Johan Pascal (5a45cf60) at 30 Jan 16:57
Johan Pascal (3714f067) at 26 Jan 11:08
ITS#10014 Non blocking TLS session accept for mbedtls handle
Johan Pascal (f1b4e573) at 26 Jan 10:24
Non blocking TLS session accept for mbedtls handle
... and 84 more commits
Johan Pascal (67d3fd3d) at 22 Jun 06:56
ITS#10068 keep our own copy of the DN
... and 39 more commits
Johan Pascal (f7e6c71e) at 31 Mar 06:17
sorry, it should be fine now
Johan Pascal (fefa8aac) at 27 Mar 10:38
ITS#10014: Add TLS handle using MbedTLS
I changed the digest size to MBEDTLS_MAX_MD_SIZE so the output of mbedtls_md_get_size(and thus the output buffer written by mbedtls_md) cannot be larger than the digest declared size.
ok
Johan Pascal (54afab1d) at 27 Mar 08:17
ITS#10014: Add TLS handle using MbedTLS
It depends on mbedtls version and build options... The mbedtls documentation is moving from one format to another lately, so it is not very accessible at the moment. It is supposed to be there: https://mbed-tls.readthedocs.io/en/latest/
but there is no API documentation. One is available there: https://arm-software.github.io/CMSIS-mbedTLS/latest/ssl__ciphersuites_8h.html (not pointing to the latest version) and gives a list of all possibly supported ciphersuites. The best place to see the actual list is the code itself: https://github.com/Mbed-TLS/mbedtls/blob/development/include/mbedtls/ssl_ciphersuites.h
By the way, if this is a blocker, I can try to implement the ciphersuite selection, which is available in mbedtls and should not be that difficult to use.
The channel binding using tls-unique seems impossible to implement without patching mbedtls, for the DH files it could be done but seems a bit more complex.
You're right, portable.hin is generated by autotools, so I removed it from the MR
Johan Pascal (f5be0b97) at 02 Mar 17:46
ITS#10014: Add TLS handle using MbedTLS
oops, I squashed all the commits and forgot that file... It is back, thanks.
Johan Pascal (86adbb48) at 02 Mar 11:10
ITS#10014: Add TLS handle using MbedTLS
Johan Pascal (924a5c3a) at 02 Mar 10:32
ITS#10014: Add TLS handle using MbedTLS
Johan Pascal (62a5380a) at 02 Mar 09:51
ITS#10014: Add TLS handle using MbedTLS
Limitations:
Johan Pascal (ad381028) at 01 Mar 12:04
Skip TLS-unique binding tests when using mbedtls as it does not sup...