lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-11-21 12:40:51 +03:00
Code Activity
34,018 Commits 176 Branches 276 Tags
development
Commit Graph

13770 Commits

Author SHA1 Message Date
Juha-Pekka Kesonen
5f4cbcd336 ssl_tls12: change log level for ECDH computation 
Signed-off-by: Juha-Pekka <juha-pekka.kesonen@nordicsemi.no>
 2025-11-05 14:10:52 +02:00
Juha-Pekka Kesonen
666fa2da3d ssl_msg.c: change log level for record checking 
Signed-off-by: Juha-Pekka <juha-pekka.kesonen@nordicsemi.no>
 2025-11-05 14:08:46 +02:00
Valerio Setti
00d579e953 Merge pull request #10439 from bjwtaylor/remove-all-non-ext-apis 
Remove all non ext apis
 2025-11-04 09:53:34 +00:00
Gilles Peskine
18f2661c65 Merge pull request #10491 from valeriosetti/issue10229 
Remove temporary fixes introduced in #10213
 2025-11-04 08:59:16 +00:00
Valerio Setti
a35e332bbb library: debug: remove temporary fixes for RSA key handling 
Since crypto#308 has been merged:
- replace MBEDTLS_PK_USE_PSA_RSA_DATA with PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY
- remove "no-check-names"

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-11-03 10:25:15 +01:00
Valerio Setti
525dd917dc Merge pull request #10477 from Cube707/fix/iar-compiler-warning 
add cast to fix IAR compiler errors
 2025-10-31 12:33:26 +00:00
Ben Taylor
42074c193f Rename mbedtls_ssl_get_pk_type_and_md_alg_from_sig_alg to mbedtls_ssl_get_pk_sigalg_and_md_alg_from_sig_alg 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-31 08:40:36 +00:00
Ben Taylor
b76c38334a Update name of mbedtls_ssl_pk_alg_from_sig_pk_alg to mbedtls_ssl_pk_sig_alg_from_sig 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-31 08:40:25 +00:00
Ben Taylor
f21e63c6d0 Update pk_alg to use mbedtls_pk_sigalg_t and remove casts in library/x509write_csr.c 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-30 15:29:02 +00:00
Ben Taylor
00b04a6590 Update mbedtls_pk_sign_ext in x509write_crt.c to use mbedtls_pk_sigalg_t directly and remove casts 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-30 15:11:09 +00:00
Ben Taylor
5f037c7fb3 Rename mbedtls_ssl_pk_alg_from_sig to mbedtls_ssl_pk_alg_from_sig_pk_alg and update to use mbedtls_pk_sigalg_t 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-30 14:59:24 +00:00
Ben Taylor
0035cfb1f0 Removed unnecessary cast in mbedtls_pk_sign_ext 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-30 13:42:56 +00:00
Ben Taylor
4565d5d4e6 Change the call to mbedtls_pk_verify_ext in pkcs7 to have a variable input cert->sig_pk 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-30 13:37:09 +00:00
minosgalanakis
32b597bd31 Merge pull request #10469 from Begasus/includedir 
Use GNUInstallDirs CMAKE_INSTALL_INCLUDEDDIR path for headers installation
 2025-10-29 15:21:32 +00:00
Jan Wille
64e7d4b64b format: apply suggestions (add spaces) 
Signed-off-by: Jan Wille <jan.wille@siemens.com>
 2025-10-29 15:49:10 +01:00
Jan Spannberger
a5384bdf09 add cast to fix IAR compiler errors 
IAR throws a warning "mixed ENUM with other type"

Signed-off-by: Jan Spannberger <jan.spannberger@siemens.com>
 2025-10-28 15:13:08 +01:00
Ben Taylor
bc076f9f76 fix style isses 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-28 07:58:37 +00:00
Ben Taylor
a2de40a100 Change the return type of mbedtls_ssl_get_ciphersuite_sig_pk_alg to mbedtls_pk_sigalg_t 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-28 07:58:37 +00:00
Ben Taylor
4b4ca812e5 Corrected debug return 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-28 07:58:37 +00:00
Ben Taylor
10d471a14d Correct debug return 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-28 07:58:37 +00:00
Ben Taylor
b190c1bb0b Replace change to restartable with ext 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-28 07:58:37 +00:00
Ben Taylor
1b32994bef Fix style issues 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-28 07:58:37 +00:00
Ben Taylor
2c056721d1 Tidy up debug of non ext functions 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-28 07:58:37 +00:00
Ben Taylor
cef9d2d31f Revert change to mbedtls_pk_{sign,verify}_restartable and replace with ext version 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-28 07:58:37 +00:00
Ben Taylor
5e23093285 Fix code style issues 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-28 07:58:37 +00:00
Ben Taylor
c3e2b37530 Remove mbedtls_ssl_write_handshake_msg as it now replaced by mbedtls_ssl_write_handshake_msg_ext 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-28 07:58:37 +00:00
Ben Taylor
279dd4ab59 Remove dependencies on mbedtls_pk_verify 
Replace mbedtls_pk_verify with mbedtls_pk_verify_restartable, as mbedtls_pk_verify has now been
removed and was origonally a pass through call to mbedtls_pk_verify_restartable.

Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-28 07:58:37 +00:00
Ben Taylor
94f1628aca Remove dependencies on mbedtls_pk_sign 
Replace mbedtls_pk_sign with mbedtls_pk_sign_restartable, as mbedtls_pk_sign has now been
removed and was origonally a pass through call to mbedtls_pk_sign_restartable.

Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-28 07:58:37 +00:00
Valerio Setti
4624f508d3 Merge pull request #10449 from bjwtaylor/mbedtls.remove-mbedtls_verify_new 
Remove uses of mbedtls_pk_verify_new
 2025-10-24 14:12:24 +00:00
Luc Schrijvers
ffc2606bf2 Use GNUInstallDirs CMAKE_INSTALL_INCLUDEDDIR path for headers installation 
Signed-off-by: Luc Schrijvers <begasus@gmail.com>
 2025-10-24 12:50:51 +02:00
Ben Taylor
0ff335d715 Remove uses of mbedtls_pk_verify_new 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-13 15:17:44 +01:00
Ben Taylor
91b8310e54 Remove internal deprecated items 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-10-07 08:19:44 +01:00
Ben Taylor
7e8e438fce Replace cases of time_t with mbedtls_time_t 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-09-29 14:24:47 +01:00
David Horstmann
ee1991a387 Merge pull request #10408 from ronald-cron-arm/historical-libmbedcryto 
Restore historical libmbedcrypto.* libraries
 2025-09-29 08:41:06 +00:00
Gilles Peskine
562763b5bd Add dependency of mbedtls_config on generated config check headers 
Fix the build of libmbedx509 when generated files are not already present.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-24 17:20:35 +02:00
Gilles Peskine
cc1ac1d3dc CMake: support generated headers 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-24 17:20:35 +02:00
Gilles Peskine
24d058bc6c Enable checks for bad options in the config file 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-24 17:20:35 +02:00
Gilles Peskine
d57a0985ab Add dependency of tf_psa_crypto_config on generated config check headers 
Fix the build of libtfpsacrypto when generated files are not already present.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-22 15:52:06 +02:00
Ronald Cron
35d59c6cb6 cmake: Install libmbedcrypto.* libraries 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-09-22 15:08:39 +02:00
Ronald Cron
466a1a29d9 cmake: Provide the crypto libs under their historical name 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-09-22 14:34:55 +02:00
Ronald Cron
c09a84e285 cmake: library: Rework and improve the copy of the crypto libraries 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-09-22 14:34:55 +02:00
Ronald Cron
879cba1a67 cmake: Introduce version and soversion variables 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-09-22 14:34:55 +02:00
Ronald Cron
8df65636fd Clarify target name for library generated files 
The target mbedtls_generated_files_target could
be misinterpreted as the target covering all project
generated files, but it does not.

It is specifically the target for files generated
to build the mbedtls library.

Rename it to libmbedtls_generated_files_target
and align x509.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-09-22 14:03:18 +02:00
Gilles Peskine
6712f1b6af Use --list-for-cmake with generate_config_checks.py 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-19 13:36:25 +02:00
Gilles Peskine
67b115cfda Register crypto's generate_config_files.py outputs as generated files 
Mbed TLS needs to know the generated files of TF-PSA-Crypto. There's no
mechanism for TF-PSA-Crypto to declare them.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-19 13:36:24 +02:00
Gilles Peskine
b53b443f8e Register generate_config_files.py outputs as generated files 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-19 13:36:24 +02:00
Ronald Cron
b91117c32f Merge pull request #10402 from ronald-cron-arm/remove-legacy-crypto-options 
Remove legacy crypto options
 2025-09-17 18:46:05 +00:00
Ronald Cron
3091e40774 Remove usage of old crypto options in public headers 
The remaining occurences were related to
dead code.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-09-17 16:06:31 +02:00
Valerio Setti
bc611fe44c [tls12|tls13]_server: fix usage being checked on the certificate key 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-09-16 16:12:07 +02:00
Valerio Setti
7b2d72aaf0 ssl: replace PSA_ALG_ECDSA with MBEDTLS_PK_ALG_ECDSA 
When the key is parsed from PK it is assigned the pseudo-alg
MBEDTLS_PK_ALG_ECDSA. Trying to run "mbedtls_pk_can_do_psa" with an hardcoded
deterministc/randomized ECDSA can make the function to fail if the proper
variant is not the one also used by PK.
This commit fixes this problem.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-09-16 16:12:07 +02:00