pioduino/esp-idf
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
46,869 Commits 1 Branch 0 Tags
7ef71e977041ab134aed6c19f5e47eff578959d0
Commit Graph

796 Commits

Author SHA1 Message Date
harshal.patil 0742f3fce3 fix(mbedtls/aes): Cache invalidate the output buffer before the AES-DMA operation 
Instead of performing the cache-to-memory (C2M) operation on the output buffer,
even a cache invalidate (M2C) is sufficient to ensure that no write-back occurs
during the DMA write operation
 2026-01-16 11:07:00 +05:30
harshal.patil 525ef3a2ea fix(mbedlts/aes): Ensure cache coherency when DMA writes to cacheable PSRAM buffers 2026-01-16 11:06:46 +05:30
Mahavir Jain 3378c690c4 Merge branch 'feat/add_mbedtls_testcases_for_ecc_p_384_v5.5' into 'release/v5.5' 
feat(mbedtls): add ECC P-384 mbedtls support and test_cases (v5.5)

See merge request espressif/esp-idf!43980
 2025-12-26 09:56:00 +05:30
harshal.patil 11c8f6aa94 fix(mbedtls/aes): Reallocate buffers only if in external RAM 2025-12-12 13:00:40 +05:30
nilesh.kale 3e4bed2e4d feat(mbedtls): add ECC P-384 mbedtls support and test_cases 2025-12-04 12:48:32 +05:30
harshal.patil 76436b3418 fix(mbedtls/port): Use internal buffers to perform chunkwise operations 
when the external input and output buffers are unaligned.
This also fixes as a recursion loop that occurs when the size of the input
buffer is not aligned to dcache_line_size but is aligned to AES_BLOCK_BYTES
 2025-12-01 18:15:25 +05:30
armando 304ba1655b fix check test scripts build issue 2025-11-20 11:33:36 +08:00
armando cdff2570c7 ci(p4): disable p4 rev3 invalid tests temporarily 2025-11-20 11:33:36 +08:00
Jiang Jiang Jian 86bd3d30c6 Merge branch 'fix/axi_dma_ext_mem_alignment_c5_v5.5' into 'release/v5.5' 
Align AES and SHA buffers to 16 when SPIRAM encryption is enabled (v5.5)

See merge request espressif/esp-idf!43261
 2025-11-12 17:45:43 +08:00
harshal.patil 317a6f074d fix(mbedtls/port): Align AES and SHA DMA buffers to 16 when SPIRAM encryption is enabled 
- Targets that support GDMA and MSPI encryption module need data and addresses aligned to 16
 2025-11-11 17:45:11 +05:30
Ashish Sharma 30f93c0516 feat(mbedtls): update to version 3.6.5 2025-11-11 16:47:45 +08:00
Kapil Gupta bdd1b0ca20 fix(mbedtls): Addressed comments on PR15679 2025-10-27 15:41:21 +08:00
Deomid rojer Ryabkov 73a9949161 feat(mbedtls): Add mbedtls_esp_random() 
Suitable for passing as f_rng to various Mbed-TLS APIs that require it
 2025-10-27 15:41:21 +08:00
Aditya Patwardhan 647e7de668 fix(ecdsa): Fixed ECDSA efuse purpose check condition 2025-10-16 14:48:13 +08:00
nilesh.kale 364adc79c3 feat: added config member to store block number for high part of ecdsa key 2025-10-16 14:48:13 +08:00
nilesh.kale 851602ed8e feat: add ecdsa-p384 testcases and relative support for ESP32C5 ECO2 
This commit adds testcases in crypto/hal and mbedtls testapps.
 2025-10-16 14:48:13 +08:00
Laukik Hase 73d0dadd6b fix(esp_tee): Correct flash operation bound checks to handle all overlap cases 
- Ensure bound checks correctly handle all scenarios, including
  when a requested operation's (SPI0/1) range fully contains the
  TEE-protected region.
- Disable delegation of INTWDT timeout and Cache error interrupts as they reset
  the device after the panic handler
 2025-10-14 10:12:28 +05:30
Laukik Hase 78737a757a feat(esp_tee): Added support for PBKDF2-based (HMAC) ECDSA signing 2025-10-14 10:12:13 +05:30
Laukik Hase 508a659001 feat(esp_tee): Support for ESP32-C5 - the rest of the components 2025-10-14 10:12:11 +05:30
harshal.patil f6f15bf91a change(mbedtls/ecdsa): The ECDSA module of ESP32-H2 ECO5 does not use MPI module 2025-08-13 18:53:19 +05:30
harshal.patil 61b0b072f9 fix(mbedtls/gcm): Allow enabling GCM fallback only if software GCM is available 2025-07-25 08:48:00 +05:30
Mahavir Jain b458016805 Merge branch 'feat/adding_different_strategy_to_perform_tls_using_dynamic_feature_v5.5' into 'release/v5.5' 
Add configuration to control dynamic buffer strategy in mbedtls (v5.5)

