lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-08-07 06:42:56 +03:00
Code Activity
33,322 Commits 174 Branches 272 Tags
mbedtls-release-sync
Commit Graph

1647 Commits

Author SHA1 Message Date
Felix Conway
b9891f1fd2 Add changelog 
Signed-off-by: Felix Conway <felix.conway@arm.com>
 2025-06-20 11:48:16 +01:00
Gilles Peskine
53e11cb5d5 Changelog entry for the OID module in Mbed TLS 4.0 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-03 15:51:34 +02:00
Ben Taylor
d056136a4d Correct ChangeLog file extension 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-05-08 14:55:44 +01:00
Ben Taylor
4c9ad3cfe6 Add ChangeLog 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-05-08 14:55:44 +01:00
David Horstmann
232da48471 Merge pull request #9421 from mfil/feature/implement_tls_exporter 
Implement TLS-Exporter
 2025-04-17 14:47:13 +00:00
Manuel Pégourié-Gonnard
8ab3d8c25d Merge pull request #10074 from bjwtaylor/rng-documentation 
Add ChangeLog for rng
 2025-04-14 10:03:58 +00:00
Manuel Pégourié-Gonnard
ed4a2b4f0a Merge branch 'development-restricted' into merge-from-restricted 
* development-restricted:
  Add missing credit for set_hostname issue
  Add changelog entry for TLS 1.2 Finished fix
  TLS1.2: Check for failures in Finished calculation
  ssl_session_reset: preserve HOSTNAME_SET flag
  Document the need to call mbedtls_ssl_set_hostname
  Improve documentation of mbedtls_ssl_set_hostname
  Changelog entries for requiring mbedls_ssl_set_hostname() in TLS clients
  Add a note about calling mbedtls_ssl_set_hostname to mbedtls_ssl_setup
  mbedtls_ssl_set_hostname tests: add tests with CA callback
  Call mbedtls_ssl_set_hostname in the generic endpoint setup in unit tests
  Require calling mbedtls_ssl_set_hostname() for security
  Create error code for mbedtls_ssl_set_hostname not called
  Keep track of whether mbedtls_ssl_set_hostname() has been called
  Access ssl->hostname through abstractions in certificate verification
  mbedtls_ssl_set_hostname tests: baseline
  Add a flags field to mbedtls_ssl_context
  Automate MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK dependency
  Make guards more consistent between X.509-has-certs and SSL-has-certs
  Fix Doxygen markup
  Make ticket_alpn field private

 Conflicts:
	programs/ssl/ssl_test_common_source.c
 2025-04-01 09:40:47 +02:00
Max Fillinger
a5b63c5e40 Mention MBEDTLS_SSL_KEYING_MATERIAL_EXPORT in change log 
Signed-off-by: Max Fillinger <maximilian.fillinger@foxcrypto.com>
 2025-03-28 16:53:58 +01:00
Max Fillinger
9073e041fc Fix TLS exporter changelog entry 
Signed-off-by: Max Fillinger <max@max-fillinger.net>
 2025-03-28 16:53:58 +01:00
Max Fillinger
b84cb4b049 Add changelog entry for TLS-Exporter feature 
Signed-off-by: Max Fillinger <maximilian.fillinger@foxcrypto.com>
 2025-03-28 16:53:57 +01:00
Ben Taylor
b430f8235c removed whitespace 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-03-28 07:47:50 +00:00
Ben Taylor
d1c2d254ca Add ChangeLog for rng removal 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-03-28 07:47:50 +00:00
Ben Taylor
fc66d5876d Delete some sample programs 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-03-26 13:24:14 +00:00
David Horstmann
bc7cd93b5f Add missing credit for set_hostname issue 
Correctly credit Daniel Stenberg as the reporter of the
mbedtls_ssl_set_hostname() issue. This was previously missed.

Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2025-03-25 15:59:45 +00:00
Gilles Peskine
61621cbb5d Don't allow psa_xxx() to return MBEDTLS_ERR_XXX 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-03-24 14:26:39 +00:00
Gilles Peskine
1ffdb18cdb Remove mbedtls_low_level_sterr() and mbedtls_high_level_strerr() 
Just removed from the API. We can greatly simplify error.c but that will be
for later.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-03-24 14:26:39 +00:00
Gilles Peskine
c8c1a393e0 Changelog entry for error code space unification 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-03-24 14:13:50 +00:00
Gabor Mezei
817a1553b9 Add missing newline 
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>
 2025-03-20 17:55:30 +01:00
Gabor Mezei
aeea5e65af Add changelog entry 
Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>
 2025-03-20 17:53:08 +01:00
Bence Szépkúti
906d3cdff5 Merge pull request #10020 from bensze01/msvc-format-size-macros 
Fix preprocessor guards for C99 format size specifiers
 2025-03-13 10:09:06 +00:00
Bence Szépkúti
9ea9504176 Update changelog to call out MinGW 
Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2025-03-12 17:11:33 +01:00
Minos Galanakis
a2a0c2cbe7 Merge remote-tracking branch 'origin/features/tls-defragmentation/development' into feature_merge_defragmentation_dev 
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
 2025-03-12 15:25:06 +00:00
Bence Szépkúti
becb21e668 Fix MSVC version guard for C99 format size specifiers 
Visual Studio 2013 (_MSC_VER == 1800) doesn't support %zu - only use it
on 2015 and above (_MSC_VER >= 1900).

