wolfssl

feedc0de/wolfssl

Fork 0

forked from wolfSSL/wolfssl

Commit Graph

Select branches

Hide Pull Requests

cert-3389

devin-lifeguard/update-rules-d59f9c48

devin/1739556249-pem-hash-algorithm

devin/1739556249-pem-hash-algorithm-fix

devin/1739556249-pem-hash-algorithm-fix2

devin/1739784730-fix-tlsext-constants

devin/1739818351-optimize-test-suite

devin/1739818351-optimize-test-suite-fix

devin/1739917420-rename-kyberkey-to-mlkem

devin/1739920896-esp32-fixes

devin/1740705266-update-mlkemkey-apis

devin/1740757542-null-cipher-evp-update

devin/1740759575-null-cipher-fix

devin/1741319666-remove-qt-guard-add-tests

devin/1741708186-add-cmake-wolfclu

devin/1742172556-aes-xts-tests

devin/1742405136-cipherType-to-string

devin/1742841122-add-dod-pki-oids

devin/1747238512-add-ssl-remove-session

devin/invalid-gentime-crl-test

fixes_with_new_idf

master

nightly-snapshot

pr-8603

remove-arc4

revert-5549-fix_sha256_debug

revert-8277-aarch64_no_crypto

rm_arc4

WCv4-rng-stable

WCv4-stable

WCv4.0-RC1

WCv4.0-RC2

WCv4.0-RC3

WCv4.0-RC4

WCv4.0-RC5

WCv4.0-RC6

WCv4.0-RC7

WCv4.0-RC8

WCv4.0-RC9

WCv5.0-RC10

WCv5.0-RC11

WCv5.0-RC12

WCv5.0-RC2

WCv5.0-RC3

WCv5.0-RC4

WCv5.0-RC5

WCv5.0-RC6

WCv5.0-RC7

WCv5.0-RC8

WCv5.0-RC9

WCv5.2.1-PILOT

WCv5.2.3-ARMv8-PAA

WCv5.2.3-ARMv8-PAA-r2

WCv5.2.3-DHGENPUB

WCv5.2.3-DHGENPUB-r2

WCv5.2.3-STM32-PAA

WCv6.0.0-RC1

WCv6.0.0-RC2

WCv6.0.0-RC3

WCv6.0.0-RC4

WCv6.0.0-RC5

l

list

v0.5

v1.8.8.0

v1.9.0

v2.0.2

v2.0.3

v2.0.6

v2.0.8

v2.0rc1

v2.0rc2

v2.0rc2b

v2.0rc3

v2.1.1

v2.1.2

v2.1.4

v2.2.0

v2.2.1

v2.2.2

v2.3.0

v2.4.0

v2.4.2

v2.4.6

v2.4.7

v2.5.0

v2.5.2

v2.5.2b

v2.6.0

v2.6.2

v2.7.0

v2.7.2

v2.8.0

v2.8.2

v2.8.3

v2.8.4

v2.8.5

v2.8.5a

v2.8.6

v2.9.0

v2.9.1

v2.9.2

v2.9.4

v3.0.0

v3.0.2

v3.1.0

v3.10.0-stable

v3.10.0a

v3.10.2-stable

v3.10.3

v3.10.4

v3.11.0-stable

v3.11.1-tls13-beta

v3.12.0-stable

v3.12.2-stable

v3.13.0-stable

v3.13.2

v3.13.3

v3.14.0-stable

v3.14.0a

v3.14.0b

v3.14.2

v3.14.4

v3.14.5

v3.15.0-stable

v3.15.3-stable

v3.15.5-stable

v3.15.5a

v3.15.6

v3.15.7-stable

v3.15.8

v3.2.0

v3.2.4

v3.2.6

v3.3.0

v3.3.2

v3.3.3

v3.4.0

v3.4.2

v3.4.6

v3.4.8

v3.6.0

v3.6.0b

v3.6.2

v3.6.6

v3.6.8

v3.6.9

v3.6.9b

v3.6.9c

v3.6.9d

v3.69.d

v3.7.0

v3.7.1

v3.7.3

v3.8.0

v3.9.0

v3.9.1

v3.9.10-stable

v3.9.10b

v3.9.6

v3.9.6w

v3.9.8

v4.0.0-stable

v4.1.0-stable

v4.2.0-stable

v4.2.0c

v4.3.0-stable

v4.4.0-stable

v4.5.0-stable

v4.6.0-stable

v4.7.0-stable

v4.7.1r

v4.8.0-stable

v4.8.1-stable

v5.0.0-stable

v5.1.0-stable

v5.1.1-stable

v5.2.0-stable

v5.2.1-stable

v5.2.1-stable-OS_Seed-HdrOnly

v5.3.0-stable

v5.4.0-stable

v5.5.0-stable

v5.5.1-stable

v5.5.2-stable

v5.5.3-stable

v5.5.4-stable

v5.6.0-stable

v5.6.2-stable

v5.6.3-stable

v5.6.4-stable

v5.6.6-stable

v5.7.0-stable

v5.7.2-stable

v5.7.4-stable

v5.7.6-stable

v5.8.0-stable

wolfEntropy1

wolfRand-RC1

wolfRand-RC2

89e392f1e8 fixup! Move extended master secret testing to test_tls_ext Juliusz Sosinowicz 2025-02-25 21:03:09 +01:00
