wolfssl

mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-27 13:02:18 +01:00

Author	SHA1	Message	Date
Mattia Moffa	100d765b0c	More sniffer length checks	2026-01-12 18:25:27 +01:00
Sean Parkinson	3f8efdc802	Merge pull request #9600 from padelsbach/addcrl-cleanup Cleanup AddCRL mutex and alloc/free	2026-01-12 09:11:20 +10:00
Sean Parkinson	ce69f1cec0	Merge pull request #9635 from miyazakh/x509errstr_handling Fix OpenSSL error code handling in ERR_reason_error_string()	2026-01-12 08:57:17 +10:00
Sean Parkinson	84ca4a05fa	Merge pull request #9628 from miyazakh/fix_crlnumber Fix CRL Number hex string buffer overflow in CRL parser	2026-01-12 08:52:57 +10:00
Hideki Miyazaki	8571a67f13	fix PR test	2026-01-10 14:53:23 +09:00
Hideki Miyazaki	0e8af03f1d	OpenSSL error code handling in reason_error_string	2026-01-10 13:50:08 +09:00
Daniel Pouzzner	a091ed9151	Merge pull request #9590 from philljj/fips_bsdkm Fips bsdkm	2026-01-09 17:51:11 -06:00
Hideki Miyazaki	7b577f8914	change byte to char	2026-01-10 07:32:21 +09:00
Paul Adelsbach	e62c94d5e3	Cleanup AddCRL mutex and alloc/free	2026-01-09 10:44:06 -08:00
David Garske	2d3941056b	Merge pull request #9630 from gasbytes/signedAttribsCount-fix Increment signedAttribsCount with the right number of attributes it encoded	2026-01-09 10:06:01 -08:00
jordan	99527be3bf	bsdkm: review cleanup.	2026-01-09 08:07:28 -06:00
Hideki Miyazaki	d4760b148d	addressed review comments	2026-01-09 09:10:49 +09:00
Sean Parkinson	819eab8b46	Merge pull request #9609 from Frauschi/memory_leak_fix Fix memory leak in case of handshake error	2026-01-09 10:10:31 +10:00
Hideki Miyazaki	d052128830	addressed review comments	2026-01-09 09:01:14 +09:00
Daniel Pouzzner	d555c1aaaa	Merge pull request #9619 from rlm2002/coverity 20260106 Coverity fixes	2026-01-08 15:03:43 -06:00
David Garske	f8b5352e50	Merge pull request #9612 from Frauschi/zephyr_track_memory Add Zephyr support for TRACK_MEMORY	2026-01-08 13:01:18 -08:00
David Garske	9fe3b195e1	Merge pull request #9605 from Frauschi/build_system_fixes Build systems improvements	2026-01-08 13:00:57 -08:00
David Garske	7258697b0c	Merge pull request #9629 from per-allansson/fix-ios-xcode-builds IDE/XCODE: fix file types for asm.S files	2026-01-08 12:27:44 -08:00
Reda Chouk	9c7b586565	Increment signedAttribsCount with the right number of attributes it encoded	2026-01-08 20:46:47 +01:00
David Garske	4f1d578212	Merge pull request #9610 from Frauschi/pre_master_secret_size Remove PQC-based buffer size increase for PreMasterSecret	2026-01-08 11:18:19 -08:00
David Garske	198eac24d3	Merge pull request #9606 from Frauschi/cleanup_decode_private_key Cleanup for DecodePrivateKey() functionality	2026-01-08 11:09:44 -08:00
David Garske	d25f98fd82	Merge pull request #9584 from miyazakh/fix_qtfail Fix qt jenkins nightly test failure	2026-01-08 10:58:20 -08:00
David Garske	133d29dcef	Merge pull request #9626 from rizlik/name_contraints_fixes asn: MatchBaseName fixes	2026-01-08 10:56:53 -08:00
David Garske	f57484d1b3	Merge pull request #9616 from douzzer/20251230-persistent-drbg 20251230-persistent-drbg	2026-01-08 10:54:45 -08:00
David Garske	b609fe28ca	Merge pull request #9611 from Frauschi/psk_compile_fix Fix for PSK compile option	2026-01-08 10:52:57 -08:00
Tobias Frauenschläger	b934d9587a	Add Zephyr support for TRACK_MEMORY	2026-01-08 19:27:24 +01:00
David Garske	97d9bfcea6	Merge pull request #9601 from rizlik/early_data_client_side_fixes check that we are resuming in write_early_data + minor fixes	2026-01-08 10:26:48 -08:00
David Garske	71f3bd4cd3	Merge pull request #9627 from SparkiDev/aarch64_asm_chacha20_256 ChaCha20 Aarch64 ASM fix: 256-bit case fixed	2026-01-08 10:24:48 -08:00
