mbedtls

espressif/mbedtls

Fork 0

mirror of https://github.com/espressif/mbedtls.git synced 2025-08-06 15:00:15 +08:00

Commit Graph

Select branches

Hide Pull Requests

master

mbedtls-2.11.0-idf

mbedtls-2.12.0-idf

mbedtls-2.13.1-idf

mbedtls-2.16.1-idf

mbedtls-2.16.11-idf

mbedtls-2.16.12-idf

mbedtls-2.16.2-idf

mbedtls-2.16.4-idf

mbedtls-2.16.5-idf

mbedtls-2.16.6-adk

mbedtls-2.16.7-idf

mbedtls-2.16.9-idf

mbedtls-2.28.0-idf

mbedtls-2.28.1-idf

mbedtls-2.28.2-idf

mbedtls-2.28.3-idf

mbedtls-2.28.4-idf

mbedtls-2.28.5-idf

mbedtls-2.28.7-idf

mbedtls-2.28.8-idf

mbedtls-2.9.0-idf

mbedtls-3.1.0-idf

mbedtls-3.2.1-idf

mbedtls-3.3.0-idf

mbedtls-3.4.0-idf

mbedtls-3.4.1-idf

mbedtls-3.5.0-idf

mbedtls-3.5.2-idf

mbedtls-3.6.0-idf

mbedtls-3.6.1-idf

mbedtls-3.6.2-idf

mbedtls-3.6.3-idf

mbedtls-3.6.4-idf

#1

#2

#3

beta-oob-2

beta-release

feature-opaque-keys-2.7-rc1

list

mbed-alpha3

mbed-os-beta

mbedos-16.01-release

mbedos-16.03-release

mbedos-2016q1-oob1

mbedos-2016q1-oob2

mbedos-2016q1-oob3

mbedos-release-15-11

mbedos-techcon-oob2

mbedtls-1.3.10

mbedtls-1.3.11

mbedtls-1.3.12

mbedtls-1.3.13

mbedtls-1.3.14

mbedtls-1.3.15

mbedtls-1.3.16

mbedtls-1.3.17

mbedtls-1.3.18

mbedtls-1.3.19

mbedtls-1.3.19-rc1

mbedtls-1.3.20

mbedtls-1.3.21

mbedtls-1.3.21-rc1

mbedtls-1.3.22

mbedtls-1.3.22-rc1

mbedtls-1.4-dtls-preview

mbedtls-2.0.0

mbedtls-2.1.0

mbedtls-2.1.1

mbedtls-2.1.10

mbedtls-2.1.10-rc1

mbedtls-2.1.11

mbedtls-2.1.11-rc1

mbedtls-2.1.12

mbedtls-2.1.2

mbedtls-2.1.3

mbedtls-2.1.4

mbedtls-2.1.5

mbedtls-2.1.6

mbedtls-2.1.7

mbedtls-2.1.7-rc1

mbedtls-2.1.8

mbedtls-2.1.9

mbedtls-2.1.9-rc1

mbedtls-2.13.1

mbedtls-2.16.12

mbedtls-2.2.0

mbedtls-2.2.1

mbedtls-2.28.0

mbedtls-2.28.1

mbedtls-2.28.2

mbedtls-2.28.3

mbedtls-2.28.4

mbedtls-2.28.5

mbedtls-2.28.7

mbedtls-2.28.8

mbedtls-2.3.0

mbedtls-2.4.0

mbedtls-2.4.1

mbedtls-2.4.2

mbedtls-2.4.2-rc1

mbedtls-2.5.0

mbedtls-2.5.0-rc1

mbedtls-2.5.1

mbedtls-2.6.0

mbedtls-2.6.0-rc1

mbedtls-2.6.1

mbedtls-2.6.1-rc1

mbedtls-2.7.0

mbedtls-2.7.0-rc1

mbedtls-2.7.1

mbedtls-2.7.2

mbedtls-2.7.2-rc1

mbedtls-2.7.3

mbedtls-2.8.0

mbedtls-2.8.0-rc1

mbedtls-2.9.0

mbedtls-3.0.0

mbedtls-3.1.0

mbedtls-3.2.0

mbedtls-3.2.1

mbedtls-3.3.0

mbedtls-3.4.0

mbedtls-3.4.1

mbedtls-3.5.0

mbedtls-3.5.2

mbedtls-3.6.0

mbedtls-3.6.1

mbedtls-3.6.2

mbedtls-3.6.3

mbedtls-3.6.4

polarssl-0.10.0

polarssl-0.10.1

polarssl-0.11.0

polarssl-0.11.1

polarssl-0.12.0

polarssl-0.12.1

polarssl-0.13.0

polarssl-0.13.1

polarssl-0.14.0

polarssl-0.14.1

polarssl-0.14.2

polarssl-0.14.3

polarssl-0.99-pre1

polarssl-0.99-pre2

polarssl-0.99-pre3

polarssl-0.99-pre4

polarssl-0.99-pre5

polarssl-1.0.0

polarssl-1.1.0

polarssl-1.1.0-rc0

polarssl-1.1.0-rc1

polarssl-1.1.1

polarssl-1.1.2

polarssl-1.1.3

