Yanray Wang 
							
						 
					 
					
						
						
							
						
						19e4dc8df7 
					 
					
						
						
							
							tls: fix unused parameter in mbedtls_ssl_cipher_to_psa  
						
						... 
						
						
						
						Signed-off-by: Yanray Wang <yanray.wang@arm.com > 
						
						
					 
					
						2023-11-16 18:05:51 +08:00 
						 
				 
			
				
					
						
							
							
								Yanray Wang 
							
						 
					 
					
						
						
							
						
						1a369d68aa 
					 
					
						
						
							
							ssl_tls: add missing guard for mbedtls_ssl_cipher_to_psa  
						
						... 
						
						
						
						Signed-off-by: Yanray Wang <yanray.wang@arm.com > 
						
						
					 
					
						2023-11-16 15:17:33 +08:00 
						 
				 
			
				
					
						
							
							
								Yanray Wang 
							
						 
					 
					
						
						
							
						
						0751761b49 
					 
					
						
						
							
							max_early_data_size: rename configuration function  
						
						... 
						
						
						
						Rename mbedtls_ssl_tls13_conf_max_early_data_size as
mbedtls_ssl_conf_max_early_data_size since in the future
this may not be specific to TLS 1.3.
Signed-off-by: Yanray Wang <yanray.wang@arm.com > 
						
						
					 
					
						2023-11-07 11:49:34 +08:00 
						 
				 
			
				
					
						
							
							
								Yanray Wang 
							
						 
					 
					
						
						
							
						
						d5ed36ff24 
					 
					
						
						
							
							early data: rename configuration function  
						
						... 
						
						
						
						Rename mbedtls_ssl_tls13_conf_early_data as
mbedtls_ssl_conf_early_data since in the future this may not be
specific to TLS 1.3.
Signed-off-by: Yanray Wang <yanray.wang@arm.com > 
						
						
					 
					
						2023-11-07 11:49:24 +08:00 
						 
				 
			
				
					
						
							
							
								Dave Rodgman 
							
						 
					 
					
						
						
							
						
						16799db69a 
					 
					
						
						
							
							update headers  
						
						... 
						
						
						
						Signed-off-by: Dave Rodgman <dave.rodgman@arm.com > 
						
						
					 
					
						2023-11-02 19:47:20 +00:00 
						 
				 
			
				
					
						
							
							
								Paul Elliott 
							
						 
					 
					
						
						
							
						
						4fb1955b31 
					 
					
						
						
							
							Remove NULL-ing of passed in SSL context in ssl_populate_transform()  
						
						... 
						
						
						
						Remove a piece of code that was meant to ensure non-usage of the ssl
context under conditions where it should not be used, as this now makes
less sense and also triggers coverity.
Signed-off-by: Paul Elliott <paul.elliott@arm.com > 
						
						
					 
					
						2023-10-18 15:16:45 +01:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						e570704f1f 
					 
					
						
						
							
							ssl: use MBEDTLS_SSL_HAVE_[CCM/GCM/CHACHAPOLY/AEAD] macros for ssl code  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-10-12 10:39:37 +02:00 
						 
				 
			
				
					
						
							
							
								Jerry Yu 
							
						 
					 
					
						
						
							
						
						02e3a074a3 
					 
					
						
						
							
							Add max_early_data_size into ticket  
						
						... 
						
						
						
						Signed-off-by: Jerry Yu <jerry.h.yu@arm.com > 
						
						
					 
					
						2023-10-12 15:00:26 +08:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						d4a10cebe4 
					 
					
						
						
							
							cipher/tls: use new symbols for guarding AEAD code  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-10-11 13:10:34 +02:00 
						 
				 
			
				
					
						
							
							
								Dave Rodgman 
							
						 
					 
					
						
						
							
						
						2eab462a8c 
					 
					
						
						
							
							Fix IAR warnings  
						
						... 
						
