Age | Commit message (Collapse) | Author |
|
Remove Xoogler arthuri
Test: TreeHugger
Change-Id: I7c3a46e90cf8135a718c42356faa2c68fab1c41b
|
|
Original change: https://android-review.googlesource.com/c/platform/external/mbedtls/+/2933651
Change-Id: I09f6b7e08d6e257705bf5fbf76e698209970138e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
|
|
Bug: 319669529
Merged-In: I1c8d4bfada86b4c17c7748eb3d4d0c48e692a049
Change-Id: If0621367bb8cda0294987461b7aadd472e91c906
|
|
Original change: https://android-review.googlesource.com/c/platform/external/mbedtls/+/2929594
Change-Id: I0b758556f6d599b32493b7c19a91501ce31e3937
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
|
|
Bug: 321982254
Test: N/A
Change-Id: I54cb51e043435a429492ac4751d478e7bb56f2c4
|
|
This project was upgraded with external_updater.
Usage: tools/external_updater/updater.sh update external/mbedtls
For more info, check https://cs.android.com/android/platform/superproject/+/main:tools/external_updater/README.md
Test: TreeHugger
Change-Id: Icd52882cce9edf74c07b69118d280c912d183bf6
|
|
Original change: https://android-review.googlesource.com/c/platform/external/mbedtls/+/2930110
Change-Id: Idb14d8eb1c324a01c8010bb22c91857a529bc963
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
|
|
Bug: 297230913
Test: presubmit
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:788b3d53e2e67e4d82c545765feacd49e7903c4e)
Merged-In: I1c8d4bfada86b4c17c7748eb3d4d0c48e692a049
Change-Id: I1c8d4bfada86b4c17c7748eb3d4d0c48e692a049
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
./scripts/bump_version.sh --version 3.5.1
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Upon further consideration we think that a remote attacker close to the
victim might be able to have precise enough timing information to
exploit the side channel as well. Update the Changelog to reflect this.
Signed-off-by: Janos Follath <janos.follath@arm.com>
|
|
Any timing variance dependant on the output of this function enables a
Bleichenbacher attack. It is extremely difficult to use safely.
In the Marvin attack paper
(https://people.redhat.com/~hkario/marvin/marvin-attack-paper.pdf) the
author suggests that implementations of PKCS 1.5 decryption that don't
include a countermeasure should be considered inherently dangerous.
They suggest that all libraries implement the same countermeasure, as
implementing different countermeasures across libraries enables the
Bleichenbacher attack as well.
This is extremely fragile and therefore we don't implement it. The use
of PKCS 1.5 in Mbed TLS implements the countermeasures recommended in
the TLS standard (7.4.7.1 of RFC 5246) and is not vulnerable.
Add a warning to PKCS 1.5 decryption to warn users about this.
Signed-off-by: Janos Follath <janos.follath@arm.com>
|
|
Signed-off-by: Janos Follath <janos.follath@arm.com>
|
|
Signed-off-by: Janos Follath <janos.follath@arm.com>
|
|
Signed-off-by: Janos Follath <janos.follath@arm.com>
|
|
Signed-off-by: Janos Follath <janos.follath@arm.com>
|
|
Signed-off-by: Janos Follath <janos.follath@arm.com>
|
|
Signed-off-by: Janos Follath <janos.follath@arm.com>
|
|
Signed-off-by: Janos Follath <janos.follath@arm.com>
|
|
Signed-off-by: Janos Follath <janos.follath@arm.com>
|
|
Signed-off-by: Janos Follath <janos.follath@arm.com>
|
|
Signed-off-by: Paul Elliott <paul.elliott@arm.com>
|
|
Co-authored-by: Paul Elliott <62069445+paul-elliott-arm@users.noreply.github.com>
Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
|
|
Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
|
|
Co-authored-by: David Horstmann <david.horstmann@arm.com>
Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
|
|
Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
|
|
Co-authored-by: David Horstmann <david.horstmann@arm.com>
Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
|
|
Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
|
|
Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
|
|
Bug: 297230913
Test: presubmit
Change-Id: I1c8d4bfada86b4c17c7748eb3d4d0c48e692a049
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
./scripts/bump_version.sh --version 3.5.1 --so-crypto 15 --so-x509 6 --so-tls 20
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Use the correct names qualified by MBEDTLS_TARGET_PREFIX.
Signed-off-by: David Horstmann <david.horstmann@arm.com>
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Mbedtls 3.5.0rc0 pr DO NOT MERGE
|
|
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
|
|
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
|
|
Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
|
|
Add MBEDTLS_TARGET_PREFIX to 3rdparty CMake
|
|
gilles-peskine-arm:cmake-fix-3rdparty-custom-config
CMake: fix build with 3rdparty module enabled through a custom config
|