alex/esp-idf
1
0
Fork 0
mirror of https://github.com/espressif/esp-idf.git synced 2025-10-31 21:14:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
38,379 Commits 22 Branches 172 Tags
7e712b6b200af35d0789dfa031752cf56f9b037e
Commit Graph

660 Commits

Author SHA1 Message Date
harshal.patil
9b15189583 change(mbedtls): replace Cache ROM APIs usage with APIs from esp_cache.h 
- Only APIs used in esp_crypto_shared_gdma and aes have been replaced
- Get dcache line size using cache api instead of Kconfig
 2024-03-13 15:22:07 +05:30
harshal.patil
a6012c9e5a feat(mbedtls/aes): add AES peripheral support for esp32p4 2024-03-13 15:22:06 +05:30
harshal.patil
83dd60307f feat(mbedtls/esp_crypto_shared_gdma): support AXI-DMA in the crypto shared gdma layer 
- In case of AXI-DMA, the DMA descriptors need to be 8 bytes aligned
lldesc_t do not satify this condition thus we need to replace it with
dma_descriptor_t (align(4) and align(8)) in esp_crypto_shared_gdma.

- Added new shared gdma start API that supports the dma_descriptor_t
DMA descriptor.

- Added some generic dma descriptor macros and helper functions

- replace lldesc_t with dma_descriptor_t
 2024-03-13 15:22:06 +05:30
harshal.patil
2c570ed53b change(mbedtls/aes): moved esp_aes_internal.h to be a private header 
- Also enable AES-GCM test in the hal crypto test app for all targets
 2024-03-13 15:22:06 +05:30
Mahavir Jain
6dd040a61b Merge branch 'update/update_certs_bundle' into 'master' 
Update esp_crt_bundle certificates

See merge request espressif/esp-idf!29562
 2024-03-13 15:42:31 +08:00
harshal.patil
343a6f47ab fix(mbedtls/aes-gcm): Fix null pointer derefernce coverity reports 
- Also fixed a tcp_transport and https_server report
 2024-03-12 12:36:00 +05:30
wuzhenghui
92849e660e fix(mbedtls): fixing ecdsa's dependence on ecc_mult clock 2024-03-12 10:10:42 +08:00
Espressif BOT
bebdf7b989 change(mbedtls/crt_bundle): Update esp_crt_bundle certificates 2024-03-12 10:00:36 +08:00
nilesh.kale
f6a7fb13cd feat: re enables tests on p4 
This commit re-enables mbedtls and hal/crypto testapos on p4.
 2024-03-05 17:48:05 +08:00
harshal.patil
a21a16f34f ci(mbedtls/gcm): Added test to verify software fallback for non-AES cipher GCM operations 2024-02-23 10:47:30 +05:30
harshal.patil
8977be856d fix(mbedtls/gcm): Add support for software fallback for non-AES ciphers in a GCM operation 
- Even if the config MBEDTLS_HARDWARE_AES is enabled, we now support fallback
to software implementation of GCM operations when non-AES ciphers are used.
 2024-02-23 10:47:30 +05:30
nilesh.kale
aab3f604ec feat(hal/testapps): Added AES and SHA testcases with DMA support 2024-02-09 14:23:06 +05:30
nilesh.kale
8472bcb7d3 feat(mbedtls): updated mbedtls version from 3.5.0 to 3.5.2 
This updates the submodule mbedtls to its latest version 3.5.2.
 2024-02-01 10:43:16 +05:30
Aditya Patwardhan
4dc2ace0b7 fix(esp_hw_support): Update key manager support 
1) Added new Key Manager APIs
    2) Added crypto locking layer for Key Manager
    3) Remove support for deploying known key
    4) Format key manager support
    5) Fix build header error
    6) Updated the key_mgr_types.h file
    7) Added key manager tests
 2024-01-23 10:24:39 +05:30
Marius Vikhammer
a792c24b2a ci(mbedtls): remove duplicated build-rules 2024-01-16 17:14:12 +08:00
Fu Hanxi
9a9b1cd11f ci(ecdsa): migrate from .gitlab/ci/rules.yml to .build-test-rules.yml 2024-01-10 15:29:43 +01:00
Aditya Patwardhan
1220c36f96 Merge branch 'fix/build_failure_when_hardware_gcm_is_disabled' into 'master' 
fix(mbedtls/gcm): Fix build failure when config `MBEDTLS_HARDWARE_GCM` is disabled

