mbedtls

mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-06-10 21:01:41 +03:00

Author	SHA1	Message	Date
Gilles Peskine	ae710c8b01	Test dtls_client Test against both OpenSSL and GnuTLS. Don't use a proxy. It's not particularly useful here, and would complicate figuring out port numbers. Clean up compile-time requirements in dtls_client.c: any certificate-based key exchange is ok, so don't insist on built-in RSA. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2024-09-25 18:05:17 +02:00
Gilles Peskine	7985d454c4	Test ssl_client1 Test ssl_client1 with both TLS 1.2 and TLS 1.3. Test against both OpenSSL and GnuTLS. Clean up compile-time requirements in ssl_client1.c: any certificate-based key exchange is ok, so don't insist on built-in RSA. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2024-09-25 18:05:17 +02:00
Gilles Peskine	6959f53896	ssl_client1: Exit with an error status if the TLS connection failed Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2024-09-25 18:05:17 +02:00
Gilles Peskine	63068d69cb	Have `make ssl-opt` generate `tls13-compat.sh` Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2024-09-24 19:09:57 +02:00
Gilles Peskine	26650f5711	Merge pull request #9565 from gilles-peskine-arm/test-ref-configs-go-away Switch from test-ref-configs.pl to separate components	2024-09-24 13:00:50 +00:00
Gilles Peskine	d001f58c32	make: support "make ssl-opt" to just build what ssl-opt.sh needs This also suffices for compat.sh. Include the sample programs in this build. They aren't tested by ssl-opt.sh yet, but they soon will be. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2024-09-14 13:06:15 +02:00
Gilles Peskine	b63064854b	CMake: support "make ssl-opt" to just build what ssl-opt.sh needs This also suffices for compat.sh. Include the sample programs in this build. They aren't tested by ssl-opt.sh yet, but they soon will be. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2024-09-14 12:19:19 +02:00
Gilles Peskine	5dab92ee4e	CMake: support "make programs" Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2024-09-14 12:19:19 +02:00
Elena Uziunaite	8d8620bf18	Address review comments: add PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_IMPORT Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>	2024-09-09 11:18:10 +01:00
Elena Uziunaite	a6950b8ce7	Replace MBEDTLS_PK_CAN_ECDSA_SOME with PSA_HAVE_ALG_SOME_ECDSA Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>	2024-09-09 11:17:36 +01:00
Elena Uziunaite	9fc5be09cb	Replace MBEDTLS_MD_CAN_SHA1 with PSA_WANT_ALG_SHA_1 Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>	2024-09-04 18:12:59 +01:00
David Horstmann	36fe9188e2	Merge pull request #9252 from gabor-mezei-arm/9114_replace_MBEDTLS_MD_CAN_SHA512_with_PSA_WANT Replace MBEDTLS_MD_CAN_SHA512 with its PSA_WANT counterpart	2024-09-03 14:07:05 +00:00
Gilles Peskine	99b57bd35a	Merge pull request #1272 from eleuzi01/forward-1263 Fix 1.3 cli-auth optional reporting of (ext)KeyUsage issues	2024-08-28 19:38:36 +02:00
Gabor Mezei	c15ef93aa5	Replace `MBEDTLS_MD_CAN_SHA512` with `PSA_WANT_ALG_SHA_512` Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>	2024-08-28 18:20:25 +02:00
Manuel Pégourié-Gonnard	92a391e0fe	Always print detailed cert errors in test programs Previously the client was only printing them on handshake success, and the server was printing them on success and some but not all failures. This makes ssl-opt.sh more consistent as we can always check for the presence of the expected message in the output, regardless of whether the failure is hard or soft. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	2024-08-16 17:24:05 +01:00
Gilles Peskine	0858fdca38	Merge pull request #9189 from misch7/fix-v3.6-issues-9186-and-9188 Fix build of v3.6 (issues #9186 and #9188)	2024-08-12 09:34:17 +00:00
Michael Schuster	9e52d157e8	Fix missing-prototype error for the print_buf functions in sample programs Signed-off-by: Michael Schuster <michael@schuster.ms>	2024-08-09 10:29:59 +01:00
Michael Schuster	c1cd26b20f	Revert commit 33af72df in order to not depend on test code Signed-off-by: Michael Schuster <michael@schuster.ms>	2024-08-09 10:29:59 +01:00
Michael Schuster	82cb06913a	Fix format-pedantic error in programs/test/metatest.c Signed-off-by: Michael Schuster <michael@schuster.ms>	2024-08-09 10:29:59 +01:00
Michael Schuster	f672b694fa	Use correct conditionals in programs/ssl (fix unused-function errors) Signed-off-by: Michael Schuster <michael@schuster.ms>	2024-08-09 10:29:59 +01:00
Michael Schuster	0420093795	Adjust spacing in sample programs Signed-off-by: Michael Schuster <michael@schuster.ms>	2024-08-09 10:29:58 +01:00
Michael Schuster	8db8d6182f	Fix missing-prototype errors in sample programs Signed-off-by: Michael Schuster <michael@schuster.ms>	2024-08-09 10:29:58 +01:00
Michael Schuster	e708e86a9b	Fix missing-prototype error in programs/fuzz by moving LLVMFuzzerTestOneInput prototype to common.h Signed-off-by: Michael Schuster <michael@schuster.ms>	2024-08-09 10:29:58 +01:00
