Glenn Strauss

> Can you please explain why you want to add this feature As I noted above: > > While this is a feature, it adds major missing functionality that has...

An argument that I can give to you for why this feature should be included in mbedtls in some way is as follows: If I am using mbedtls as a...

I have confirmed that hostapd and wpa_supplicant (in hostap repo) produce COMPRESSED format in interface ``` /** * crypto_ecdh_get_pubkey - Retrieve public key from ECDH context * @ecdh: ECDH context...

> Mbed TLS 2.28.0 already did not work with hostapd. FYI: my prototype in https://github.com/openwrt/openwrt/pull/10727 currently requires * mbedtls >= 2.27.0 for mbedtls_mpi_random() * mbedtls >= 2.18.0 for mbedtls_ssl_tls_prf() I...

Tests with invalid point encoding beginning 0x01 and 0x05 now return `MBEDTLS_ERR_ECP_BAD_INPUT_DATA` instead of `MBEDTLS_ERR_ECP_FEATURE_UNAVAILABLE` I still need to add some tests beginning with compressed point encodings 0x02 and 0x03...

Additional tests added and tests pass. Ready for review. Please note that this PR cherry-picks cleanly onto mbedtls-2.28.1 with the exception of a trivially resolvable merge conflict in tests/suites/test_suite_ecp.data since...

@gilles-peskine-arm wrote: > 2.28.0 already couldn't interoperate with hostapd when it was released. I disagree. My patches to hostap work with mbedtls 2.28.1 on my test platform and contradict your...

> > At this moment, I can not impose that mbedtls 3.x be a requirement. > > Can you expand on that? I don't see why not. I mean, it's...

What version of lighttpd is running? What is the lighttpd config and lighttpd modules? (`lighttpd -f /etc/lighttpd/lighttpd.conf -p`) If reproducible, please set in lighttpd.conf `debug.log-request-header = "enable"` to capture request...

As noted in https://github.com/openwrt/openwrt/issues/10303#issuecomment-1247311546: Posted to hostap mailing list: http://lists.infradead.org/pipermail/hostap/2022-September/040794.html The patches currently contain support for SAE, though testing is needed. More details are in the link sent to the...