lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-12-18 17:14:12 +03:00
Code Activity
32,241 Commits 176 Branches 276 Tags
a8ff9f76e9569ed2595259b9ee5cca2ee4be4ca1
Commit Graph

60 Commits

Author SHA1 Message Date
Gilles Peskine
8701fddbc5 Remove sentence about 1.0 that should not have been backported 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-29 15:18:37 +02:00
Gilles Peskine
1e9efcc1ab Update some references to the future 
The future is now.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-26 15:15:13 +02:00
Gilles Peskine
106700481d Improve explanations of configuration translation 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-26 15:11:02 +02:00
Gilles Peskine
f6a7be0673 Copyediting 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-26 15:10:09 +02:00
Gilles Peskine
4f9d6e9451 update 1.0.0/4.0.0 release bullet point 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-26 15:05:17 +02:00
Gilles Peskine
b9eeace74a Update asymmetric cryptography 
Minor clarifications also done in the TF-PSA-Crypto 1.0 update.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-26 15:02:22 +02:00
Gilles Peskine
223fd448ea Miscellaneous improvements 
Partial backport of "Update all except "Asymmetric cryptography" for
TF-PSA-Crypto", including only clarifications and the extra information
about migrating to `MBEDTLS_PSA_CRYPTO_CONFIG` that are also relevant in
3.6.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-26 14:57:33 +02:00
Gilles Peskine
e7a9546dfa Fix section names 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-26 14:49:19 +02:00
Gilles Peskine
f7f3ec460a A few updates for 3.6 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-09-26 14:49:19 +02:00
Elena Uziunaite
63826e684b Leave the spaces in psa-transition.md 
Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>
 2024-08-27 19:24:10 +01:00
Elena Uziunaite
0c81fc2071 Fix typo in psa-transition.md 
Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>
 2024-08-27 16:19:10 +01:00
Gilles Peskine
603b5b842b Documentation: point to key_custom instead of key_ext 
Replace references to the deprecated functions `psa_generate_key_ext()` and
`psa_key_derivation_output_key_ext()` by their replacements
Implement `psa_generate_key_custom()` and
`psa_key_derivation_output_key_custom()`.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-08-06 13:12:06 +02:00
Gilles Peskine
e29b4b42b7 Fix copypasta 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-03-13 09:33:03 +01:00
Gilles Peskine
e4220fef2f MBEDTLS_USE_PSA_CRYPTO: most pk bridge functions don't require it 
mbedtls_setup_pk_opaque does require it.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-03-12 13:03:12 +01:00
Gilles Peskine
0cff1116f7 Remind the reader that PK doesn't support DH 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-03-12 13:02:58 +01:00
Gilles Peskine
7caf2dc964 Discuss mbedtls_pk_copy_public_from_psa 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-03-12 13:02:45 +01:00
Gilles Peskine
634d60ce0a List ECDSA signature conversion functions 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-03-04 19:29:13 +01:00
Gilles Peskine
0612adc0f7 Document mbedtls_pk_setup_opaque and mbedtls_pk_copy_from_psa 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-03-04 19:29:13 +01:00
Gilles Peskine
9d04f0872f Document mbedtls_pk_import_into_psa 
Explain how to use mbedtls_pk_get_psa_attributes() and
mbedtls_pk_import_into_psa() to make a PSA key from a PK key.

