yuzu-emu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2024-11-26 04:45:44 +01:00
Code Issues Packages Projects Releases Wiki Activity
18a9d5b425
mbedtls/include/mbedtls
History
Gilles Peskine d3d02900f2 Restore X509 and SSL functionality 
Look for changes that remove X509/SSL functionality.
```
git diff 'HEAD^{/^Merge}~1' HEAD --diff-filter=M -- . ':!library/error.c' ':!library/version_features.c' ':!programs/test/query_config.c' ':!visualc' ':!*.pdf' ':!*.der' | grep -E "^-.*MBEDTLS_(ERR_)?(PKCS11|X509|NET|SSL)_"
```

All of these removals are in `config.h` or `check_config.h`. Selectively revert the differences in these two files.

```
git diff 'HEAD^{/^Merge}~1' 'HEAD^{/^Merge}' include/mbedtls/config.h include/mbedtls/check_config.h | git apply -p1 -R
```

* `include/mbedtls/check_config.h`:
    * ARIA for GCM: don't remove it.
    * `MBEDTLS_PSA_CRYPTO_SE_C`: don't remove it.
    * `MBEDTLS_SHA512_NO_SHA384`: don't remove it.
    * `MBEDTLS_SSL_DTLS_CONNECTION_ID`: restore it.
* `include/mbedtls/config.h`:
    * warning about `MBEDTLS_ECDSA_SIGN_ALT`: don't remove it.
    * `MBEDTLS_CTR_DRBG_USE_128_BIT_KEY` full paragraph: don't remove it.
    * `MBEDTLS_PSA_CRYPTO_KEY_FILE_ID_ENCODES_OWNER`: don't remove it.
    * `MBEDTLS_SHA512_SMALLER`…: don't remove it.
    * `MBEDTLS_SSL_RECORD_CHECKING`: restore it.
    * `MBEDTLS_SSL_CONTEXT_SERIALIZATION`: restore it.
    * `MBEDTLS_USE_PSA_CRYPTO` note: don't restore the tls version.
    * `MBEDTLS_USE_PSA_CRYPTO` warning: restore the tls version.
    * `MBEDTLS_CMAC_C`: restore it to being disabled by default. It's a minor API change in Mbed TLS because it changes the layout of `mbedtls_cipher_context_t`.
    * `MBEDTLS_CTR_DRBG_C`: don't restore the older version of the description from tls.
    * `MBEDTLS_GCM_C`: don't restore the older description from tls.
    * `MBEDTLS_PSA_CRYPTO_C`: don't restore `crypto/`.
    * `MBEDTLS_PSA_CRYPTO_SE_C`: don't remove it.
    * `MBEDTLS_PSA_CRYPTO_STORAGE_C`: don't restore `crypto/`. Don't disable it by default.
    * `MBEDTLS_PSA_ITS_FILE_C`: don't restore, like for ``MBEDTLS_PSA_CRYPTO_STORAGE_C``.
    * `MBEDTLS_CTR_DRBG_USE_128_BIT_KEY` single line: don't restore it since there is now a full paragraph in the proper section above.
    * `MBEDTLS_SSL_CID_IN_LEN_MAX`…: restore it.
    * `MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_CERTIFICATES`: restore the version without a space to format the line like the others.
2020-03-23 17:55:31 +01:00
..
aes.h
aesni.h
arc4.h
aria.h
asn1.h Revert "asn1: Remove dependency on X.509" 2020-03-19 14:23:45 +01:00
asn1write.h Add ASN.1 ENUMERATED tag support 2019-10-31 19:17:26 +02:00
base64.h
bignum.h Bignum: Document assumptions about the sign field 2019-11-04 10:39:20 +00:00
blowfish.h
bn_mul.h Fix -O0 build for Aarch64 bignum multiplication. 2019-09-02 13:44:57 +02:00
camellia.h
ccm.h
certs.h Revert "Remove certs.h" 2020-03-04 15:39:14 +01:00
chacha20.h
chachapoly.h
check_config.h Restore X509 and SSL functionality 2020-03-23 17:55:31 +01:00
cipher_internal.h
cipher.h
cmac.h
compat-1.3.h
config.h Restore X509 and SSL functionality 2020-03-23 17:55:31 +01:00
ctr_drbg.h ctr_drbg: Clarify reseed_counter values before seeding 2020-01-09 13:48:52 +00:00
debug.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
des.h
dhm.h DHM functions are not part of x509 2020-03-19 14:23:45 +01:00
ecdh.h
ecdsa.h ECDSA: Explain limitations of constant blinding 2019-09-05 11:18:58 +01:00
ecjpake.h
ecp_internal.h
ecp.h Revert "ecp: Remove dependency on TLS and X.509" 2020-03-19 14:23:45 +01:00
entropy_poll.h
entropy.h
error.h Add two error codes to the Error module 2019-12-16 15:15:16 +00:00
gcm.h
havege.h
hkdf.h
hmac_drbg.h fixup! HMAC_DRBG: support set_entropy_len() before seed() 2019-10-23 19:46:55 +02:00
md2.h
md4.h
md5.h
md_internal.h Implement NO_SHA384 in MD layer and PSA 2020-01-06 11:40:23 +01:00
md.h
memory_buffer_alloc.h
net_sockets.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
net.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
nist_kw.h
oid.h
padlock.h
pem.h
pk_internal.h
pk.h Rename some signature-related identifiers 2019-11-26 18:20:59 +01:00
pkcs5.h
pkcs11.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
pkcs12.h
platform_time.h
platform_util.h
platform.h
poly1305.h
psa_util.h Change auxiliary functions for TLS to the new PSA EC curve encoding 2020-01-31 10:24:21 +01:00
ripemd160.h
rsa_internal.h
rsa.h Add documentation notes about the required size of the signature buffers 2019-11-13 12:15:35 +01:00
sha1.h
sha256.h
sha512.h Improve doxygen formatting 2020-01-24 10:57:25 +01:00
ssl_cache.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
ssl_ciphersuites.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
ssl_cookie.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
ssl_internal.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
ssl_ticket.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
ssl.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
threading.h
timing.h
version.h Bump version to Mbed TLS 2.21.0 2020-02-19 14:35:16 +00:00
x509_crl.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
x509_crt.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
x509_csr.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
x509.h Revert "Remove unused TLS, NET, and X.509 files" 2020-03-19 13:36:33 +01:00
xtea.h