TeamHepta/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2026-05-12 23:04:31 +02:00
Code Issues Packages Projects Releases Wiki Activity
17,973 Commits 179 Branches 280 Tags
2545b401deb958165e629bfcdd3e513b2e4b56cf
Commit Graph

17973 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Gilles Peskine
2545b401de Merge pull request #8081 from adeaarm/backport_IAR_fix 
Backport 2.28: Small fixes for IAR support
 2023-08-17 19:54:44 +00:00
Gilles Peskine
64dbdc06fa Merge pull request #7768 from lpy4105/backport-2.28/issue/renew_cert_2027-01-01 
Backport 2.28: Updating crt/crl files due to expiry before 2027-01-01
 2023-08-17 18:55:42 +00:00
Antonio de Angelis
431e5c4199 Remove workaround for non-zero shared_secret array 
PSA_KEY_AGREEMENT_MAX_SHARED_SECRET_SIZE is always greater
than 1 so no need for the workaround on the original patch

Signed-off-by: Antonio de Angelis <antonio.deangelis@arm.com>
 2023-08-17 15:36:21 +01:00
Pengyu Lv
e453f9df10 Add description for invalid commands 
Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>
 2023-08-17 16:32:34 +08:00
Antonio de Angelis
1505d3232d Fix error strings without quotes 
Some of the error strings that should be printed with the
error preprocessor directive are missing quotes

Signed-off-by: Antonio de Angelis <antonio.deangelis@arm.com>
 2023-08-16 16:28:42 +01:00
TTornblom
ac9e3402ab BUILD: Update For IAR support 
Applied the same change as in mbed-crypto for using this as a sub
project with the IAR toolchain. Use __asm generic ,and avoid empty
enum. Avoid declaration of array with null size. This is a porting
of the original patch contributed to trusted-firmware-m.

Signed-off-by: TTornblom <thomas.tornblom@iar.com>
Signed-off-by: Michel Jaouen <michel.jaouen@st.com>
Signed-off-by: Antonio de Angelis <antonio.deangelis@arm.com>
 2023-08-16 16:25:47 +01:00
Pengyu Lv
96d0ef4f08 Fix invalid generation commands 
`serial_hex` option is not supported by `cert_write` in 2.28,
use `serial` option instead.

Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>
 2023-08-16 11:43:51 +08:00
Gilles Peskine
7740eaf32f Merge pull request #7940 from AgathiyanB/backport-assert-false-macro 
[Backport 2.28] Add TEST_FAIL macro for tests
 2023-08-10 13:03:44 +00:00
Manuel Pégourié-Gonnard
a35283ca44 Merge pull request #8046 from ivq/6999-backport 
Backport 2.28: Doc: Add note on special use of A in ecp group structure
 2023-08-10 08:24:08 +00:00
Chien Wong
8aa8d78ed9 Add potential missing inline definition 
Signed-off-by: Chien Wong <m@xv97.com>
 2023-08-10 12:24:43 +08:00
Chien Wong
12f6f28e15 Improve doc on special use of A in ecp group structure 
Signed-off-by: Chien Wong <m@xv97.com>
 2023-08-09 22:15:14 +08:00
Gilles Peskine
64a81357c3 Merge pull request #8037 from tom-cosgrove-arm/fix-rijndael-and-drbg-pdf-links-2.28 
Backport 2.28: Update links to Rijndael paper and NIST SP 800-90 DRBGs
 2023-08-07 19:16:01 +00:00
Gilles Peskine
b438348774 Merge pull request #8010 from marekjansta/fix-x509-ec-algorithm-identifier-2.28 
Backport 2.28: Fixed x509 certificate generation to conform to RFCs when using ECC key
 2023-08-07 19:14:52 +00:00
Dave Rodgman
1484a53429 Merge pull request #8024 from daverodgman/changelog-warning-fixes-2.28 
Backport 2.28: Clarify changelog not needed for compiler warnings
 2023-08-07 10:55:56 +01:00
Tom Cosgrove
aaec13793a Update links to Rijndael paper and NIST SP 800-90 DRBGs 
The link to the DRBG paper points to the March 2007 version, the same as the
original link (rather than the latest version).

