Release candidate for mbed-os-5.11.5 #9805
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Like all HAL APIs, the calls in trng_api.h are not expected to be thread-safe. All current accesses to the TRNG HAL are currently via `mbedtls_hardware_poll`. Mbed TLS does not currently serialise these calls itself, as `MBEDTLS_THREADING_C` is not enabled. But even if Mbed TLS's own accesses were serialised, there are other direct users of `mbedtls_hardware_poll` such as randLIB, that need to use direct calls due to lack of API to extract entropy from Mbed TLS. As such it makes sense to treat `mbedtls_hardware_poll` as a de facto public Mbed OS API, akin to the C++ veneers on top of the HAL, and add a PlatformMutex there so that it is safe for multithreaded use.
Use PSA_NON_SECURE_ROM_START configuration value instead of hardcoded CY_CORTEX_M4_APPL_ADDR.
1. Removed random i/o glitches occurring during device reconfiguration 2. Fixed hazardous reads occurring at the end of transfer resulting in incorrect values being received 3. Added spi_free() function 4. Replaced default M0 image with a one ignoring i/o reservation. This is a workaround for missing proper destructors in Mbed drivers and BlockDevice tests failing on repeated initialization Fixes issue #9620.
When building secure targets, we would like compile only files that are in the the mbe-os root folder. This Fixes an issue when sending multiple --source parameters that are all inside the mbed-os tree
Previously, the CryptoToolbox was allocated once as part of the security manager. This was inneficient memory wise as it is only use to prepare key at initialization and when we need to compute shared keys. This was also inneficient power consumption wise as the Crypto cell was kept enabled even when it wasn't used. This fix creates a CryptoToolbox whenever it is needed and release it once it has fulfilled its purpose. Note that CryptoToolbox allocation happens on the heap as mbed tls data structure are huge and there's an high risk of crushing the stack.
In case mbedtls fails to execute handshake advertising MBEDTLS_ERR_SSL_WANT_READ or MBEDTLS_ERR_SSL_WANT_WRITE, TLSSocketWrapper::continue_handshake returns NSAPI_ERROR_WOULD_BLOCK.
Removed by mistake in 763cb4c
…nt have to change each run, just be unique. Because address seeds repeat themselves each run, rand() will produce repeating results that should not collide between different threads.
Port of NUC472/M487 crypto AC mgmt work to M2351: 1. Choose mutex to synchronize access to crypto non-SHA AC 2. Choose atomic flag to synchronize access to crypto SHA AC
Fix the following warning seen when built with GCC_ARM with mbed-cli v1.8.3 $ mbed compile -c -t GCC_ARM -m K64F <snip> [Warning] QUECTEL_M26_CellularStack.cpp@364,9: variable 'sent_acked' set but not used [-Wunused-but-set-variable] <snip>
Fixes a bug where after dropping bad packets receiver doesn't restore the socket back to non-blocking state as it's supposed to.
Test case is allowed to take not more than a half what has been given to the whole UDP suite. UDP test cases reorganized so that the longest running ones are executed last.
|
CI started |
This reverts commit 2a7f5e2.
|
@JanneKiiskila Please review and OK when able. |
Test run: FAILEDSummary: 3 of 8 test jobs failed Failed test jobs:
|
|
Reverted PR: #9616 (comment) |
|
CI restarted |
Test run: FAILEDSummary: 3 of 8 test jobs failed Failed test jobs:
|
cmonr
force-pushed
the
release-candidate
branch
from
ab03bcd to
f5eb87c
Compare
added 3 commits
February 21, 2019 22:02
|
CI restarted. |
|
@ARMmbed/mbed-os-psa Please review. Had to revert hte following PRs to get a locall F411 build to pass: |
Test run: SUCCESSSummary: 12 of 12 test jobs passed |
I've left comments in the PRs that they moved to 5.12. Not certain why but might be some dependancy. All of these should be fine for 5.12. But we should rather wait for psa team to confirm. |
|
@Patater could you confirm that the target configuration is fine? |
|
I had a look at targets.json between 5.11.0 and 5.11.5.
|
0xc0170
approved these changes
Feb 22, 2019
|
@Patater To the problem we had on master, by not having the PRs referenced above in 5.11.5 - are we fine? will client work as it was for previous patch release? My assumption would be yes. |
|
@0xc0170 Yes, the problem we had on master will not come up in 5.11.5 because there are no targets without guaranteed entropy having MBEDTLS_PSA_CRYPTO_C enabled. |
|
Confirmed, client tests are OK. This is ready for merge |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.