ARMmbed/mbedtls
1
0
Fork 0
mirror of https://github.com/ARMmbed/mbedtls.git synced 2025-07-16 12:31:18 +08:00
Code Issues Releases Wiki Activity
33,349 Commits 173 Branches 272 Tags
Commit Graph

33349 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Minos Galanakis
8bccf16218 Assemble ChangeLog 
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
 2025-06-27 13:01:26 +01:00
Minos Galanakis
09dc57d323 Version Bump 
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
 2025-06-27 12:17:28 +01:00
Minos Galanakis
42bfc164a2 Updated tf-psa-crypto pointer (tf-psa-crypto-1.0.0-beta) 
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
 2025-06-27 12:17:28 +01:00
Gilles Peskine
0038408f55 Properly initialize SSL endpoint objects 
In some cases, we were calling `mbedtls_test_ssl_endpoint_free()` on an
uninitialized `mbedtls_test_ssl_endpoint` object if the test case failed
early, e.g. due to `psa_crypto_init()` failing. This was largely harmless,
but could have caused weird test results in case of failure, and was flagged
by Coverity.

Use a more systematic style for initializing the stack object as soon as
it's declared.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-27 11:12:55 +01:00
Gilles Peskine
042ee3b318 Fix accidentally skipped test assertion 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-27 11:12:55 +01:00
Minos Galanakis
ed87da7ad7 Merge remote-tracking branch 'restricted/development-restricted' into future_rc 
As set by process the tf-psa-crypto submodule is set
to point to tf-psa-crypto-release-sync input.
 2025-06-27 10:50:33 +01:00
Ronald Cron
415d7eb039
Merge pull request #10242 from Mbed-TLS/mbedtls-release-sync 
Release input synchronisation pr for MbedTLS
 2025-06-23 15:45:20 +02:00
Minos Galanakis
ed7c0d146b Updated tf-psa-crypto pointer (release-sync) 
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
 2025-06-23 10:13:58 +01:00
Minos Galanakis
07b95f07ed Updated framework pointer (release-sync) 
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
 2025-06-22 21:15:52 +01:00
minosgalanakis
a3857eb746
Merge pull request #10162 from davidhorstmann-arm/fix-bump-version 
Fix bug in `bump_version.sh`
 2025-06-20 16:50:35 +00:00
Gilles Peskine
2180a7e5d3
Merge pull request #10240 from valeriosetti/prereq-for-psa298 
library: Makefile: use wildcard to select sources for crypto library
 2025-06-20 14:01:51 +00:00
Manuel Pégourié-Gonnard
68e531f35e
Merge pull request #10216 from felixc-arm/gcc-15-warning-dev 
[Development] Fix GCC 15 warning 'Wunterminated-string-initialization'
 2025-06-20 12:29:52 +00:00
Valerio Setti
06d64ad6a0 library: Makefile: use wildcard to select sources for crypto library 
This gives the possibility to add new source files in tf-psa-crypto
library without any need to update this Makefile.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-20 13:45:57 +02:00
Ari Weiler-Ofek
78b0521449 Remove trailing whitespace 
Signed-off-by: Ari Weiler-Ofek <ariwei01@e134794.arm.com>
 2025-06-20 11:48:50 +01:00
Ari Weiler-Ofek
69f5706431 Add explanatory comment above #include "../tf-psa-crypto/core/common.h" 
Signed-off-by: Ari Weiler-Ofek <ariwei01@e134794.arm.com>
 2025-06-20 11:48:50 +01:00
Felix Conway
cfbee27b45 Add include so psasim files can find new macro 
Signed-off-by: Felix Conway <felix.conway@arm.com>
 2025-06-20 11:48:50 +01:00
Felix Conway
b9891f1fd2 Add changelog 
Signed-off-by: Felix Conway <felix.conway@arm.com>
 2025-06-20 11:48:16 +01:00
Felix Conway
5b84ae14e9 Replace __attribute__((nonstring)) with macro MBEDTLS_ATTRIBUTE_UNTERMINATED_STRING 
This macro applies __attribute__((nonstring)) when using a compiler that supports it

Signed-off-by: Felix Conway <felix.conway@arm.com>
 2025-06-20 11:48:16 +01:00
Felix Conway
79b513894a Add __attribute__ ((nonstring)) to remove unterminated-string-initialization warning 
Signed-off-by: Felix Conway <felix.conway@arm.com>
 2025-06-20 11:48:16 +01:00
Ronald Cron
7c536dab54
Merge pull request #10231 from ronald-cron-arm/mbedtls-build-info 
Preparatory work for the resolution of #10022
 2025-06-19 14:43:03 +00:00
Manuel Pégourié-Gonnard
a9dc998fb9
Merge pull request #10235 from mpg/cleanup-oid 
Clean up after crypto hides its OID module
 2025-06-19 12:30:07 +00:00
Manuel Pégourié-Gonnard
838a114f05 Remove MBEDTLS_OID_C from sample configs 
This option no longer exists (and there's a Changelog entry saying so).

After this commit, git grep -l -w MBEDTLS_OID_C shows the only remaining
occurences are in text files (.txt, .md).

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2025-06-19 12:16:38 +02:00
Manuel Pégourié-Gonnard
6a3b877d60 Remove OID from generate_error.pl 
There is no longer any associated error code, so this commit does not
change the generated file in any way.