%ldd works on Visual Studio 2013, but this patch keeps the two macro
definitions together, for simplicity's sake.

Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
 2025-03-12 16:16:20 +01:00
Gilles Peskine
4c30cd8e49 Update the location of defragmentation limitations 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-03-12 10:08:14 +01:00
David Horstmann
5ea94e6cd1 Add changelog entry for TLS 1.2 Finished fix 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
 2025-03-11 15:52:48 +00:00
Gilles Peskine
1b785e2201 Refer to the API documentation for details 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-03-05 17:44:20 +01:00
Valerio Setti
05c23fbf86 ChangeLog: add note for removal of DHM related functions in SSL 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-03-05 10:11:23 +01:00
Gilles Peskine
02e303ec86 Changelog entries for requiring mbedls_ssl_set_hostname() in TLS clients 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-02-24 18:48:49 +01:00
Minos Galanakis
eddbb5a829 ChangeLog: Updated the entry for tls-hs-defragmentation 
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
 2025-02-24 09:16:06 +00:00
Manuel Pégourié-Gonnard
28f8e205eb Merge pull request #9872 from rojer/tls_hs_defrag_in 
Defragment incoming TLS handshake messages
 2025-02-24 09:28:11 +01:00
Valerio Setti
c8cac1d22f changelog: add note abot DHE-RSA removal 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-02-06 10:12:02 +01:00
Deomid rojer Ryabkov
eb77e5b1c7 Update the changelog message 
Signed-off-by: Deomid rojer Ryabkov <rojer@rojer.me>
 2025-02-05 13:09:26 +02:00
Ben Taylor
7d4c48ba4f fixed trailing whitespace 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-02-04 15:27:53 +00:00
Ben Taylor
b6fb07bc48 Change Changelog entry to a maximum of 80 charactors 
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-02-04 09:08:02 +00:00
Ben Taylor
837130cf65 Improve Changelog and correct alg selection 
Improve the description of the API changes in the changelog and
fix some incorrect alg selection variables in ssl_server2.c.

Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-02-04 07:50:19 +00:00
Ben Taylor
0c29cf87b1 Move ssl_ticket to the PSA API 
Convert the mbedtl_ssl_ticket_setup function to use the TF_PSA_Crypto
API.

Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
 2025-01-30 08:22:40 +00:00
Ronald Cron
189dcf630f Merge pull request #9910 from valeriosetti/issue9684 
Remove DHE-PSK key exchange
 2025-01-27 11:15:10 +00:00
Manuel Pégourié-Gonnard
7e1154c959 Merge pull request #9906 from mpg/rm-conf-curves 
[dev] Remove deprecated function mbedtls_ssl_conf_curves()
 2025-01-27 08:21:27 +00:00
Valerio Setti
944f3ab1d6 changelog: add note about DHE-PSK removal 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-24 11:49:59 +01:00
Valerio Setti
19846f5561 changelog: add note for mbedtls_x509write_crt_set_serial() deprecation 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-16 15:06:19 +01:00
Deomid Ryabkov
5f7c2c2182 Update ChangeLog.d/tls-hs-defrag-in.txt 
Co-authored-by: minosgalanakis <30719586+minosgalanakis@users.noreply.github.com>
Signed-off-by: Deomid Ryabkov <rojer@rojer.me>
 2025-01-15 19:26:47 +00:00
Manuel Pégourié-Gonnard
4787b4012c Add ChangeLog entry 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
 2025-01-14 12:28:01 +01:00
Valerio Setti
976b53fc85 scripts: fix paths for files moved to framework 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-01-08 09:59:18 +01:00
Deomid rojer Ryabkov
ac2cf1f26c Defragment incoming TLS handshake messages 
Signed-off-by: Deomid rojer Ryabkov <rojer@rojer.me>
 2024-12-25 14:34:17 +02:00
Janos Follath
0aac2e5f37 Fix broken reference in ChangeLog 
Signed-off-by: Janos Follath <janos.follath@arm.com>
 2024-12-18 19:23:11 +00:00
Ronald Cron
8064c023ca Add change log 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
 2024-12-16 12:29:06 +01:00
Paul Elliott
8ef932312f Merge pull request #9809 from solardiz/development 
Specify previously missed register clobbers in AES-NI asm blocks
 2024-12-13 15:26:27 +00:00
Solar Designer
6b2ca180a8 Add change log entry on AES-NI asm block fixes 
Co-authored-by: Gilles Peskine <gilles.peskine@arm.com>
Signed-off-by: Solar Designer <solar@openwall.com>
 2024-12-11 02:47:20 +01:00
Minos Galanakis
e2d0074d4f Added changelog for the configuration split. 
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
 2024-12-04 15:08:39 +00:00
Janos Follath
f4f37eced7 Merge pull request #9810 from SuperIlu/development 
Fix compilation on MS-DOS DJGPP
 2024-12-03 09:12:18 +00:00