Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Merge mbed-crypto/development into psa-api-1.0-beta #198

Merged
merged 422 commits into from
Aug 8, 2019
Merged

Merge mbed-crypto/development into psa-api-1.0-beta #198

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
422 commits
Select commit Hold shift + click to select a range
b9ec44f
Remove restriction on value of MBEDTLS_SSL_CID_PADDING_GRANULARITY
May 13, 2019
c37c96a
Add specific SSL error code for unexpected CIDs
May 14, 2019
8367ccc
Allow to configure the stack's behaviour on unexpected CIDs
May 14, 2019
5d12467
Remove warnings about unfinished CID implementation
May 14, 2019
7fefd83
Modify MBEDTLS_SSL_UNEXPECTED_CID_{FAIL|IGNORE} to ignore by default
May 14, 2019
611ac77
Fix mbedtls_ssl_conf_cid() to not depend on macro constant values
May 14, 2019
56f81c7
Improve wording in documentation of MBEDTLS_SSL_CID
May 15, 2019
4cac442
Update references to CID draft to version 5
May 15, 2019
d9d4adb
Improve wording in documentation of mbedtls_ssl_set_cid()
May 15, 2019
08cbc0c
Use uniform spacing in def's of MBEDTLS_SSL_CID_{IN|OUT}_LEN_MAX
May 15, 2019
08cd9db
Use full sentences in Doxygen documentation of mbedtls_ssl_set_cid()
May 15, 2019
5cc145d
Slightly reword documentation of mbedtls_ssl_set_cid()
May 15, 2019
fb034e8
Improve wording of documentation of mbedtls_ssl_get_peer_cid()
May 15, 2019
f1a2808
Fix typo in documentation of `mbedtls_ssl_context::cid_in_use`
May 15, 2019
d1f2035
Slightly reorder CID debug messages during creation of transforms
May 15, 2019
ebcc913
Consistently reference CID draft through name + URL
May 15, 2019
a0e20d0
Rename MBEDTLS_SSL_CID to MBEDTLS_SSL_DTLS_CONNECTION_ID
May 15, 2019
62e5afa
Fix typo in Doxygen documentation of mbedtls_ssl_conf_cid()
May 20, 2019
8c07bee
Rename MBEDTLS_SSL_CID->MBEDTLS_SSL_DTLS_CONNECTION_ID in SSL suite
May 20, 2019
615ef17
Allow passing NULL pointers to mbedtls_ssl_get_peer_cid()
May 22, 2019
6ae14c0
Exemplify ways of calling mbedtls_ssl_get_peer_cid() in ssl_client2
May 22, 2019
1125952
Expand CID to Connection ID in documentation of mbedtls_ssl_conf_cid
May 23, 2019
d5eed42
Use negative-hex format for error codes in ssl_client2/ssl_server2
May 23, 2019
1d433a3
Remove superfluous newline in ssl_client2
May 23, 2019
3279822
Improve readability of ssl_client2/ssl_server2 usage instructions
May 23, 2019
3978d10
Remove superfluous new line in ssl_server2
May 23, 2019
3739e20
Disable Connection ID feature by default
May 23, 2019
8e55b0f
Improve comment in ssl_parse_record_header()
May 23, 2019
92d30f5
Fix indentation in debug message in ssl_tls.c
May 23, 2019
98aaf25
Add bad_cid option UDP proxy to insert unexpected CID records
May 24, 2019
e8d6afd
Add debug line witnessing receipt of unexpected CID
May 24, 2019
d0ac5fa
Insert records with unexpected CID in CID tests in ssl-opt.sh
May 24, 2019
b9355b7
Add description of CID feature to ChangeLog
May 24, 2019
09b8cae
Adapt ssl_server2 to parse DER encoded test CRTs if PEM is disabled
Feb 1, 2019
2900b14
Adapt ssl_client2 to parse DER encoded test CRTs if PEM is disabled
Feb 1, 2019
a0c5ceb
Correct white spaces in ssl_server2 and ssl_client2
Dec 5, 2018
623e7b4
ssl_client2: Skip CA setup if `ca_path` or `ca_file` argument "none"
Mar 5, 2019
8174bdf
ssl_server2: Skip CA setup if `ca_path` or `ca_file` argument "none"
Mar 5, 2019
422d199
Document "none" value for ca_path/ca_file in ssl_client2/ssl_server2
May 1, 2019
e21387e
Add build instructions to generate DER versions of CRTs and keys
Mar 12, 2019
8843c25
Add DER encoded files to git tree
May 17, 2019
58fc28c
Rename server1.der to server1.crt.der
Mar 14, 2019
666f60d
Adapt ChangeLog
Dec 5, 2018
960e588
Document origin of hardcoded certificates in library/certs.c
Mar 12, 2019
91e72c3
ssl-opt.sh: Auto-skip tests that use files if MBEDTLS_FS_IO unset
May 10, 2019
3217c8d
Allow DHM self test to run without MBEDTLS_PEM_PARSE_C
May 10, 2019
