aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2024-05-07Update OWNERS fileHEADmastermainSadaf Ebrahimi
Remove Xoogler arthuri Test: TreeHugger Change-Id: I7c3a46e90cf8135a718c42356faa2c68fab1c41b
2024-02-02Update the owner am: 414321ba5cLei Ju
Original change: https://android-review.googlesource.com/c/platform/external/mbedtls/+/2933651 Change-Id: I09f6b7e08d6e257705bf5fbf76e698209970138e Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
2024-01-29Merge Android 24Q1 Release (ab/11220357)Xin Li
Bug: 319669529 Merged-In: I1c8d4bfada86b4c17c7748eb3d4d0c48e692a049 Change-Id: If0621367bb8cda0294987461b7aadd472e91c906
2024-01-29Upgrade MbedTLS to v3.5.2 am: 8427174532Sadaf Ebrahimi
Original change: https://android-review.googlesource.com/c/platform/external/mbedtls/+/2929594 Change-Id: I0b758556f6d599b32493b7c19a91501ce31e3937 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
2024-01-29Update the ownerLei Ju
Bug: 321982254 Test: N/A Change-Id: I54cb51e043435a429492ac4751d478e7bb56f2c4
2024-01-26Upgrade MbedTLS to v3.5.2Sadaf Ebrahimi
This project was upgraded with external_updater. Usage: tools/external_updater/updater.sh update external/mbedtls For more info, check https://cs.android.com/android/platform/superproject/+/main:tools/external_updater/README.md Test: TreeHugger Change-Id: Icd52882cce9edf74c07b69118d280c912d183bf6
2024-01-26Update METADATA to be consistent with build_info am: bfd41c4ef3Lei Ju
Original change: https://android-review.googlesource.com/c/platform/external/mbedtls/+/2930110 Change-Id: Idb14d8eb1c324a01c8010bb22c91857a529bc963 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
2024-01-26Update METADATA to be consistent with build_infoLei Ju
Bug: 297230913 Test: presubmit (cherry picked from https://googleplex-android-review.googlesource.com/q/commit:788b3d53e2e67e4d82c545765feacd49e7903c4e) Merged-In: I1c8d4bfada86b4c17c7748eb3d4d0c48e692a049 Change-Id: I1c8d4bfada86b4c17c7748eb3d4d0c48e692a049
2024-01-24Update BRANCHES.mdDave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2024-01-22Bump versionDave Rodgman
./scripts/bump_version.sh --version 3.5.1 Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2024-01-22Assemble ChangelogDave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2024-01-22Update Marvin fix Changelog entryJanos Follath
Upon further consideration we think that a remote attacker close to the victim might be able to have precise enough timing information to exploit the side channel as well. Update the Changelog to reflect this. Signed-off-by: Janos Follath <janos.follath@arm.com>
2024-01-22Add warning for PKCS 1.5 decryptionJanos Follath
Any timing variance dependant on the output of this function enables a Bleichenbacher attack. It is extremely difficult to use safely. In the Marvin attack paper (https://people.redhat.com/~hkario/marvin/marvin-attack-paper.pdf) the author suggests that implementations of PKCS 1.5 decryption that don't include a countermeasure should be considered inherently dangerous. They suggest that all libraries implement the same countermeasure, as implementing different countermeasures across libraries enables the Bleichenbacher attack as well. This is extremely fragile and therefore we don't implement it. The use of PKCS 1.5 in Mbed TLS implements the countermeasures recommended in the TLS standard (7.4.7.1 of RFC 5246) and is not vulnerable. Add a warning to PKCS 1.5 decryption to warn users about this. Signed-off-by: Janos Follath <janos.follath@arm.com>
2024-01-22Fix typoJanos Follath
Signed-off-by: Janos Follath <janos.follath@arm.com>
2024-01-22RSA: improve readabilityJanos Follath
Signed-off-by: Janos Follath <janos.follath@arm.com>
2024-01-22RSA: remove unneeded temporariesJanos Follath
Signed-off-by: Janos Follath <janos.follath@arm.com>
2024-01-22RSA: document Montgomery trick in unblindJanos Follath
Signed-off-by: Janos Follath <janos.follath@arm.com>
2024-01-22Fix styleJanos Follath
Signed-off-by: Janos Follath <janos.follath@arm.com>
2024-01-22Make local function staticJanos Follath
Signed-off-by: Janos Follath <janos.follath@arm.com>
2024-01-22Add Changelog for the Marvin attack fixJanos Follath
Signed-off-by: Janos Follath <janos.follath@arm.com>
2024-01-22Extend blinding to RSA result checkJanos Follath
Signed-off-by: Janos Follath <janos.follath@arm.com>
2024-01-22Make RSA unblinding constant flowJanos Follath
Signed-off-by: Janos Follath <janos.follath@arm.com>
2024-01-22Add Changelog for #8687Paul Elliott
Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2024-01-22Add required dependency to the testcaseJonathan Winzig
Co-authored-by: Paul Elliott <62069445+paul-elliott-arm@users.noreply.github.com> Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
2024-01-22Remove unneeded testcaseJonathan Winzig
Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
2024-01-22Update test-data to use SIZE_MAXJonathan Winzig
Co-authored-by: David Horstmann <david.horstmann@arm.com> Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
2024-01-22Add missing newline at the end of test_suite_x509write.dataJonathan Winzig
Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
2024-01-22Update fix to be more platform-independentJonathan Winzig
Co-authored-by: David Horstmann <david.horstmann@arm.com> Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
2024-01-22Fix Issue #8687Jonathan Winzig
Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
2024-01-22Add tests for Issue #8687Jonathan Winzig
Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
2023-12-10Update METADATA to be consistent with build_infoLei Ju
Bug: 297230913 Test: presubmit Change-Id: I1c8d4bfada86b4c17c7748eb3d4d0c48e692a049
2023-11-08Add docs re Everest licenseDave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-11-07Update Changelog with bugfix entryDave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-11-06Update BRANCHESDave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-11-03Bump versionDave Rodgman
./scripts/bump_version.sh --version 3.5.1 --so-crypto 15 --so-x509 6 --so-tls 20 Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-11-03Fix typos in changelogDave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-11-03Fix 3rdparty target names for custom configDavid Horstmann
Use the correct names qualified by MBEDTLS_TARGET_PREFIX. Signed-off-by: David Horstmann <david.horstmann@arm.com>
2023-11-03assemble ChangelogDave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-11-03README improvements to 3rdparty sectionDave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-11-03Update license for p256-mDave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-11-03Add Changelog for licenseDave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-11-03Update documentationDave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-11-03Fix some non-standard headersDave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-11-03Header updatesDave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-10-04Merge pull request #1090 from Mbed-TLS/mbedtls-3.5.0rc0-prminosgalanakis
Mbedtls 3.5.0rc0 pr DO NOT MERGE
2023-10-04Updated BRANCHES.MDMinos Galanakis
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
2023-10-04Re-assemble changelog to add missing item, plus a couple of typo fixes.Dave Rodgman
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-10-04Bump library so-crypto, so-x509, so-tls versions.Minos Galanakis
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
2023-10-04Merge pull request #8273 from davidhorstmann-arm:target-prefix-3rdpartyMinos Galanakis
Add MBEDTLS_TARGET_PREFIX to 3rdparty CMake
2023-10-04Merge pull request #8284 from ↵Minos Galanakis
gilles-peskine-arm:cmake-fix-3rdparty-custom-config CMake: fix build with 3rdparty module enabled through a custom config
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-22 00:51:35 +0000