mbedtls

Author	SHA1	Message	Date
Manuel Pégourié-Gonnard	b95e92cd41	Merge pull request #8076 from valeriosetti/issue8005 Test with ECC and FFDH accelerated and no bignum	2023-09-14 09:12:35 +00:00
Gilles Peskine	0ddffb6de2	Merge pull request #7210 from sergio-nsk/patch-2 Fix llvm error: variable 'default_iv_length' and other may be used uninitialized	2023-09-13 16:38:55 +02:00
Paul Elliott	3d0bffb257	Improve statement in driver-only-builds.md Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-09-13 15:15:37 +01:00
Gilles Peskine	9b5d7d7801	Merge pull request #8195 from daverodgman/improve_sslmsg Improve use of ct interface in mbedtls_ssl_decrypt_buf	2023-09-13 12:32:12 +00:00
Gilles Peskine	3cea3efc25	Merge pull request #8025 from AgathiyanB/accept-numericoid-hexstring-x509 Accept numericoid hexstring x509	2023-09-13 08:54:33 +00:00
Gilles Peskine	f22999e99f	Merge pull request #8093 from yuhaoth/pr/add-target-architecture-macros Add architecture detection macros	2023-09-13 08:53:47 +00:00
Dave Rodgman	da0bb9fae8	Merge pull request #8034 from gilles-peskine-arm/bump_version-doc_mainpage Update capitalization of "Mbed" and fix bump_version.sh	2023-09-13 08:41:20 +00:00
Paul Elliott	0934b2007c	Merge pull request #8190 from paul-elliott-arm/update_cmake_min_ver Update CMake minimum version(s) to match main CMakeLists.txt	2023-09-13 08:39:50 +00:00
Dave Rodgman	7d52f2a0d9	Improve use of ct interface in mbedtls_ssl_decrypt_buf Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-09-13 09:30:03 +01:00
Dave Rodgman	31beb2d449	Merge pull request #8166 from gilles-peskine-arm/p256-m-zeroize p256-m: Use the zeroize function from Mbed TLS	2023-09-12 21:33:03 +00:00
Dave Rodgman	4923640574	Merge pull request #8189 from tom-cosgrove-arm/fix-ct-error-padlen-correct Use the correct variable when tracking padding length	2023-09-12 17:31:06 +00:00
Gilles Peskine	2e38a0d603	More spelling corrections Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-09-12 19:19:31 +02:00
Gilles Peskine	e820c0abc8	Update spelling "mbed TLS" to "Mbed TLS" The official spelling of the trade mark changed from all-lowercase "mbed" to normal proper noun capitalization "Mbed" a few years ago. We've been using the new spelling in new text but still have the old spelling in a lot of text. This commit updates most occurrences of "mbed TLS": ``` sed -i -e 's/mbed TLS/Mbed TLS/g' $(git ls-files ':!ChangeLog' ':!tests/data_files/*' ':!tests/suites/.data' ':!programs/x509/' ':!configs/tfm') ``` Justification for the omissions: * `ChangeLog`: historical text. * `test/data_files/*`, `tests/suites/.data`, `programs/x509/`: many occurrences are significant names in certificates and such. Changing the spelling would invalidate many signatures and tests. `configs/tfm*`: this is an imported file. We'll follow the upstream updates. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-09-12 19:18:17 +02:00
Gilles Peskine	4843278237	Allow "Mbed TLS" as the project name in Doxygen Previously the code only recognized the old spelling "mbed TLS", so it missed doxygen/input/doc_mainpage.h. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-09-12 19:16:17 +02:00
Agathiyan Bragadeesh	a72ea814d8	Remove double blank line in x509_create.c Signed-off-by: Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com>	2023-09-12 17:57:09 +01:00
Agathiyan Bragadeesh	c7959b22c6	Remove magic number in x509.c Signed-off-by: Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com>	2023-09-12 17:56:58 +01:00
Tom Cosgrove	bc519a59d0	Merge pull request #8188 from paul-elliott-arm/fix_pkcs7_use_uninit Prevent potential use of uninitialised data in pkcs7 tests	2023-09-12 17:51:21 +01:00
Paul Elliott	a722d0a415	Update CMake minimum version(s) to match main CMakeLists.txt Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-09-12 16:42:14 +01:00
Tom Cosgrove	9d8a7d62f5	Use the correct variable when tracking padding length Fixes an error introduced in `a81373f80` Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2023-09-12 16:01:52 +01:00
Gilles Peskine	1d9e8f1a07	Merge pull request #7797 from gilles-peskine-arm/python-cryptography-on-windows Revert "Install cryptography only on linux platform"	2023-09-12 13:58:10 +00:00
Paul Elliott	45b6e5e69f	Prevent potential use of uninitialised data in pkcs7 tests Move the initialisation of the pkcs7 object to before the first possible test failure, otherwise failure in those tests could result in an uninitialised pointer being free'd. Found by coverity. Signed-off-by: Paul Elliott <paul.elliott@arm.com>	2023-09-12 11:58:21 +01:00
Dave Rodgman	2b0d53a2a8	Merge pull request #7590 from daverodgman/ct-x86-asm Constant time asm for x86 and x86-64	2023-09-12 09:58:44 +00:00
Ronald Cron	9b9ac4c6ef	Merge pull request #8175 from ronald-cron-arm/fix-query-config-generation-with-cmake Fix query_config.c generation with CMake build system	2023-09-12 06:03:01 +00:00
Ronald Cron	ad2f351c6b	Merge pull request #8171 from ronald-cron-arm/misc-minor-fixes One minor fix	2023-09-12 06:00:48 +00:00