The amended Rijndael paper has a two-page "Note on naming" prefix.

Fixes #7193

Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>
 2023-08-04 15:08:48 +01:00
Dave Rodgman
f97832a5ec Merge pull request #8015 from AgathiyanB/fix-unnecessary-type-quantifier 
Fix IAR warning about unnecessary type quantifier
 2023-08-03 15:57:01 +00:00
Dave Rodgman
aeb97a1891 Merge pull request #1045 from Mbed-TLS/cert-changelog-2.28.4 
Update Changelog to cover certificate updates
mbedtls-2.28.4 v2.28.4 		2023-08-03 13:59:19 +01:00
Dave Rodgman
b0eedb4017 Update Changelog to cover certificate updates 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2023-08-03 13:31:07 +01:00
Dave Rodgman
8fd5eefe9b Merge pull request #1042 from daverodgman/mbedtls-2.28.4rc0-pr 
Mbedtls 2.28.4rc0 pr
 2023-08-02 17:45:58 +01:00
Dave Rodgman
8abc2e6112 Update BRANCHES.md 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2023-08-02 15:36:46 +01:00
Dave Rodgman
403ce0a6cc Bump version numbers 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2023-08-02 15:35:45 +01:00
Dave Rodgman
ccba2b7507 Assemble 2.28.4 changelog 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2023-08-02 14:47:25 +01:00
Dave Rodgman
973494d193 Clarify changelog not needed for compiler warnings 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2023-08-02 13:52:20 +01:00
Tom Cosgrove
c5f24c0128 Merge pull request #8001 from AgathiyanB/fix-control-bypass-2.28 
Fix control bypass warnings
 2023-08-02 07:45:22 +00:00
Bence Szépkúti
fb806b68ed Merge pull request #7969 from gowthamsk-arm/use_earliest_latest_compilers_2.28 
Backport 2.28: Use earliest latest compilers 2.28
 2023-08-01 23:50:14 +00:00
Agathiyan Bragadeesh
06d5e10989 Fix IAR warning about unnecessary type quantifier 
Signed-off-by: Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com>
 2023-08-01 14:23:01 +01:00
Gowtham Suresh Kumar
cc029afbd0 Update default variable values for compilers 
Signed-off-by: Gowtham Suresh Kumar <gowtham.sureshkumar@arm.com>
 2023-08-01 09:48:32 +01:00
Gowtham Suresh Kumar
2afb24f96a Use variables for selecting compilers 
The latest and earliest clang/GCC compilers are now used through
variables instead of symlinks and also the all.sh script is updated
to support options for overriding the default values.

Signed-off-by: Gowtham Suresh Kumar <gowtham.sureshkumar@arm.com>
 2023-08-01 09:45:57 +01:00
Gowtham Suresh Kumar
13850f387b Use compgen to gather components in all.sh 
Signed-off-by: Gowtham Suresh Kumar <gowtham.sureshkumar@arm.com>
 2023-08-01 09:40:01 +01:00
Gowtham Suresh Kumar
53453cf250 Remove test_clang_opt check 
The component functions in all.sh will be listed using
compgen instead of sed so this check is not needed.

