lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-09-11 12:10:46 +03:00
Code Activity
33,728 Commits 174 Branches 272 Tags
development
Commit Graph

33728 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ronald Cron
b23424cc61 Merge pull request #10317 from ronald-cron-arm/legacy-crypto-options-cleanup 
Clean-up following the removal of crypto config options but ECC ones
 2025-07-25 15:11:34 +00:00
Gilles Peskine
3bb528d47d Merge pull request #10205 from bjwtaylor/move-fuzz-progs-2 
Tidy Up Dependencies and Paths
 2025-07-25 13:21:09 +00:00
Gilles Peskine
a4bd67f3e7 Merge pull request #10274 from bjwtaylor/rename-mbedtls_pk_setup_opaque 
Rename mbedtls_pk_setup_opaque to mbedtls_pk_wrap_psa
 2025-07-25 13:20:42 +00:00
Ben Taylor
02c76ebb21 Add minor corrections to the fuzz Makefile 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-24 11:13:23 +01:00
Ben Taylor
361ce2b484 Rename mbedtls_pk_setup_opaque to mbedtls_pk_wrap_psa 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-24 08:25:28 +01:00
Ben Taylor
250e8b8b6d Update submodule pointer 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-24 07:55:43 +01:00
Ben Taylor
4e85cbd227 update submodules to pull in previous PR's 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-24 07:51:35 +01:00
Ben Taylor
8beeed0462 Add further updates to paths 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-24 07:51:35 +01:00
Ben Taylor
60a5b32198 Correct onefile name 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-24 07:51:35 +01:00
Ben Taylor
52510b27fc Update header names 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-24 07:51:35 +01:00
Ben Taylor
c7c480a95f Revert temporary merge changes 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-24 07:51:35 +01:00
Ronald Cron
5eb9aba358 mbedtls_config.h: Update "requires" comments 
Following the removal of the legacy hash, cipher,
CMAC, AEAD, and RSA configuration options in
TF-PSA-Crypto, update the "requires" comments that
referred to the removed options.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-07-24 08:42:16 +02:00
Ronald Cron
dfd501d3fb depends.py: Adapt to the removal of legacy crypto config options 
Adapt to the removal of the legacy hash, cipher,
cmac, aead and RSA configuration options.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-07-24 08:42:16 +02:00
Ronald Cron
fb03d1391b depends.py: Remove cipher_padding domain 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-07-24 08:42:16 +02:00
Ronald Cron
0668036ada Replace MBEDTLS_AES_C 
Replace the remaining instances of MBEDTLS_AES_C
as a configuration option.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-07-24 08:42:16 +02:00
Ronald Cron
e13c7015ea all.sh: Remove unset of now removed legacy symmetric crypto options 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-07-24 08:42:16 +02:00
Ronald Cron
892bb61294 all.sh: Remove unset of now removed legacy RSA config options 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-07-24 08:42:16 +02:00
Ronald Cron
8719c2f00b ssl_misc.h: Update PKCS1 dependencies 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-07-24 08:42:16 +02:00
Ronald Cron
772a8ad219 all.sh: Remove unset of now removed legacy hash config options 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-07-24 08:42:16 +02:00
Bence Szépkúti
722d982ab7 Merge pull request #10309 from bensze01/rename-tf-psa-crypto-common.h 
Rename tf-psa-crypto/core/common.h
 2025-07-23 14:27:00 +00:00
Bence Szépkúti
89becc987f Update framework submodule 
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2025-07-23 00:34:08 +02:00
Bence Szépkúti
e6167e7a51 Update tf-psa-crypto submodule 
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2025-07-23 00:34:01 +02:00
Bence Szépkúti
27125ceacf Update references to tf-psa-crypto/core/common.h 
This commit was generated using the following command:

sed -i 's/\(^\|[^_]\)common\.h/\1tf_psa_crypto_common.h/g' \
    $(git ls-files .                                       \
        ':!:programs/fuzz'                                 \
        ':!:tests/psa-client-server'                       \
        ':!:tf-psa-crypto'                                 \
        ':!:framework')                                    \
    $(git grep -l 'tf-psa-crypto/core/common.h')

Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2025-07-21 20:02:30 +02:00
Gilles Peskine
f2d4cbbb0e Merge pull request #10276 from bjwtaylor/switch-to-mbedtls_pk_verify_new 
Switch to mbedtls_pk_verify_new
 2025-07-21 14:57:05 +00:00
Ronald Cron
2fc0475dc9 cmake_package_install: Fail in case of warnings with GNU GCC 
Fail the cmake package install demonstration in
case of warnings when building the
cmake_package_install executable.