David Garske	d290caa848	Merge pull request #9608 from Frauschi/typo_fix Fix for WOLFSSL_BLIND_PRIVATE_KEY and WOLFSSL_DUAL_ALG_CERTS	2026-01-08 10:23:30 -08:00
Tobias Frauenschläger	05dc9f0449	Fix memory leak in case of handshake error Make sure peer dilithium key is properly freed in case the handshakes fails.	2026-01-08 16:50:28 +01:00
Per Allansson	c979f95648	IDE/XCODE: fix file types for asm.S files	2026-01-08 16:47:04 +01:00
Hideki Miyazaki	08876e278a	Fix CRL Number hex string buffer overflow in CRL parser	2026-01-08 17:25:19 +09:00
Sean Parkinson	883ceecf8a	ChaCha20 Aarch64 ASM fix: 256-bit case fixed Fixed the 256-bits at a time crypt assembly code. Add a chunking test for ChaCha20.	2026-01-08 18:01:15 +10:00
Daniel Pouzzner	0059f1647e	move WC_RNG_BANK_SUPPORT implementation from wolfcrypt/src/random.c and wolfssl/wolfcrypt/random.h to new files wolfcrypt/src/rng_bank.c and wolfssl/wolfcrypt/rng_bank.h; wolfcrypt/src/rng_bank.c: * add wc_local_rng_bank_checkout_for_bankref, wc_BankRef_Release(), wc_rng_bank_new(), and wc_rng_bank_free(); * in wc_rng_bank_checkin(), take a struct wc_rng_bank_inst *rng_inst and NULL it before return; in wc_rng_bank_init(), add a devId arg, and handle devId in wc_rng_bank_inst_reinit(); * add WC_RNG_BANK_INST_LOCK_* and use them in wc_rng_bank_checkout() and wc_rng_bank_checkin(); * fix order of operations in wc_rng_bank_checkout() re DISABLE_VECTOR_REGISTERS(); wolfcrypt/src/random.c: * refactor per-instance salting for wc_rng_bank_inst: remove changes in Hash_df(), Hash_DRBG_Instantiate(), and _InitRng(), and in wc_rng_bank_init() and wc_rng_bank_inst_reinit(), use wc_InitRngNonce_ex() and pass the wc_rng_bank_inst pointer as the nonce; * simplify the WC_RNG_BANK_SUPPORT variant of wc_RNG_GenerateBlock() -- delegate to wc_local_rng_bank_checkout_for_bankref() and remove supplementary error checking; * in wc_FreeRng(), call wc_BankRef_Release() when WC_DRBG_BANKREF, and in wc_BankRef_Release(), fix refcount flub (not wolfSSL_RefFree, rather wolfSSL_RefDec); * streamline the WOLFSSL_LINUXKM wc_GenerateSeed(); wolfcrypt/test/test.c: add random_bank_test(); linuxkm/lkcapi_sha_glue.c: use WC_RNG_BANK_INST_TO_RNG() opportunistically; configure.ac: add --enable-amdrdseed as a synonym for --enable-amdrand; linuxkm/linuxkm_wc_port.h: when LINUXKM_LKCAPI_REGISTER_HASH_DRBG_DEFAULT, don't include get_random_bytes() in struct wolfssl_linuxkm_pie_redirect_table; add various comments for clarity.	2026-01-07 22:54:07 -06:00
Daniel Pouzzner	1e0351a69b	wolfssl/wolfcrypt/random.h and wolfssl/wolfcrypt/async.h: use `#ifdef HAVE_ANONYMOUS_INLINE_AGGREGATES`, not `#if HAVE_ANONYMOUS_INLINE_AGGREGATES`.	2026-01-07 22:54:07 -06:00
Daniel Pouzzner	98ffc519b4	wolfssl/wolfcrypt/types.h: if _MSC_VER, disable HAVE_ANONYMOUS_INLINE_AGGREGATES by default.	2026-01-07 22:54:07 -06:00
Daniel Pouzzner	c1d2828daf	wolfcrypt/src/random.c, wolfssl/wolfcrypt/random.h, wolfssl/wolfcrypt/wc_port.h, linuxkm/lkcapi_sha_glue.c: fixes from autotesting: * refactor to eliminate recursion in wc_RNG_GenerateBlock(); * refactor enum wc_rng_bank_flags as word32 and macros; * fix -Wconversions, -Wunused, and stray EINVAL in wc_rng_bank_init(); * make struct wc_rng_bank_inst a top-level definition for C++ compat; * fix several bugprone-macro-parentheses.	2026-01-07 22:54:07 -06:00
Daniel Pouzzner	b87af914bc	configure.ac: add handling for --enable-rng-bank, and add it to the all-crypto feature set.	2026-01-07 22:54:07 -06:00