Signed-off-by: Gowtham Suresh Kumar <gowtham.sureshkumar@arm.com>
 2023-08-01 09:39:56 +01:00
Marek Jansta
0a6743b2de Fixed AlgorithmIdentifier parameters when used with ECDSA signature algorithm in x509 certificate 
Signed-off-by: Marek Jansta <jansta@2n.cz>
 2023-07-31 17:33:23 +02:00
Marek Jansta
f5257c06d1 Cherry picked required prerequisites from dev branch, git hash 0167244b 
Signed-off-by: Marek Jansta <jansta@2n.cz>
 2023-07-31 17:33:16 +02:00
Agathiyan Bragadeesh
e7eb8052be Seperate declarations from function body 
Signed-off-by: Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com>
 2023-07-31 16:20:27 +01:00
Agathiyan Bragadeesh
5521b4ce37 Assign have_rng in declaration of ecp_mul_mxz 
Signed-off-by: Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com>
 2023-07-31 16:15:56 +01:00
Tom Cosgrove
e15b8d21d6 Merge pull request #8004 from daverodgman/code_style_since-2.28 
backport 2.28 - Make code_style.py --since more precise
 2023-07-28 08:22:04 +00:00
Dave Rodgman
dd7b24c3bf whitespace fix 
Signed-off-by: Dave Rodgman <dave.rodgman@gmail.com>
 2023-07-27 20:01:04 +01:00
Dave Rodgman
e67ffd6d20 pylint tidy-up 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2023-07-27 18:50:50 +01:00
Dave Rodgman
73b87e39d6 Make code_style.py -s default to -s=mbedtls-2.28 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2023-07-27 18:44:52 +01:00
Dave Rodgman
b96dbc6486 Make code_style.py -s more precise 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2023-07-27 18:44:45 +01:00
Agathiyan Bragadeesh
7b0ee1e655 Fix control bypass warnings 
Declarations have been moved to the top of functions to fix this

Signed-off-by: Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com>
 2023-07-27 15:51:46 +01:00
Gilles Peskine
ae68c09a69 Merge pull request #7987 from gilles-peskine-arm/ssl_premaster_secret-empty-2.28 
Backport 2.28: Fix empty union when TLS is disabled
 2023-07-27 10:29:27 +02:00
Gowtham Suresh Kumar
34d8bd37d9 Fix warnings from clang-16 
Running clang-16 on mbedtls reports warnings of type "-Wstrict-prototypes".
This patch fixes these warnings by adding void to functions with no
arguments. The generate_test_code.py is modified to insert void into test
functions with no arguments in *.function files.

Signed-off-by: Gowtham Suresh Kumar <gowtham.sureshkumar@arm.com>
 2023-07-27 00:03:21 +01:00
Gowtham Suresh Kumar
1e3af2485f Update test scripts to use latest/earliest compilers 
The Ubuntu 16.04 and 22.04 docker images have been updated with
earliest and latest versions of gcc and clang respectively.
This patch adds the necessary component and support functions
required for the CI to run these compilers.

For FreeBSD we invoke the function by name so a condition is added
to disable the existing test_clang_opt function for linux.

Signed-off-by: Gowtham Suresh Kumar <gowtham.sureshkumar@arm.com>
 2023-07-26 16:55:39 +01:00
Gilles Peskine
e5507d5f20 Fix empty union when TLS is disabled 
When all TLS 1.2 support is disabled, union mbedtls_ssl_premaster_secret was
empty, which is not valid C even if the union is never used. Fixes #6628.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-07-26 17:22:04 +02:00
Agathiyan Bragadeesh
1dd20a32e2 Remove trailing backslash 
Signed-off-by: Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com>
 2023-07-24 10:50:53 +01:00
Gilles Peskine
b98d39ce2a Merge pull request #7965 from gilles-peskine-arm/psa_inject_entropy-file-stability-2.28 
Backport 2.28: Fix and test MBEDTLS_PSA_INJECT_ENTROPY
 2023-07-21 17:37:19 +02:00
Gilles Peskine
1fc71160b1 Add missing dependencies on real entropy 
Tests that call mbedtls_test_ssl_endpoint_init() need mbedtls_entropy_func()
to work.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-07-20 20:04:27 +02:00
Gilles Peskine
24d0124868 Fix copypasta in function documentation 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-07-20 18:11:22 +02:00
Gilles Peskine
581c6e12ce MBEDTLS_PSA_INJECT_ENTROPY: ignore seed file 
The test framework leaves the seed file behind (like it does with the
corresponding file in the legacy API, namely seedfile), so ignore it.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-07-20 18:11:22 +02:00
Gilles Peskine
58d085419c MBEDTLS_PSA_INJECT_ENTROPY: check the seed file UID 
The seed file UID is part of the library's stable interface.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-07-20 18:11:22 +02:00