a545be2
Add run to all.sh exercising !MBEDTLS_PEM_PARSE_C + !MBEDTLS_FS_IO
May 10, 2019
92b4f81
Use strict syntax to annotate origin of test data in certs.c
May 15, 2019
471ad47
Add new line at the end of test-ca2.key.enc
May 15, 2019
ff552f7
Re-generate library/certs.c from script
May 15, 2019
4cbea4b
Remove heading spaces in tests/data_files/Makefile
May 30, 2019
e35f02e
Update crypto submodule
Jun 3, 2019
12f62fb
Obey bounds of ASN.1 substructures
Feb 12, 2019
6ccfb18
Always return a high-level error code from X.509 module
Feb 12, 2019
d57a3a6
Adapt ChangeLog
Feb 14, 2019
3cddba8
Improve documentation of mbedtls_x509_get_ext()
Feb 11, 2019
3c03a88
Correct placement of ChangeLog entry
Jun 4, 2019
ca6aee4
Merge remote-tracking branch 'public/pr/2641' into HEAD
simonbutcher Jun 4, 2019
150deca
Merge remote-tracking branch 'public/pr/2642' into HEAD
simonbutcher Jun 4, 2019
fe20bea
Merge remote-tracking branch 'public/pr/2643' into HEAD
simonbutcher Jun 4, 2019
a1491fe
Merge remote-tracking branch 'public/pr/2651' into HEAD
simonbutcher Jun 4, 2019
a5c481e
Extend negative testing for X.509 TBS header parsing
Jun 4, 2019
a9ef412
Extend negative testing for X.509 Version parsing
Jun 4, 2019
e7d8f96
Extend negative testing for X.509 Serial number parsing
Jun 4, 2019
a328fff
Extend negative testing for X.509 AlgorithmIdentifier parsing
Feb 12, 2019
5e2cf38
Extend negative testing for X.509 Issuer parsing
Feb 12, 2019
18459d4
Extend negative testing for X.509 Validity parsing
Feb 13, 2019
28ae6b1
Extend negative testing for X.509 Subject parsing
Feb 13, 2019
bb955e5
Extend negative testing for X.509 SubjectPublicKeyInfo parsing
Jun 4, 2019
9f06b50
Extend negative testing for X.509 IssuerID parsing
Jun 4, 2019
be3850a
Extend negative testing for X.509 SubjectID parsing
Jun 4, 2019
05987e3
Extend negative testing for X.509 v3 Extension parsing
Jun 4, 2019
5f88a77
Extend negative testing for X.509 SignatureAlgorithm parsing
Jun 4, 2019
44199b6
Extend negative testing for X.509 Signature parsing
Feb 14, 2019
2389d16
Shorten X.509 CRT parsing test names
Feb 14, 2019
0f5acc1
Use ASN.1 NULL TLVs when testing invalid tags
Jun 4, 2019
19db19e
Fix test case name formatting in X.509 parsing suite
Mar 13, 2019
31af3b8
Fix non-DER length encoding in two X.509 CRT parsing tests
Feb 15, 2019
60dd6fc
Fix test dependencies in X.509 CRT parsing suite
Feb 15, 2019
764fbdf
Always use the same X.509 alg structure inside and outside of TBS
Jun 4, 2019
7ca07e3
Improve name of X.509 CRT parsing test
Mar 13, 2019
d51d485
Add negative X.509 parsing tests for IssuerID/SubjectID in v1 CRT
Mar 13, 2019
04b10c0
Add negative X.509 parsing tests for v3Ext in v1/v2 CRT
Mar 13, 2019
8671e81
Improve X.509 CRT parsing test names
Mar 14, 2019
7717c41
Add X.509 CRT parsing test for mixed time-encodings
Mar 14, 2019
7654161
psa: Add NV seed as an entropy source when needed
Patater Jun 4, 2019
c6f874b
Show removed symbols in abi check
dgreen-arm Jun 5, 2019
2de07f1
ssl: Don't access non-existent encrypt_then_mac field
Patater Jun 5, 2019
6b1683d
all.sh: Perform targeted EtM tests for MAC-less configs
Patater Jun 5, 2019
cad1223
Merge pull request #138 from Patater/add-entropy-injection-source
Patater Jun 5, 2019
ab11889
test: Check empty buffer decryption for chachapoly
Patater Jun 5, 2019
2353b54
test: Remove redundant 0-byte decryption test
Patater Jun 5, 2019
bb16d0c
Merge remote-tracking branch 'origin/pr/2654' into development
Patater Jun 6, 2019
048df33
Merge remote-tracking branch 'origin/pr/2679' into development
Patater Jun 6, 2019
aa4d152
SSL reproducible test mode
catenacyber Jun 6, 2019
d58a00d
psa: Avoid use of relative include paths
Patater Jun 7, 2019
5ab80ef
test: Check empty buffer decryption for chachapoly
Patater Jun 5, 2019
b013146
test: Remove redundant 0-byte decryption test
Patater Jun 5, 2019
3d94e34
Merge pull request #142 from Patater/no-relative-includes
Patater Jun 7, 2019