						
						
						Signed-off-by: Dave Rodgman <dave.rodgman@arm.com > 
						
						
					 
					
						2023-10-05 13:30:37 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						f07ce3b8ff 
					 
					
						
						
							
							Don't extend support for deprecated functions  
						
						... 
						
						
						
						Restore guards from the previous release, instead of the new, more
permissive guards.
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com > 
						
						
					 
					
						2023-09-28 08:51:51 +02:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						db6b4db7a0 
					 
					
						
						
							
							Renaming all MBEDTLS_HAVE for curves to MBEDTLS_ECP_HAVE  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-09-25 17:39:41 +02:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						cf29c5d9d5 
					 
					
						
						
							
							ssl: don't require MBEDTLS_ECP_DP with TLS1.3  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-09-25 17:39:41 +02:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						6d809cc969 
					 
					
						
						
							
							lib/test: use new internal helpers in library's code and tests  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-09-25 17:39:41 +02:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						f250ada3ab 
					 
					
						
						
							
							tls/oid: add PSA_WANT_ECC_xxx guards together with existing MBEDTLS_ECP_DP_xxx  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-09-25 17:39:40 +02:00 
						 
				 
			
				
					
						
							
							
								Gilles Peskine 
							
						 
					 
					
						
						
							
						
						eda1b1f744 
					 
					
						
						
							
							Merge pull request  #7921  from valeriosetti/issue7613  
						
						... 
						
						
						
						TLS: Clean up ECDSA dependencies 
						
						
					 
					
						2023-09-20 12:47:55 +00:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						275afe187f 
					 
					
						
						
							
							Fix preset shared between 1.2 and 1.3  
						
						... 
						
						
						
						Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com > 
						
						
					 
					
						2023-09-18 11:19:20 +02:00 
						 
				 
			
				
					
						
							
							
								Dave Rodgman 
							
						 
					 
					
						
						
							
						
						e99b24dd9f 
					 
					
						
						
							
							Fix some clang-18 warnings  
						
						... 
						
						
						
						Signed-off-by: Dave Rodgman <dave.rodgman@arm.com > 
						
						
					 
					
						2023-09-14 15:52:02 +01:00 
						 
				 
			
				
					
						
							
							
								Paul Elliott 
							
						 
					 
					
						
						
							
						
						ecb95bea1d 
					 
					
						
						
							
							Fix incorrect size used for zeroization of buffer  
						
						... 
						
						
						
						Signed-off-by: Paul Elliott <paul.elliott@arm.com > 
						
						
					 
					
						2023-08-11 16:41:04 +01:00 
						 
				 
			
				
					
						
							
							
								Dave Rodgman 
							
						 
					 
					
						
						
							
						
						1d4d944e19 
					 
					
						
						
							
							Merge pull request  #7933  from tom-cosgrove-arm/add-mbedtls_zeroize_and_free  
						
						... 
						
						
						
						Provide and use internal function mbedtls_zeroize_and_free() 
						
						
					 
					
						2023-08-03 12:56:21 +00:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						e9646ecd08 
					 
					
						
						
							
							tls: fix guards for ECDSA support  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-08-03 09:15:28 +02:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						45d56f3d25 
					 
					
						
						
							
							tls: replace ECDSA_C and PK_CAN_ECDSA_SOME with key exchange related ones  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-08-01 19:02:38 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						de8f56e936 
					 
					
						
						
							
							Merge pull request  #7884  from valeriosetti/issue7612  
						
						... 
						
						
						
						TLS: Clean up (EC)DH dependencies 
						
						
					 
					
						2023-08-01 07:13:36 +00:00 
						 
				 
			
				
					
						
							
							
								Gilles Peskine 
							
						 
					 
					
						
						
							
						
						bb07377458 
					 
					
						
						
							
							Merge pull request  #7935  from AgathiyanB/add-enum-casts  
						
						... 
						