polarssl-1.1.4

polarssl-1.1.5

polarssl-1.1.6

polarssl-1.1.7

polarssl-1.1.8

polarssl-1.2.0

polarssl-1.2.0-pre1

polarssl-1.2.1

polarssl-1.2.10

polarssl-1.2.11

polarssl-1.2.12

polarssl-1.2.13

polarssl-1.2.14

polarssl-1.2.15

polarssl-1.2.16

polarssl-1.2.17

polarssl-1.2.18

polarssl-1.2.19

polarssl-1.2.2

polarssl-1.2.3

polarssl-1.2.4

polarssl-1.2.5

polarssl-1.2.6

polarssl-1.2.7

polarssl-1.2.8

polarssl-1.2.9

polarssl-1.3-alpha1

polarssl-1.3.0

polarssl-1.3.0-rc0

polarssl-1.3.1

polarssl-1.3.2

polarssl-1.3.3

polarssl-1.3.4

polarssl-1.3.5

polarssl-1.3.6

polarssl-1.3.7

polarssl-1.3.8

polarssl-1.3.9

v2.16.12

yotta-2.2.1

yotta-2.2.2

yotta-2.2.3

yotta-2.3.0

yotta-2.3.1

yotta-2.3.2

9886fd17db ssl-opt: Added requires_openssl_3_x to defragmentation tests. Minos Galanakis 2025-02-07 14:10:18 +00:00
afb428e584 ssl-opt: Updated the keywords to look up during handshake fragmentation tests. Minos Galanakis 2025-02-05 15:23:14 +00:00
c5f1ba3d50 Add missing client certificate check in handshake defragmentation tests Waleed Elmelegy 2025-01-31 14:44:13 +00:00
5fc8d3f035 Test Handshake defragmentation only for TLS 1.3 only for small values Waleed Elmelegy 2025-01-31 11:50:08 +00:00
be59ab5671 Add guard to handshake defragmentation tests for client certificate Waleed Elmelegy 2025-01-31 11:25:43 +00:00
99f4691bd6 Add a comment to elaborate using split_send_frag in handshake defragmentation tests Waleed Elmelegy 2025-01-30 17:53:02 +00:00
57f61f82fd Enforce client authentication in handshake fragmentation tests Waleed Elmelegy 2025-01-30 12:02:12 +00:00
826fc5c383 Remove unneeded mtu option from handshake fragmentation tests Waleed Elmelegy 2025-01-29 18:28:56 +00:00
e9b08846da Add client authentication to handshake defragmentation tests Waleed Elmelegy 2025-01-29 17:13:34 +00:00
1b2590b125 Require openssl to support TLS 1.3 in handshake defragmentation tests Waleed Elmelegy 2025-01-29 17:01:55 +00:00
5b7c8bb064 Remove unnecessary string check in handshake defragmentation tests Waleed Elmelegy 2025-01-29 16:58:58 +00:00
8870b99da4 Fix typo in TLS Handshake defrafmentation tests Waleed Elmelegy 2025-01-29 16:23:40 +00:00
e11d8c9333 Improve TLS handshake defragmentation tests Waleed Elmelegy 2025-01-28 16:47:21 +00:00
29581ce229 Add TLS Hanshake defragmentation tests Waleed Elmelegy 2025-01-24 17:39:58 +00:00
9dfe548008 Document the need to call mbedtls_ssl_set_hostname Gilles Peskine 2025-02-20 19:12:16 +01:00
5ee008d15f Improve documentation of mbedtls_ssl_set_hostname Gilles Peskine 2025-02-20 19:12:04 +01:00
4f563e7d90 Expand and rectify the documentation of mbedtls_ssl_context::hostname Gilles Peskine 2025-02-20 17:39:52 +01:00
20c7748575 Changelog entries for requiring mbedls_ssl_set_hostname() in TLS clients Gilles Peskine 2025-02-17 17:49:20 +01:00