f15ff6861c TLS EMS: Set haveEMS when we negotiate TLS 1.3 Juliusz Sosinowicz 2025-02-21 13:44:05 +01:00
2c585d73c8 Move extended master secret testing to test_tls_ext Juliusz Sosinowicz 2025-02-21 12:31:30 +01:00
75ca54889c Implement AES-CTS in wolfCrypt Juliusz Sosinowicz 2025-03-20 18:21:38 +01:00
6761dbb2ed Merge pull request #8637 from philljj/register_ecdsa Daniel Pouzzner 2025-04-08 23:05:00 -05:00
16a6818614 Merge pull request #8638 from JacobBarthelmeh/ada David Garske 2025-04-08 16:00:02 -07:00
e5c275ab02 Merge pull request #8649 from julek-wolfssl/fix-multi-compiler David Garske 2025-04-08 15:16:35 -07:00
a2ca1fe31f Merge pull request #8641 from gojimmypi/pr-espressif-examples-update David Garske 2025-04-08 15:09:18 -07:00
f29f928dee Merge pull request #8648 from julek-wolfssl/hostap-tests David Garske 2025-04-08 15:08:14 -07:00
a221b5108b Merge pull request #8647 from douzzer/20250408-libwolfssl_sources_h-fixes David Garske 2025-04-08 15:05:11 -07:00
791bda3323 Merge pull request #8650 from douzzer/20250408-wc_static_assert_dummy_struct-gcxx-6v5 Sean Parkinson 2025-04-09 07:36:28 +10:00
de04d8a486 Make trusted_ca_keys check opt-in. It is not required according to the RFC. Kareem 2025-04-08 14:32:31 -07:00
a1442cf3a1 Merge pull request #8643 from kaleb-himes/KH-SRTP-REVIEW-rev1 Sean Parkinson 2025-04-09 07:08:52 +10:00
8e1cfb8b8b Add HWCAP_ASIMDRDM to known macros Kareem 2025-04-08 13:41:55 -07:00
1750325c0b Check if HWCAP_ASIMDRDM is defined, old hwcap.h headers do not define this. Kareem 2025-03-19 16:13:01 -07:00
e2a7f40148 Revert test Ed448 changes. Bill Phipps 2025-04-08 16:11:40 -04:00
65b1bf2c03 Revert Ed448 and Ed25519 test changes. Bill Phipps 2025-04-08 16:09:20 -04:00
99144ee58b Update Curve448 size to 256 and add uses in Ed Bill Phipps 2025-04-08 15:38:49 -04:00
c3dbe29f21 Update to expose reasonable DER buffer sizes for Curve448/25519 Bill Phipps 2025-04-08 15:17:54 -04:00
e1ece63942 wolfssl/wolfcrypt/types.h: refactor fallback implementation of wc_static_assert() to depend on __COUNTER__, to avoid namespace collisions on unlucky macro invocations with same line numbers. Daniel Pouzzner 2025-04-08 19:01:44 +00:00
1f0a28e3f1 multi-compiler.yml: update ubuntu version Juliusz Sosinowicz 2025-04-08 20:24:56 +02:00
c0f27e7066 hostap-vm.yml: Fix No module named 'Crypto' errors that were causing tests to be skipped Juliusz Sosinowicz 2025-04-08 18:53:24 +02:00
831ea90c6d fix typo in arm-thumb2 include of libwolfssl_sources_asm.h. Daniel Pouzzner 2025-04-08 16:19:57 +00:00
fb6cbdd5be free PKCS7 struct at the end of test case for loop JacobBarthelmeh 2025-04-08 10:15:18 -06:00
0171024c4b fix for typo in comments JacobBarthelmeh 2025-04-08 10:02:16 -06:00
bf95f80c6d additional PKCS7 streaming test case JacobBarthelmeh 2025-04-08 10:00:42 -06:00
17953d064f CMSIS: Skip Mutex calls if OS isn't running Lealem Amedie 2025-04-08 10:36:22 -04:00
6d299ea943 Merge pull request #8634 from JacobBarthelmeh/pkcs7_stream David Garske 2025-04-07 16:01:14 -07:00
35f8c3b75c linuxkm ecdsa: fix ecdsa fips define guards, and fix names. jordan 2025-04-07 17:00:13 -04:00