						
						
						Add type casts for integer and enum types 
						
						
					 
					
						2023-07-26 11:27:27 +02:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						ea59c43499 
					 
					
						
						
							
							tls: fix a comment a rename a variable/symbol  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-07-25 11:14:03 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						c844c1a771 
					 
					
						
						
							
							Merge pull request  #7546  from mpg/align-psa-md-identifiers  
						
						... 
						
						
						
						Align psa md identifiers 
						
						
					 
					
						2023-07-20 11:34:28 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						828b3acd6b 
					 
					
						
						
							
							Merge pull request  #7848  from valeriosetti/issue7749  
						
						... 
						
						
						
						driver-only ECC: EPCf.TLS testing 
						
						
					 
					
						2023-07-18 10:33:21 +02:00 
						 
				 
			
				
					
						
							
							
								Tom Cosgrove 
							
						 
					 
					
						
						
							
						
						ca8c61b815 
					 
					
						
						
							
							Provide and use internal function mbedtls_zeroize_and_free()  
						
						... 
						
						
						
						Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com > 
						
						
					 
					
						2023-07-17 15:17:40 +01:00 
						 
				 
			
				
					
						
							
							
								Agathiyan Bragadeesh 
							
						 
					 
					
						
						
							
						
						8b52b88b6d 
					 
					
						
						
							
							Add type casts in ssl library  
						
						... 
						
						
						
						Signed-off-by: Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com > 
						
						
					 
					
						2023-07-17 15:14:42 +01:00 
						 
				 
			
				
					
						
							
							
								Gilles Peskine 
							
						 
					 
					
						
						
							
						
						6aca2c9613 
					 
					
						
						
							
							Merge pull request  #7716  from mpg/psa-util-internal  
						
						... 
						
						
						
						Split psa_util.h between internal and public 
						
						
					 
					
						2023-07-10 18:33:23 +02:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						54e23792c8 
					 
					
						
						
							
							tls: replace numeric values with proper TLS IANA symbols  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-07-10 09:13:57 +02:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						6f0441d11e 
					 
					
						
						
							
							tls: replace occurencies of ECP_LIGHT with PK_HAVE_ECC_KEYS  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-07-10 09:13:57 +02:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						acd32c005f 
					 
					
						
						
							
							programs: add helper functions for supported EC curves  
						
						... 
						
						
						
						- get full list, or
- get TLS ID from name
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-07-10 09:13:57 +02:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						49e6907b5b 
					 
					
						
						
							
							tls: replace ECP_LIGHT occurrencies with PK_HAVE_ECC_KEYS  
						
						... 
						
						
						
						Up to this point "make test" runs successfully. "ssl-opt" has
not been tested yet.
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-07-10 09:10:20 +02:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						6eb005435c 
					 
					
						
						
							
							tls: fix guards for legacy ECDH contexts  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-07-07 19:02:23 +02:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						3d237b5ff1 
					 
					
						
						
							
							ssl_misc: fix guards for PSA data used in XXDH key exchanges  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-07-07 19:02:16 +02:00 
						 
				 
			
				
					
						
							
							
								Valerio Setti 
							
						 
					 
					
						
						
							
						
						7aeec54094 
					 
					
						
						
							
							tls: replace ECDH_C guards with new helpers  
						
						... 
						
						
						
						Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no > 
						
						
					 
					
						2023-07-07 17:23:53 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						461d59b2f8 
					 
					
						
						
							
							Merge pull request  #7858  from mprse/ffdh_tls13_v2_f  
						
						... 
						
						
						
						Make use of FFDH keys in TLS 1.3 - follow-up 
						
						
					 
					
						2023-07-07 16:19:35 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						2be8c63af7 
					 
					
						
						
							
							Create psa_util_internal.h  
						
						... 
						
