Djam/arm-trusted-firmware
1
0
Fork 0
mirror of https://github.com/ARM-software/arm-trusted-firmware.git synced 2025-04-18 02:24:18 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat(mbedtls): mbedtls config update for v3.6.2

Browse source 
This new update to the LTS branch of MbedTLS provides
the fix for a buffer underrun vulnerability. TF-A does
not use the previously vulnerable functions
`mbedtls_pk_write_key_der` or `mbedtls_pk_write_key_pem`.
Full patch notes to this MbedTLS update can be found at
https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.6.2.

We now enforce the mbedtls version to be greater than or equal
to 3.6.2 in our default configs.

Change-Id: I79027f6c741ab3f419f7b555321507e6a78b977b
Signed-off-by: Ryan Everett <ryan.everett@arm.com>
This commit is contained in:
Ryan Everett 2024-12-09 16:00:38 +00:00
parent 95037029a7
commit c307efce85
1 changed files with 5 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
include/drivers/auth/mbedtls/default_mbedtls_config.h
View file

@ -10,6 +10,11 @@
* memory footprint.
*/
/*
* This file is compatible with versions >= 3.6.2
*/
#define MBEDTLS_CONFIG_VERSION 0x03060200
/*
* Key algorithms currently supported on mbed TLS libraries
*/