47f2de1
Merge pull request #143 from Patater/chachapoly-empty-buf-test
Patater Jun 7, 2019
e1ae731
Update crypto submodule to 1.1.0d2
Patater Jun 7, 2019
986b6f2
Style fixes
catenacyber Jun 7, 2019
95f5cbc
Don't systematically rebuild programs
gilles-peskine-arm Jun 7, 2019
5d26e7c
Pass -m32 to the linker as well
gilles-peskine-arm Jun 7, 2019
3ca5085
Code review
catenacyber Jun 7, 2019
a3daa21
Merge remote-tracking branch 'origin/pr/2678' into development
Patater Jun 10, 2019
7c9d724
Option used added in string
catenacyber Jun 11, 2019
0ff84fb
Only warns if MBEDTLS_HAVE_TIME
catenacyber Jun 11, 2019
f91b372
More clarity for ifdef orders
catenacyber Jun 11, 2019
12e85de
Adds missing ret definition
catenacyber Jun 11, 2019
d2235f2
Commit to C90 style
catenacyber Jun 11, 2019
154feb2
comment alignment
catenacyber Jun 11, 2019
c5de462
Making version features easily ROM-able when using Arm C compiler.
mate-varga-arm Jun 12, 2019
961e677
UDP proxy: Don't attempt to dissect dgram into records when dropping
Jun 4, 2019
61cf9e3
Fix documentation of X.509 parsing test
Jun 13, 2019
e7655df
Make test suites compatible with #include <assert.h>
gilles-peskine-arm Jun 7, 2019
9e23bea
Make test suites compatible with #include <assert.h>
gilles-peskine-arm Jun 7, 2019
c7ad122
Make it easier to define MBEDTLS_PARAM_FAILED as assert
gilles-peskine-arm Jun 13, 2019
3abbced
Remove mbedtls_param_failed from programs
gilles-peskine-arm Jun 12, 2019
e1b02df
Merge remote-tracking branch 'origin/pr/2260' into development
Patater Jun 14, 2019
6b5dc68
Merge remote-tracking branch 'origin/pr/2430' into development
Patater Jun 14, 2019
39a8a26
Merge remote-tracking branch 'origin/pr/2661' into development
Patater Jun 14, 2019
d042198
Merge remote-tracking branch 'origin/pr/2675' into development
Patater Jun 14, 2019
3acb5eb
Merge remote-tracking branch 'origin/pr/2694' into development
Patater Jun 14, 2019
86268e1
Merge pull request #148 from ARMmbed/dev/gilles-peskine-arm/check_par…
Patater Jun 14, 2019
adcde5e
Add all.sh component that exercises invalid_param checks
gilles-peskine-arm Jun 12, 2019
3097a71
Update crypto submodule
gilles-peskine-arm Jun 14, 2019
7af080a
Merge remote-tracking branch 'origin/pr/2442' into development
Patater Jun 14, 2019
c54ee93
Merge remote-tracking branch 'origin/pr/2443' into development
Patater Jun 14, 2019
7846299
Fix misuse of signed ints in the HAVEGE module
gilles-peskine-arm Jun 7, 2019
f3820e3
Fix misuse of signed ints in the HAVEGE module
gilles-peskine-arm Jun 7, 2019
738153a
Adding usage and removing dummy random
catenacyber Jun 18, 2019
b94cf82
unconditional mbedtls_ssl_conf_rng
catenacyber Jun 19, 2019
a152e42
net_sockets: Fix typo in net_would_block()
Patater May 29, 2019
a180926
timing: Remove redundant include file
Patater May 30, 2019
32eb58f
platform: Include stdarg.h where needed
Patater May 30, 2019
4f4af6e
windows: Fix Release x64 configuration
Patater Jun 3, 2019
d431104
ssl_tls: Enable Suite B with subset of ECP curves
Patater Jun 3, 2019
befe1e1
programs: Make `make clean` clean all programs always
Patater Jun 3, 2019
9e5bcbd
Remove unused functions
gilles-peskine-arm Jun 19, 2019
54b8eab
Merge pull request #153 from gilles-peskine-arm/remove_unused_functio…
Patater Jun 20, 2019
aada0c7
Merge remote-tracking branch 'origin/pr/2053' into development
Patater Jun 21, 2019
ca4e4a8
Merge remote-tracking branch 'origin/pr/2614' into development
Patater Jun 21, 2019
8d936e8
Merge remote-tracking branch 'origin/pr/2681' into development
Patater Jun 21, 2019
e2d5b9e
Merge remote-tracking branch 'origin/pr/2690' into development
Patater Jun 21, 2019
fd0f654
Merge remote-tracking branch 'origin/pr/2697' into development
Patater Jun 21, 2019
66b7edb
Merge remote-tracking branch 'origin/pr/2711' into development
Patater Jun 21, 2019
7233352
Fuzz testing
catenacyber May 3, 2018
9c7b698
Fuzz performance test without entropy
catenacyber May 29, 2018