18ed67a27d Merge pull request #8640 from douzzer/20250404-WOLFSSL_SOURCES_H David Garske 2025-04-07 12:47:53 -07:00
8c0ef0b1f5 Explicit API redirects for FIPS moving forward kaleb-himes 2025-04-07 11:06:52 -06:00
0e27b3e8c8 Merge pull request #8613 from SparkiDev/lms_iana David Garske 2025-04-07 10:00:35 -07:00
69688c223b linuxkm ecdsa: fix ecc define guards. jordan 2025-04-07 12:04:18 -04:00
a3c3996c08 256/192 Anthony Hu 2025-04-04 21:23:06 -04:00
6cd1d7f3c9 Fix building ML-KEM and LMS with cmake Anthony Hu 2025-04-04 17:54:09 -04:00
40c52bd844 Espressif updates. Kconfig, WOLFSSL_VIS_FOR_TESTS, ESP32P4 gojimmypi 2025-04-06 16:01:35 +02:00
3465dde0bb synchronize with scripts#480 (except wolfcrypt/src/sp_arm32.c and wolfcrypt/src/sp_cortexm.c, which have large unrelated desyncs). Daniel Pouzzner 2025-04-04 21:41:29 -05:00
c401f5caf2 move the newly added wolfcrypt/src/wolfssl_sources.h to wolfssl/wolfcrypt/libwolfssl_sources.h, and likewise for wolfssl_sources_asm.h; revert changes to IDE/ project files. Daniel Pouzzner 2025-04-04 18:44:12 -05:00
217440c885 Add wolfcrypt/src/wolfssl_sources.h and wolfcrypt/src/wolfssl_sources_asm.h, which force on BUILDING_WOLFSSL and do boilerplate includes, and update library sources to include them at the top. Daniel Pouzzner 2025-04-04 16:51:04 -05:00
29ce716615 Add test case for parsing PKCS8 key with existing header. Kareem 2025-04-01 14:07:31 -07:00
57e00e5147 account for existing pkcs8 header JacobBarthelmeh 2025-03-31 17:24:18 -06:00
04dce0e223 cast for conversion warning JacobBarthelmeh 2025-04-03 16:32:28 -06:00
8b0650d0fb account for edge case with pkcs7 streaming JacobBarthelmeh 2025-04-03 14:39:38 -06:00
a626ec242e linuxkm ecdsa: tiny cleanup. jordan 2025-04-04 14:01:47 -04:00
3625391589 update test to use examples.gpr instead of the old client.gpr JacobBarthelmeh 2025-04-04 11:33:04 -06:00
bb9e6e3fd6 add a CI test for Ada build JacobBarthelmeh 2025-04-04 11:24:54 -06:00
3ff4e5e303 Merge pull request #8606 from mgrojo/feature/alire-usability JacobBarthelmeh 2025-04-04 11:07:29 -06:00
10a1126624 Merge pull request #8635 from SparkiDev/asm_thumb2_fix Daniel Pouzzner 2025-04-04 11:13:50 -05:00
d62c65231b linuxkm: register ecdsa. jordan 2025-04-04 11:54:03 -04:00
b7af89acdb Merge pull request #8619 from SparkiDev/mlkem_bigendian JacobBarthelmeh 2025-04-04 09:39:40 -06:00
97d86b873d Merge pull request #8628 from douzzer/20250402-WOLFSSL_TEST_API JacobBarthelmeh 2025-04-04 09:37:56 -06:00
827516c040 Merge pull request #8636 from douzzer/20250403-linuxkm-lkcapi-fixes Sean Parkinson 2025-04-04 15:45:34 +10:00
2c001ccec1 linuxkm/lkcapi_glue.c: in km_AesGet(), only null aes_copy->streamData in WOLFSSL_AESGCM_STREAM builds, and in km_AesFree(), remove ad hoc zeroization of (*aes)->streamData gated on FIPS_VERSION3_LT(6,0,0) because it doesn't include WOLFSSL_AESGCM_STREAM. Daniel Pouzzner 2025-04-03 21:34:11 -05:00
96118b416d WOLFSSL_TEST_VIS: improved naming scheme based on peer review: WOLFSSL_TEST_API->WOLFSSL_TEST_VIS, WOLFSSL_ALLOW_TEST_APIS->WOLFSSL_VIS_FOR_TESTS, WOLFSSL_LOCALIZE_TEST_APIS->WOLFSSL_PRIVATE_TEST_VIS. Daniel Pouzzner 2025-04-03 19:29:17 -05:00
