mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2025-01-28 00:31:04 +00:00
Merge branch 'development_2.x' into development_2.x-restricted
* development_2.x: Disable OS X builds on Travis config: Allow Mbed to implement TIMING_C Fix misuse of MD API in SSL constant-flow HMAC
This commit is contained in:
commit
c4c0d819ce
|
@ -28,12 +28,6 @@ jobs:
|
||||||
script:
|
script:
|
||||||
- tests/scripts/all.sh -k test_full_cmake_gcc_asan
|
- tests/scripts/all.sh -k test_full_cmake_gcc_asan
|
||||||
|
|
||||||
- name: macOS
|
|
||||||
os: osx
|
|
||||||
compiler: clang
|
|
||||||
script:
|
|
||||||
- tests/scripts/all.sh -k test_default_out_of_box
|
|
||||||
|
|
||||||
- name: Windows
|
- name: Windows
|
||||||
os: windows
|
os: windows
|
||||||
before_install:
|
before_install:
|
||||||
|
|
5
ChangeLog.d/fix-ssl-cf-hmac-alt.txt
Normal file
5
ChangeLog.d/fix-ssl-cf-hmac-alt.txt
Normal file
|
@ -0,0 +1,5 @@
|
||||||
|
Bugfix
|
||||||
|
* Fix a regression introduced in 2.24.0 which broke (D)TLS CBC ciphersuites
|
||||||
|
(when the encrypt-then-MAC extension is not in use) with some ALT
|
||||||
|
implementations of the underlying hash (SHA-1, SHA-256, SHA-384), causing
|
||||||
|
the affected side to wrongly reject valid messages. Fixes #4118.
|
3
ChangeLog.d/mbed-can-do-timing.txt
Normal file
3
ChangeLog.d/mbed-can-do-timing.txt
Normal file
|
@ -0,0 +1,3 @@
|
||||||
|
Bugfix
|
||||||
|
* Remove outdated check-config.h check that prevented implementing the
|
||||||
|
timing module on Mbed OS. Fixes #4633.
|
|
@ -55,9 +55,8 @@
|
||||||
#endif
|
#endif
|
||||||
#endif /* _WIN32 */
|
#endif /* _WIN32 */
|
||||||
|
|
||||||
#if defined(TARGET_LIKE_MBED) && \
|
#if defined(TARGET_LIKE_MBED) && defined(MBEDTLS_NET_C)
|
||||||
( defined(MBEDTLS_NET_C) || defined(MBEDTLS_TIMING_C) )
|
#error "The NET module is not available for mbed OS - please use the network functions provided by Mbed OS"
|
||||||
#error "The NET and TIMING modules are not available for mbed OS - please use the network and timing functions provided by mbed OS"
|
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
#if defined(MBEDTLS_DEPRECATED_WARNING) && \
|
#if defined(MBEDTLS_DEPRECATED_WARNING) && \
|
||||||
|
|
|
@ -1241,6 +1241,9 @@ MBEDTLS_STATIC_TESTABLE int mbedtls_ssl_cf_hmac(
|
||||||
MD_CHK( mbedtls_md_update( ctx, data + offset, 1 ) );
|
MD_CHK( mbedtls_md_update( ctx, data + offset, 1 ) );
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/* The context needs to finish() before it starts() again */
|
||||||
|
MD_CHK( mbedtls_md_finish( ctx, aux_out ) );
|
||||||
|
|
||||||
/* Now compute HASH(okey + inner_hash) */
|
/* Now compute HASH(okey + inner_hash) */
|
||||||
MD_CHK( mbedtls_md_starts( ctx ) );
|
MD_CHK( mbedtls_md_starts( ctx ) );
|
||||||
MD_CHK( mbedtls_md_update( ctx, okey, block_size ) );
|
MD_CHK( mbedtls_md_update( ctx, okey, block_size ) );
|
||||||
|
|
Loading…
Reference in a new issue