-
Notifications
You must be signed in to change notification settings - Fork 2.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CID update to RFC 9146 #6264
CID update to RFC 9146 #6264
Commits on Sep 7, 2022
-
The DTLS 1.2 CID specification has been published as RFC 9146. This PR updates the implementation to match the RFC content. Signed-off-by: Hannes Tschofenig <hannes.tschofenig@arm.com>
Configuration menu - View commit details
-
Copy full SHA for fd6cca4 - Browse repository at this point
Copy the full SHA fd6cca4View commit details
Commits on Oct 26, 2022
-
Fix all.sh dependency on DTLS connection ID
Ensure MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT is unset where MBEDTLS_SSL_DTLS_CONNECTION_ID is unset. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
Configuration menu - View commit details
-
Copy full SHA for 1df7070 - Browse repository at this point
Copy the full SHA 1df7070View commit details
Commits on Oct 27, 2022
-
Fix test dependency on DTLS connection ID
Ensure MBEDTLS_SSL_DTLS_CONNECTION_ID and MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT are unset when MBEDTLS_SSL_PROTO_DTLS is not set in tls13-only tests. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
Configuration menu - View commit details
-
Copy full SHA for 4e0fca3 - Browse repository at this point
Copy the full SHA 4e0fca3View commit details
Commits on Nov 14, 2022
-
Merge branch 'development' into rfc9146_2
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
Configuration menu - View commit details
-
Copy full SHA for d384b64 - Browse repository at this point
Copy the full SHA d384b64View commit details
Commits on Nov 25, 2022
-
Changed order of conditions in check_config.h
Signed-off-by: Hannes Tschofenig <hannes.tschofenig@arm.com> Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
Configuration menu - View commit details
-
Copy full SHA for 88e5566 - Browse repository at this point
Copy the full SHA 88e5566View commit details -
Added deprecated keyword to MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT Signed-off-by: Hannes Tschofenig <hannes.tschofenig@arm.com> Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
Configuration menu - View commit details
-
Copy full SHA for e2c46e0 - Browse repository at this point
Copy the full SHA e2c46e0View commit details -
Added deprecated warning in check_config.h
Warns about the removal of the legacy DTLS Connection ID feature in a future version of Mbed TLS. Signed-off-by: Hannes Tschofenig <hannes.tschofenig@arm.com> Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
Configuration menu - View commit details
-
Copy full SHA for b2e6615 - Browse repository at this point
Copy the full SHA b2e6615View commit details -
Added closing SECTION of doxygen markup
Signed-off-by: Hannes Tschofenig <hannes.tschofenig@arm.com> Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
Configuration menu - View commit details
-
Copy full SHA for 6b6b63f - Browse repository at this point
Copy the full SHA 6b6b63fView commit details -
Removed MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH from CID tests in all.sh
Added also extra text. Signed-off-by: Hannes Tschofenig <hannes.tschofenig@arm.com> Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
Configuration menu - View commit details
-
Copy full SHA for df84bb3 - Browse repository at this point
Copy the full SHA df84bb3View commit details -
Removal of redundant DTLS CID test in ssl-opt.sh
Per suggestion from Manuel, I removed this redundant test. Signed-off-by: Hannes Tschofenig <hannes.tschofenig@arm.com> Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
Configuration menu - View commit details
-
Copy full SHA for db01d05 - Browse repository at this point
Copy the full SHA db01d05View commit details -
Fix bug when legacy CID is enabled but not used
When legacy CID is enabled at compile time, but not used at runtime, we would incorrectly skip the sequence number at the beginning of the AAD. There was already two "else" branches for writing the sequence number but none of them was taken in that particular case. Simplify the structure of the code: with TLS 1.2 (we're already in that branch), we always write the sequence number, unless we're using standard CID. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
Configuration menu - View commit details
-
Copy full SHA for 6133684 - Browse repository at this point
Copy the full SHA 6133684View commit details -
Remove redundant tests in ssl-opt.sh
We don't need to have two copies of the test with one of them depending on legacy/compat CID: we can have just one copy, but make sure we run ssl-opt.sh both in a build with standard CID and in a build with legacy/compat - that's the job of all.sh (see next commit). Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
Configuration menu - View commit details
-
Copy full SHA for 5a454f7 - Browse repository at this point
Copy the full SHA 5a454f7View commit details -
Remove redundant component in all.sh
CID is now enabled in the default config (as well as full), so it's already tested in numerous all.sh components, not need to add one for that. We need a component for the legacy/compat option though as it's never enabled in existing components. So, keep that one, but adjust the name and fix a typo in a message. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
Configuration menu - View commit details
-
Copy full SHA for 6a543ba - Browse repository at this point
Copy the full SHA 6a543baView commit details