2015-01-27 16:44:46 +01:00
|
|
|
option(USE_STATIC_MBEDTLS_LIBRARY "Build mbed TLS static library." ON)
|
2019-11-22 17:51:41 +01:00
|
|
|
option(USE_TINYCRYPT "Include TinyCrypt." ON)
|
2015-01-27 16:44:46 +01:00
|
|
|
option(USE_SHARED_MBEDTLS_LIBRARY "Build mbed TLS shared library." OFF)
|
2015-01-23 14:33:31 +01:00
|
|
|
option(LINK_WITH_PTHREAD "Explicitly link mbed TLS library to pthread." OFF)
|
2011-01-05 16:24:43 +01:00
|
|
|
|
2015-06-24 11:54:19 +02:00
|
|
|
set(src_crypto
|
|
|
|
aes.c
|
|
|
|
aesni.c
|
|
|
|
arc4.c
|
2017-11-30 17:00:34 +01:00
|
|
|
aria.c
|
2015-06-24 11:54:19 +02:00
|
|
|
asn1parse.c
|
|
|
|
asn1write.c
|
|
|
|
base64.c
|
|
|
|
bignum.c
|
|
|
|
blowfish.c
|
|
|
|
camellia.c
|
|
|
|
ccm.c
|
2016-05-15 22:28:08 +02:00
|
|
|
chacha20.c
|
2018-05-07 10:43:27 +02:00
|
|
|
chachapoly.c
|
2015-06-24 11:54:19 +02:00
|
|
|
cipher.c
|
|
|
|
cipher_wrap.c
|
2015-12-11 16:49:45 +01:00
|
|
|
cmac.c
|
2015-06-24 11:54:19 +02:00
|
|
|
ctr_drbg.c
|
|
|
|
des.c
|
|
|
|
dhm.c
|
|
|
|
ecdh.c
|
|
|
|
ecdsa.c
|
2015-08-05 15:44:42 +02:00
|
|
|
ecjpake.c
|
2015-06-24 11:54:19 +02:00
|
|
|
ecp.c
|
|
|
|
ecp_curves.c
|
|
|
|
entropy.c
|
|
|
|
entropy_poll.c
|
|
|
|
error.c
|
|
|
|
gcm.c
|
|
|
|
havege.c
|
2016-07-17 09:51:22 +02:00
|
|
|
hkdf.c
|
2015-06-24 11:54:19 +02:00
|
|
|
hmac_drbg.c
|
|
|
|
md.c
|
|
|
|
md2.c
|
|
|
|
md4.c
|
|
|
|
md5.c
|
|
|
|
memory_buffer_alloc.c
|
2018-07-15 08:29:47 +02:00
|
|
|
nist_kw.c
|
2015-06-24 11:54:19 +02:00
|
|
|
oid.c
|
|
|
|
padlock.c
|
|
|
|
pem.c
|
|
|
|
pk.c
|
|
|
|
pkcs12.c
|
|
|
|
pkcs5.c
|
|
|
|
pkparse.c
|
|
|
|
pkwrite.c
|
|
|
|
platform.c
|
2018-04-24 15:29:20 +02:00
|
|
|
platform_util.c
|
2016-05-16 23:25:45 +02:00
|
|
|
poly1305.c
|
2015-06-24 11:54:19 +02:00
|
|
|
ripemd160.c
|
|
|
|
rsa.c
|
2017-10-11 12:00:19 +02:00
|
|
|
rsa_internal.c
|
2015-06-24 11:54:19 +02:00
|
|
|
sha1.c
|
|
|
|
sha256.c
|
|
|
|
sha512.c
|
|
|
|
threading.c
|
2015-06-25 10:59:15 +02:00
|
|
|
timing.c
|
2015-06-24 11:54:19 +02:00
|
|
|
version.c
|
|
|
|
version_features.c
|
|
|
|
xtea.c
|
|
|
|
)
|
|
|
|
|
|
|
|
set(src_x509
|
|
|
|
certs.c
|
|
|
|
pkcs11.c
|
|
|
|
x509.c
|
|
|
|
)
|
|
|
|
|
|
|
|
set(src_tls
|
|
|
|
debug.c
|
2016-09-14 15:32:09 +02:00
|
|
|
net_sockets.c
|
2015-06-24 11:54:19 +02:00
|
|
|
ssl_cache.c
|
|
|
|
ssl_ciphersuites.c
|
|
|
|
ssl_cli.c
|
|
|
|
ssl_cookie.c
|
|
|
|
ssl_srv.c
|
|
|
|
ssl_ticket.c
|
|
|
|