f049304
Removes warnings for unused parameters
catenacyber Jun 4, 2019
2b7c9a2
Use rand instead of srand
catenacyber Jun 4, 2019
3abe15b
Fixes dummy leak in fuzz driver
catenacyber Jun 4, 2019
dbc0db9
include bignum.h from x509_crt.h
catenacyber May 28, 2018
0863382
Using custom time
catenacyber Jun 4, 2019
499c735
Factoring code
catenacyber Jun 4, 2019
801194b
Adds a ChangeLog entry
catenacyber Jun 4, 2019
8149627
Fuzz README and direct compilation
catenacyber Jun 4, 2019
03e87d9
Makefile support 1
catenacyber Jun 4, 2019
c32fd24
Protecting client/server fuzz targts with ifdefs
catenacyber Jun 6, 2019
cd6cd81
copyediting README.md
catenacyber Jun 6, 2019
a8210b3
Also clean the fuzz subdirectory
catenacyber Jun 7, 2019
7fff1fb
Ignore compiled object files and executables
catenacyber Jun 7, 2019
661d725
Deref pointer when using sizeof in x509_get_other_name
ekse Jun 23, 2019
bc2adf9
Fix minor type choice inconsistency
gilles-peskine-arm Jun 24, 2019
33908e8
update the test script
May 29, 2019
5075f4d
Update the test encoding to support python3
Jun 3, 2019
64e4595
Make the script portable to both pythons
Jun 3, 2019
b220489
Refactor get_byte function
Jun 3, 2019
72662a4
Refactor receive_uint32()
Jun 25, 2019
3278081
Remove use of CMAKE_SOURCE_DIR
ashesman Apr 29, 2019
33b6a99
ChangeLog: Enable builds as a CMake subproject
Patater Jun 18, 2019
41421c4
README: Enable builds as a CMake subproject
Patater Jun 20, 2019
ab83fdf
CMake: Add a subdirectory build regression test
Patater Jun 20, 2019
c2d56a4
Allow declarations after statements
gilles-peskine-arm Jun 25, 2019
cd2c127
Adds LDFLAGS fsanitize=address
catenacyber Jun 25, 2019
adc23e6
Adding ifdefs to avoid warnings for unused globals
catenacyber Jun 25, 2019
1c582c3
Restore tests/fuzz/Makefile after in-tree cmake
catenacyber Jun 25, 2019
cf8fdfd
Documentation for corpus generation
catenacyber Jun 25, 2019
d85a7e9
Remove use of CMAKE_SOURCE_DIR
ashesman Apr 29, 2019
77dd25d
tests: Enable building with add_subdirectory()
Patater Jun 20, 2019
e8451f2
CMake: Add a subdirectory build regression test
Patater Jun 20, 2019
0291cb7
Add an alternarive full build component to all.sh
k-stachowiak Jun 26, 2019
0069ab7
ChangeLog: Add ChangeLog entry for #2681
Patater Jun 24, 2019
48f35f5
Move fuzz directory to programs
catenacyber Jun 27, 2019
5559b31
Disable optimizations for the full+make+gcc all.sh component
k-stachowiak Jun 27, 2019
5dece6d
Restore programs/fuzz/Makefile after in-tree cmake
catenacyber Jun 27, 2019
8646a92
Merge pull request #156 from k-stachowiak/add-basic-build-to-all-sh
Patater Jun 28, 2019
daab28a
checks MBEDTLS_PEM_PARSE_C
catenacyber Jun 28, 2019
e4e2d3a
Add docker-based test scripts
pkolbus Dec 24, 2018
4225b1a
Clean up file prologue comments
pkolbus May 31, 2019
49c2435
Change Docker container to bionic
pkolbus Jun 1, 2019
be54358
Dockerfile: apt -> apt-get
pkolbus Jun 29, 2019
718c74c
Improve compatibility with firewalled networks
pkolbus Jun 29, 2019
ee6f9b2
Merge pull request #152 from Patater/cmake-subproject-fix
Patater Jul 2, 2019
a4b94c4
Update Mbed Crypto to contain mbed-crypto#152
Patater Jun 18, 2019
5131f77
Fix parsing issue when int parameter is in base 16
Jun 25, 2019
85aba47
Consistently spell -Wextra
gilles-peskine-arm Jul 2, 2019
1e65771
Remove redundant compiler flag
gilles-peskine-arm Jul 2, 2019
be51716
Warn if VLAs are used
gilles-peskine-arm Jul 2, 2019
6e70eb2
tests: Limit each log to 10 GiB
Patater Jul 3, 2019
653a4a2
Prevent dead code warning
k-stachowiak Jul 3, 2019
6aa32cc
Allow running /somewhere/else/path/to/abi_check.py
gilles-peskine-arm Jul 4, 2019
b6ce234
Document how to build the typical argument for -s
gilles-peskine-arm Jul 4, 2019
3e2da4a
Record the commits that were compared
gilles-peskine-arm Jul 4, 2019
ada828f
Split _abi_compliance_command into smaller functions
gilles-peskine-arm Jul 4, 2019
7dfcfce
Use the docstring in the command line help