						
						
						Most functions in psa_util.h are going to end up there (except those
that can be static in one file), but I wanted to have separate commits
for file creation and moving code around, so for now the new file's
pretty empty but that will change in the next few commits.
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com > 
						
						
					 
					
						2023-07-06 12:42:33 +02:00 
						 
				 
			
				
					
						
							
							
								Dave Rodgman 
							
						 
					 
					
						
						
							
						
						3d0c8255aa 
					 
					
						
						
							
							Merge pull request  #7825  from daverodgman/cipher_wrap_size  
						
						... 
						
						
						
						Cipher wrap size improvement 
						
						
					 
					
						2023-07-05 15:45:48 +01:00 
						 
				 
			
				
					
						
							
							
								Przemek Stekiel 
							
						 
					 
					
						
						
							
						
						7ac93bea8c 
					 
					
						
						
							
							Adapt names: dh -> xxdh  
						
						... 
						
						
						
						Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com > 
						
						
					 
					
						2023-07-05 09:26:26 +02:00 
						 
				 
			
				
					
						
							
							
								Przemek Stekiel 
							
						 
					 
					
						
						
							
						
						6f199859b6 
					 
					
						
						
							
							Adapt handshake fields to ffdh  
						
						... 
						
						
						
						Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com > 
						
						
					 
					
						2023-07-05 09:25:00 +02:00 
						 
				 
			
				
					
						
							
							
								Tom Cosgrove 
							
						 
					 
					
						
						
							
						
						e939464eb7 
					 
					
						
						
							
							Merge pull request  #7829  from mpg/deduplicate-tls-hashing  
						
						... 
						
						
						
						De-duplicate TLS hashing functions 
						
						
					 
					
						2023-07-04 16:06:00 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						aaad2b6bfc 
					 
					
						
						
							
							Rename some local variables  
						
						... 
						
						
						
						Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com > 
						
						
					 
					
						2023-07-04 11:35:16 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						56b159a12a 
					 
					
						
						
							
							Merge pull request  #7627  from mprse/ffdh_tls13_v2  
						
						... 
						
						
						
						Make use of FFDH keys in TLS 1.3 v.2 
						
						
					 
					
						2023-07-03 10:12:33 +02:00 
						 
				 
			
				
					
						
							
							
								Dave Rodgman 
							
						 
					 
					
						
						
							
						
						85a88133aa 
					 
					
						
						
							
							Use fewer bits for block_size  
						
						... 
						
						
						
						Signed-off-by: Dave Rodgman <dave.rodgman@arm.com > 
						
						
					 
					
						2023-06-24 13:37:28 +01:00 
						 
				 
			
				
					
						
							
							
								Dave Rodgman 
							
						 
					 
					
						
						
							
						
						bb521fdbc9 
					 
					
						
						
							
							Don't directly access iv_size  
						
						... 
						
						
						
						Signed-off-by: Dave Rodgman <dave.rodgman@arm.com > 
						
						
					 
					
						2023-06-24 12:59:31 +01:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						de33278e43 
					 
					
						
						
							
							Unify ssl_calc_finished_tls_sha{256,384}  
						
						... 
						
						
						
						Saves about 50-60 bytes on m0+ depending on whether USE_PSA is set.
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com > 
						
						
					 
					
						2023-06-24 10:13:41 +02:00 
						 
				 
			
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
					 
					
						
						
							
						
						74970664a9 
					 
					
						
						
							
							Unify ssl_calc_verify_sha{256,384}  
						
						... 
						
						
						
						Saves about 40 bytes of code size on m0plus with baremetal_size.
Note: the debug messages are change to no longer include the hash name.
That's not a problem as we already know which alg is used from previous
output, and we can also know it form the size of the printed buffer.
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com > 
						
						
					 
					
						2023-06-24 09:43:26 +02:00 
						 
				 
			
				
					
						
							
							
								Przemek Stekiel 
							
						 
					 
					
						
						
							
						
						8c0a95374f 
					 
					
						
						
							
							Adapt remaining guards to FFDH  
						
						... 
						
						
						
						Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com > 
						
						
					 
					
						2023-06-15 17:07:10 +02:00