Remove the discussion of how to do the same manually.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-03-04 19:29:11 +01:00
Gilles Peskine
492d4a8ef9 Mention psa_generate_key_ext() 
Replaces the recommendation to use mbedtls_rsa_gen_key() for RSA key
generation with a custom public exponent.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-03-04 19:28:19 +01:00
Gilles Peskine
acdc52e154 mbedtls_ecp_write_key_ext(): recommend over the old function in documentation 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2024-02-28 13:19:42 +01:00
Gilles Peskine
4d4891e18a Merge pull request #8666 from valeriosetti/issue8340 
Export the mbedtls_md_psa_alg_from_type function
 2024-01-18 13:58:55 +00:00
Valerio Setti
afa01c7394 psa-transition: update "Elliptic curve mechanism selection" section 
- add hyperlinks for the conversion functions.
- move conversion functions' description before the legacy<->PSA table.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2024-01-09 13:41:52 +01:00
Valerio Setti
dc33200b74 psa-transition: extend "Elliptic curve mechanism selection" 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2024-01-09 13:41:52 +01:00
Valerio Setti
a87cd17b35 psa-transition: update with MD translation functions 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2024-01-02 16:20:44 +01:00
Gilles Peskine
1ef1eb234f Clarify psa_constant_names 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-12-13 11:09:47 +01:00
Gilles Peskine
5feac959a5 Correct and clarify discussion of AES-CMAC-PRF-128 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-12-12 19:20:45 +01:00
Gilles Peskine
0308d79a34 Fix some MAC-related function names 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-12-12 19:20:30 +01:00
Gilles Peskine
9f55e8e442 Add a section about ALT implementations 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-12-05 22:21:09 +01:00
Gilles Peskine
e5044a0eb2 Add a generic section about key management 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-12-04 23:17:19 +01:00
Gilles Peskine
32dfaf485c More information about output buffer sizes 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-12-04 23:17:19 +01:00
Gilles Peskine
76bc64e101 Diffie-Hellman: several clarifications and corrections 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-12-04 23:17:19 +01:00
Gilles Peskine
d921391bf4 Note a few things about PAKE (thanks Manuel) 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-12-04 23:17:19 +01:00
Gilles Peskine
5eeca33749 Use "workflow" rather than "flow" for clarity 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-12-04 23:17:19 +01:00
Gilles Peskine
06002c5624 typos and minor clarifications 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-12-04 23:17:19 +01:00
Gilles Peskine
2fffc45feb fixup! Correct function names prefixes where they diverge from module names 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-12-04 23:17:16 +01:00
Gilles Peskine
1097d4e731 Minor clarification 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-30 21:18:10 +01:00
Gilles Peskine
c3fd0958ce typo 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-30 21:18:04 +01:00
Gilles Peskine
02112cc9a1 Update PBKDF2 availability for 3.5 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-30 21:17:55 +01:00
Gilles Peskine
3ea22dcb51 Correct function names prefixes where they diverge from module names 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-30 21:07:24 +01:00
Gilles Peskine
dbcfc7dd95 Be more informative about "No change" 
Distinguish between interfaces that won't change in 4.0, and interfaces that
have no PSA equivalent but are likely to change in 4.0.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-30 21:04:06 +01:00
Gilles Peskine
d79854b3f7 That's not what mbedtls_ecdh_get_params does 
Keep the discussion of how to retrieve information about a key exchange.
This doesn't seem to have equivalent legacy ECDH APIs.

Add a todo item for mbedtls_ecdh_get_params(). At this point I don't know
where it fits.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-30 14:01:59 +01:00
Gilles Peskine
f7746bdd79 Correct lists of sign/verify functions 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-30 14:01:44 +01:00
Gilles Peskine
951cf39b3f Corrections and clarifications around asymmetric key formats 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-30 14:01:20 +01:00
Gilles Peskine
4d234f1ede Editorial corrections 
Fix typos, copypasta, and other minor clarifications.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-30 13:59:49 +01:00
Gilles Peskine
396a2a3dcb Explain interruptible operations 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-30 11:02:06 +01:00
Gilles Peskine
d96aa1b5cd Say who to contact 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-29 21:13:02 +01:00
Gilles Peskine
dfe6707fc7 Fix typos and make minor style improvements 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-29 21:12:39 +01:00
Gilles Peskine
d372da6201 Expand on the removal of RNG boilerplate 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-28 18:03:53 +01:00
Gilles Peskine
601d3a0bd7 Add links to newly added functions 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2023-11-28 18:03:16 +01:00