blackbeard420/esp-idf
1
0
Fork 0
mirror of https://github.com/espressif/esp-idf synced 2025-03-12 10:39:11 -04:00
Code Issues Projects Releases Wiki Activity
40,140 Commits 20 Branches 159 Tags
Commit Graph

682 Commits

Author SHA1 Message Date
Espressif BOT
d9d303fd6f change(mbedtls/crt_bundle): Update esp_crt_bundle certificates 2024-09-25 16:39:46 +08:00
Mahavir Jain
bfd4085bea Merge branch 'feat/support_ecc_constant_time_mul_operations' into 'master' 
feat(mbedtls/ecc): Support ECC hardware constant-time point multiplication operations

Closes IDF-10327

See merge request espressif/esp-idf!31888
 2024-09-25 12:53:45 +08:00
Aditya Patwardhan
11128b73f5 feat(hal): Add countermeasure for ECDSA generate signature 
The ECDSA peripheral before ECO5 of esp32h2 does not perform the ECDSA
    sign operation in constant time. This allows an attacker to read the
    power signature of the ECDSA sign operation and then calculate the
    ECDSA key stored inside the eFuse. The commit adds a countermeasure
    for this attack. In this case the real ECDSA sign operation is
    masked under dummy ECDSA sign operations to hide its real power
    signature
 2024-09-23 18:55:43 +08:00
harshal.patil
46cbaa7d4d
fix(mbedtls/ecc): Enable hardware ECC mult operations only for SOC_ECC_CONSTANT_TIME_MUL 
Co-authored-by: aditya.patwardhan <aditya.patwardhane@espressif.com>
 2024-09-20 18:46:55 +05:30
Mahavir Jain
a71e0fc028 Merge branch 'feature/enable_sha_support_for_esp32c61' into 'master' 
feat: enable support for sha peripheral in esp32c61

Closes IDF-9234

See merge request espressif/esp-idf!32830
 2024-09-20 13:22:14 +08:00
Mahavir Jain
f5b55b2967 Merge branch 'fix/ecdsa_verify_check_hash_len' into 'master' 
Wrap some mbedtls' ECDSA verification related APIs

See merge request espressif/esp-idf!33349
 2024-09-20 12:38:10 +08:00
JiangGuangMing
ee9a072c82 feat(mbedtls): bringup rom mbedtls feature to formal 2024-09-13 16:40:20 +08:00
nilesh.kale
12fc7a677e feat: enable support for sha peripheral in esp32c61 2024-09-11 14:49:01 +05:30
Jiang Guang Ming
5bb93061a3 feat(mbedtls): support rom mbedtls threading layer 2024-09-06 19:27:57 +08:00
Jiang Guang Ming
d0ec6fc04d fix(mbedtls): MBEDTLS_CMAC_C not effective when MBEDTLS_USE_CRYPTO_ROM_IMPL enabled 2024-09-06 09:55:27 +08:00
Jiang Guang Ming
d74ff5224c feat(mbedtls): support ROM mbedtls v3.6.0 on C2 rev2.0(ECO4) 2024-09-06 09:55:27 +08:00
harshal.patil
c4f60d91f1
feat(mbedtls): Wrap mbedtls_ecdsa_read_signature to use ECDSA hardware when possible 2024-09-05 16:27:58 +05:30
harshal.patil
331fd7f79f
fix(mbedtls/port): Check signature hash length before using ECDSA hardware 2024-09-05 16:27:58 +05:30
harshal.patil
945ad6ea5d
ci(mbedtls): Enable PSRAM-related tests for ESP32-P4 and ESP32-C5 2024-08-30 17:19:12 +05:30
harshal.patil
c94986d793
fix(mbedtls): Fix https_request example build failure for mbedtls_config 
- This was caused due to some mbedtls confisg being defined but their all prerequisites were not
 2024-08-27 14:09:21 +05:30
Mahavir Jain
ad3a257390 Merge branch 'contrib/github_pr_14314' into 'master' 
perf(gcm): shrink Shoup table and tune GCM loop (GitHub PR)

Closes IDFGH-13409

Closes https://github.com/espressif/esp-idf/pull/14314

See merge request espressif/esp-idf!32908
 2024-08-21 12:12:10 +08:00
Richard Allen
0b51c24238 change(mbedtls/port): optimize gcm_mult() 
1) pre-shift GCM last4 to use 32-bit shift

On 32-bit architectures like Aarch32, RV32, Xtensa,
shifting a 64-bit variable by 32-bits is free,
since it changes the register representing half of the 64-bit var.
Pre-shift the last4 array to take advantage of this.

