From patchwork Sun Nov 10 08:28:36 2024 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Ilias Apalodimas X-Patchwork-Id: 842363 Delivered-To: patch@linaro.org Received: by 2002:a5d:6307:0:b0:381:e71e:8f7b with SMTP id i7csp2451788wru; Sun, 10 Nov 2024 00:31:06 -0800 (PST) X-Forwarded-Encrypted: i=2; AJvYcCUiNGgVPlPMYJulnfmOm+AXNsCEKbaTzchsYB0PT7h7iUAdIkhzV9xm0n23+k/wGX1nYYxLdQ==@linaro.org X-Google-Smtp-Source: AGHT+IHZMJsWM+G5u24pPhzTJt2StTt8VJ/t0BE12VCwOInl3jGiitGWZrJGe1h0/VxFzTVnPtO1 X-Received: by 2002:a17:907:2da7:b0:a9e:edcf:b7c8 with SMTP id a640c23a62f3a-a9eeffd8f7cmr844249266b.44.1731227466653; Sun, 10 Nov 2024 00:31:06 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1731227466; cv=none; d=google.com; s=arc-20240605; b=OueeWZ4TZY5H0Jw7c2z6tzPw96vR8pl+cRK802wwdecFQcWX1vCMXsFjq2PldYgJE/ EeJke9Ia/z3zA7lsE5YCNeeobNyhGpLHOJ2PErP0V0o1hNAsjXkp+NQoEAlmlSz5fAti b6OA41diU1GZHOKhUuTg0tGSj/HUSs0m1OdyAOpudRmY+XGMXixvBfPHxyne2vnRP5Kq cH5feoRncbRbeIVIzgISo8A6hMlzBXFYgjKE0zUk0xLKnmTyVTwsjV+Km78nT2q2c70G cn2HG/d0Xlz+ZHIipIY/opMWZp+6f5pyCgAf3+7lv5qhmUQP3ncSJq1Y1u7kKEVh7elC C4kg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=sender:errors-to:list-subscribe:list-help:list-post:list-archive :list-unsubscribe:list-id:precedence:content-transfer-encoding :mime-version:message-id:date:subject:cc:to:from:dkim-signature; bh=A8tAVw7EnJqqzMSD2jVNR4sHw0BAq4oPrI6QOEmDJwU=; fh=dqmpxC9WWIWiQir5dk/AetNTWHJlT1Q1BuP2RIRj7y4=; b=lSa6cXwIOyjeawxmwuQc3B7QckbPtbyCf5olSI3qjV1rNPajTEPUOXmAAINqYDjnR7 5yW1UcEeJPxEZqdr5Fw5+EsWQMIwnKpSBsk6NyT86pFsxacSDx/gzYd7Md/EUc9tNnSx rBeOCucbNAD4paOSntdgdlUP8agggjszkwmExOPCfNLj8CNPpeEfU3045/n3sNQyCign hZh7GIE14TsK0+kKBZqVtNI5OQLP0TCqrF6ZLx8Vlz+0WkZEPE3Mit3netwHv7Zzdjb4 +cXaRuKDCogS25DJf2iV1gcj2OUlkQbOz8GdiPplafdG9tJrxmF3Hj6N/6LBm/7ctIK6 N3RQ==; dara=google.com ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linaro.org header.s=google header.b="OW2/3Oav"; spf=pass (google.com: domain of u-boot-bounces@lists.denx.de designates 2a01:238:438b:c500:173d:9f52:ddab:ee01 as permitted sender) smtp.mailfrom=u-boot-bounces@lists.denx.de; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org; dara=neutral header.i=@linaro.org Return-Path: Received: from phobos.denx.de (phobos.denx.de. [2a01:238:438b:c500:173d:9f52:ddab:ee01]) by mx.google.com with ESMTPS id a640c23a62f3a-a9ee0e576d3si515314566b.963.2024.11.10.00.31.06 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sun, 10 Nov 2024 00:31:06 -0800 (PST) Received-SPF: pass (google.com: domain of u-boot-bounces@lists.denx.de designates 2a01:238:438b:c500:173d:9f52:ddab:ee01 as permitted sender) client-ip=2a01:238:438b:c500:173d:9f52:ddab:ee01; Authentication-Results: mx.google.com; dkim=pass header.i=@linaro.org header.s=google header.b="OW2/3Oav"; spf=pass (google.com: domain of u-boot-bounces@lists.denx.de designates 2a01:238:438b:c500:173d:9f52:ddab:ee01 as permitted sender) smtp.mailfrom=u-boot-bounces@lists.denx.de; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org; dara=neutral