11f74c5751 Add a note about calling mbedtls_ssl_set_hostname to mbedtls_ssl_setup Gilles Peskine 2025-02-17 17:41:54 +01:00
cbe6529170 Run part of ssl-opt.sh in full_no_deprecated Gilles Peskine 2025-02-17 17:42:35 +01:00
cca140b1e1 Merge pull request #9981 from gilles-peskine-arm/tls_hs_defrag_in-3.6-badmac_seen Manuel Pégourié-Gonnard 2025-02-24 09:28:06 +01:00
cc1b26bd9a changelog: add note for MD changes Valerio Setti 2025-01-23 16:22:05 +01:00
79a98bd7b6 crypto_extra: improve description of psa_can_do_hash() Valerio Setti 2025-02-21 15:00:11 +01:00
05b3835bd6 psa: move definition of psa_can_do_hash() to crypto_extra.h Valerio Setti 2025-02-21 14:40:51 +01:00
1a2d07d83a docs: update md-cipher-dispatch Valerio Setti 2025-01-23 11:10:48 +01:00
460d2ee363 adjust_legacy_crypto: improve enablement of MBEDTLS_MD_xxx_VIA_PSA Valerio Setti 2024-09-17 11:40:40 +02:00
c516307ad9 md: allow dispatch to PSA whenever CRYPTO_CLIENT is enabled Valerio Setti 2024-09-13 10:55:22 +02:00
2c1de04e9d adjust_legacy_crypto: move auto-enabling of CRYPTO_CLIENT when CRYPTO_C Valerio Setti 2024-09-13 16:45:07 +02:00
1ba478d9cf Merge pull request #9988 from Harry-Ramsey/move-program-files-to-mbedtls-framework-3-6 Ronald Cron 2025-02-21 07:13:01 +00:00
730be78ce5 Document PSA's need for threading Gilles Peskine 2025-02-20 20:20:19 +01:00
1da22a8946 Update framework pointer Harry Ramsey 2025-02-17 12:06:07 +00:00
4c1383a9f1 Update documentation regarding metatest Harry Ramsey 2025-02-19 14:47:10 +00:00
65e9bef19f Update documentation regarding test_zeroize Harry Ramsey 2025-02-18 18:09:57 +00:00
4e1a12e13a Update path to demo_common.sh Harry Ramsey 2025-02-17 20:56:22 +00:00
d621d344c3 Update path for moved test_zeroize.gdb script Harry Ramsey 2025-02-17 12:05:26 +00:00
03f49578d2 Update paths for moved programs in generate_visualc_files.pl Harry Ramsey 2025-02-17 12:04:23 +00:00
151e0892a1 Update paths for moved dlopen_demo.sh Harry Ramsey 2025-02-17 12:01:05 +00:00
061e0f5466 Update paths for moved program files in CMakeLists Harry Ramsey 2025-02-17 11:59:45 +00:00
dab817a4c6 Update include paths in C files Harry Ramsey 2025-02-11 14:14:00 +00:00
a67f1338b6 Update paths for moved program files in makefiles Harry Ramsey 2025-02-17 11:51:52 +00:00
6eb335dfda Merge pull request #9919 from davidhorstmann-arm/clarify-x509-security-md-3.6 Janos Follath 2025-02-20 14:41:42 +00:00
4726d20320 Remove unused variable in ssl_server.c Waleed Elmelegy 2025-01-31 11:11:06 +00:00
716aead3b9 Update the changelog message Deomid rojer Ryabkov 2025-02-04 12:08:15 +02:00
2878a0559e Remove obselete checks due to the introduction of handhsake defragmen... Deomid rojer Ryabkov 2025-02-01 15:33:37 +02:00
c52273d017 Add a note about badmac_seen's new name in ssl_context_info Gilles Peskine 2025-02-18 14:11:25 +01:00