gilles-peskine-arm Jul 4, 2019
55b49ee
Allow TODO in code
gilles-peskine-arm Jul 4, 2019
e78cd62
Merge pull request #159 from k-stachowiak/IOTCRYPT-474-prevent-dead-c…
Patater Jul 5, 2019
0f220ec
Test with MBEDTLS_ECP_RESTARTABLE
Patater Jul 5, 2019
b6229e3
Merge pull request #149 from gilles-peskine-arm/havege-asan-crypto
Patater Jul 5, 2019
06e752b
Update crypto submodule to a revision with the HAVEGE header changes
gilles-peskine-arm Jun 14, 2019
482a479
Merge remote-tracking branch 'origin/pr/2699' into development
Patater Jul 5, 2019
702c659
Add a linker flag to enable gcov in basic-build-test.sh
catenacyber Jul 9, 2019
3e408d5
Fixes warnings from MSVC
catenacyber Jul 9, 2019
2321945
Syntax fix
catenacyber Jul 10, 2019
b348a3b
Merge remote-tracking branch 'origin/pr/2314' into development
Patater Jul 9, 2019
f473fa8
Merge remote-tracking branch 'origin/pr/2455' into development
Patater Jul 9, 2019
6d77d20
Merge remote-tracking branch 'origin/pr/2632' into development
Patater Jul 9, 2019
0b8b5e3
Merge remote-tracking branch 'origin/pr/2706' into development
Patater Jul 9, 2019
150d774
Merge remote-tracking branch 'origin/pr/2719' into development
Patater Jul 9, 2019
58259fe
Merge remote-tracking branch 'origin/pr/2721' into development
Patater Jul 9, 2019
01604a3
Merge remote-tracking branch 'origin/pr/2726' into development
Patater Jul 9, 2019
98c234f
Merge remote-tracking branch 'origin/pr/2729' into development
Patater Jul 9, 2019
5db519b
Merge remote-tracking branch 'origin/pr/2730' into development
Patater Jul 9, 2019
74a87f8
Merge remote-tracking branch 'origin/pr/2738' into development
Patater Jul 9, 2019
b3d3127
Style corrections
catenacyber Jul 10, 2019
a82fdd4
Removing space before opening parenthesis
catenacyber Jul 10, 2019
42a2ce8
No booleans and import config
catenacyber Jul 10, 2019
2c8f909
Correct version number for 1.1.0 format (formerly 1.0.1)
gilles-peskine-arm Jul 10, 2019
a864db0
Do not build fuzz on windows
catenacyber Jul 10, 2019
072959f
Merge remote-tracking branch 'origin/pr/1622' into development
Patater Jul 11, 2019
8306508
Merge remote-tracking branch 'origin/pr/2660' into development
Patater Jul 11, 2019
ff645d9
Merge remote-tracking branch 'origin/pr/2727' into development
Patater Jul 11, 2019
c49fbbf
Use mbedtls-based path for includes
Patater Jul 4, 2019
8045cfb
Enable ALT implementations of ripemd160
Patater Jul 4, 2019
b8e4ae1
Remove certs.h
Patater Jul 4, 2019
3a0f08d
Revert "cpp_dummy_build: Remove dependency on compat-1.3.h"
Patater Jun 27, 2019
f7dca86
Allow building with the -Wunused flag
Patater Jun 27, 2019
9565a97
Merge pull request #173 from Patater/prep-remove-crypto-from-tls
Patater Jul 19, 2019
bda5a21
Add psa_trusted_storage_linux persistent storage support for v1.0.0 APIs
simonqhughes Jul 10, 2019
b992313
Merge pull request #180 from simonqhughes/feature-psa-storage
Patater Jul 24, 2019
7e36765
Add CMake option for explicitly link library to trusted_storage (#2)
Jul 15, 2019
6763fe4
Change LINK_WITH_TRUSTED_STORAGE option to OFF
Jul 24, 2019
456674d
Merge pull request #186 from simonqhughes/psa-storage-and-cmake-fix
Patater Jul 24, 2019
aad3dab
Merge pull request #165 from gilles-peskine-arm/storage_spec-1.1.0-re…
Patater Jul 30, 2019
8dd1690
Merge remote-tracking branch 'tls/development' into development
Patater Jul 22, 2019
fe93bc4
Merge pull request #187 from Patater/tls-development-20190722
Patater Jul 31, 2019
72c8c5b
Merge remote-tracking branch 'upstream-crypto/development' into psa-a…
gilles-peskine-arm Jul 31, 2019
8b66389
Adjust secure element code to the new ITS interface
gilles-peskine-arm Jul 31, 2019
5386f6b
Fix PSA init/deinit in mbedtls_xxx tests when using PSA
gilles-peskine-arm Aug 1, 2019
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
11 changes: 11 additions & 0 deletions .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -31,6 +31,17 @@ massif-*
# Python build artifacts:
*.pyc

