Skip to content

(backport 87637/88593 to 4.1) modules: mbedtls: update to 3.6.3 and tf-m to 2.1.2 #88433

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Apr 27, 2025
Merged

(backport 87637/88593 to 4.1) modules: mbedtls: update to 3.6.3 and tf-m to 2.1.2 #88433

merged 2 commits into from
Apr 27, 2025

Conversation

@wearyzen
Copy link
Contributor

@wearyzen wearyzen commented Apr 10, 2025
edited
Loading

Update Mbed TLS to 3.6.3 as it has CVE fixes.
Fixes #88434
Related to #87637

@wearyzen wearyzen requested a review from tomi-font April 10, 2025 13:11
@zephyrbot zephyrbot added the Release Notes To be mentioned in the release notes label Apr 10, 2025
@zephyrbot
Copy link

zephyrbot commented Apr 10, 2025
edited
Loading

The following west manifest projects have changed revision in this Pull Request:

Name Old Revision New Revision Diff
mbedtls zephyrproject-rtos/mbedtls@4952e13 zephyrproject-rtos/mbedtls@5f88993 (zephyr) zephyrproject-rtos/[email protected]
tf-m-tests zephyrproject-rtos/tf-m-tests@502ea90 zephyrproject-rtos/tf-m-tests@c712761 (main) zephyrproject-rtos/[email protected]
trusted-firmware-m zephyrproject-rtos/trusted-firmware-m@918f32d zephyrproject-rtos/trusted-firmware-m@e2288c1 (main) zephyrproject-rtos/[email protected]

Additional metadata changed:

Name URL Submodules West cmds module.yml
trusted-firmware-m

DNM label due to: 1 project with metadata changes

Note: This message is automatically posted and updated by the Manifest GitHub Action.

tomi-font
tomi-font reviewed Apr 10, 2025
View reviewed changes
@wearyzen wearyzen force-pushed the backport-88229 branch 2 times, most recently from ce50faf to 3720f17 Compare April 10, 2025 13:47
@wearyzen wearyzen requested a review from tomi-font April 10, 2025 13:48
@wearyzen
modules: mbedtls: update to 3.6.3
27f19cb 
Update Mbed TLS to 3.6.3 as it has CVE fixes.

Signed-off-by: Sudan Landge <[email protected]>
tomi-font
tomi-font approved these changes Apr 11, 2025
View reviewed changes
Copy link
Contributor

@tomi-font tomi-font left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Minor point, I think it could be nice to have an indication in the PR title that this is a backport for 4.1.

@tomi-font tomi-font requested review from ceolin and d3zd3z April 11, 2025 09:49
@wearyzen wearyzen changed the title modules: mbedtls: update to 3.6.3 (backport 87637 to 4.1) modules: mbedtls: update to 3.6.3 Apr 11, 2025
@wearyzen
Copy link
Contributor Author

wearyzen commented Apr 11, 2025

Minor point, I think it could be nice to have an indication in the PR title that this is a backport for 4.1.

Done, also added a "related to" so that main PR has some info about the backports.

fabiobaltieri
fabiobaltieri previously approved these changes Apr 14, 2025
View reviewed changes
tomi-font
tomi-font requested changes Apr 14, 2025
View reviewed changes
Copy link
Contributor

@tomi-font tomi-font left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

needs changes in TF-M as well to work properly

@zephyrbot zephyrbot added manifest-trusted-firmware-m manifest-tf-m-tests DNM (manifest) This PR should not be merged (controlled by action-manifest) labels Apr 17, 2025
tomi-font
tomi-font requested changes Apr 22, 2025
View reviewed changes
Copy link
Contributor

@tomi-font tomi-font left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

also suggest renaming the PR title to include information about the TF-M update

@tomi-font tomi-font removed the DNM (manifest) This PR should not be merged (controlled by action-manifest) label Apr 22, 2025
@tomi-font tomi-font mentioned this pull request Apr 22, 2025
Merged
@wearyzen
modules: tf-m: update to 2.1.2
8d964d7 
Update TF-M to 2.1.2 from version 2.1.1.
This is required to use MbedTLS 3.6.3.

Signed-off-by: Sudan Landge <[email protected]>
@zephyrbot zephyrbot added the DNM (manifest) This PR should not be merged (controlled by action-manifest) label Apr 22, 2025
@wearyzen wearyzen changed the title (backport 87637 to 4.1) modules: mbedtls: update to 3.6.3 (backport 87637/88593 to 4.1) modules: mbedtls: update to 3.6.3 and tf-m to 2.1.2 Apr 22, 2025
@wearyzen
Copy link
Contributor Author

wearyzen commented Apr 25, 2025

@fabiobaltieri since you previously approved the PR could you please have a look and help with approval/merge of this?

@fabiobaltieri fabiobaltieri removed the DNM (manifest) This PR should not be merged (controlled by action-manifest) label Apr 25, 2025
@fabiobaltieri
Copy link
Member

fabiobaltieri commented Apr 25, 2025

DNM manifest is for the change in trusted-firmware-m IIUC, seems ok

@kartben kartben merged commit 8ca5b2f into zephyrproject-rtos:v4.1-branch Apr 27, 2025
27 of 28 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kartben kartben kartben approved these changes

@fabiobaltieri fabiobaltieri fabiobaltieri approved these changes

@tomi-font tomi-font tomi-font approved these changes

@d3zd3z d3zd3z Awaiting requested review from d3zd3z

@ceolin ceolin Awaiting requested review from ceolin

Assignees

@kartben kartben

@fabiobaltieri fabiobaltieri

Labels

manifest manifest-mbedtls manifest-tf-m-tests manifest-trusted-firmware-m Release Notes To be mentioned in the release notes

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@wearyzen @zephyrbot @fabiobaltieri @kartben @tomi-font