cuberite/polarssl
1
0
Fork 0
mirror of https://github.com/cuberite/polarssl.git synced 2025-09-22 20:10:32 -04:00
Code Issues Packages Projects Releases Wiki Activity
33,397 Commits 7 Branches 115 Tags
Commit Graph

33397 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Manuel Pégourié-Gonnard
64e80ddf89
Merge pull request #10255 from gilles-peskine-arm/migration-guide-20250624-mbedtls 
Migration guide for API changes in 2025Q2 in mbedtls
 2025-06-30 18:33:36 +00:00
Gilles Peskine
159a652096 Minor clarifications 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
0b44f56d8d Typos 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
5acb3a5969 Copyediting 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
ac18d0c0db Fix spelling of mbedtls_low_level_strerr 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
9b69972589 Remove crypto error codes, refer to the crypto guide instead 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
bf92bae959 Copy error-codes.md from tf-psa-crypto 
Much of it also applies to Mbed TLS.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
d3a6cbb6bb Subsection for the removal of explicit RNG contexts 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
9000633f0e Move some crypto changelog files to TF-PSA-Crypto 
These files had gone on the wrong side during the repo split.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
2649aa283b TLS key exchange removals 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
2ee5c55c79 Fix spelling of psa_generate_random() 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
fbab8c1df1 General notes about the transition to PSA 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
72968cca33 Generalize the section on function prototype changes 
Not everything will be about PSA.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
f6c03d1b7f typo 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
826225fe31 Migration guide entries for removed deprecated functions 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
a0e06dd6d3 Don't mention changes to fields that were already private 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
15037deab3 Consolidate changes to mbedtls_ssl_ticket_setup() 
Describe the change to the cipher mechanism specification. Consolidate that
with the removal of the RNG arguments.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
663b6df522 Generalize section to other function prototype changes 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
6f035a854b Explain why the programs have been removed 
Also fix the indentation of `*`.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
617ee75e98 Copyediting and wording improvements 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
cd5abfe7b4 Move the X.509 and SSL content from the crypto migration guide 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
2607918066 Move PSA transition document to TF-PSA-Crypto 
It went with Mbed TLS in the repository split, but belongs in TF-PSA-Crypto.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
1c2d9a3d74 Migration guide for OID 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
8ba67aef0d Rendered documentation: info about private elements in public headers 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:23 +02:00
Gilles Peskine
0204470f38 Slight improvement to the Doxygen entry point 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-30 13:17:16 +02:00
Manuel Pégourié-Gonnard
921331867d
Merge pull request #10197 from gilles-peskine-arm/ssl_helpers-split_perform_handshake-dev 
Break down mbedtls_test_ssl_perform_handshake
 2025-06-30 09:39:29 +00:00
Manuel Pégourié-Gonnard
42c4bddc07
Merge pull request #10245 from felixc-arm/gcc-15-remove-wnoerror-dev 
[Dev] Turn Wunterminated-string-initialization back into an error
 2025-06-26 07:08:33 +00:00
Gilles Peskine
f68f45c827
Merge pull request #10213 from valeriosetti/issue298-development 
[development] PK: try storing all private RSA keys in PSA (2/3)
 2025-06-25 15:23:27 +00:00
Gilles Peskine
c10c233676 Migration guide: more info about private elements in public headers 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-25 15:39:35 +02:00
Gilles Peskine
2c77014bc0 Copy of text about private identifiers from crypto 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-25 15:39:10 +02:00
minosgalanakis
247ad6e303
Merge pull request #10251 from gilles-peskine-arm/tls-exporter-coverity-202505-dev 
Fix SSL exporter tests
 2025-06-25 10:19:32 +00:00
Valerio Setti
abfa8acb39 framework: update reference 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-25 10:25:03 +02:00
Valerio Setti
e0fb40e6fb library: debug: add error log message in mbedtls_debug_print_psa_rsa() 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-25 10:25:03 +02:00
Valerio Setti
069617fdce library: debug: improve input param check in mbedtls_debug_print_psa_rsa() 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-25 10:25:02 +02:00
Valerio Setti
0c92466bb0 library: debug: rename len as bitlen in mbedtls_debug_print_integer() 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-25 10:25:02 +02:00
Valerio Setti
a18627a625 library: debug: add comment to explain no-code-check comments 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-25 10:25:02 +02:00
Valerio Setti
27eb0141b9 tests: suite_x509parse: rename variable in x509parse_crt() 
- rename result_ext to result_back_comp
- add a comment to describe its purpose

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-25 10:25:02 +02:00
Valerio Setti
210b61111b tests: suite_x509parse: fix indentation in x509parse_crt() 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-25 10:25:02 +02:00
Valerio Setti
1e4423bcfa library: debug: add comment for follow-up in mbedtls_debug_print_psa_rsa() 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-25 10:25:02 +02:00
Valerio Setti
6676f72a5f library: debug: rename mbedtls_debug_print_ec_coord() 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-25 10:25:02 +02:00
Valerio Setti
2747ac1e70 tests: x509parse: fix RSA key in DER certificates 
The previous key was not correct so it could not be imported into PSA
for validation inside the PK module.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-25 10:25:02 +02:00
Valerio Setti
11345e9de3 tests: x509parse: fix return values for invalid RSA keys 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-25 10:25:02 +02:00
Valerio Setti
3388c4acee library: debug: add support for RSA keys in PSA friendly format 
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-25 10:25:02 +02:00
Gilles Peskine
760608d47b Properly initialize SSL endpoint objects 
In some cases, we were calling `mbedtls_test_ssl_endpoint_free()` on an
uninitialized `mbedtls_test_ssl_endpoint` object if the test case failed
early, e.g. due to `psa_crypto_init()` failing. This was largely harmless,
but could have caused weird test results in case of failure, and was flagged
by Coverity.

Use a more systematic style for initializing the stack object as soon as
it's declared.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-24 18:42:04 +02:00
Gilles Peskine
b836d46870 Fix accidentally skipped test assertion 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
 2025-06-24 18:42:04 +02:00
Manuel Pégourié-Gonnard
8419e61328
Merge pull request #10237 from valeriosetti/issue10226 
Remove temporary path fixes introduced in mbedtls#10225
 2025-06-24 07:24:10 +00:00
Valerio Setti
8e8dc11406 scripts: generate_visualc_files: remove temporary Everest path fixes 
Remove temporary path fixes for Everest's headers that were introduced
in #10225. Only the new and correct path of the header files is kept.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
 2025-06-23 21:54:58 +02:00
David Horstmann
8e95ba94c6
Merge pull request #10214 from ariwo17/fix-typo 
Fixed some minor typos in comments.
 2025-06-23 16:33:45 +00:00
Felix Conway
95c48b3b44 Turn Wunterminated-string-initialization back into an error 
Signed-off-by: Felix Conway <felix.conway@arm.com>
 2025-06-23 14:54:33 +01:00
Ronald Cron
415d7eb039
Merge pull request #10242 from Mbed-TLS/mbedtls-release-sync 
Release input synchronisation pr for MbedTLS
 2025-06-23 15:45:20 +02:00