Daniel Pouzzner	b2199e9862	linuxkm/{lkcapi_dh_glue.c,lkcapi_ecdh_glue.c,lkcapi_rsa_glue.c}: use LKCAPI_INITRNG() rather than wc_InitRng(), and remove calls to LKCAPI_INITRNG_FOR_SELFTEST(). also, in km_rsa_ctx_init_rng(), recognize WC_DRBG_BANKREF as a usable RNG status.	2026-01-07 22:54:07 -06:00
Daniel Pouzzner	1c6ef8b621	linuxkm/lkcapi_sha_glue.c: * refactor to use new wc_rng_bank facility: * wc_linuxkm_drbg_init_tfm() * wc_linuxkm_drbg_exit_tfm() * get_drbg() (renamed to linuxkm_get_drbg()) * put_drbg() (renamed to linuxkm_put_drbg()) * wc_linuxkm_drbg_generate() * wc_linuxkm_drbg_seed() * wc_mix_pool_bytes() * wc_crng_reseed() * add: * linuxkm_affinity_lock() * linuxkm_affinity_get_id() * linuxkm_affinity_unlock() * linuxkm_InitRng_DefaultRef() * remove: * get_drbg_n() * drbg_init_from() * fork_default_rng() * LKCAPI_INITRNG_FOR_SELFTEST. * when LINUXKM_LKCAPI_REGISTER_HASH_DRBG_DEFAULT, define LKCAPI_INITRNG to linuxkm_InitRng_DefaultRef, else define it to wc_InitRng().	2026-01-07 22:54:07 -06:00
Daniel Pouzzner	3c15be6610	wolfcrypt/src/random.c and wolfssl/wolfcrypt/random.h: implement WC_RNG_BANK_SUPPORT: * add WC_DRBG_BANKREF status code; * add `struct wc_rng_bank bankref` to struct WC_RNG, and move status slot out from HAVE_HASHDRBG gate; add WC_DRBG_MAX_SALT_SZ, and add saltSz and salt slots to struct DRBG_internal; * add salt handling to Hash_df(), Hash_DRBG_Instantiate(), and _InitRng(); * add types: * enum wc_rng_bank_flags * struct wc_rng_bank * add implementations: * wc_rng_bank_init() * wc_rng_bank_set_affinity_handlers() * wc_rng_bank_fini() * wc_rng_bank_checkout() * wc_rng_bank_checkin() * wc_rng_bank_inst_reinit() * wc_rng_bank_seed() * wc_rng_bank_reseed() * wc_InitRng_BankRef() * wc_rng_new_bankref() * WC_RNG_BANK_INST_TO_RNG() * in wc_RNG_GenerateBlock() and wc_FreeRng(), add WC_RNG_BANK_SUPPORT sections; wolfcrypt/src/random.c: in WC_VERBOSE_RNG messages, add "ERROR: " prefixes to text to assure pickup by autotesting. also fixed line lengths.	2026-01-07 22:54:07 -06:00
Daniel Pouzzner	6c8ff6dfa9	linuxkm/x86_vector_register_glue.c: in wc_save_vector_registers_x86(), don't render warning of call while non-preemptible if WC_SVR_FLAG_INHIBIT was passed in.	2026-01-07 22:54:07 -06:00
Daniel Pouzzner	dd158b073c	linuxkm/linuxkm_wc_port.h and linuxkm/module_hooks.c: remove WOLFSSL_DEBUG_BACKTRACE_ERROR_CODES gate around setup for wolfssl_linuxkm_pie_redirect_table.dump_stack. linuxkm/module_hooks.c: in wc_linuxkm_relax_long_loop(), use cpu_relax() as a fallback when non-preemptible.	2026-01-07 22:54:07 -06:00
Daniel Pouzzner	500c790b18	wolfssl/wolfcrypt/settings.h: * add FIPS_VERSION_NE(); * move more generic setup code from WOLFSSL_LINUXKM/WOLFSSL_BSDKM to kernel-generic WOLFSSL_KERNEL_MODE; fix WOLFSSL_OLD_PRIME_CHECK setup to exclude FIPS.	2026-01-07 22:54:06 -06:00
Daniel Pouzzner	32b1598db1	wolfcrypt/src/wc_port.c and wolfssl/wolfcrypt/wc_port.h: in wolfSSL_RefFree() and wolfSSL_RefWithMutexFree(), zero the refcount (valid refcount objects are initialized to count of 1); add wolfSSL_RefCur().	2026-01-07 22:54:06 -06:00
Daniel Pouzzner	f1dd234ac9	wolfcrypt/src/error.c, wolfssl/wolfcrypt/error-crypt.h: add BUSY_E and ALREADY_E.	2026-01-07 22:54:06 -06:00
Hideki Miyazaki	cdd75ff5ef	fix indent	2026-01-08 08:46:22 +09:00
Ruby Martin	6090ddb3f3	initialize hmac_copy add WC_CALLOC_VAR_EX function, replace WC_ALLOC_VAR_EX in tests	2026-01-07 15:43:16 -07:00
Hideki Miyazaki	6392c2b420	undo changes fix indentation	2026-01-08 07:10:25 +09:00
David Garske	6264c115cc	Merge pull request #9563 from LinuxJedi/renode Add Renode GH Action for STM32H753	2026-01-07 09:51:30 -08:00

1 2 3 4 5 ...

27397 Commits