See merge request espressif/esp-idf!28149
 2024-01-08 13:35:04 +08:00
Mahavir Jain
7c004fd7f8 Merge branch 'bugfix/fix_dynamic_mbedtls_crash' into 'master' 
mbedtls: Fix enable dynamic mbedtls will occur heap corruption when server support TLS renegotiation

Closes IDF-8529

See merge request espressif/esp-idf!28086
 2024-01-08 11:39:39 +08:00
harshal.patil
8ac4d9ab99 fix(mbedtls/gcm): Avoid using GCM hardware when config MBEDTLS_HARDWARE_GCM is disabled 2024-01-04 12:20:11 +05:30
harshal.patil
c1ed825d3e fix(mbedtls/gcm): Fix build failure when config MBEDTLS_HARDWARE_GCM is disabled 2024-01-04 12:20:10 +05:30
Armando
3c5a4f9e8a ci(p4): added todo jira for disabled tests on p4 2024-01-04 09:36:38 +08:00
Armando
907b876354 ci(p4): temporarily disable failed ci tests on p4 2024-01-04 09:36:06 +08:00
jim
b0b6980421 mbedtls: Fix enable dynamic mbedtls will occur heap corruption when server support TLS renegotiation 2023-12-22 17:23:42 +08:00
Mahavir Jain
01f50ee7f5 refactor: migrate atecc608a_ecdsa example to crypto authlib repository 
- ESP32-WROOM-32SE has been discontinued and marked as NRND
- This change removes all references to ESP32-WROOM-32SE from IDF
- The example has been migrated to esp-cryptoauthlib repository and it
  can be used through the component manager
  (https://components.espressif.com/components/espressif/esp-cryptoauthlib)
 2023-12-22 09:11:41 +05:30
Mahavir Jain
d3afab15bd Merge branch 'update/update_certs_bundle' into 'master' 
Update esp_crt_bundle certificates

See merge request espressif/esp-idf!27932
 2023-12-20 20:36:23 +08:00
Ivan Grokhotkov
a596ca56a8 fix(mbedtls): fix -Wstrict-prototypes warning when compiling on Linux 2023-12-19 13:29:15 +01:00
Espressif BOT
8f0f7f007c change(mbedtls/crt_bundle): Update esp_crt_bundle certificates 2023-12-19 14:40:56 +08:00
Darian
e3191df37a Merge branch 'change/deprecate_legacy_xtensa_include_path' into 'master' 
change(xtensa): Deprecate legacy include paths

Closes IDF-7230

See merge request espressif/esp-idf!26725
 2023-12-05 15:05:29 +08:00
Darian Leung
8c2949a97e change(xtensa): Deprecate ".../xtensa_timer.h" include path 
This commit deprecates the "freertos/xtensa_timer.h" and "xtensa/xtensa_timer.h"
include paths. Users should use "xtensa_timer.h" instead.

- Replace legacy include paths
- Removed some unnecessary includes of "xtensa_timer.h"
- Add warning to compatibility header
 2023-11-30 21:58:52 +08:00
harshal.patil
47821f6299 fix(mbedtls/aes): fix AES interrupt allocation for AES-GCM operations 2023-11-30 11:59:59 +05:30
Mahavir Jain
7505667e7d Merge branch 'bugfix/esp32h2_ecdsa_hardware_k' into 'master' 
fix(esp32h2): program use_hardware_k efuse bit for ECDSA key purpose

Closes IDF-8508 and IDF-8506

See merge request espressif/esp-idf!26918
 2023-11-17 15:10:12 +08:00
Aditya Patwardhan
ae05f3f140 fix(mbedtls): Removed redundant menuconfig entry 2023-11-15 04:59:52 +00:00
Mahavir Jain
fec7fc30f1 fix(api-docs): include in the ECDSA APIs for doxygen build 2023-11-15 09:42:27 +05:30
Mahavir Jain
7bb29086df docs: add ECDSA peripheral chapter for H2/P4 
- Add ECDSA peripheral chapter and instructions to program efuse key block
- Update security guide for ECDSA peripheral mention for device identity
- Link with ESP-TLS guide about using ECDSA peripheral in TLS connection
 2023-11-15 09:42:26 +05:30
Mahavir Jain
f9501f6ea9 fix(ecdsa): remove unused k_mode from the ECDSA HAL/LL API 
For ESP32-H2 case, the hardware k mode is always enforced through
efuse settings (done in startup code).