ssl_tls.c
|
|
|
|
)
|
|
|
|
|
2013-11-28 17:20:04 +01:00
|
|
|
if(CMAKE_COMPILER_IS_GNUCC)
|
2015-06-25 09:20:03 +02:00
|
|
|
set(CMAKE_C_FLAGS "${CMAKE_C_FLAGS} -Wmissing-declarations -Wmissing-prototypes")
|
2013-11-28 17:20:04 +01:00
|
|
|
endif(CMAKE_COMPILER_IS_GNUCC)
|
|
|
|
|
2014-06-25 15:59:50 +02:00
|
|
|
if(CMAKE_COMPILER_IS_CLANG)
|
2015-06-25 09:20:03 +02:00
|
|
|
set(CMAKE_C_FLAGS "${CMAKE_C_FLAGS} -Wmissing-declarations -Wmissing-prototypes -Wdocumentation -Wno-documentation-deprecated-sync -Wunreachable-code")
|
2014-06-25 15:59:50 +02:00
|
|
|
endif(CMAKE_COMPILER_IS_CLANG)
|
|
|
|
|
2019-01-06 20:48:30 +01:00
|
|
|
if(UNSAFE_BUILD)
|
|
|
|
set(CMAKE_C_FLAGS "${CMAKE_C_FLAGS} -Wno-error")
|
|
|
|
set(CMAKE_C_FLAGS_ASAN "${CMAKE_C_FLAGS_ASAN} -Wno-error")
|
|
|
|
set(CMAKE_C_FLAGS_ASANDBG "${CMAKE_C_FLAGS_ASANDBG} -Wno-error")
|
|
|
|
endif(UNSAFE_BUILD)
|
|
|
|
|
2015-06-25 09:35:46 +02:00
|
|
|
if(WIN32)
|
|
|
|
set(libs ${libs} ws2_32)
|
|
|
|
endif(WIN32)
|
|
|
|
|
2018-06-21 21:21:38 +02:00
|
|
|
if(${CMAKE_SYSTEM_NAME} MATCHES "Darwin")
|
2018-04-27 13:14:59 +02:00
|
|
|
SET(CMAKE_C_ARCHIVE_CREATE "<CMAKE_AR> Scr <TARGET> <LINK_FLAGS> <OBJECTS>")
|
|
|
|
SET(CMAKE_CXX_ARCHIVE_CREATE "<CMAKE_AR> Scr <TARGET> <LINK_FLAGS> <OBJECTS>")
|
|
|
|
SET(CMAKE_C_ARCHIVE_FINISH "<CMAKE_RANLIB> -no_warning_for_no_symbols -c <TARGET>")
|
|
|
|
SET(CMAKE_CXX_ARCHIVE_FINISH "<CMAKE_RANLIB> -no_warning_for_no_symbols -c <TARGET>")
|
2018-06-21 21:21:38 +02:00
|
|
|
endif()
|
2018-04-27 13:14:59 +02:00
|
|
|
|
2018-04-12 02:27:32 +02:00
|
|
|
if(HAIKU)
|
2018-07-10 12:48:42 +02:00
|
|
|
set(libs ${libs} network)
|
2018-04-12 02:27:32 +02:00
|
|
|
endif(HAIKU)
|
|
|
|
|
2015-06-25 09:35:46 +02:00
|
|
|
if(USE_PKCS11_HELPER_LIBRARY)
|
|
|
|
set(libs ${libs} pkcs11-helper)
|
|
|
|
endif(USE_PKCS11_HELPER_LIBRARY)
|
|
|
|
|
|
|
|
if(ENABLE_ZLIB_SUPPORT)
|
|
|
|
set(libs ${libs} ${ZLIB_LIBRARIES})
|
|
|
|
endif(ENABLE_ZLIB_SUPPORT)
|
|
|
|
|
|
|
|
if(LINK_WITH_PTHREAD)
|
|
|
|
set(libs ${libs} pthread)
|
|
|
|
endif()
|
|
|
|
|
2019-11-22 17:51:41 +01:00
|
|
|
if(USE_TINYCRYPT)
|
|
|
|
set(libs ${libs} tinycrypt)
|
|
|
|
endif()
|
2019-04-24 15:17:10 +02:00
|
|
|
|
2015-01-27 16:44:46 +01:00
|
|
|
if (NOT USE_STATIC_MBEDTLS_LIBRARY AND NOT USE_SHARED_MBEDTLS_LIBRARY)
|
2015-06-25 09:20:03 +02:00
|
|
|
message(FATAL_ERROR "Need to choose static or shared mbedtls build!")