55151d3da6 Fix Doxygen misuse Gilles Peskine 2025-02-17 23:09:00 +01:00
d358d6e6cd Add MBEDTLS_FRAMEWORK_DIR variable to CMake Harry Ramsey 2025-02-17 17:22:54 +00:00
cb72cd2ec3 Don't reset badmac_seen on a DTLS client reconnect Gilles Peskine 2025-02-17 16:36:36 +01:00
b710599e4a Merge in_hsfraglen with badmac_seen_or_in_hsfraglen Gilles Peskine 2025-02-17 16:28:51 +01:00
ebdd405f68 Change the type of in_hsfraglen to unsigned Gilles Peskine 2025-02-17 16:25:24 +01:00
f6a676d93f Rename badmac_seen to badmac_seen_or_in_hsfraglen Gilles Peskine 2025-02-17 16:10:14 +01:00
69f8f45e6f Minor readability improvement Gilles Peskine 2025-02-17 16:08:59 +01:00
bbe8745d19 Remove in_hshdr Deomid rojer Ryabkov 2025-02-13 13:41:51 +03:00
85ec2b3632 Add a safety check for in_hsfraglen Deomid rojer Ryabkov 2025-01-27 22:37:37 +04:00
5c853ea2c5 Allow fragments less HS msg header size (4 bytes) Deomid rojer Ryabkov 2025-01-26 11:10:54 +02:00
96e2290e3d Remove mbedtls_ssl_reset_in_out_pointers Deomid rojer Ryabkov 2025-01-26 10:43:42 +02:00
1f4088ceda Review comments Deomid rojer Ryabkov 2025-01-18 15:58:57 +02:00
db2da526ff Update ChangeLog.d/tls-hs-defrag-in.txt Deomid Ryabkov 2025-01-15 19:26:47 +00:00
3fc5a4dc86 Defragment incoming TLS handshake messages Deomid rojer Ryabkov 2024-03-10 02:11:03 +00:00
0c6eb5d6e9 Move programs out of Mbed TLS Harry Ramsey 2025-02-17 11:43:55 +00:00
da0e32e2fb mbedtls_ssl_set_hostname tests: add tests with CA callback Gilles Peskine 2025-02-13 21:46:00 +01:00
1f6864b174 Call mbedtls_ssl_set_hostname in the generic endpoint setup in unit tests Gilles Peskine 2025-02-13 17:28:49 +01:00
2c33c75725 Require calling mbedtls_ssl_set_hostname() for security Gilles Peskine 2025-02-13 14:39:02 +01:00
7656ad7b9f Create configuration option to bypass the mbedtls_ssl_set_hostname check Gilles Peskine 2025-02-13 13:46:58 +01:00
0178dc9946 Create error code for mbedtls_ssl_set_hostname not called Gilles Peskine 2025-02-13 13:46:03 +01:00
6b8859467c Keep track of whether mbedtls_ssl_set_hostname() has been called Gilles Peskine 2025-02-12 23:53:25 +01:00
ce00ac4a29 Update the documentation of ssl->hostname Gilles Peskine 2025-02-12 23:35:54 +01:00
e61852e4d2 Access ssl->hostname through abstractions Gilles Peskine 2025-02-12 23:28:48 +01:00
b3de9da6b0 mbedtls_ssl_set_hostname tests: baseline Gilles Peskine 2025-02-12 21:50:53 +01:00
48e4ff9622 Automate MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK dependency Gilles Peskine 2025-02-13 21:23:22 +01:00
2a8acc41b2 Make guards more consistent between X.509-has-certs and SSL-has-certs Gilles Peskine 2025-02-13 12:58:24 +01:00
154269d25b Fix Doxygen markup Gilles Peskine 2025-02-12 23:11:09 +01:00
c811fb79ad Merge pull request #9941 from valeriosetti/issue94-3.6 Ronald Cron 2025-02-05 13:55:44 +00:00
411f7dc167 framework: update reference Valerio Setti 2025-01-29 15:32:45 +01:00
