polarssl

mirror of https://github.com/cuberite/polarssl.git synced 2025-10-04 11:09:00 -04:00

Author	SHA1	Message	Date
Gilles Peskine	796bc2b8f9	Merge pull request #7486 from AndrzejKurek/calloc-also-zeroizes Document mbedtls_calloc zeroization	2023-08-21 15:47:21 +00:00
Dave Rodgman	1fdc884ed8	Merge pull request #7384 from yuhaoth/pr/add-aes-accelerator-only-mode AES: Add accelerator only mode	2023-08-18 20:55:44 +00:00
Jerry Yu	6c6b9f602c	Change document to match real status Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-08-17 16:53:01 +08:00
Gilles Peskine	f11cfecb6b	Merge pull request #7998 from gilles-peskine-arm/MBEDTLS_PSA_CRYPTO_CONFIG-less_experimental MBEDTLS_PSA_CRYPTO_CONFIG is ready for production	2023-08-08 09:04:57 +00:00
Dave Rodgman	6f80ac4979	Merge pull request #7864 from waleed-elmelegy-arm/enforce-min-RSA-key-size Enforce minimum key size when generating RSA key size	2023-08-03 12:57:52 +00:00
Jerry Yu	1414029ff0	improve document about hardware only Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-08-02 17:44:03 +08:00
Jerry Yu	6943681820	Improve error message and documents - fix grammar error - Add more information for AES_USE_HARDWARE_ONLY - Improve error message Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-08-02 17:44:03 +08:00
Jerry Yu	e77c4d95a7	Mention the crash risk without runtime detection Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-08-02 17:44:02 +08:00
Jerry Yu	3660623e59	Rename plain c option and update comments Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-08-02 17:44:01 +08:00
Jerry Yu	3fcf2b5053	Rename HAS_NO_PLAIN_C to DONT_USE_SOFTWARE_CRYPTO Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-08-02 17:44:00 +08:00
Jerry Yu	1b3ab36b55	Update comments Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-08-02 17:43:59 +08:00
Jerry Yu	315fd30201	Rename plain c disable option Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-08-02 17:43:59 +08:00
Jerry Yu	0d4f4e5b01	Add option to disable built-in aes implementation. For time being, there are only two aes implementations for known architectures. I define runtime detection function as const when built-in was disabled. In this case, compiler will remove dead built-in code. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-08-02 17:43:54 +08:00
Janos Follath	e416f03c8f	Improve wording of MBEDTLS_ECP_WITH_MPI_UINT doc Use the standard "experimental" word in the description and make the wording more similar to other experimental warnings. Signed-off-by: Janos Follath <janos.follath@arm.com>	2023-08-01 08:44:40 +01:00
Janos Follath	2f04582d37	Move MBEDTLS_ECP_WITH_MPI_UINT to mbedtls_config.h There is a precedent for having bigger and less mature options in mbedtls_config.h (MBEDTLS_USE_PSA_CRYPTO) for an extended period. Having this option in mbedtls_config.h is simpler and more robust. Signed-off-by: Janos Follath <janos.follath@arm.com>	2023-07-31 10:57:16 +01:00
Waleed Elmelegy	d7bdbbeb0a	Improve naming of mimimum RSA key size generation configurations Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>	2023-07-27 14:50:09 +00:00
Gilles Peskine	25b4e72d6e	MBEDTLS_PSA_CRYPTO_CONFIG is ready for production It's ok if people use MBEDTLS_PSA_CRYPTO_CONFIG: it's not unstable or unpredictable. But we still reserve the right to make minor changes (e.g. https://github.com/Mbed-TLS/mbedtls/issues/7439). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>	2023-07-27 15:09:24 +02:00
Waleed Elmelegy	3d158f0c28	Adapt tests to work on all possible minimum RSA key sizes Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>	2023-07-27 11:03:35 +00:00
Waleed Elmelegy	ab5707185a	Add a minimum rsa key size config to psa config Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>	2023-07-27 11:00:03 +00:00
Waleed Elmelegy	76336c3e4d	Enforce minimum key size when generating RSA key size Add configuration to enforce minimum size when generating a RSA key, it's default value is 1024 bits since this the minimum secure value currently but it can be any value greater than or equal 128 bits. Tests were modifed to accommodate for this change. Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>	2023-07-27 10:58:25 +00:00
Andrzej Kurek	f14a5c3fcb	Improve the documentation of MBEDTLS_PLATFORM_MEMORY Introduce requests from review comments. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-07-14 06:15:15 -04:00
Andrzej Kurek	3bedb5b663	doxygen: fix parameter name typos and misused \p commands \p is reserved for function parameters. \c is used to describe other values and variables. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-07-13 10:02:32 -04:00
Jerry Yu	8bfa24b021	Update compiler versions requirement For time being, we haven't verified MSVC for sha256 and 512. So we do not add msvc information. Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-07-13 10:40:29 +08:00
Jerry Yu	8e96e78dbe	update document and error message Chang the spell of armclang Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-07-13 10:40:28 +08:00
Jerry Yu	c37e260dc5	Add armclang version requirement for sha512 Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>	2023-07-13 10:40:28 +08:00
