48e7d44ce1
fix(esp-tls): Remove the legacy use_km_key option
2026-03-20 11:15:23 +05:30
d0f062c018
ci: remove unused test cases
2026-03-12 12:02:10 +01:00
b5550281b9
change(mbedtls): Change the ESP-DS-RSA key lifetime name to include the VOLATILE keyword
2026-03-06 15:00:38 +05:30
a5d7fb3a41
Merge branch 'fix/fix_dynamic_buffer_with_tls1_3' into 'master'
...
fix: fixes failing dynamic buffer tests
Closes IDFCI-5130
See merge request espressif/esp-idf!45150
2026-03-05 18:35:32 +05:30
aa63487d9f
feat(mbedtls/esp_rsa_ds): Introduce ESP-RSA DS opaque key context
2026-03-03 18:36:18 +05:30
20a6888b41
feat(esp-tls): adds per ssl context state management
2026-03-03 11:21:56 +08:00
53243675d4
fix(esp-tls): Fixed linux build for Build System v2
...
For Build System v2 on linux target, lwip dependency and ESP_TLS_WITH_LWIP
definition must be conditional on CONFIG_LWIP_ENABLE rather than checking
BUILD_COMPONENTS. v2 uses configuration-driven dependencies.
2026-02-18 09:58:05 +01:00
eb0086ef7f
change: Moved esp-tls hint to component specific hints.yml file
2026-02-13 15:59:31 +08:00
b3e1c03d97
fix(mbedtls): revert struct member name change esp_rsa_ds_data to esp_ds_data
2026-02-06 17:33:17 +08:00
3a7d385ea4
Merge branch 'feat/add_opaque_ds_driver' into 'master'
...
feat: adds PSA opaque DS driver support
See merge request espressif/esp-idf!45008
2026-02-06 12:41:58 +05:30
6f5b078ed6
feat: adds DS Sign capabilities for ESP32S2
2026-02-05 10:12:25 +08:00
e06a7dd791
feat: adds new Kconfig variable for DS peripheral
2026-02-05 10:12:25 +08:00
1d185a6548
feat: adds PSA DS driver support
2026-02-05 10:12:25 +08:00
e1810e6bfd
feat(esp-tls): Add crypto callbacks to custom TLS stack interface
...
Added crypto_sha1 and crypto_base64_encode callbacks to esp_tls_stack_ops_t
to allow custom TLS stacks to provide implementations for esp_crypto_* APIs.
2026-02-04 18:54:49 +05:30
45bb06d212
feat(esp-tls): Added build test for the custom stack registration
2026-02-04 13:53:29 +05:30
f96119db75
feat(esp-tls): Added support to register custom tls stack
...
* Removed the esp_tls_wolfssl layer from esp-tls
* Migrated Error codes
2026-02-04 13:53:25 +05:30
e9ea55bea2
feat(mbedtls/ecdsa): Introduce PSA ECDSA driver
2026-01-19 09:14:37 +05:30
cca2a54624
feat: migrates esp-tls to PSA APIs
2025-12-30 09:31:49 +05:30
f405e51784
ci(esp32s31): Add ci build test for esp32s31
2025-12-11 15:17:15 +08:00
9fe50060e6
feat(mbedtls): update to version 3.6.5
2025-11-11 10:07:05 +08:00
5b56b00ac8
feat(esp_http_server): Allow the https server to request client certs optionally
...
Closes https://github.com/espressif/esp-idf/pull/17641
2025-10-27 14:19:17 +08:00
62f852a93b
feat(esp_tls): supports setting tls version and ciphersuite in server config
...
Closes https://github.com/espressif/esp-idf/issues/17660
2025-10-03 15:19:41 +08:00
2b42a6aa2b
fix(esp_tls_conn_new_sync): Fix esp_tls_conn_new_sync's doc to reflect its implementation
...
Closes https://github.com/espressif/esp-idf/pull/17652
Closes https://github.com/espressif/esp-idf/issues/17598
2025-09-30 10:02:20 +08:00
9cb348789c
fix(esp_tls): limit ret code from esp_mbedtls_handshake
2025-09-24 09:36:38 +08:00
54d97fdac1
fix(esp-tls): removed unncessary log for certificate verification
...
This commit removed unnecessary and confusing log for
certificate verify if there is another issue during tls connection.
2025-09-17 13:04:16 +08:00
421b9abd0d
fix(esp-tls): added missing event tracker capture during mbedtls read operation
...
This commit fixed missing event tracker capture and
added new error code ESP_ERR_MBEDTLS_SSL_READ_FAILED.
Closes https://github.com/espressif/esp-idf/issues/16239
2025-09-17 13:04:16 +08:00
bf7dc18bd6
fix(esp_tls): Fixed build failure for sbv2 ecdsa
...
Made ESP_TLS_ECDSA_CURVE_SECP384R1 under SOC CAP.