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2025-06-19 12:14:02 +02:00
Manuel Pégourié-Gonnard
d9fa0755d9 Update tf-psa-crypto 
We need #311

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2025-06-19 12:11:55 +02:00
Manuel Pégourié-Gonnard
4ccde0c8e5
Merge pull request #10225 from valeriosetti/issue229-mbedtls 
[development] Move Everest headers to a private subdirectory (1/2)
 2025-06-19 06:47:21 +00:00
Valerio Setti
2d7ded653f scripts: generate_visualc_files: fix include_directories 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-18 10:01:29 +02:00
Valerio Setti
f5e27fa361 Revert "update further everest paths" 
This reverts commit 243b54f3869953a674ff6730685a623a98a1d9cd.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-17 23:06:24 +02:00
Valerio Setti
26893d99f6 Revert "CMakeLists: prepare for Everest headers relocation" 
This reverts commit 653a86dc2a36d6fa6b37ada91d9ca01a7ee63ff8.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-17 23:04:46 +02:00
Ronald Cron
d1e4ccf0a0 cmake: Fix library order 
A library that depends on another one should come first
in the list of libraries to link against.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-06-17 09:48:05 +02:00
Valerio Setti
e4960bc159 framework: update reference 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-17 09:09:47 +02:00
Valerio Setti
3150913be7 Revert "update framework submodule to pull in everest changes" 
This reverts commit 83e5a7bf75ba8a24392ecdc93fe68f48fd56557a.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-17 09:09:47 +02:00
Valerio Setti
653a86dc2a CMakeLists: prepare for Everest headers relocation 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-17 09:09:47 +02:00
Ronald Cron
a3b562aa17 programs: test: Let zeroize be an Mbed TLS test program 
In TF-PSA-Crypto there is the crypto specific one.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-06-16 15:55:05 +02:00
Ronald Cron
0815c67ce1 programs: pkey: Use tf-psa-crypto/build_info.h 
pkey programs are crypto programs (only linked to
the TF-PSA-Crypto library) thus use the TF-PSA-Crypto
build-time configuration info file
tf-psa-crypto/build_info.h instead of the Mbed TLS one.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-06-16 15:54:49 +02:00
Valerio Setti
3de417fce2 scripts: generate_visualc_files.pl: prepare for Everest headers relocation 
This change allows the Perl script to manage Everest headers in
tf-psa-crypto repo both before and after psa#235. Once psa#235 will be
merged this commit can be simplified, i.e. it will be returned to its
original state with paths of Everest headers updated.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-16 15:04:27 +02:00
Manuel Pégourié-Gonnard
48552b620d
Merge pull request #10187 from valeriosetti/ecp-restartable-development 
[development] Always enable MBEDTLS_PK_USE_PSA_EC_DATA + use PSA interruptible operations as backend for PK restartable ones
 2025-06-16 07:24:50 +00:00
David Horstmann
d177e3f5fc
Merge pull request #1356 from Mbed-TLS/bugfix_1351_1352_1353_lms_drivers 
Bugfix: lms/lmots driver hardening.
 2025-06-13 15:48:29 +01:00
Manuel Pégourié-Gonnard
3a21cdfa5c
Merge pull request #1354 from mpg/fix-asn1-store-named-data-null-deref-dev 
Fix asn1 store named data null deref dev
 2025-06-13 09:57:24 +02:00
Ronald Cron
b1d3e2e4e0
Merge pull request #9634 from gabor-mezei-arm/9144_update_depends.py_hashes_domain 
Update the `hashes` domain to use PSA macros in `depends.py`
 2025-06-13 07:25:04 +00:00
Manuel Pégourié-Gonnard
f5a63d1456 Fix invalid test data by aligning with 3.6 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2025-06-12 09:42:03 +02:00
Manuel Pégourié-Gonnard
dc82fa67c5 Keep only the X.509 part from the Changelog 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2025-06-12 09:42:03 +02:00
Manuel Pégourié-Gonnard
5f6310b65f Add ChangeLog entry 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2025-06-12 09:42:03 +02:00
Manuel Pégourié-Gonnard
d2262f2304 Uncomment tests now that crypto is fixed 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2025-06-12 09:42:03 +02:00
Manuel Pégourié-Gonnard
d1090d70ff Update crypto submodule 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2025-06-12 09:42:03 +02:00
Valerio Setti
d7d0acbeb6 tf-psa-crypto: update reference 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-12 06:40:35 +02:00
Valerio Setti
a81d6dfb05 tests|programs: remove usage of mbedtls_ecp_set_max_ops() 
PK restartable operations are now implemented using PSA interruptible
ones, so mbedtls_ecp_set_max_ops() can be removed in favor of
psa_interruptible_set_max_ops().

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-12 06:39:18 +02:00
Valerio Setti
eaf578978e library: remove ECDSA_C dependency from ECP_RESTARTABLE 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-12 06:37:29 +02:00
Valerio Setti
c394fd0ebc library: debug: replace MBEDTLS_PK_USE_PSA_EC_DATA with PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY 
MBEDTLS_PK_USE_PSA_EC_DATA is a legacy symbol that is used in 3.6 LTS
branch, but now it is assumed to be always true. It's only kept for
legacy reasons so it's better to replace it with
PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY instead.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-12 06:35:45 +02:00
Valerio Setti
ae89dcc4be library: tls12: remove usage of MBEDTLS_PK_USE_PSA_EC_DATA 
PK module will now always use PSA storing pattern when working with
EC keys therefore MBEDTLS_PK_USE_PSA_EC_DATA is assumed to be always
enabled.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-12 06:21:30 +02:00
Gilles Peskine
c2b7f85747
Merge pull request #10206 from felixc-arm/doxygen-doxyfile-public-only 
Doxygen: Only render public files
 2025-06-11 16:01:07 +00:00