Michael Schuster	4595e6872d	Move print_buf into mbedtls_test_print_buf helper function in sample programs Reduce code duplication and fix missing-prototype error for print_buf Signed-off-by: Michael Schuster <michael@schuster.ms>	2024-08-09 10:29:58 +01:00
Elena Uziunaite	8dde3b3dec	Replace MBEDTLS_PK_HAVE_ECC_KEYS with PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>	2024-08-05 15:41:58 +01:00
Ronald Cron	6f55ddc304	programs: fuzz: Fix comment Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-07-19 10:07:27 +02:00
Ronald Cron	901a675238	Adapt make build system Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-07-19 10:07:27 +02:00
Ronald Cron	088a1ab081	make: Fix object clean-up Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-07-19 09:58:35 +02:00
Wenxing Hou	b4d03cc179	Fix some typo for include folder Signed-off-by: Wenxing Hou <wenxing.hou@intel.com>	2024-07-12 15:16:33 +08:00
Elena Uziunaite	0916cd702f	Replace MBEDTLS_MD_CAN_SHA256 with PSA_WANT_ALG_SHA_256 Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>	2024-07-11 11:13:35 +03:00
Ronald Cron	c29afb684e	Adjust build systems Adjust build systems such as we can built Mbed TLS in the default and full configuration. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-07-10 08:07:38 +02:00
David Horstmann	dcf18dd876	Update paths pointing to tests/data_files These now point to framework/data_files instead. Signed-off-by: David Horstmann <david.horstmann@arm.com>	2024-07-05 15:49:03 +01:00
Ronald Cron	2cf41a273e	Merge pull request #9171 from eleuzi01/replace-mbedtls-md-can-sha384 Replace MBEDTLS_MD_CAN_SHA384 with PSA_WANT_ALG_SHA_384	2024-07-04 08:56:52 +00:00
Elena Uziunaite	b476d4bf21	Replace MBEDTLS_MD_CAN_SHA384 with PSA_WANT_ALG_SHA_384 Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>	2024-07-03 10:20:41 +01:00
Elena Uziunaite	fcc9afaf9d	Replace MBEDTLS_MD_CAN_SHA224 with PSA_WANT_ALG_SHA_224 Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>	2024-07-02 11:08:04 +01:00
Ronald Cron	f4606d489e	Adjust more paths to Mbed TLS crypto headers Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-07-01 14:59:35 +02:00
Ronald Cron	3d817add46	Adjust build systems Adjust build systems such as we can built Mbed TLS in the default and full configuration. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-07-01 14:59:35 +02:00
Ronald Cron	7e5d61c41a	Adjust more paths to PSA headers Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-06-13 09:51:20 +02:00
Ronald Cron	c7e9e367bb	Adjust build systems Adjust build systems such as we can build Mbed TLS in the default and full configuration. Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-06-13 09:02:24 +02:00
Ronald Cron	28ce2380b0	Add and update some .gitignore files Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-06-12 15:22:26 +02:00
Javier Tia	1aef649dde	ssl_client2: Add Host to HTTP GET request If an IP address shares multiple domain names with different SSL certificates and makes a GET request without the remote server name (host), it will fail with a 421 Misdirect Request. Signed-off-by: Javier Tia <javier.tia@linaro.org>	2024-05-06 14:39:33 -06:00
Gilles Peskine	aa82464dec	Merge pull request #8897 from IVOES/cpp/unbounded-write ssl_mail_client: Fix unbounded write of sprintf()	2024-05-02 16:06:23 +00:00
Minos Galanakis	9860056006	Revert "Autogenerated files for 3.6.0" This reverts commit `e8a6833b28`. Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-03-27 17:36:15 +00:00
Minos Galanakis	e8a6833b28	Autogenerated files for 3.6.0 Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-03-22 16:00:55 +00:00
Minos Galanakis	b70f0fd9a9	Merge branch 'development' into 'development-restricted' Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>	2024-03-19 22:24:40 +00:00
Mingjie Shen	d97b96f2ec	ssl_mail_client: Fix code style issue Signed-off-by: Mingjie Shen <shen497@purdue.edu>	2024-03-18 14:30:06 -04:00
Ronald Cron	74191a56e8	ssl_server2: Split early data enablement from max_early_data_size setting Signed-off-by: Ronald Cron <ronald.cron@arm.com>	2024-03-14 20:00:42 +01:00
Gilles Peskine	7b333f1e88	Merge pull request #8913 from ronald-cron-arm/tls13-ticket-lifetime TLS 1.3: Enforce ticket maximum lifetime and discard tickets with 0 lifetime	2024-03-14 15:59:25 +00:00
Paul Elliott	50da462fc8	Merge pull request #8829 from paul-elliott-arm/add_framework_meta_tests Add metatests for failing TEST_EQUAL and TEST_LE_*	2024-03-14 15:55:14 +00:00
Mingjie Shen	8e35d96057	ssl_mail_client: Check return value of mbedtls_snprintf The return value of snprintf() is the number of characters (excluding the null terminator) which would have been written to the buffer if enough space had been available. Thus, a return value of size or more means the output was truncated. Signed-off-by: Mingjie Shen <shen497@purdue.edu>	2024-03-12 16:23:41 -04:00

1 2 3 4 5 ...

2858 Commits