cc223d1904 tests/api.c: in test_wolfSSL_TXT_DB(), fix -Wpointer-to-int-cast detected by building --host=x86_64-w64-mingw32. Daniel Pouzzner 2025-04-03 17:17:24 -05:00
87e63a0f21 wolfssl/wolfcrypt/wc_port.h: if WOLFSSL_ZEPHYR, don't activate WC_DEPRECATED (compat issues). Daniel Pouzzner 2025-04-02 19:11:39 -05:00
ce73c1dfd1 Add WC_DEPRECATED, WOLFSSL_TEST_API, WOLFSSL_ALLOW_TEST_APIS, and WOLFSSL_LOCALIZE_TEST_APIS, and use them to control export and usability of internal functions needed by unit tests. Daniel Pouzzner 2025-04-02 18:04:18 -05:00
0e8d3ad3d9 AES Thumb2 ASM: fix td4 variable declarations Sean Parkinson 2025-04-04 09:47:59 +10:00
47ed447987 Merge pull request #8632 from douzzer/20250403-fixes JacobBarthelmeh 2025-04-03 17:26:40 -06:00
151b9f0e74 Merge pull request #8633 from JacobBarthelmeh/compile Sean Parkinson 2025-04-04 09:19:48 +10:00
4f87a8980f ML-KEM/Kyber: fix for big-endian Sean Parkinson 2025-04-02 09:12:48 +10:00
f6894a3949 add compileharden flag JacobBarthelmeh 2025-04-03 15:05:24 -06:00
c4fcd5fd54 do sanity check that the -Wa,-mbranches-within-32B-boundaries is supported for cases where CC=gcc is really clang JacobBarthelmeh 2025-04-03 13:58:43 -06:00
b5d999779d wolfcrypt/src/port/arm/thumb2-aes-asm_c.c: fix a pair of -Wpointer-to-int-casts in AES_ECB_decrypt() and AES_CBC_decrypt(). Daniel Pouzzner 2025-04-03 14:26:05 -05:00
87aa6ec977 wolfcrypt/src/wc_mlkem_poly.c: move mlkem_ntt_add_to() implementation to resolve gating inconsistency (fixes armasm on arm32). Daniel Pouzzner 2025-04-03 14:22:56 -05:00
971dafb1c2 configure.ac: add v5-kcapi to FIPS version map, same as v5-dev, but version 5.3.0 (as v5-dev was before 9d931d45de). Daniel Pouzzner 2025-04-03 14:13:52 -05:00
a2eddc889f tests/api.c: fix double-free()s in test_wolfSSL_FPKI(). Daniel Pouzzner 2025-04-03 10:25:24 -05:00
5ecacfd8eb Merge pull request #8577 from SparkiDev/x64-branch-32b JacobBarthelmeh 2025-04-03 10:53:46 -06:00
50ef56ab7a Merge pull request #8630 from kojiws/kojiws/more_strict_key_format_check JacobBarthelmeh 2025-04-03 10:31:16 -06:00
05ac52085d Merge pull request #8618 from miyazakh/renesas_csplus JacobBarthelmeh 2025-04-03 10:02:00 -06:00
71ebad1fc7 Add test Koji Takeda 2025-04-03 19:10:32 +09:00
2f01c9d715 Detect unknown key format Koji Takeda 2025-04-03 16:18:16 +09:00
c29fba5b7e Merge pull request #8614 from douzzer/20250317-linuxkm-lkcapi-aes-ctr-ofb-ecb Sean Parkinson 2025-04-03 10:45:04 +10:00
2210ec8839 Merge pull request #8617 from douzzer/20250401-Base64_Decode_nonCT Sean Parkinson 2025-04-03 10:41:08 +10:00
ca371b05a5 Merge pull request #8629 from douzzer/20250402-configure-copyright-year David Garske 2025-04-02 17:38:00 -07:00
3e87c4465c update copyright year in configure.ac. Daniel Pouzzner 2025-04-02 18:51:28 -05:00
aef224d53e fix cs+ failure Hideki Miyazaki 2025-04-02 07:18:52 +09:00
13c73a9691 linuxkm/lkcapi_glue.c: add LINUXKM_LKCAPI_NEED_AES_COMMON_FUNCS and LINUXKM_LKCAPI_NEED_AES_SKCIPHER_COMMON_FUNCS helper macros (peer review suggestion). Daniel Pouzzner 2025-04-02 17:30:19 -05:00
