Gilles Peskine

Remove support for the RSA-PSK key exchange. Resolves https://github.com/Mbed-TLS/mbedtls/issues/9681. Status: Forks from #9593 for better CI feedback. Ready once rebased on top of the merge. ## PR checklist - [x]...

Partial backport of https://github.com/Mbed-TLS/mbedtls/pull/9608: some bug fixes in `all.sh`. I'm not backporting the changes to `library/Makefile` to support building assembly files because that was only needed for components added in...

Some issues I discovered while working on https://github.com/Mbed-TLS/mbedtls/pull/9286. Backport of https://github.com/Mbed-TLS/mbedtls/pull/9293, conceptually identical, but with a lot of merge conflicts due to changes on the same line: we have lines...

We're using JSON schemas to validate JSON driver descriptions. But who validates the schemas? We don't — [but others do](https://github.com/Mbed-TLS/mbedtls/pull/9674#discussion_r1794032492) and found syntax errors in our schemas. Those particular errors...

Remove code that is only used when MBEDTLS_USE_PSA_CRYPTO is disabled

1

Remove all the code that is only used when `MBEDTLS_USE_PSA_CRYPTO` is disabled. Remove `#define MBEDTLS_USE_PSA_CRYPTO`. Follow-up to https://github.com/Mbed-TLS/mbedtls/issues/9630. We should also do https://github.com/Mbed-TLS/mbedtls/issues/9676 first (not strictly required, but I think...

Always enable the internal option `MBEDTLS_PK_USE_PSA_EC_DATA`, and remove the code that was gated by `!defined(MBEDTLS_PK_USE_PSA_EC_DATA)`. We want this because we want less adherence to legacy crypto APIs. It'll make the...

Remove discussions of MBEDTLS_USE_PSA_CRYPTO in documentation

1

Remove discussions of `MBEDTLS_USE_PSA_CRYPTO` in documentation. The documentation should now only what was formerly the behavior when `MBEDTLS_USE_PSA_CRYPTO` is enabled. Note that while `docs/use-psa-crypto.md` will be partly obsolete (e.g. “why...

Resolves https://github.com/Mbed-TLS/mbedtls/issues/9630. Continues from https://github.com/Mbed-TLS/mbedtls/pull/9610. Ready for review once that PR has been merged and this PR has been rebased on top of the merge. ## PR checklist - [x]...

A step towards https://github.com/Mbed-TLS/mbedtls/issues/9630. Continued in https://github.com/Mbed-TLS/mbedtls/pull/9614. Continues from https://github.com/Mbed-TLS/mbedtls/pull/9593. Ready for review once that PR has been merged and this PR has been rebased on top of the merge....

The goal of this issue is to always have `MBEDTLS_USE_PSA_CRYPTO` and `MBEDTLS_PSA_CRYPTO_CLIENT` (or `MBEDTLS_PSA_CRYPTO_SPM`) enabled no matter how the library is built. Definition of done: * `MBEDTLS_USE_PSA_CRYPTO` is no longer...