13: srv: Fix potential stack buffer overread Fix potential stack buffer overread when checking PSK binders. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-03-19 14:46:21 +01:00
Gilles Peskine	b2b9068264	Merge pull request #8942 from valeriosetti/fix-null-dereference [Bugfix] Fix null dereference in `mbedtls_pk_verify_ext()`	2024-03-19 10:47:29 +00:00
Steven WdV	9f0858db30	Check C/C++ compilers separately for AppleClang ranlib Signed-off-by: Steven WdV <swdv@cs.ru.nl>	2024-03-19 11:39:44 +01:00
Manuel Pégourié-Gonnard	af14b89824	Merge pull request #8932 from ronald-cron-arm/enable-tls13-by-default Enable TLS 1.3 by default	2024-03-19 09:51:49 +00:00
Valerio Setti	da47518554	test_suite_pk: always test verify_ext with opaque keys in pk_psa_wrap_sign_ext() Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-19 09:54:46 +01:00
David Horstmann	720c72b6ba	Merge pull request #1202 from davidhorstmann-arm/update-buffer-sharing-design-doc Rewrite PSA shared memory design document	2024-03-18 17:49:59 +00:00
Valerio Setti	8ad5be0e5d	add changelog Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2024-03-18 17:22:52 +01:00
David Horstmann	3147034457	Mention MBEDTLS_PSA_ASSUME_EXCLUSIVE_BUFFERS Explain this option and the way it relates to the copying macros. Signed-off-by: David Horstmann <david.horstmann@arm.com>	2024-03-18 15:59:03 +00:00
David Horstmann	0ea8071bda	Remove 'Question' line around testing This question has been resolved, as we know that we can test transparently. Signed-off-by: David Horstmann <david.horstmann@arm.com>	2024-03-18 15:51:03 +00:00

1 2 3 4 5 ...

30612 Commits