# CMake generates *.dir/ folders for in-tree builds (used by MSVC projects), ignore all of those:
*.dir/

# Visual Studio artifacts
/visualc/VS2010/.localhistory/
/visualc/VS2010/.vs/
/visualc/VS2010/Debug/
/visualc/VS2010/Release/
/visualc/VS2010/*.vcxproj.filters
/visualc/VS2010/*.vcxproj.user

# Generated documentation:
/apidoc

Expand Down
26 changes: 16 additions & 10 deletions CMakeLists.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,9 @@ else()
project("mbed TLS" C)
endif()

# Set the project root directory.
set(MBEDTLS_DIR ${CMAKE_CURRENT_SOURCE_DIR})

option(ENABLE_PROGRAMS "Build mbed TLS programs." ON)

option(UNSAFE_BUILD "Allow unsafe builds. These builds ARE NOT SECURE." OFF)
Expand Down Expand Up @@ -121,7 +124,10 @@ if(CMAKE_COMPILER_IS_GNU)
# note: starting with CMake 2.8 we could use CMAKE_C_COMPILER_VERSION
execute_process(COMMAND ${CMAKE_C_COMPILER} -dumpversion
OUTPUT_VARIABLE GCC_VERSION)
set(CMAKE_C_FLAGS "${CMAKE_C_FLAGS} -Wall -Wextra -W -Wdeclaration-after-statement -Wwrite-strings")
set(CMAKE_C_FLAGS "${CMAKE_C_FLAGS} -Wall -Wextra -Wwrite-strings")
if (GCC_VERSION VERSION_GREATER 4.3 OR GCC_VERSION VERSION_EQUAL 4.3)
set(CMAKE_C_FLAGS "${CMAKE_C_FLAGS} -Wvla")
endif()
if (GCC_VERSION VERSION_GREATER 4.5 OR GCC_VERSION VERSION_EQUAL 4.5)
set(CMAKE_C_FLAGS "${CMAKE_C_FLAGS} -Wlogical-op")
endif()
Expand All @@ -138,7 +144,7 @@ if(CMAKE_COMPILER_IS_GNU)
endif(CMAKE_COMPILER_IS_GNU)

if(CMAKE_COMPILER_IS_CLANG)
set(CMAKE_C_FLAGS "${CMAKE_C_FLAGS} -Wall -Wextra -W -Wdeclaration-after-statement -Wwrite-strings -Wpointer-arith -Wimplicit-fallthrough -Wshadow")
set(CMAKE_C_FLAGS "${CMAKE_C_FLAGS} -Wall -Wextra -Wwrite-strings -Wpointer-arith -Wimplicit-fallthrough -Wshadow -Wvla")
set(CMAKE_C_FLAGS_RELEASE "-O2")
set(CMAKE_C_FLAGS_DEBUG "-O0 -g3")
set(CMAKE_C_FLAGS_COVERAGE "-O0 -g3 --coverage")
Expand Down Expand Up @@ -216,13 +222,13 @@ if(ENABLE_TESTING)
COMMAND mv DartConfiguration.tcl.bak DartConfiguration.tcl
)
endif(UNIX)
endif()