This would have caught the library installation
issue reported in #10022.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-07-21 11:57:55 +02:00
Ronald Cron
37ddcf0ab4 Add change log 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-07-21 09:52:16 +02:00
Ronald Cron
a2c37b3b2d cmake: library: Add custom targets for generated files 
Add a custom target that depends on TLS
generated files, and make both the static and
shared crypto libraries depend on it.

This ensures that when both libraries are built,
the files are not generated concurrently
by the static and shared library targets.

Do the same for the x509 libraries.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-07-21 09:49:14 +02:00
Ronald Cron
ed4a10661c cmake: library: Remove unnecessary link_to_source 
If we do not generate error.c, version_features.c, ...
then they are supposed to be in the source tree.
The CMake build get them from here and there is no
need for a symbolic link or a copy in the build tree.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-07-21 09:48:29 +02:00
Ben Taylor
5be8511151 Fix too many arguments in mbedtls_pk_verify_new 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-21 07:53:15 +01:00
Ben Taylor
0c787e3de8 Remove additional calls to mbedtls_pk_verify_ext 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-21 07:53:15 +01:00
Ben Taylor
0de87611bb Remove additional calls to mbedtls_pk_verify_ext 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-21 07:53:15 +01:00
Ben Taylor
306ffd3a36 Switch to mbedtls_pk_verify_new 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-21 07:53:15 +01:00
Ronald Cron
b5fd7b9a54 Merge pull request #10295 from gilles-peskine-arm/nv-seed-only-prepare-mbedtls 
Allow builds with no RNG but entropy in an NV seed: prepare Mbed TLS
 2025-07-18 11:56:41 +00:00
Gilles Peskine
4e9d91005f Merge pull request #10272 from bjwtaylor/include-private-pk 
include private pk.h internally
 2025-07-18 05:20:27 +00:00
Bence Szépkúti
bdc0901f01 Merge pull request #10307 from amtkarm1/private-access-err-fix 
Added a fix for the CI failure due to private access error
 2025-07-17 21:49:04 +00:00
Ben Taylor
1030f80a0b Add private include to additional files 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-17 15:22:08 +01:00
Ben Taylor
c801d3293e include private pk.h internally 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-07-17 15:18:53 +01:00
Anton Matkin
375fab7c73 Added a fix for the CI failure due to private access error 
Signed-off-by: Anton Matkin <anton.matkin@arm.com>
 2025-07-17 13:48:36 +02:00
Gilles Peskine
0b49112329 Merge pull request #10212 from bjwtaylor/remove-hkdf 
Remove hkdf
 2025-07-17 09:57:11 +00:00
Manuel Pégourié-Gonnard
d2c293bd0a Merge pull request #10115 from bjwtaylor/move-fuzz-progs 
remove fuzz_privkey.c and fuzz_pubkey.c
 2025-07-17 09:36:02 +00:00
Gilles Peskine
6582237209 Merge pull request #10304 from davidhorstmann-arm/disambiguate-doxygen-filename 
Disambiguate `version.h` in doxygen comment
 2025-07-16 23:39:19 +00:00
Bence Szépkúti
05ffb5e817 Merge pull request #10302 from bensze01/freebsd 
Clean up ci.requirements.txt
 2025-07-16 18:48:41 +00:00
David Horstmann
901cca7bc3 Disambiguate version.h in doxygen comment 
Specify mbedtls/version.h, since we are about to add
include/tf-psa-crypto/version.h.

Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2025-07-16 15:35:00 +01:00
Ronald Cron
abafe32c79 Merge pull request #10297 from ronald-cron-arm/remove-legacy-crypto-options-preparation-1 
Remove legacy crypto options preparation-1
 2025-07-16 14:06:30 +00:00
Bence Szépkúti
5956d28c0b Restrict CI-specific python requirements to Linux 
The dependencies declared in ci.requirements.txt are only used in
scripts that we run on the Linux CI.

Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2025-07-16 14:18:12 +02:00
Bence Szépkúti
9dda0ca195 Don't install cryptography on the FreeBSD CI 
Recent versions of cryptography require a Rust toolchain to install on
FreeBSD, which we do not have set up yet.

Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2025-07-16 13:33:17 +02:00
Bence Szépkúti
4561164e7c Freeze cryptography version on the CI at 35.0.0 
The version was unspecified because of our use of Python 3.5 on the CI,
whichi has since been eliminated.

Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2025-07-16 13:29:55 +02:00
Ronald Cron
ce7de61ad4 cmake: Fix list of TF-PSA-Crypto library targets 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2025-07-16 10:23:17 +02:00
minosgalanakis
8f548c9dba Merge pull request #10256 from ariwo17/psa-dlopen-demo 
Modify dlopen.c and tfpsacrypto_dlopen.c so that they use PSA API-only dynamic loading
 2025-07-15 22:06:49 +00:00
Gilles Peskine
3c2a1cb1d6 Prepare to ignore a new test case 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-07-15 19:09:28 +02:00