TeamHepta/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2026-04-29 06:47:27 +02:00
Code Issues Packages Projects Releases Wiki Activity
15,629 Commits 179 Branches 280 Tags
424fa93efdd8ef1efb2d459f3ca99f88f8ef4e43
Commit Graph

369 Commits

Author SHA1 Message Date
Jaeden Amero
424fa93efd psa: Support RSA signature without MBEDTLS_GENPRIME 
On space-constrained platforms, it is a useful configuration to be able
to import/export and perform RSA key pair operations, but to exclude RSA
key generation, potentially saving flash space. It is not possible to
express this with the PSA_WANT_ configuration system at the present
time. However, in previous versions of Mbed TLS (v2.24.0 and earlier) it
was possible to configure a software PSA implementation which was
capable of making RSA signatures but not capable of generating RSA keys.
To do this, one unset MBEDTLS_GENPRIME.

Since the addition of MBEDTLS_PSA_BUILTIN_KEY_TYPE_RSA_KEY_PAIR, this
expressivity was lost. Expressing that you wanted to work with RSA key
pairs forced you to include the ability to generate key pairs as well.

Change psa_crypto_rsa.c to only call mbedtls_rsa_gen_key() if
MBEDTLS_GENPRIME is also set. This restores the configuration behavior
present in Mbed TLS v2.24.0 and earlier versions.

It left as a future exercise to add the ability to PSA to be able to
express a desire for a software or accelerator configuration that
includes RSA key pair operations, like signature, but excludes key pair
generation.

Without this change, linker errors will occur when attempts to call,
which doesn't exist when MBEDTLS_GENPRIME is unset.
    psa_crypto_rsa.c.obj: in function `rsa_generate_key':
    psa_crypto_rsa.c:320: undefined reference to `mbedtls_rsa_gen_key'

Fixes #4512

Signed-off-by: Jaeden Amero <jaeden.amero@arm.com>
 2021-05-20 17:08:59 +01:00
Ronald Cron
7dbcc3c794 Merge pull request #4470 from d3zd3z/fix-posix-define 
Check if feature macro is defined before define it
 2021-05-12 15:47:12 +02:00
David Brown
803d3e4c70 Add changelog for posix definition 
Signed-off-by: David Brown <david.brown@linaro.org>
 2021-05-11 12:44:40 -06:00
Gilles Peskine
015109b066 Changelog entry for the removal of config-psa-crypto.h in 3.0 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2021-05-10 10:36:37 +02:00
Manuel Pégourié-Gonnard
b548cda1cf Merge pull request #4397 from TRodziewicz/change_config_h_defaults 
Four config.h defaults have been changed.
 2021-05-07 12:42:39 +02:00
Manuel Pégourié-Gonnard
dd57b2f240 Merge pull request #4445 from TRodziewicz/remove_deprecated_things_-_remainder 
Remove deprecated functions and constants.
 2021-05-07 10:05:30 +02:00
TRodziewicz
c1c479fbe9 Fllow-up of the review: ChangeLog expansion, mmigration guides added and comments fixed 
Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>
 2021-05-06 00:53:22 +02:00
Gilles Peskine
275b9b2ef4 Merge pull request #4402 from mpg/migration-guide-3.0 
Migration guide for 3.0
 2021-05-05 14:30:39 +02:00
Ronald Cron
98d00d06a0 Merge pull request #4426 from ronald-cron-arm/remove-enable-weak-ciphersuites 
Remove MBEDTLS_ENABLE_WEAK_CIPHERSUITES configuration option
 2021-05-04 17:20:36 +02:00
Ronald Cron
d5d04962ef Add change log and migration guide 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2021-05-04 15:59:10 +02:00
Manuel Pégourié-Gonnard
759f551010 Add a missing ChangeLog entry 
Was missed in https://github.com/ARMmbed/mbedtls/pull/4324

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2021-05-04 11:35:08 +02:00
Gilles Peskine
59d97a16d6 Merge pull request #4437 from gilles-peskine-arm/aes2crypt-removal-2.x 
Remove the sample program aescrypt2
 2021-04-30 11:15:22 +02:00
TRodziewicz
85dfc4de20 Applying current changes 
Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>
 2021-04-30 00:07:04 +02:00
TRodziewicz
18efb73743 Remove deprecated functions and constants. 
Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>
 2021-04-29 23:12:19 +02:00
Ronald Cron
1a85d3b122 Merge pull request #4146 from stevew817/allow_skipping_3des_cmac_when_alt 
Allow CMAC self-test to skip tests for unsupported primitives (2)
 2021-04-29 16:04:39 +02:00
Gilles Peskine
85f023b007 Merge pull request #3950 from gilles-peskine-arm/dhm_min_bitlen-bits 
Enforce dhm_min_bitlen exactly
 2021-04-29 14:55:30 +02:00
Dave Rodgman
c86f330aed Merge pull request #3777 from hanno-arm/x509-info-optimization_rebased 
Reduce ROM usage due to X.509 info
 2021-04-28 17:31:55 +01:00
Gilles Peskine
e67665ca20 Merge pull request #4006 from chris-jones-arm/development 
Add macro to check error code additions/combinations
 2021-04-28 16:47:29 +02:00
Tomasz Rodziewicz
e66f49c3ce Merge branch 'development_3.0' into change_config_h_defaults 2021-04-28 16:37:27 +02:00
Gilles Peskine
98b3cd6b23 Remove the sample program aescrypt2 
The sample program aescrypt2 shows bad practice: hand-rolled CBC
implementation, CBC+HMAC for AEAD, hand-rolled iterated SHA-2 for key
stretching, no algorithm agility. The new sample program pbcrypt does
the same thing, but better. So remove aescrypt2.

