mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-01-29 03:32:39 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
32,160 Commits 170 Branches 263 Tags
Commit Graph

1026 Commits

Author SHA1 Message Date
Gilles Peskine
ac767e5c69 Remove MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED 
Remove the configuration option MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED and all
code guarded by it. This remove support for the RSA-PSK key exchange in TLS
1.2.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-11-05 15:49:01 +01:00
Gilles Peskine
4e4647a4e7
Merge pull request #9690 from valeriosetti/fix-pk-write-buffer-overrun 
pkwrite: fix buffer overrun
 2024-10-16 12:00:52 +00:00
David Horstmann
a4415d992a Defer static keystore to 3.6.3 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2024-10-16 10:30:33 +02:00
Gilles Peskine
80352ac58c
Merge pull request #9668 from gilles-peskine-arm/analyze_outcome-split-dev 
Split check_test_cases.py and outcome_analysis.py
 2024-10-10 13:45:49 +00:00
Gilles Peskine
3146772575 Adjust paths for impending moves to the framework 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-10-08 19:37:23 +02:00
Ronald Cron
0d10fedbeb
Merge pull request #9236 from ronald-cron-arm/config-file-split 
Configuration file split proposal
 2024-10-03 20:53:49 +00:00
Ronald Cron
45daa8d8c3 Convert config-split.md with Pandoc 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-10-03 09:38:27 +02:00
Ronald Cron
cbafe75f19 Fix hyperlink 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-10-03 09:33:25 +02:00
Ronald Cron
3ca3f151f5 Add missing backticks 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-10-03 09:29:36 +02:00
Ronald Cron
5f64611f6b Remove Mbed TLS feature support section 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-10-02 14:15:45 +02:00
Ronald Cron
e2b24d3461 Move MBEDTLS_USE_PSA_CRYPTO to "Builtin drivers" section 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-10-02 13:42:46 +02:00
Ronald Cron
da4522c2b8 Move MBEDTLS_ERROR_C to section "General configuration options" 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-10-02 13:42:34 +02:00
Ronald Cron
eb589f9b99 Rename MBEDTLS_PSA_CRYPTO_(USER_)CONFIG_FILE 
Rename MBEDTLS_PSA_CRYPTO_(USER_)CONFIG_FILE to
TF_PSA_CRYPTO_(USER_)CONFIG_FILE as we rename
crypto_config.h to tf_psa_crypto_config.h.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-27 17:03:54 +02:00
Ronald Cron
89d8a27d00 Rework overview of section changes 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-27 17:03:09 +02:00
Ronald Cron
be352633ae Re-organize "Mbed TLS modules" and "Module configuration options" 
Re-organize "Mbed TLS modules" and "Module configuration options"
into "X.509 feature selection" and "TLS feature selection" for
better alignment with tf_psa_crypto_config.h.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-27 17:03:07 +02:00
Ronald Cron
b992bc8aa7 Re-order mbedtls_config.h sections 
Re-order mbedtls_config.h sections for
the order to be more aligned with the
tf_psa_crypto_config.h one.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-27 17:00:49 +02:00
Ronald Cron
3c7b3be34e No subsection 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-27 16:59:39 +02:00
Ronald Cron
2c152fdc4e Add links to section descriptions 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-27 16:59:33 +02:00
Ronald Cron
294b5e06b1 Improve alphabetic ordering in sections 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-27 16:32:02 +02:00
Elena Uziunaite
9b0bdd0590 Remove MBEDTLS_ECP_HAVE_xxx and MBEDTLS_MD_CAN_xxx 
Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>
 2024-09-26 14:48:59 +01:00
Ronald Cron
4162c3a24a Fix/Improve wording 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-19 11:05:56 +02:00
Ronald Cron
a5a46d0322 Fix md rendering 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-10 09:40:59 +02:00
Ronald Cron
f50ae4273f Sort macros alphabetically in sections 
Do not mix boolean and non boolean options
though.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-09 17:29:21 +02:00
Ronald Cron
2589ee3952 Move CIPHER, DRBG and TIME options 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-09 16:22:56 +02:00
Ronald Cron
075c742cb0 Add backticks around file names 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-09 15:43:38 +02:00
Ronald Cron
5e29260544 Rework first sections 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-04 09:12:10 +02:00
Ronald Cron
a25e9dbdeb Move MBEDTLS_VERSION_* back to mbedtls_config.h 
We will add TF-PSA-Crypto specific ones when
we add support for querying version and version
features in TF-PSA-Crypto.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-04 08:55:07 +02:00
Ronald Cron
8e1b463e34 Reorder sections 
Move "Cryptographic mechanism selection (extended API)"
and "Data format support" just after section
Cryptographic mechanism selection (PSA API)"