# Make scripts needed for testing available in an out-of-source build.
if (NOT ${CMAKE_CURRENT_BINARY_DIR} STREQUAL ${CMAKE_CURRENT_SOURCE_DIR})
link_to_source(scripts)
# Copy (don't link) DartConfiguration.tcl, needed for memcheck, to
# keep things simple with the sed commands in the memcheck target.
configure_file(${CMAKE_CURRENT_SOURCE_DIR}/DartConfiguration.tcl
${CMAKE_CURRENT_BINARY_DIR}/DartConfiguration.tcl COPYONLY)
# Make scripts needed for testing available in an out-of-source build.
if (NOT ${CMAKE_CURRENT_BINARY_DIR} STREQUAL ${CMAKE_CURRENT_SOURCE_DIR})
link_to_source(scripts)
# Copy (don't link) DartConfiguration.tcl, needed for memcheck, to
# keep things simple with the sed commands in the memcheck target.
configure_file(${CMAKE_CURRENT_SOURCE_DIR}/DartConfiguration.tcl
${CMAKE_CURRENT_BINARY_DIR}/DartConfiguration.tcl COPYONLY)
endif()
endif()
1 change: 0 additions & 1 deletion Makefile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,3 @@

DESTDIR=/usr/local
PREFIX=mbedtls_

Expand Down
2 changes: 1 addition & 1 deletion configs/config-no-entropy.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -81,6 +81,6 @@
/* Miscellaneous options */
#define MBEDTLS_AES_ROM_TABLES

#include "check_config.h"
#include "mbedtls/check_config.h"

#endif /* MBEDTLS_CONFIG_H */
2 changes: 1 addition & 1 deletion configs/config-psa-crypto.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1971,6 +1971,6 @@
#include MBEDTLS_USER_CONFIG_FILE
#endif

#include "check_config.h"
#include "mbedtls/check_config.h"

#endif /* MBEDTLS_CONFIG_H */
12 changes: 6 additions & 6 deletions docs/architecture/mbed-crypto-storage-specification.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -161,21 +161,21 @@ The library integration and the PSA platform integration use different sets of f

It would simplify things to always have a 32-bit owner, with a nonzero value, and thus reserve the range 0–0xffffffff for internal library use.

Mbed Crypto 1.0.1
Mbed Crypto 1.1.0
-----------------

Tags: TBD
Tags: mbedcrypto-1.1.0

Released in May 2019. <br>
Released in early June 2019. <br>
Integrated in Mbed OS 5.13.

Identical to [1.0.0](#mbed-crypto-1.0.0) except for some changes in the key file format.

### Key file format for 1.0.1
### Key file format for 1.1.0

The key file format is identical to [1.0.0](#key-file-format-for-1.0.0), except for the following changes:

* A new policy field, marked as [NEW:1.0.1] below.
* A new policy field, marked as [NEW:1.1.0] below.
* The encoding of key types, algorithms and key material has changed, therefore the storage format is not compatible (despite using the same value in the version field so far).

A self-contained description of the file layout follows.
Expand All @@ -189,7 +189,7 @@ The layout of a key file is:
* type (4 bytes): `psa_key_type_t` value
* policy usage flags (4 bytes): `psa_key_usage_t` value
* policy usage algorithm (4 bytes): `psa_algorithm_t` value
* policy enrollment algorithm (4 bytes): `psa_algorithm_t` value [NEW:1.0.1]
* policy enrollment algorithm (4 bytes): `psa_algorithm_t` value [NEW:1.1.0]
* key material length (4 bytes)
* key material: output of `psa_export_key`
* Any trailing data is rejected on load.
Expand Down
2 changes: 1 addition & 1 deletion include/CMakeLists.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ if(INSTALL_MBEDTLS_HEADERS)
endif(INSTALL_MBEDTLS_HEADERS)

# Make config.h available in an out-of-source build.
if (NOT ${CMAKE_CURRENT_BINARY_DIR} STREQUAL ${CMAKE_CURRENT_SOURCE_DIR})
if (ENABLE_TESTING AND NOT ${CMAKE_CURRENT_BINARY_DIR} STREQUAL ${CMAKE_CURRENT_SOURCE_DIR})
link_to_source(mbedtls)
link_to_source(psa)
endif()
2 changes: 1 addition & 1 deletion include/mbedtls/aes.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -42,7 +42,7 @@
#define MBEDTLS_AES_H

#if !defined(MBEDTLS_CONFIG_FILE)
#include "config.h"
#include "mbedtls/config.h"
#else
#include MBEDTLS_CONFIG_FILE
#endif
Expand Down
4 changes: 2 additions & 2 deletions include/mbedtls/aesni.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -28,12 +28,12 @@
#define MBEDTLS_AESNI_H

#if !defined(MBEDTLS_CONFIG_FILE)
#include "config.h"
#include "mbedtls/config.h"
#else
#include MBEDTLS_CONFIG_FILE
#endif

#include "aes.h"
#include "mbedtls/aes.h"

#define MBEDTLS_AESNI_AES 0x02000000u
#define MBEDTLS_AESNI_CLMUL 0x00000002u
Expand Down
2 changes: 1 addition & 1 deletion include/mbedtls/arc4.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,7 @@
#define MBEDTLS_ARC4_H