2025-09-09 16:01:04 +05:30
632dac5feb
Merge branch 'doc/adds_sni_documentation' into 'master'
...
docs(esp_http): adds documentation regarding sni
See merge request espressif/esp-idf!41586
Related https://github.com/espressif/esp-idf/issues/9392
2025-09-02 09:26:12 +05:30
08a4a2b506
docs(esp_tls): adds documentation regarding sni
2025-08-29 16:13:42 +08:00
28ced4efad
fix(config): actualize newlib Kconfig options
2025-08-28 12:25:09 +08:00
42914e01ee
feat: remove some deprecated APIs from 6.0 release
2025-08-20 14:20:37 +05:30
9d35d63651
feat(cmake): Update minimum cmake version to 3.22 (whole repository)
2025-08-19 14:44:32 +02:00
dedc9889de
feat: added config member to store block number for hign part of ecdsa key
2025-08-11 16:01:10 +05:30
08e781c876
feat: added new config member to provide ecdsa curve type
2025-08-11 16:01:09 +05:30
68f06a94bd
feat: add ecdsa-p384 testcases and relative support for ESP32C5 ECO2
...
This commit adds testcases in crypto/hal and mbedtls testapps.
2025-08-11 16:01:01 +05:30
4065fb20f3
Merge branch 'feature/esp_test_utils_component' into 'master'
...
change(test_utils): moved test_utils out of unit-test-app project
See merge request espressif/esp-idf!40678
2025-08-01 11:04:37 +08:00
d9c431268a
feat(mbedtls): restructure mbedtls configuration page
2025-07-30 17:47:54 +08:00
bf84ab652a
change(test_utils): moved test_utils component to tools/test_apps/components/
2025-07-21 14:05:50 +08:00
466a365a02
feat(mbedtls): adds support for RSA decryption with DS peripheral
2025-07-07 13:32:06 +08:00
9c151bcd01
feat(esp_tls): Added hidden config in esp-tls for dynamic buffer strategy configuration
...
Added the hidden config in the esp-tls component for the dynamic buffer
strategy configuration feature. So that external components like ota
can findout whether this feature is supported or not
2025-06-28 13:17:47 +05:30
a8bf745f23
Merge branch 'feat/adding_different_strategy_to_perform_tls_using_dynamic_feature' into 'master'
...
Add configuration to control dynamic buffer strategy in mbedtls
Closes IDF-12591
See merge request espressif/esp-idf!39469
2025-06-12 09:52:35 +05:30
5928a87aa7
feat(mbedtls): Add configuration to control dynamic buffer strategy in mbedtls
...
Problem:
1. In low-memory scenarios, the dynamic buffer feature can fail due to memory fragmentation.
2. It requires a contiguous 16KB heap chunk, but continuous allocation and deallocation of
the RX buffer can lead to fragmentation.
3. If another component allocates memory between these operations, it can break up the
available 16KB block, causing allocation failure.
Solution:
1. Introduce configurable strategy for using dynamic buffers in TLS connections.
2. For example, convert RX buffers to static after the TLS handshake.
3. Allow users to select the strategy via a new field in the esp_http_client_cfg_t structure.
4. The strategy can be controlled independently for each TLS session.
2025-06-05 12:43:47 +05:30
2ef09a7952
fix(esp_tls): fix failing build with TLS1.3 only and dynamic buffer
2025-06-02 09:14:03 +08:00
97f904b6fb
Merge branch 'docs/fix_some_typos' into 'master'
...
docs: Fix some typos
Closes DOC-10600, DOC-10605, DOC-10606, DOC-10607, DOC-10608, and DOC-10671
See merge request espressif/esp-idf!37977
2025-04-30 18:35:40 +08:00
62d4115e08
docs: Fix some typos
2025-04-30 18:35:39 +08:00
ff555428d1
Merge branch 'feat/dynamic_buffer_tls1.3' into 'master'
...
feat(mbedtls): add support for dynamic buffer for TLS1.3
Closes IDFGH-14708, IDF-12469, IDF-9178, and IDF-1725
See merge request espressif/esp-idf!38258
2025-04-30 17:52:43 +08:00
f6a7bcb54e
fix(esp-tls): Fixed build issue in esp-tls related to IPV6 only config
2025-04-24 15:14:35 +05:30
415e0f3c86
feat(mbedtls): add support for dynamic buffer for TLS1.3
...
Closes https://github.com/espressif/esp-idf/issues/15448
2025-04-24 12:05:36 +08:00
0bad622a7a
fix(esp_tls): use correct sockaddr struct size when calling connect()
...
Closes https://github.com/espressif/esp-idf/issues/15812
2025-04-23 13:23:44 +08:00
e738ec5ccd
fix(esp-tls): Fix build failure when CONFIG_MBEDTLS_SHA1_C is disabled
2025-04-21 13:38:29 +05:30
harshal.patil
Evgeny Torbin
Mahavir Jain
Ashish Sharma
Sudeep Mohanty
Marek Fiala
Aditya Patwardhan
C.S.M
0xFEEDC0DE64
Jared Pon
nilesh.kale
hrushikesh.bhosale
Alexey Lapshin
Marius Vikhammer
Zhang Xiao Yan
Shen Meng Jing