header.i=@linaro.org Received: from h2850616.stratoserver.net (localhost [IPv6:::1]) by phobos.denx.de (Postfix) with ESMTP id 48CAC88FCB; Sun, 10 Nov 2024 09:31:05 +0100 (CET) Authentication-Results: phobos.denx.de; dmarc=pass (p=none dis=none) header.from=linaro.org Authentication-Results: phobos.denx.de; spf=pass smtp.mailfrom=u-boot-bounces@lists.denx.de Authentication-Results: phobos.denx.de; dkim=pass (2048-bit key; unprotected) header.d=linaro.org header.i=@linaro.org header.b="OW2/3Oav"; dkim-atps=neutral Received: by phobos.denx.de (Postfix, from userid 109) id D5016890C1; Sun, 10 Nov 2024 09:31:03 +0100 (CET) X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on phobos.denx.de X-Spam-Level: X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_BLOCKED, SPF_HELO_NONE,SPF_PASS autolearn=ham autolearn_force=no version=3.4.2 Received: from mail-ej1-x62f.google.com (mail-ej1-x62f.google.com [IPv6:2a00:1450:4864:20::62f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits)) (No client certificate requested) by phobos.denx.de (Postfix) with ESMTPS id 8073988FBF for ; Sun, 10 Nov 2024 09:31:01 +0100 (CET) Authentication-Results: phobos.denx.de; dmarc=pass (p=none dis=none) header.from=linaro.org Authentication-Results: phobos.denx.de; spf=pass smtp.mailfrom=ilias.apalodimas@linaro.org Received: by mail-ej1-x62f.google.com with SMTP id a640c23a62f3a-a9aa8895facso666650066b.2 for ; Sun, 10 Nov 2024 00:31:01 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; t=1731227461; x=1731832261; darn=lists.denx.de; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:from:to:cc:subject:date:message-id:reply-to; bh=A8tAVw7EnJqqzMSD2jVNR4sHw0BAq4oPrI6QOEmDJwU=; b=OW2/3Oavmtkbm5njIIkqd6H7ed0zfYjMdYkNIda4ZBsqU4mzdRK6ju8putFIT0MMMx tXkN7BS/aTAFGXqm6pV5J4zSd5/Tbo/B6YFlEFQiSSyPjN24v8FSKXMxbDXeAIcUB3Zf tTI2UxLsIJd2w8ivJoHSNEWjTShc2TRa04ESz8frjiyLwmY0GTFuPiDkTJTUQxLKsRUz qmUAFRHflUgc5fBOeTWGetzBkRDrya9C4LlzG6iFo/KFmb+QOJo8QYilNKaVyJUgQzC2 f5iX6jfwhJ9RLpREgEI4JRLxbdhvnSPFigHbIZgQ+vFYe/mENmj7OWyKaJND/qGBkRPV 6Q1g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1731227461; x=1731832261; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=A8tAVw7EnJqqzMSD2jVNR4sHw0BAq4oPrI6QOEmDJwU=; b=Qf2A5kTNJ2pjeS+wjUiL1fRpzs6YbUq0EwiUPTQIFaMMLU5X9JP+Vt0AH1lndB3Cw/ IahYT5nfz/yJK/XcmIVquK3Rv514DWLBvoPDrKnsu0gPeoParRESCIBvk8pmcMLKnd/7 8txV/mHN1IQdqRpZwQ4JVGaeHdmq3ggv9BkjbJfIZQLaZdaFiwZHb5HP7Ep5wjjsR16v VBBR2TgVfSn/QvxE3lrPjvGCNiFRExx80fHzll0O/mGhkJMQvPXfd1Xfkmb0P+b3zsNM b3ncUm4nkhYvXb28SmqbLB0KwM6xJJH9FXFMsQykNZGRfjz9f+yR1p9xKDcNSM1djLho CYEA== X-Forwarded-Encrypted: i=1; AJvYcCXCU6GsAPnb7nRQNcmwupymD8ZUev4aNaaucZUWTJ7c2yiESIQQ1uXfNpJXrPGE8/0XTOEhjuo=@lists.denx.de X-Gm-Message-State: AOJu0Yzp2fVkrScpO2tCrMbsb0N10obiKAKC8VkLs9+w4oH+nfAZ5463 ACdwlzDHyOl/KTYhSJY6swBBLv+cOI0zeBDTaFRZezSMANeirptsFXaer3aoz28= X-Received: by 2002:a17:906:c10f:b0:a9a:8028:45d8 with SMTP id a640c23a62f3a-a9eefe9bb73mr866175366b.7.1731227460761; Sun, 10 Nov 2024 