2) unroll first GCM iteration

The first loop of gcm_mult() is different from
the others. By unrolling it separately from the
others, the other iterations may take advantage
of the zero-overhead loop construct, in addition
to saving a conditional branch in the loop.
 2024-08-20 16:44:56 +08:00
harshal.patil
488b2a741d change(esp_security): Move the crypto locking layer into the security component 2024-08-20 12:35:22 +08:00
Mahavir Jain
a2de1ca576
fix(mbedtls): link esp-cryptoauthlib to mbedcrypto library 
If the certificate bundle feature is disabled then the mbedtls
component library becomes interface only component and hence
adding esp-cryptoauthlib as its PRIVATE dependency does not work.

Instead the esp-cryptoauthlib should be added as PRIVATE dependency
for mbedcrypto library (for alternate ECDSA implementation).
 2024-08-09 15:30:35 +05:30
Mahavir Jain
f477682938 Merge branch 'feature/remove_aes_rsa_ds_hmac_spport_for_c61' into 'master' 
feat: remove suppport for AES, RSA, DS and HMAC in esp32c61

Closes IDF-9326, IDF-9328, IDF-9323, and IDF-9325

See merge request espressif/esp-idf!31798
 2024-08-08 17:15:06 +08:00
Mahavir Jain
0aeb9653e7 Merge branch 'fix/avoid_extra_c2m_msync_in_aes_driver' into 'master' 
fix(mbedtls/aes): Avoid extra C2M sync of memory

See merge request espressif/esp-idf!32599
 2024-08-08 17:04:14 +08:00
harshal.patil
b9dc847ee2
fix(mbedtls/aes): Avoid extra C2M sync of memory 2024-08-08 09:12:31 +05:30
Richard Allen
bc56b4fc2e fix(mbedtls/port): fix codespell issues 
Fix a few comments codespell identified.
 2024-08-08 11:29:53 +08:00
Laukik Hase
e8477fb894
feat(mbedtls): Extend the esp_sha API to support SHA224 operations 2024-08-07 10:03:11 +05:30
nilesh.kale
e74dcb1fab feat: remove support for aes and rsa peripherals in esp32c61 2024-08-06 15:06:16 +05:30
nilesh.kale
5cc0110958 feat: enabled support for ecdsa in esp32c61 
This commit add ECDSA peripheral support in ESP32C61.
 2024-08-05 09:29:31 +05:30
Mahavir Jain
e40386bf4a Merge branch 'bugfix/check_return_values_in_ssl_handshake' into 'master' 
fix(mbedtls): Check return values of md functions during ssl handshake

Closes IDF-10478

See merge request espressif/esp-idf!32298
 2024-07-25 17:18:01 +08:00
Harshit Malpani
e9acc309dc
fix: Fixed build errors with TLS 1.3 only configuration 2024-07-24 13:31:07 +05:30
hrushikesh.bhosale
83afbfd4d7 fix(mbedtls): Check return values of md functions during ssl handshake 
Added checks for mbedtls_md_setup and mbedtls_md_start
functioms in esp_ssl_tls.c
 2024-07-24 11:16:20 +05:30
Roland Dobai
eba71250ca Merge branch 'fix/fix_malformed_kconfigs' into 'master' 
fix: fix various errors in Kconfig files

Closes IDF-10356

See merge request espressif/esp-idf!32125
 2024-07-23 16:29:09 +08:00
Mahavir Jain
8f3f86028c Merge branch 'fix/fix_aes_dma_desc_align' into 'master' 
aes: fix aes dma desc align