See merge request espressif/esp-idf!39919
 2025-07-22 14:48:44 +05:30
Mahavir Jain 570ecdc1cc Merge branch 'feature/support_ds_peripheral_rsa_decryption_v5.5' into 'release/v5.5' 
feat(mbedtls): Add support for RSA decryption with DS peripheral (v5.5)

See merge request espressif/esp-idf!40449
 2025-07-22 11:57:15 +05:30
Mahavir Jain 5c02c6fc1e Merge branch 'feat/update_mbedtls_3.6.4_v5.5' into 'release/v5.5' 
feat(mbedtls): update to version 3.6.4 (v5.5)

See merge request espressif/esp-idf!40375
 2025-07-22 11:52:29 +05:30
Jiang Jiang Jian 3c39b32195 Chip/support esp32c61 v5.5 2025-07-22 12:21:36 +08:00
Ashish Sharma 163db6a8a5 feat(mbedtls): adds support for RSA decryption with DS peripheral 2025-07-21 09:27:06 +08:00
Ashish Sharma a3af8972ae feat(mbedtls): update to version 3.6.4 2025-07-04 17:34:00 +08:00
harshal.patil 5210e576d5 feat(mbedtls/sha): New API for setting SHA mode 2025-06-18 16:46:39 +05:30
hrushikesh.bhosale 2bfeb41d90 feat(mbedtls): Add configuration to control dynamic buffer strategy in mbedtls 
Problem:
1. In low-memory scenarios, the dynamic buffer feature can fail due to memory fragmentation.
2. It requires a contiguous 16KB heap chunk, but continuous allocation and deallocation of
the RX buffer can lead to fragmentation.
3. If another component allocates memory between these operations, it can break up the
available 16KB block, causing allocation failure.

Solution:
1. Introduce configurable strategy for using dynamic buffers in TLS connections.
2. For example, convert RX buffers to static after the TLS handshake.
3. Allow users to select the strategy via a new field in the esp_http_client_cfg_t structure.
4. The strategy can be controlled independently for each TLS session.
 2025-06-18 15:01:17 +05:30
Jiang Jiang Jian e44e7ce2f9 Merge branch 'bugfix/fix_tls1_3_dynamic_buffer_build_v5.5' into 'release/v5.5' 
fix(mbedtls): Fix failing build with TLS1.3 only and dynamic buffer enabled (v5.5)

See merge request espressif/esp-idf!39879
 2025-06-17 15:39:50 +08:00
Aditya Patwardhan d5323cfaaa Merge branch 'feature/enable_support_for_deterministic_mode_and_ecdsa_192_v5.5' into 'release/v5.5' 
enable support for deterministic mode and ecdsa 192 in ESP32H2 (v5.5)

See merge request espressif/esp-idf!39540
 2025-06-16 18:32:43 +05:30
Aditya Patwardhan 6e82c7a061 Merge branch 'bugfix/fix_tls1_3_server_failing_handshake_v5.5' into 'release/v5.5' 
fix(mbedtls): Fix failing handshake when running HTTPS Server with TLS1.3 (v5.5)

