Gilles Peskine
Gilles Peskine
It isn't obvious that you need to call `psa_crypto_init()` in application code before starting a TLS 1.3 handshake, so document it. Also document this on common functions for when `MBEDTLS_USE_PSA_CRYPTO`...
Create a unit test function that runs both a TLS client and a TLS server, performs a handshake, and exchanges some data (one `write` and one `read` from each side)....
`test_suite_ssl.function` contains many functions that are used to set up a TLS connection. Move those functions (and the types they use) to a new file `tests/src/ssl_helpers.c` with declarations in `tests/include/test/ssl_helpers.h`....
Ideally all the code in Mbed TLS should be covered by unit tests. We know that this is not the case for TLS, where testing relies on system tests (`ssl-opt.sh`,...
`MBEDTLS_FS_IO` is documented as “Enable functions that use the filesystem.”. This is vague — what it's actually meant to gate is file access through stdio (`fopen()` and friends). The intent...
`MBEDTLS_FS_IO` is documented as “Enable functions that use the filesystem.”. More precisely, it means that the platform has: * some basic functions from `stdio.h`: `fopen()`, `fclose()`, `fread()`, `fwrite()`, `ftell()`, `fseek()`,...
Addresses https://github.com/Mbed-TLS/mbedtls/issues/6239 (only fill_random in core, not yet random or mod). Also in this PR: introduce a function `mbedtls_test_read_mpi_core()` to conveniently read a core MPI in unit tests. Changelog: no...
This is a collection of minor fixes to issues I found in Python scripts near the end of my review of https://github.com/Mbed-TLS/mbedtls/pull/6093. I didn't want to hold that PR for...
On the same model as `depends-hashes.pl` and `depends-pkalgs.pl`, we should have a `depends-ciphers.pl` that checks that the library code and test cases have all correct dependencies on symmetric cipher algorithms,...
`check_config.h` rejects some configurations for various reasons, including: * Not rejecting it would lead to some other build failure. Typically, but not only, when A can't even compile without B...