Andrzej Kurek	2b3c06edb3	Enable certain documented defines only when generating doxygen Avoid an "unrecognized define" error. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-07-03 10:42:15 -04:00
Manuel Pégourié-Gonnard	56b159a12a	Merge pull request #7627 from mprse/ffdh_tls13_v2 Make use of FFDH keys in TLS 1.3 v.2	2023-07-03 10:12:33 +02:00
Andrzej Kurek	aae3208c29	Add an mbedtls_calloc(SIZE_MAX/2, SIZE_MAX/2) test It should return NULL and not a valid pointer. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-27 09:26:08 -04:00
Andrzej Kurek	84356a16e9	Add a description of how mbedtls_calloc is determined Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-27 09:26:08 -04:00
Andrzej Kurek	ecaf6fb8b2	Documentation and cosmetic fixes Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-27 09:26:08 -04:00
Andrzej Kurek	2d981f092e	Extend mbedtls_calloc and mbedtls_free documentation Co-authored-by: Gilles Peskine <Gilles.Peskine@arm.com> Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-27 09:26:08 -04:00
Andrzej Kurek	c08ccd00f3	Add a test for calloc zeroization Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-27 09:26:08 -04:00
Andrzej Kurek	b9f8974c6c	Document mbedtls_calloc zeroization Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>	2023-06-27 09:26:08 -04:00
Valerio Setti	3cd4ef7a7a	mbedtls_config: improved description of PK_PARSE_EC_COMPRESSED Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-06-19 11:35:10 +02:00
Valerio Setti	addeee4531	mbedtls_config: add new MBEDTLS_PK_PARSE_EC_COMPRESSED symbol This includes also: - auto enabling ECP_LIGHT when MBEDTLS_PK_PARSE_EC_COMPRESSED is defined - replacing ECP_LIGHT guards with PK_PARSE_EC_COMPRESSED in pkparse - disabling PK_PARSE_EC_COMPRESSED in tests with accelarated EC curves (it get disabled also in the reference components because we want to achieve test parity) - remove skipped checks in analyze_outcomes.py Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>	2023-06-16 16:03:46 +02:00
Przemek Stekiel	ce05f54283	Properly disable ECDH in only (psk) ephemeral ffdh key exchange components Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>	2023-06-15 16:44:08 +02:00
Tom Cosgrove	6edf8b8c7b	Merge pull request #7451 from yanrayw/7376_aes_128bit_only Introduce config option of 128-bit key only in AES calculation	2023-06-15 10:35:32 +01:00
Yanray Wang	55ef22c2cb	mbedtls_config.h: add description for CTR_DRBG about AES-128 only Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-06-15 10:05:27 +08:00
Yanray Wang	7265bab8ad	mbedtls_config.h: remove empty * line before closing */ line Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-10 17:50:58 +08:00
Yanray Wang	d2ae432364	mbedtls_config.h: rewrite comment for AES_ONLY_128_BIT_KEY_LENGTH Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-10 17:49:34 +08:00
Pol Henarejos	d06c6fc45b	Merge branch 'development' into sha3 Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2023-05-05 16:01:18 +02:00
Yanray Wang	1ed226f790	Auto-enable CTR_DRBG_USE_128_BIT_KEY with AES_ONLY_128_BIT_KEY_LENGTH This commit adds support to auto-enable MBEDTLS_CTR_DRBG_USE_128_BIT_KEY if MBEDTLS_AES_ONLY_128_BIT_KEY_LENGTH enabled. Furthermore, the corresponding check is removed in check_config.h. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-05 16:23:31 +08:00
Yanray Wang	4a7fdffa5e	mbedtls_config.h: paraphrase code size saving in comment Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-05 16:11:33 +08:00
Yanray Wang	3d4d146f07	mbedtls_config.h: fix issue in grammar Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-05 15:05:46 +08:00
Arto Kinnunen	732ca3221d	AES: add macro of MBEDTLS_AES_ONLY_128_BIT_KEY_LENGTH Add configuration option to support 128-bit key length only in AES calculation. Signed-off-by: Yanray Wang <yanray.wang@arm.com>	2023-05-05 11:20:38 +08:00
Manuel Pégourié-Gonnard	8e076e4132	Merge pull request #6915 from aditya-deshpande-arm/example-driver-post-codestyle Document (with examples) how to integrate a third-party driver with Mbed TLS	2023-05-02 12:13:42 +02:00
Manuel Pégourié-Gonnard	f317df98ea	Merge pull request #7461 from valeriosetti/issue7460-part1 Fixing USE_PSA_INIT/DONE in SSL/X509/PK test suites	2023-05-02 10:44:13 +02:00
Aditya Deshpande	f100f00679	Add warnings to documentation stating that p256-m code may be out of date with upstream, plus other minor grammatical fixes. Signed-off-by: Aditya Deshpande <aditya.deshpande@arm.com>	2023-04-28 17:54:15 +01:00
Aditya Deshpande	bac592d53e	Remove rand() from p256_generate_random() and move to an implementation based on mbedtls_ctr_drbg Signed-off-by: Aditya Deshpande <aditya.deshpande@arm.com>	2023-04-28 17:54:15 +01:00
Aditya Deshpande	e41f7e457f	Integrate p256-m as an example driver alongside Mbed TLS and write documentation for the example. (Reapplying changes as one commit on top of development post codestyle change instead of rewriting old branch) Signed-off-by: Aditya Deshpande <aditya.deshpande@arm.com>	2023-04-28 17:54:09 +01:00

1 2 3 4 5 ...

334 Commits