Closes IDF-10458

See merge request espressif/esp-idf!32144
 2024-07-18 14:05:57 +08:00
Jan Beran
01ee296db0 fix: fix various errors in Kconfig files 2024-07-17 11:33:22 +02:00
Armando
38bdfe195e fix(aes): fixed aes wrong dma desc alignment 2024-07-16 17:44:48 +08:00
wanlei
3cf069c7d8 feat(esp32c61): disable unsupported build test 2024-07-16 16:06:19 +08:00
Espressif BOT
62a22f4c89
change(mbedtls/crt_bundle): Update esp_crt_bundle certificates 2024-07-03 16:01:50 +05:30
Mahavir Jain
b40c18be89
fix(mbedtls): correct help text for few config options 
Closes https://github.com/espressif/esp-idf/issues/14126
 2024-07-03 09:51:28 +05:30
Mahavir Jain
e1499ddde3
fix(hal): correct the power up sequence for MPI/ECC peripherals in ESP32-C5 2024-06-21 09:42:57 +08:00
Alexey Lapshin
b0ba5689f1 Merge branch 'feature/gcc-fanalyzer' into 'master' 
feat(ci): add gnu static analyzer job

See merge request espressif/esp-idf!30902
 2024-06-19 19:31:53 +08:00
Alexey Lapshin
ed6e497c6f feat(build): add COMPILER_STATIC_ANALYZER option 2024-06-18 14:25:37 +08:00
morris
65710f70e3
change(aes): refactor DMA buffer allocation 2024-06-17 11:28:07 +08:00
nilesh.kale
46c0902fd6 feat: enabled hmac and ds peripheral support for c5 
This commit add support for HMAC and DS peripheral support for ESP32-C5.
 2024-05-28 10:44:54 +05:30
morris
e659675965 Merge branch 'feat/gdma_set_burst_size' into 'master' 
feat(gdma): return alignment constraints required by the GDMA channel

Closes IDF-9848

See merge request espressif/esp-idf!30748
 2024-05-27 15:33:57 +08:00
Mahavir Jain
eca073df3c Merge branch 'bugfix/ecc_coverity_warning' into 'master' 
fix(ecc_alt): adjust null pointer check to fix coverity warning

Closes IDF-9872

See merge request espressif/esp-idf!30946
 2024-05-27 13:43:00 +08:00
morris
dc6989796a feat(gdma): set burst size and return alignment constraint 
burst size can affect the buffer alignment
 2024-05-24 22:43:55 +08:00
Mahavir Jain
bc2ae212cf fix(ecc_alt): adjust null pointer check to fix coverity warning 2024-05-23 13:01:32 +08:00
harshal.patil
7c7c33ecbd
fix(mbedtls/port): Fix some divide-by-zero and deadcode coverity checks 2024-05-23 09:45:44 +05:30
harshal.patil
141cdac87e fix(mbedtls/aes): Check location of the buffer only for SOC_AXI_DMA_EXT_MEM_ENC_ALIGNMENT 
When buffer_needs_realloc in the AES driver, check the location of the buffer only in case
of SOC_AXI_DMA_EXT_MEM_ENC_ALIGNMENT for allocating the newer buffer, otherwise use generic
DMA capable memory (as was done earlier)
 2024-05-16 13:36:30 +08:00
harshal.patil
3eb6487bb5
fix(bootloader_support): Make esp_flash_encrypt.h independent of spi_flash_mmap.h header 2024-05-13 16:54:45 +05:30
harshal.patil
5dfbc47192
fix(mbedtls/crypto_shared_gdma): Enable AXI-DMA enable external memory AES-ECC access 
- When external memory encryption is enabled, set the aes_ecc bit of AXI-DMA to enable memory access
 2024-05-13 16:54:45 +05:30
nilesh.kale
3e6d62781f feat(mbedtls): updated mbedtls version from 3.5.2 to 3.6.0 
This MR updated MbedTLS version to latest version 3.6.0.
 2024-04-18 14:11:02 +05:30