00:31:00 -0800 (PST) Received: from hades.. (ppp176092143132.access.hol.gr. [176.92.143.132]) by smtp.gmail.com with ESMTPSA id a640c23a62f3a-a9ee0a17b3csm451909166b.19.2024.11.10.00.30.56 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sun, 10 Nov 2024 00:30:58 -0800 (PST) From: Ilias Apalodimas To: jerome.forissier@linaro.org Cc: Anton.Antonov@arm.com, Ilias Apalodimas , Tom Rini , Heinrich Schuchardt , Joe Hershberger , Ramon Fried , Simon Glass , Mattijs Korpershoek , AKASHI Takahiro , Dmitry Rokosov , Peter Robinson , Wei Ming Chen , Jonathan Humphreys , Masahisa Kojima , Caleb Connolly , Javier Tia , Raymond Mao , u-boot@lists.denx.de Subject: [PATCH v3 0/6] Date: Sun, 10 Nov 2024 10:28:36 +0200 Message-ID: <20241110083017.367565-1-ilias.apalodimas@linaro.org> X-Mailer: git-send-email 2.43.0 MIME-Version: 1.0 X-BeenThere: u-boot@lists.denx.de X-Mailman-Version: 2.1.39 Precedence: list List-Id: U-Boot discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: u-boot-bounces@lists.denx.de Sender: "U-Boot" X-Virus-Scanned: clamav-milter 0.103.8 at phobos.denx.de X-Virus-Status: Clean Hi all, This is a respin of [1] adding https support to wget. In short patch#1 enables the crypto algorithms we need in mbedTLS patches#2, #3 enable anf fix the lwIP part we need patch#4 is adding https:// parsing support in our wget patch#5 is making https:// the default for QEMU lwip defconfig so people can easily test and finaly patch#6 updates our documentation [1] https://lore.kernel.org/u-boot/20241024112449.1362319-1-ilias.apalodimas@linaro.org/ Changes since v2: - Use a bool variable for https:// support instead of relying on the port number - changed a memcpy to strlcpy to avoid reading extra bytes from the source buffer - Removed unrelated whitespace fixes - CONFIG_IS_ENABLED -> IS_ENABLED on mbedTLS header file - Add r-b tags by Jerome Changes since v1: - re-arranged the Makefile objects so they only get compiled when TLS ie enabled - Fix all the applicable remarks Simon had on the wget patches - Fixed the title of a patch pointer out by Peter - Rebased on -master - Collected r-b tags Ilias Apalodimas (4): mbedtls: Enable TLS 1.2 support net: lwip: Enable https:// support for wget configs: Enable https for wget on qemu arm64 doc: uefi: Describe UEFI HTTPs boot Javier Tia (2): net: lwip: Update lwIP for mbedTLS > 3.0 support and enable https net: lwip: Add Support Server Name Indication support cmd/Kconfig | 19 ++++ configs/qemu_arm64_lwip_defconfig | 1 + doc/develop/uefi/uefi.rst | 45 +++++++++- lib/lwip/Makefile | 3 + .../src/apps/altcp_tls/altcp_tls_mbedtls.c | 49 +++++++---- lib/lwip/lwip/src/core/tcp_out.c | 8 -- lib/lwip/lwip/src/include/lwip/altcp_tls.h | 2 +- lib/lwip/u-boot/lwipopts.h | 6 ++ lib/mbedtls/Kconfig | 12 +++ lib/mbedtls/Makefile | 31 +++++++ lib/mbedtls/mbedtls_def_config.h | 52 +++++++++++ net/lwip/Kconfig | 2 +- net/lwip/wget.c | 86 +++++++++++++++++-- 13 files changed, 277 insertions(+), 39 deletions(-) --- 2.43.0