#if !defined(MBEDTLS_CONFIG_FILE)
#include "config.h"
#include "mbedtls/config.h"
#else
#include MBEDTLS_CONFIG_FILE
#endif
Expand Down
4 changes: 2 additions & 2 deletions include/mbedtls/aria.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -31,15 +31,15 @@
#define MBEDTLS_ARIA_H

#if !defined(MBEDTLS_CONFIG_FILE)
#include "config.h"
#include "mbedtls/config.h"
#else
#include MBEDTLS_CONFIG_FILE
#endif

#include <stddef.h>
#include <stdint.h>

#include "platform_util.h"
#include "mbedtls/platform_util.h"

#define MBEDTLS_ARIA_ENCRYPT 1 /**< ARIA encryption. */
#define MBEDTLS_ARIA_DECRYPT 0 /**< ARIA decryption. */
Expand Down
4 changes: 2 additions & 2 deletions include/mbedtls/asn1.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,15 +25,15 @@
#define MBEDTLS_ASN1_H

#if !defined(MBEDTLS_CONFIG_FILE)
#include "config.h"
#include "mbedtls/config.h"
#else
#include MBEDTLS_CONFIG_FILE
#endif

#include <stddef.h>

#if defined(MBEDTLS_BIGNUM_C)
#include "bignum.h"
#include "mbedtls/bignum.h"
#endif

/**
Expand Down
4 changes: 2 additions & 2 deletions include/mbedtls/asn1write.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,12 +25,12 @@
#define MBEDTLS_ASN1_WRITE_H

#if !defined(MBEDTLS_CONFIG_FILE)
#include "config.h"
#include "mbedtls/config.h"
#else
#include MBEDTLS_CONFIG_FILE
#endif

#include "asn1.h"
#include "mbedtls/asn1.h"

#define MBEDTLS_ASN1_CHK_ADD(g, f) \
do \
Expand Down
2 changes: 1 addition & 1 deletion include/mbedtls/base64.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,7 @@
#define MBEDTLS_BASE64_H

#if !defined(MBEDTLS_CONFIG_FILE)
#include "config.h"
#include "mbedtls/config.h"
#else
#include MBEDTLS_CONFIG_FILE
#endif
Expand Down
2 changes: 1 addition & 1 deletion include/mbedtls/bignum.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,7 @@
#define MBEDTLS_BIGNUM_H

#if !defined(MBEDTLS_CONFIG_FILE)
#include "config.h"
#include "mbedtls/config.h"
#else
#include MBEDTLS_CONFIG_FILE
#endif
Expand Down
4 changes: 2 additions & 2 deletions include/mbedtls/blowfish.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,15 +25,15 @@
#define MBEDTLS_BLOWFISH_H

#if !defined(MBEDTLS_CONFIG_FILE)
#include "config.h"
#include "mbedtls/config.h"
#else
#include MBEDTLS_CONFIG_FILE
#endif

#include <stddef.h>
#include <stdint.h>

#include "platform_util.h"
#include "mbedtls/platform_util.h"

#define MBEDTLS_BLOWFISH_ENCRYPT 1
#define MBEDTLS_BLOWFISH_DECRYPT 0
Expand Down
4 changes: 2 additions & 2 deletions include/mbedtls/bn_mul.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -39,12 +39,12 @@
#define MBEDTLS_BN_MUL_H

#if !defined(MBEDTLS_CONFIG_FILE)
#include "config.h"
#include "mbedtls/config.h"
#else
#include MBEDTLS_CONFIG_FILE
#endif

#include "bignum.h"
#include "mbedtls/bignum.h"

#if defined(MBEDTLS_HAVE_ASM)

Expand Down
4 changes: 2 additions & 2 deletions include/mbedtls/camellia.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,15 +25,15 @@
#define MBEDTLS_CAMELLIA_H

#if !defined(MBEDTLS_CONFIG_FILE)
#include "config.h"
#include "mbedtls/config.h"
#else
#include MBEDTLS_CONFIG_FILE
#endif

#include <stddef.h>
#include <stdint.h>

#include "platform_util.h"
#include "mbedtls/platform_util.h"

#define MBEDTLS_CAMELLIA_ENCRYPT 1
#define MBEDTLS_CAMELLIA_DECRYPT 0
Expand Down
4 changes: 2 additions & 2 deletions include/mbedtls/ccm.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -50,12 +50,12 @@
#define MBEDTLS_CCM_H

#if !defined(MBEDTLS_CONFIG_FILE)
#include "config.h"
#include "mbedtls/config.h"
#else
#include MBEDTLS_CONFIG_FILE
#endif

#include "cipher.h"
#include "mbedtls/cipher.h"

#define MBEDTLS_ERR_CCM_BAD_INPUT -0x000D /**< Bad input parameters to the function. */
#define MBEDTLS_ERR_CCM_AUTH_FAILED -0x000F /**< Authenticated decryption failed. */
Expand Down
Loading