See merge request espressif/esp-idf!39414
 2025-06-16 17:02:10 +05:30
Mahavir Jain 6cf1a6f297 Merge branch 'fix/suppress_cert_bundle_serial_number_warning_v5.5' into 'release/v5.5' 
fix(mbedtls/esp_crt_bundle): Suppress non-negative serial number warning (v5.5)

See merge request espressif/esp-idf!39401
 2025-06-16 15:42:10 +05:30
Ashish Sharma 156ead0cd5 fix(mbedtls): Fixes failing TLS 1.3 server handshake 
Closes https://github.com/espressif/esp-idf/issues/15984
 2025-06-16 11:27:48 +05:30
nilesh.kale 04f5e591c0 feat: enable support for deterministic mode for esp32h2 2025-06-16 13:13:03 +08:00
nilesh.kale 2d5d7b819f feat: enabled ECDSA-P192 support for ESP32H2 2025-06-16 13:13:03 +08:00
Ashish Sharma 08d78dcd7e fix(esp_tls): fix failing build with TLS1.3 only and dynamic buffer 2025-06-16 09:22:57 +08:00
harshal.patil 07ae83249a fix(mbedtls/esp_crt_bundle): Suppress non-negative serial number warning 
Co-authored-by: Mahavir Jain <mahavir.jain@espressif.com>
 2025-06-04 17:37:47 +05:30
Laukik Hase 27496e47f0 feat(esp_tee): Support for ESP32-H2 - the rest of the components 2025-05-21 10:06:17 +05:30
harshal.patil 1ba8abd8b7 fix(mbedtls): Enable signature verification s/w fallback when ECDSA curve is disabled 2025-05-20 12:18:07 +05:30
Laukik Hase d116567a66 refactor(esp_tee): Update TEE secure storage interface APIs 2025-05-04 18:03:29 +05:30
Laukik Hase c9f7bcd452 feat(esp_tee): Support the nvs_flash for the ESP-TEE build 2025-05-04 18:03:28 +05:30
Zhang Xiao Yan 97f904b6fb Merge branch 'docs/fix_some_typos' into 'master' 
docs: Fix some typos

Closes DOC-10600, DOC-10605, DOC-10606, DOC-10607, DOC-10608, and DOC-10671

See merge request espressif/esp-idf!37977
 2025-04-30 18:35:40 +08:00
Shen Meng Jing 62d4115e08 docs: Fix some typos 2025-04-30 18:35:39 +08:00
Aditya Patwardhan d3e3790fc9 Merge branch 'fix/refactor_source_code_and_comments' into 'master' 
fix(hal): updated API description and added comments

Closes IDF-12618

See merge request espressif/esp-idf!38415
 2025-04-30 18:26:57 +08:00
Mahavir Jain ff555428d1 Merge branch 'feat/dynamic_buffer_tls1.3' into 'master' 
feat(mbedtls): add support for dynamic buffer for TLS1.3

Closes IDFGH-14708, IDF-12469, IDF-9178, and IDF-1725

See merge request espressif/esp-idf!38258
 2025-04-30 17:52:43 +08:00
nilesh.kale f19e8e6970 fix: re-enabled ecdsa support for esp32c5-eco2 2025-04-28 20:58:09 +05:30
Ashish Sharma 415e0f3c86 feat(mbedtls): add support for dynamic buffer for TLS1.3 
Closes https://github.com/espressif/esp-idf/issues/15448
 2025-04-24 12:05:36 +08:00
Mahavir Jain 8b239ab605 Merge branch 'fix/remove_mbedtls_logical_dead_code' into 'master' 
fix(mbedtls): remove logical dead code from mbedtls

Closes IDF-12866

See merge request espressif/esp-idf!38498
 2025-04-23 12:21:20 +08:00
harshal.patil b0d9ccf6e3 fix(mbedtls): Fix config dependencies when ROM mbedtls is used 2025-04-21 13:38:29 +05:30