aa7bd59dbe components-compliance.sh: update references to test_psa_compliance.py Valerio Setti 2025-01-29 15:17:26 +01:00
d673acf89e components-configuration.sh: update references to test_psa_constant_names.py Valerio Setti 2025-01-29 15:16:50 +01:00
7297e8d440 Move files out of Mbed TLS Valerio Setti 2025-01-29 15:12:09 +01:00
204588678e Merge pull request #9937 from valeriosetti/issue9688-backport Ronald Cron 2025-01-29 09:59:11 +00:00
1a0ee063e2 test_suite_ssl: update description for conf_curve and conf_gruop tests Valerio Setti 2025-01-22 11:03:46 +01:00
e94ab3cbdf test_suite_ssl: add ECDHE-RSA case for handshake_fragmentation() Valerio Setti 2025-01-20 11:07:09 +01:00
4f2a74d275 test_suite_ssl: add new ECDHE-RSA tests Valerio Setti 2025-01-20 10:50:45 +01:00
b6fff90ed1 Merge pull request #9907 from mpg/conf-curves-3.6 Manuel Pégourié-Gonnard 2025-01-27 08:21:30 +00:00
79d5ea234c Merge pull request #9495 from minosgalanakis/doc/add_mbedtls_ecp_check_privkey_comment_bp36 Janos Follath 2025-01-24 09:44:39 +00:00
484776547c Update tf-psa-crypto/drivers/builtin/src/ecp.c minosgalanakis 2024-08-22 13:22:26 +01:00
910273c563 Fix missing-word typo David Horstmann 2025-01-23 10:28:06 +00:00
fe2d3e0129 Add paragraph on undefined behaviour David Horstmann 2025-01-22 14:48:58 +00:00
8bf5dc683c Add X.509 formatting validation to SECURITY.md David Horstmann 2025-01-22 14:27:22 +00:00
32d8c90528 Disable check-names for static padding function David Horstmann 2025-01-22 11:26:00 +00:00
1667455992 Add ChangeLog entry for PKCS#7 side channel fix David Horstmann 2025-01-22 11:18:14 +00:00
652ea21737 Fix timing side-channel in PKCS7 padding David Horstmann 2025-01-20 17:44:00 +00:00
d37e0c4639 Add constant-flow testing for PKCS7 padding David Horstmann 2025-01-16 16:24:35 +00:00
ea18c7e1e5 Fix incorrect test function Manuel Pégourié-Gonnard 2025-01-22 10:04:43 +01:00
632667e394 Remove useless dependency from test function Manuel Pégourié-Gonnard 2025-01-14 12:25:52 +01:00
18e4b3f08b Merge pull request #9857 from gilles-peskine-arm/psa-storage-test-cases-never-supported-negative-3.6 Gilles Peskine 2025-01-20 18:44:52 +00:00
a6c1f56a36 Add ignore list entries for ECDH/FFDH algorithm without key type Gilles Peskine 2025-01-16 19:49:12 +01:00
a2a0c394dd Remove test coverage exceptions that are no longer needed Gilles Peskine 2025-01-09 18:41:45 +01:00
8e07e27d9b Update framework Gilles Peskine 2025-01-09 18:43:33 +01:00
c1b1aa3148 Merge pull request #9903 from Harry-Ramsey/independent-check-files-3.6 Ronald Cron 2025-01-15 16:43:34 +00:00
61a1281503 Update framework pointer Harry Ramsey 2025-01-14 11:25:18 +00:00
680d5bbb68 Merge pull request #9890 from gilles-peskine-arm/psa-storage-test-cases-never-supported-negative-preamble-3.6 David Horstmann 2025-01-15 11:01:40 +00:00