Dave Rodgman	7fda906a68	Merge pull request #8161 from gilles-peskine-arm/config-boolean-options-wrong-section-202309 Fix module configuration options in mbedtls_config.h	2023-09-11 15:08:56 +00:00
Dave Rodgman	82fe0828b2	Merge pull request #8180 from daverodgman/sha2-zeroize Ensure all md_<hash>_finish functions perform zeroization	2023-09-11 15:13:27 +01:00
Dave Rodgman	aafd1e0924	Ensure all md_<hash>_finish functions perform zeroization Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-09-11 12:59:36 +01:00
Paul Elliott	ce1bb3d1da	Merge pull request #8178 from tom-cosgrove-arm/remove-tautological-null-pointer-check-sha3_c Remove always-false null pointer check in sha3.c that Coverity complains about	2023-09-11 10:54:36 +00:00
Tom Cosgrove	876346e451	Remove always-false null pointer check in sha3.c that Coverity complains about Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>	2023-09-11 09:03:01 +01:00
Dave Rodgman	3f8e483eed	Mark y as modified in x86 asm for mbedtls_ct_uint_lt Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-09-08 17:57:40 +01:00
Dave Rodgman	4a97e73661	Eliminate a redundant not from x86 asm Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-09-08 17:26:18 +01:00
Dave Rodgman	b6b8f6c68d	Make variable name consistent in x86_64 asm Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-09-08 17:19:32 +01:00
Dave Rodgman	5f249852a5	Better register allocation for x86_64 asm Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-09-08 17:18:29 +01:00
Dave Rodgman	99f0cdc0e0	Remove not-needed mov in x86_64 asm Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-09-08 17:18:04 +01:00
Agathiyan Bragadeesh	706a1c3c3f	Fix code style Signed-off-by: Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com>	2023-09-08 12:04:41 +01:00
Agathiyan Bragadeesh	c34804dea2	Fix bug with checking max dn length with hexpairs Signed-off-by: Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com>	2023-09-08 11:32:19 +01:00
Agathiyan Bragadeesh	d34c4262da	Move conditionals to keep doxygen with function Signed-off-by: Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com>	2023-09-08 11:09:50 +01:00
Ronald Cron	d7a983a0d8	Fix generate_query_config.pl usage Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-09-08 10:53:35 +02:00
Ronald Cron	eab2055bde	Fix query_config.c generation with CMake build system In case of an out-of-tree build with the CMake build system the path to crypto_config.h has to be defined as the path to mbedtls_config.h. Add this possibility tp generate_query_config.pl. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-09-08 10:23:25 +02:00
Ronald Cron	33fbd373be	Merge pull request #8174 from Mbed-TLS/fix-pkwrite-test-dependencies Fix incorrect dependencies in pkwrite tests	2023-09-08 08:16:52 +02:00
David Horstmann	8ece2e9712	Fix incorrect test dependencies in pkwrite tests These should rely in MBEDTLS_PEM_{PARSE,WRITE}_C where applicable, not MBEDTLS_BASE64_C. Signed-off-by: David Horstmann <david.horstmann@arm.com>	2023-09-07 17:43:12 +01:00
Gilles Peskine	86733834bc	Modernize documentation of MBEDTLS_PLATFORM_ZEROIZE_ALT The documentation was not updated when we started detecting memset_s() and such. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-09-07 17:29:15 +02:00
Ronald Cron	d3d566f1d8	PSA config: Add comment about HKDF Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-09-07 15:25:53 +02:00
Ronald Cron	b9c7953442	pkwrite: Fix defined but not used warning Fix defined but not used warning when MBEDTLS_USE_PSA_CRYPTO, MBEDTLS_PK_HAVE_RFC8410_CURVES and MBEDTLS_PK_HAVE_ECC_KEYS are defined but not MBEDTLS_PEM_WRITE_C. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2023-09-07 14:20:49 +02:00
Gilles Peskine	8cae2c2eb5	Use the zeroize function from Mbed TLS Keep using the upstream name, to minimize the differences with the upstream code. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-09-06 19:42:35 +02:00
Gilles Peskine	58590983c5	Merge pull request #8160 from daverodgman/warn-unreachable Fix clang warnings about unreachable code	2023-09-06 09:47:03 +00:00
Gilles Peskine	d1ce030de2	Merge pull request #8159 from gilles-peskine-arm/split-config_psa-split Split out configuration adjustments from build_info.h and config_psa.h	2023-09-06 09:04:19 +00:00
Dave Rodgman	85061b97b5	Improve sanity checking of MBEDTLS_HAVE_INTxx Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-09-06 08:41:05 +01:00
Dave Rodgman	b7b8c09c81	Update bignum_core.c Co-authored-by: Gilles Peskine <gilles.peskine@arm.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>	2023-09-05 20:35:19 +01:00
Gilles Peskine	f9e4caf388	Comment out default definition This is not required (it's ok to define the default in mbedtls_config and skip the definition in rsa.h), but comment it out for uniformity with all the other options in this section. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-09-05 21:11:27 +02:00

1 2 3 4 5 ...

27036 commits