|
2015-01-27 16:44:46 +01:00
|
|
|
endif(NOT USE_STATIC_MBEDTLS_LIBRARY AND NOT USE_SHARED_MBEDTLS_LIBRARY)
|
2011-01-05 16:24:43 +01:00
|
|
|
|
2015-01-27 16:44:46 +01:00
|
|
|
if(USE_STATIC_MBEDTLS_LIBRARY AND USE_SHARED_MBEDTLS_LIBRARY)
|
2015-06-25 09:20:03 +02:00
|
|
|
set(mbedtls_static_target "mbedtls_static")
|
2015-06-25 09:49:02 +02:00
|
|
|
set(mbedx509_static_target "mbedx509_static")
|
|
|
|
set(mbedcrypto_static_target "mbedcrypto_static")
|
2015-01-27 16:44:46 +01:00
|
|
|
elseif(USE_STATIC_MBEDTLS_LIBRARY)
|
2015-06-25 09:20:03 +02:00
|
|
|
set(mbedtls_static_target "mbedtls")
|
2015-06-25 09:49:02 +02:00
|
|
|
set(mbedx509_static_target "mbedx509")
|
|
|
|
set(mbedcrypto_static_target "mbedcrypto")
|
2014-03-06 15:49:08 +01:00
|
|
|
endif()
|
2011-01-05 16:24:43 +01:00
|
|
|
|
2015-01-27 16:44:46 +01:00
|
|
|
if(USE_STATIC_MBEDTLS_LIBRARY)
|
2015-06-25 09:49:02 +02:00
|
|
|
add_library(${mbedcrypto_static_target} STATIC ${src_crypto})
|
|
|
|
set_target_properties(${mbedcrypto_static_target} PROPERTIES OUTPUT_NAME mbedcrypto)
|
|
|
|
target_link_libraries(${mbedcrypto_static_target} ${libs})
|
|
|
|
|
|
|
|
add_library(${mbedx509_static_target} STATIC ${src_x509})
|
|
|
|
set_target_properties(${mbedx509_static_target} PROPERTIES OUTPUT_NAME mbedx509)
|
|
|
|
target_link_libraries(${mbedx509_static_target} ${libs} ${mbedcrypto_static_target})
|
|
|
|
|
|
|
|
add_library(${mbedtls_static_target} STATIC ${src_tls})
|
2015-06-25 09:20:03 +02:00
|
|
|
set_target_properties(${mbedtls_static_target} PROPERTIES OUTPUT_NAME mbedtls)
|
2015-06-25 09:49:02 +02:00
|
|
|
target_link_libraries(${mbedtls_static_target} ${libs} ${mbedx509_static_target})
|
2014-03-17 15:11:13 +01:00
|
|
|
|
2015-07-24 16:53:46 +02:00
|
|
|
install(TARGETS ${mbedtls_static_target} ${mbedx509_static_target} ${mbedcrypto_static_target}
|
2015-06-25 09:35:46 +02:00
|
|
|
DESTINATION ${LIB_INSTALL_DIR}
|
|
|
|
PERMISSIONS OWNER_READ OWNER_WRITE OWNER_EXECUTE GROUP_READ GROUP_EXECUTE WORLD_READ WORLD_EXECUTE)
|
2015-06-25 14:53:13 +02:00
|
|
|
endif(USE_STATIC_MBEDTLS_LIBRARY)
|
2011-01-05 16:24:43 +01:00
|
|
|
|
2015-01-27 16:44:46 +01:00
|
|
|
if(USE_SHARED_MBEDTLS_LIBRARY)
|
2015-06-25 09:49:02 +02:00
|
|
|
add_library(mbedcrypto SHARED ${src_crypto})
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 17:47:25 +02:00
|
|
|
set_target_properties(mbedcrypto PROPERTIES VERSION 2.16.6 SOVERSION 3)
|
2015-06-25 09:49:02 +02:00
|
|
|
target_link_libraries(mbedcrypto ${libs})
|
|
|
|
|
|
|
|
add_library(mbedx509 SHARED ${src_x509})
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 17:47:25 +02:00
|
|
|
set_target_properties(mbedx509 PROPERTIES VERSION 2.16.6 SOVERSION 0)
|
2015-06-25 09:49:02 +02:00
|
|
|
target_link_libraries(mbedx509 ${libs} mbedcrypto)
|
|
|
|
|
|
|
|
add_library(mbedtls SHARED ${src_tls})
|
Merge mbedtls 2.16.6 into baremetal
Conflicts:
mbedtls.doxyfile - PROJECT_NAME - mbed TLS v2.16.6 chosen.