For ESP32-P4 case, the software k mode is not supported in the peripheral
itself and code was redundant.
 2023-11-15 09:42:26 +05:30
harshal.patil
d3be7bda05 fix(mbedtls): move interrupt allocation during initialization phase 2023-11-06 11:20:53 +05:30
Marius Vikhammer
95703297a6 Merge branch 'ci/psram_config_fix' into 'master' 
ci: fix warnings for invalid kconfig option

See merge request espressif/esp-idf!23250
 2023-11-02 13:44:04 +08:00
Marius Vikhammer
77bb19c49e ci(build): fixed/ignored warnings from unknown symbols in sdkconfig.defaults 2023-11-01 01:14:00 +00:00
Mahavir Jain
5b047057ca feat(mbedtls): add new deprecated cert list and relevant config 
Cert bundle is periodically updated with the upstream Mozilla's NSS
root cert store. Retracted certs are moved to deprecated list now and
an additional config allows to include them in the default bundle. New
config is kept default disabled but can be enabled if one would like
to ensure 100% compatibility w.r.t. cert bundle across IDF minor or
patch releases. In IDF major release the deprecated list shall be reset.
 2023-10-29 12:21:22 +05:30
Espressif BOT
24446bfab1 change(esp_crt_bundle): Update esp_crt_bundle certificates 2023-10-29 12:21:21 +05:30
Mahavir Jain
804ed172dd fix(mbedtls): allow to use built in entropy implementation for linux target 2023-10-26 15:12:42 +05:30
Jiang Guang Ming
e882782f0d feat(mbedtls): add new option CONFIG_MBEDTLS_USE_CRYPTO_ROM_IMPL for mbedtls pytest 2023-10-23 13:10:44 +08:00
Jiang Guang Ming
37ec1cc592 feat(mbedtls): support C2 mbedtls can use crypto algorithm in ROM 2023-10-23 13:10:44 +08:00
Mahavir Jain
dbc33ca7aa Merge branch 'feature/add_intr_priority_config_option' into 'master' 
feat(mbedtls): Add config for interrupt priority in AES and RSA

Closes IDF-7963 and IDF-7964

See merge request espressif/esp-idf!26190
 2023-10-16 11:33:03 +08:00
Mahavir Jain
6b62065b92 Merge branch 'fix/crypto_periphs_use_rcc_atomic_blocks' into 'master' 
Use rcc atomic blocks to enable/reset crypto peripherals

See merge request espressif/esp-idf!25811
 2023-10-13 22:37:58 +08:00
nilesh.kale
cf4a7bb09d feat(mbedtls): Add config for interrupt priority in AES and RSA(MPI) 2023-10-12 11:06:13 +05:30
Mahavir Jain
0c3ed4f540 fix(mbedtls): remove deprecated MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION 
This config has been removed in the upstream mbedTLS starting 3.0
release. Please see mbedTLS changelog for more details.
 2023-10-11 09:32:32 +00:00
Mahavir Jain
e9094cef66 fix(mbedtls): dynamic buffer feature issue with mbedtls 3.5.0 
Set max TLS version in the SSL context during setup phase. Dynamic
buffer feature overrides the `mbedtls_ssl_setup` API and hence
this change is required per upstream 3.5.0 codebase change.
 2023-10-11 09:32:32 +00:00
Mahavir Jain
9ca8f3d45b feat(mbedtls): update to 3.5.0 release 
Changelog:
https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.5.0
 2023-10-11 09:32:32 +00:00
harshal.patil
57d10477da feat(ecdsa): use RCC atomic block to enable/reset the ECDSA peripheral 2023-10-11 14:59:04 +05:30