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-04 08:35:34 +02:00
Ronald Cron
e5d0f8c906 Move MBEDTLS_*_RETURN config options 
Move MBEDTLS_*_RETURN config options
in the same section as
MBEDTLS_CHECK_RETURN_WARNING.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-04 08:35:34 +02:00
Ronald Cron
34a4086901 Move MBEDTLS_NET_C config option 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-04 08:35:34 +02:00
Ronald Cron
717663bcbc Move MBEDTLS_SELF_TEST option 
Move MBEDTLS_SELF_TEST option to
the "General and test configuration options"
section as MBEDTLS_VERSION_C.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-04 08:35:34 +02:00
Ronald Cron
42c30e6a6e Move DRBG options 
Move DRBG options to the
"Cryptographic mechanism selection (extended API)"
section.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-04 08:35:34 +02:00
Ronald Cron
61391063b6 No config renaming 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-04 08:35:34 +02:00
Ronald Cron
ca99203bc3 Remove module and function _ALT config option 
These options have been removed now.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-04 08:35:34 +02:00
Ronald Cron
ad62dce86f Keep legacy crypto config options 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-04 08:35:34 +02:00
Ronald Cron
5c46496dd2 Improve section names 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-04 08:35:34 +02:00
Ronald Cron
4f4a30c2e7 Remove question marks triplets 
The associated config options are at the
right place.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-04 08:35:34 +02:00
Ronald Cron
a3f3fca492 Remove trailing spaces 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-09-04 08:33:58 +02:00
Elena Uziunaite
414e59bcf4 Leave the spaces in psa-transition.md 
Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>
 2024-08-27 19:22:08 +01:00
Elena Uziunaite
34fe4fddfd Fix typo in psa-transition.md 
Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>
 2024-08-27 16:07:09 +01:00
Gilles Peskine
59602d3929 The fully static key store will miss the 3.6.1 release 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-14 11:41:34 +02:00
Gilles Peskine
3c1d287f8d Mention the option name for the dynamic key store 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-14 11:41:33 +02:00
Bence Szépkúti
88f3dd9f78
Merge pull request #9402 from tom-daubney-arm/remove_function_level_alt_interface 
Remove function level alt interface
 2024-08-09 17:59:51 +00:00
Thomas Daubney
ebcd49b961 Remove outdated documentation 
Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>
 2024-08-06 15:20:06 +01:00
Gilles Peskine
e863f868ec Documentation: point to key_custom instead of key_ext 
Replace references to the deprecated functions `psa_generate_key_ext()` and
`psa_key_derivation_output_key_ext()` by their replacements
Implement `psa_generate_key_custom()` and
`psa_key_derivation_output_key_custom()`.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-05 15:49:22 +02:00
Gilles Peskine
343d040ab6 Miscellaneous clarifications 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-01 16:14:32 +02:00
Gilles Peskine
7fc3a50883 Expand on performance 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-01 16:14:32 +02:00
Gilles Peskine
2e0fc78d21 Discuss why we have so many variants 
Explain that the hybrid key store is the historical implementation and
neither alternative is a drop-in replacement. Discuss how we could
potentially reduce the number of variants after the next major release.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-01 16:14:32 +02:00
Gilles Peskine
19afbc9568 Link to issue about freeing empty slices 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-01 16:14:32 +02:00
Gilles Peskine
ef94001222 Improve and fix explanation of next_free 
In particular, fix an off-by-one error right after I explain how the number
is off by one from what you'd expect. State explicitly that the number can
be negative.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-01 16:14:32 +02:00