Fix #1906

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2021-04-28 15:57:30 +02:00
Gilles Peskine
2c8041d6df Merge pull request #4433 from bensze01/psa_aead_output_size 
[development] PSA: Update AEAD output buffer macros to PSA API version 1.0
 2021-04-28 13:30:40 +02:00
Bence Szépkúti
da95ef9ae0 Remove PSA AEAD output size compatibility macros 
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2021-04-28 10:01:20 +02:00
Ronald Cron
3e7481e6a2 Merge pull request #4219 from stevew817/fix_missing_parenthesis 
Add missing parenthesis when MBEDTLS_ECP_NORMALIZE_MXZ_ALT is declared

@mpg comment has been addressed thus this can be merged.
 2021-04-28 08:35:00 +02:00
Hanno Becker
54dcf5e6c9 Add ChangeLog entry 
Signed-off-by: Hanno Becker <hanno.becker@arm.com>
 2021-04-27 17:20:56 +01:00
Dave Rodgman
0c37b4f826 Improve changelog entry for #4217 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2021-04-27 17:01:24 +01:00
Bence Szépkúti
58d8518eb1 Update changelog 
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2021-04-27 04:41:43 +02:00
Dave Rodgman
12f93f4fc2 Merge pull request #4407 from ARMmbed/dev3_signoffs 
Merge development_3.0 into development
 2021-04-26 19:48:16 +01:00
TRodziewicz
87bfa20f1c Removing trailing space from ChangeLog file 
Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>
 2021-04-26 20:08:53 +02:00
Dave Rodgman
10ba553c2e Update Changelog 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2021-04-26 16:23:22 +01:00
Dave Rodgman
ddb8ea6847 Fix Changelog entry 
Rename a Changelog.d file, so that it gets picked up as expected by
scripts/assemble_changelog.py.

Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2021-04-26 16:23:21 +01:00
Dave Rodgman
a00e8502c9 Documentation updates for Mbed TLS 3.0 
Update documentation to reflect the branch changes.

Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
 2021-04-26 16:23:21 +01:00
TRodziewicz
ede3085563 Add ChangeLog file and fix comment in config.h 
Signed-off-by: TRodziewicz <tomasz.rodziewicz@mobica.com>
 2021-04-26 15:44:25 +02:00
Ronald Cron
b5939e814e Merge pull request #4160 from stevew817/feature/driver_builtin_keys 
Add implementation for MBEDTLS_PSA_CRYPTO_BUILTIN_KEYS

Merging as it has been ready for four days now and I prefer not having to go through other rebases especially given the coming change of scope of development (3.0 rather than 2.2x).
 2021-04-23 09:40:31 +02:00
Steven Cooreman
894b9c4635 Add documentation for change in CMAC self-test behaviour 
Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
 2021-04-23 08:19:43 +02:00
Tomasz Rodziewicz
9a97a13d3e Merge branch 'development_3.0' into remove_depr_error_codes 2021-04-22 12:53:15 +02:00
Manuel Pégourié-Gonnard
f6b677ea98 Merge pull request #4349 from mpg/apply-4334-3.0 
Apply 4334 to development-3.0
 2021-04-22 12:42:40 +02:00
Tomasz Rodziewicz
7bdbc45275 Update issue4283.txt 
Corrections in the ChangeLog file after a review.
 2021-04-21 16:50:15 +02:00
Tomasz Rodziewicz
d6c246f5bf Merge branch 'development_3.0' into remove_depr_error_codes 2021-04-21 12:31:43 +02:00
Mateusz Starzyk
f9c7b3eb11 Remove PKCS#11 library wrapper. 
Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
 2021-04-21 11:05:00 +02:00
Manuel Pégourié-Gonnard
1cc91e7475 Merge pull request #4366 from gilles-peskine-arm/development_3.0-merge_2.x-20210419 
Merge development 2.x into 3.0 (Apr 19)
 2021-04-19 13:08:48 +02:00
Manuel Pégourié-Gonnard
16529bd439 Merge pull request #4344 from TRodziewicz/remove_deprecated_things_in_crypto_compat_h 
Remove deprecated things from crypto_compat.h and dependent tests.
 2021-04-19 10:55:21 +02:00
Gilles Peskine
ee259130e4 Merge branch 'development' into development_3.0 
Conflicts:
* visualc/VS2010/mbedTLS.vcxproj: resolved by re-generating the file
  with scripts/generate_visualc_files.pl.
 2021-04-19 10:51:59 +02:00
Manuel Pégourié-Gonnard
0bbb38c67e Merge pull request #4199 from TRodziewicz/mul_shortcut_fix 
Fix ECDSA failing when the hash is all-bits-zero
 2021-04-19 09:54:12 +02:00
Mateusz Starzyk
bf4c4f9cd5 Reword changelog entry for removal of SHA-1 
from the default TLS configuration.

Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
 2021-04-16 18:39:10 +02:00
Mateusz Starzyk
a58625f90d Remove optional SHA-1 in the default TLS configuration. 
Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
 2021-04-16 18:39:10 +02:00
Mateusz Starzyk
a17fb8eac8 Fix line lenghts in changelog entry for removal of old TLS features. 
Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
 2021-04-16 10:32:17 +02:00
Bence Szépkúti
8072db2fcb Add changelog 
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2021-04-15 17:32:16 +02:00
Steven Cooreman
5be864f645 Add changelog for MBEDTLS_PSA_CRYPTO_BUILTIN_KEYS 
Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
 2021-04-15 15:06:52 +02:00
Mateusz Starzyk
c301bd56f0 Merge branch 'development_3.0' into drop_old_tls_options 2021-04-15 13:55:20 +02:00
Mateusz Starzyk
4222682672 Uniformize ChangeLog entries. 
Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
 2021-04-15 13:34:04 +02:00