doc_mainpage.h - mbed TLS v2.16.6 version chosen.
hmac_drbg.h - line 260, extended description chosen.
- line 313, extended description chosen.
- line 338, extended description chosen.
version.h - 2.16.6 chosen.
CMakeLists.txt - 2.16.6 chosen.
test_suite_version.data - 2.16.6 chosen.
Makefile - 141 - manual correction - baremetal version of C_SOURCE_FILES
with variables for directories plus 2.16.6 CTAGS addition.
pkparse.c - lines 846 onwards - the asn1_get_nonzero_mpi implementation chosen.
ssl_tls.c - line 5269 - edited manually, left the ret=0, because baremetal has
a different behaviour since commit 87b5626, but added a debug
message that's new in 2.16.6.
all.sh:
- component_build_deprecated - chosen the refactored version from 2.16.6,
but with extra flags from baremetal.
- rest of the _no_xxx tests - merged make options to have PTHREAD=1 and
other changes from 2.16.6 (like -O1 instead of -O0).
- component_build_arm_none_eabi_gcc_no_64bit_multiplication - added
TINYCRYPT_BUILD=0 to the 2.16.6 version of make.
x509/req_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/crl_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
x509/cert_app.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_mail_client.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_pthread_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl/ssl_fork_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client1.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_client2.c - line 54 - left baremetal log but with mbedtls_exit( 0 ) call.
- line 132 - new options of both branches added.
- skip close notify handled as in 2.16.6, but with `ssl` instead of `&ssl`.
- Merged the 2.16.6 usage split with additional baremetal usages.
- Merged options from baremetal and 2.16.6.
ssl_server.c - left baremetal log but with mbedtls_exit( 0 ) call.
ssl_server2.c - Merged the 2.16.6 usage split with additional baremetal usages.
config.pl - fixed missing defines from the documentation, removed duplicates,
and reorganised so that the documentation and excluded list
are ordered in the same way.
test_suite_x509parse.data - only added the two new pathlen tests.
x509_crt.c - change the return code by removing
MBEDTLS_ERR_X509_INVALID_EXTENSIONS, since it's added by
x509_crt_frame_parse_ext not by an "or", but by "+=".
Changelog - Assigned all entries to appropriate sections.
ssl-opt.sh - line 8263 - merged options.
- removed lines 1165 - 1176 - there was a duplicate test, probably
an artifact of previous merges.
check-files.py - sticked to old formatting.
Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2020-05-18 17:47:25 +02:00
|
|
|
set_target_properties(mbedtls PROPERTIES VERSION 2.16.6 SOVERSION 12)
|
2015-06-25 09:49:02 +02:00
|
|
|
target_link_libraries(mbedtls ${libs} mbedx509)
|
2012-05-10 23:54:28 +02:00
|
|
|
|
2015-06-25 09:49:02 +02:00
|
|
|
install(TARGETS mbedtls mbedx509 mbedcrypto
|
2015-06-25 09:20:03 +02:00
|
|
|
DESTINATION ${LIB_INSTALL_DIR}
|
|
|
|
PERMISSIONS OWNER_READ OWNER_WRITE OWNER_EXECUTE GROUP_READ GROUP_EXECUTE WORLD_READ WORLD_EXECUTE)
|
2015-01-27 16:44:46 +01:00
|
|
|
endif(USE_SHARED_MBEDTLS_LIBRARY)
|
2015-06-25 14:53:13 +02:00
|
|
|
|
|
|
|
add_custom_target(lib DEPENDS mbedcrypto mbedx509 mbedtls)
|
|
|
|
if(USE_STATIC_MBEDTLS_LIBRARY AND USE_SHARED_MBEDTLS_LIBRARY)
|
|
|
|
add_dependencies(lib mbedcrypto_static mbedx509_static mbedtls_static)
|
|
|
|
endif()
|