e0a74420f1 wolfcrypt/src/coding.c: restore support for BASE64_NO_TABLE builds. Daniel Pouzzner 2025-04-02 17:14:09 -05:00
140e18c063 undo unnecessary change to .github/workflows/zephyr.yml. Daniel Pouzzner 2025-04-02 13:58:39 -05:00
c2b486ce53 fix some misindentation in wolfcrypt/src/coding.c. Daniel Pouzzner 2025-04-01 17:20:31 -05:00
51c6848340 wolfcrypt/src/coding.c, wolfssl/wolfcrypt/coding.h, wolfcrypt/src/asn.c, wolfcrypt/test/test.c: refactor Base64_Decode() with separate always-CT Base64_Decode() and never-CT Base64_Decode_nonCT(), and use the latter only to decode known-public PEM objects, otherwise use always-CT Base64_Decode(). Daniel Pouzzner 2025-04-01 15:04:14 -05:00
8705d28d48 wolfcrypt/src/aes.c: in wc_AesSetKeyLocal(), rework support for WC_FLAG_DONT_USE_AESNI (fixes WC_C_DYNAMIC_FALLBACK). Daniel Pouzzner 2025-04-01 01:17:10 -05:00
8092ff915c linuxkm/lkcapi_glue.c: bring in wolfcrypt/src/misc.c for ForceZero if FIPS_VERSION3_LT(6,0,0). Daniel Pouzzner 2025-03-29 00:26:31 -05:00
3c16722538 wolfcrypt/src/aes.c and wolfssl/wolfcrypt/aes.h: add support for WC_FLAG_DONT_USE_AESNI in wc_AesSetKeyLocal(); add support for USE_INTEL_SPEEDUP_FOR_AES. Daniel Pouzzner 2025-03-28 22:58:53 -05:00
6d92dae632 configure.ac: add support for --enable-aesni-with-avx/USE_INTEL_SPEEDUP_FOR_AES (AESNI+AVX, but only for AES modes). Daniel Pouzzner 2025-03-28 15:48:06 -05:00
9d931d45de LKCAPI checkpoint (all AES except CCM working). Daniel Pouzzner 2025-03-27 21:36:15 -05:00
9bcb3f71d0 Merge pull request #8624 from douzzer/20250401-AEAD-WARN_UNUSED_RESULT JacobBarthelmeh 2025-04-02 15:08:33 -06:00
91e9e8f65f update documentation for AEAD decrypt methods, specifically noting that nonzero retval means output data is undefined, and noting requirement to zeroize the output data unconditionally. Daniel Pouzzner 2025-04-02 13:36:59 -05:00
a3d0ffb1ed Merge pull request #8622 from SparkiDev/kyber_improv_3 JacobBarthelmeh 2025-04-02 09:56:32 -06:00
0a4599133c Merge pull request #8599 from kareem-wolfssl/zd19563 JacobBarthelmeh 2025-04-02 09:44:25 -06:00
b8ece68b17 add WARN_UNUSED_RESULT to AEAD verify methods. Daniel Pouzzner 2025-04-02 01:15:57 -05:00
fafc333e93 LMS: add API to get Key ID from raw private key Sean Parkinson 2025-04-02 16:05:11 +10:00
8a9e125756 ML-KEM/Kyber: minor improvements Sean Parkinson 2025-04-02 13:06:28 +10:00
dcdaeabc40 Merge pull request #8620 from lealem47/actions_cmake David Garske 2025-04-01 18:46:59 -07:00
5083b41d1b Set the CMake compiler version for failin gh actions Lealem Amedie 2025-04-01 14:11:15 -10:00
83e1cfcf01 LMS: change identifiers to match standard Sean Parkinson 2025-04-01 12:15:20 +10:00
c5dadd6f8d Merge pull request #8600 from JacobBarthelmeh/microchip Sean Parkinson 2025-04-01 08:36:45 +10:00
8e9a986e0b Add comment clarifying that DoD certificate policy OIDs are not currently being parsed in the code, they are just recognized as valid OIDs. Kareem 2025-03-31 14:37:19 -07:00
e6f09b8372 Ada: fixes for the No_Secondary_Stack restriction mgrojo 2025-03-31 23:27:31 +02:00