esp-idf

mirror of https://github.com/espressif/esp-idf.git synced 2025-08-12 13:27:36 +00:00

Author	SHA1	Message	Date
hrushikesh.bhosale	5928a87aa7	feat(mbedtls): Add configuration to control dynamic buffer strategy in mbedtls Problem: 1. In low-memory scenarios, the dynamic buffer feature can fail due to memory fragmentation. 2. It requires a contiguous 16KB heap chunk, but continuous allocation and deallocation of the RX buffer can lead to fragmentation. 3. If another component allocates memory between these operations, it can break up the available 16KB block, causing allocation failure. Solution: 1. Introduce configurable strategy for using dynamic buffers in TLS connections. 2. For example, convert RX buffers to static after the TLS handshake. 3. Allow users to select the strategy via a new field in the esp_http_client_cfg_t structure. 4. The strategy can be controlled independently for each TLS session.	2025-06-05 12:43:47 +05:30
Ashish Sharma	415e0f3c86	feat(mbedtls): add support for dynamic buffer for TLS1.3 Closes https://github.com/espressif/esp-idf/issues/15448	2025-04-24 12:05:36 +08:00
harshal.patil	3957e59f1a	feat(mbedtls/esp_crt_bundle): Move dummy cert to .rodata to save 408B from dram Co-authored-by: Hanno <h.binder@web.de>	2024-10-16 16:21:28 +05:30
Mahavir Jain	90290507fb	fix(mbedtls): Build issue in dynamic buffer feature Fix build issue in mbedTLS dynamic buffer feature with `CONFIG_MBEDTLS_DHM_C` enabled case. Also added a build configuration for the test coverage. Closes https://github.com/espressif/esp-idf/issues/11770	2023-06-29 13:30:30 +05:30
Laukik Hase	d7eb2c7b4e	mbedtls: `MBEDTLS_PRIVATE` & `MBEDTLS_ALLOW_PRIVATE_ACCESS`-related cleanup	2022-09-29 10:13:14 +05:30
Li Jingyi	fa3cbf9162	fix(mbedtls): fix ssl server memory leak when enable mbedtls dynamic buffer function	2022-05-09 13:56:20 +00:00
Aditya Patwardhan	3b71bd7326	mbedtls-3.0: Fixed ESP32 build issues - Added MBEDLTS_PRIVATE(...) wherever necessary - For functions like mbedtls_pk_parse_key(...), it is necessary to pass the RNG function pointers as parameter. Solved for dependent components: wpa_supplicant & openSSL - For libcoap, the SSLv2 ClientHello handshake method has been deprecated, need to handle this. Currently, corresponding snippet has been commented. - Examples tested: hello-world \| https_request \| wifi_prov_mgr mbedtls-3.0: Fixed ESP32-C3 & ESP32-S3 build issues - Removed MBEDTLS_DEPRECATED_REMOVED macro from sha1 port - DS peripheral: esp_ds_rsa_sign -> removed unsused 'mode' argument - Added MBEDTLS_PRIVATE(...) wherever required mbedtls-3.0: Fixed ESP32-S2 build issues - Fixed outdated function prototypes and usage in mbedlts/port/aes/esp_aes_gcm.c due to changes in GCM module mbedtls-3.0: Fixed ESP32-H2 build issues ci: Fixing build stage - Added MBEDTLS_PRIVATE(...) wherever required - Added RNG function parameter - Updated GCM Module changes - Updated Copyright notices - Tests: - build_esp_idf_tests_cmake_esp32 - build_esp_idf_tests_cmake_esp32s2 - build_esp_idf_tests_cmake_esp32c3 - build_esp_idf_tests_cmake_esp32s3 ci: Fixing build stage (mbedtls-related changes) - Added MBEDTLS_PRIVATE(...) wherever required - Updated SHAXXX functions - Updated esp_config according to mbedtls changes - Tests: - build_examples_cmake_esp32 - build_examples_cmake_esp32s2 - build_examples_cmake_esp32c3 - build_examples_cmake_esp32s3 ci: Fixing build stage (example-related changes) - Added MBEDTLS_PRIVATE(...) wherever required - Updated SHAXXX functions - Updated esp_config according to mbedtls changes - Tests: - build_examples_cmake_esp32 - build_examples_cmake_esp32s2 - build_examples_cmake_esp32c3 - build_examples_cmake_esp32s3 ci: Fixing target_test stage - Updated test SSL version to TLS_v1_2 - Tests: - example_test_protocols 1/2 ci: Fixing build stage - Added checks for MBEDTLS_DHM_C (disabled by default) - Updated esp_cryptoauthlib submodule - Updated factory partition size for legacy BLE provisioning example - Tests: - build_examples_cmake_esp32 - build_examples_cmake_esp32s2 - build_examples_cmake_esp32c3 - build_examples_cmake_esp32s3 Co-authored-by: Laukik Hase <laukik.hase@espressif.com>	2022-03-03 01:37:10 +05:30
Aditya Patwardhan	0483bfbbfe	Initial Changes for updating mbedtls to v3.0	2022-03-03 01:37:09 +05:30
Laukik Hase	424c45df91	ci: Fix issues for build stage - Fixed logs expecting different format specifier - Updated ignore list for check_public_header test - Updated functions ported from mbedTLS	2022-01-25 10:51:27 +05:30
Laukik Hase	befc93aa2d	mbedtls: Added option `MBEDTLS_SSL_KEEP_PEER_CERTIFICATE` - Removed code regarding MBEDTLS_DYNAMIC_FREE_PEER_CERT (config was kept for backward compatibility) - Combined mbedTLS v2.28.x related options under a separate Kconfig menu	2022-01-25 10:51:27 +05:30
Mahavir Jain	f7ed95349f	mbedtls: fix dynamic buffer feature build	2021-11-02 15:52:09 +08:00
yuanjm	93604b1a11	mbedtls: Fix mbedtls_ssl_send_alert_message crash due to ssl->out_iv is NULL	2021-04-22 09:33:59 +00:00
Aditya Patwardhan	bf513b6f31	Fix esp_tls: Prevent freeing of global ca store after each connection when dynamic ssl buffers are enabled	2021-02-25 00:26:13 +00:00
Dong Heng	1c9592efc4	fix(mbedtls): fix mbedtls dynamic resource memory leaks and RSA cert drop earlier RX process caches the session information in "ssl->in_ctr" not in "ssl->in_buf". So when freeing the SSL, can't free the "ssl->in_ctr", because the "ssl->in_buf" is empty. Make the RX process like TX process, and cache the session information in "ssl->in_buf", so that the cache buffer can be freed when freeing the SSL. Closes https://github.com/espressif/esp-idf/issues/6104	2020-11-19 07:31:50 +00:00
Angus Gratton	66fb5a29bb	Whitespace: Automated whitespace fixes (large commit) Apply the pre-commit hook whitespace fixes to all files in the repo. (Line endings, blank lines at end of file, trailing whitespace)	2020-11-11 07:36:35 +00:00
Dong Heng	3d57bf30a2	feat(mbedtls): add dynamic buffer and local resource managment to decrease SSL heap cost	2020-05-14 11:45:09 +00:00

16 Commits