wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-05-04 03:20:51 +02:00
Code Issues Packages Projects Releases Wiki Activity
14,412 Commits 13 Branches 184 Tags
149920fc142c362cc2f083fbae6bc3a1406e5aca
Commit Graph

5132 Commits

Author SHA1 Message Date
Jacob Barthelmeh 252971aad7 better comments on RFC steps and fixes for combining code blocks, fix for check on sign_k value 2021-05-27 17:27:15 +07:00
Sean Parkinson 4e88521a90 SP C ECC: mont sub - always normalize after sub before check for add 2021-05-27 11:08:05 +10:00
Sean Parkinson 6bf9a887e1 ECC FP: cached doesn't work when order has more bits than prime 
Small curves that are not commonly used do not work with scalars that
are the length of the order when the order is longer than the prime.
The table is generated based on modulus length not order length.
Simple fix is to not allow these curves to be used with FP_ECC.
Order isn't passed into the pseudo-public APIs.
 2021-05-27 09:53:03 +10:00
John Safranek 1fe445368c Merge pull request #4069 from guidovranken/zd12349 
Several ASN decoder fixes
 2021-05-26 16:13:54 -07:00
Guido Vranken 1fbc3dc2d4 Heap-allocate additional CertStatus structs in DecodeResponseData 2021-05-26 21:41:47 +02:00
Guido Vranken cfef249041 Several ASN decoder fixes 
See ZD 12349
 2021-05-26 20:15:32 +02:00
Hayden Roche 88370285cc Add an API function wc_DecryptPKCS8Key to handle decrypting a DER, PKCS#8 
encrypted key.
 2021-05-26 10:48:14 -07:00
Hayden Roche 5e4e73d6e9 Add an API function wc_EncryptPKCS8Key to handle encrypting a DER, 
PKCS#8-formatted key.

There's already a function wc_CreatePKCS8Key, but this only creates the
unencrypted PKCS#8 key. TraditionalEnc exists, which takes a non-PKCS#8 key,
converts it to PKCS#8 format, and encrypts it, but this function isn't in the
public-facing API. I've modified TraditionalEnc to use wc_EncryptPKCS8Key after
wc_CreatePKCS8Key. wc_EncryptPKCS8Key is essentially the encryption portion of
TraditionalEnc moved out into its own function. wc_EncryptPKCS8Key will be in
the API going forward so that users can do PKCS#8 encryption without relying on
the non-API TraditionalEnc. Next, I'll be adding a corresponding
wc_DecryptPKCS8Key to handle decryption.
 2021-05-26 10:48:11 -07:00
David Garske 8bf2cbf55e Fix for NXP LTC to not modify incoming math variables (use temp). Added build option for testing/validation of the LTC math operation. 2021-05-26 10:30:47 -07:00
David Garske 0d3530b45d Cleanup NXP LTC logic. 2021-05-25 16:49:58 -07:00
David Garske c59349c7a7 Fix for ecc_map, which is handled in hardware. Fix for NXP LTC mp_mul N value. Fix for MMCAU cast warnings. 2021-05-25 15:58:22 -07:00
David Garske 63ac9decfc Added error response checking for NXP LTC LTC_PKHA_ModMul. Isolated the result C to it's own variable. 2021-05-25 15:58:22 -07:00
David Garske 9453f83d28 Fix bad logic flow in WC_NO_RNG case. 2021-05-25 15:58:22 -07:00
David Garske 64ae0a827c Fixes for RSA with NXP LTC. The invmod function must reduce if A > B. Added RSA Key Generation acceleration. 2021-05-25 15:58:22 -07:00
Guido Vranken 360d6c8a4f Additional fix for Base64_SkipNewline 2021-05-26 00:25:27 +02:00
Elms 7127dbeeec fixes for gcc 11 compile and other whitespace 2021-05-25 12:34:04 -07:00
Sean Parkinson e1bc0c4447 EVP AES-GCM Streaming: must free Aes 
AES streaming implementation allocates data in Aes objects, when small
stack, that needs to be freed.
Fix memory leaks in streaming test case too.
 2021-05-25 15:57:09 +10:00
Guido Vranken b7663a51b4 Fix length calculations in Base64_SkipNewline 
ZD 12328
 2021-05-25 03:52:16 +02:00
Chris Conlon 956a0f2b5f Merge pull request #3931 from julek-wolfssl/dsa-engine 
Add more DSA parameters support
 2021-05-24 14:57:02 -06:00
Chris Conlon 399ce70aba Merge pull request #4055 from JacobBarthelmeh/PKCS7 
set content type parsed
 2021-05-24 13:21:19 -06:00
Juliusz Sosinowicz ceadb62d5b Add support for running wolfcrypt/test/testwolfcrypt on Dolphin emulator 2021-05-20 21:07:50 +02:00
Jacob Barthelmeh f4959cca8d set content type parsed 2021-05-21 01:42:10 +07:00
Sean Parkinson 2c6285ccba cppcheck: fixes from reviewing report 2021-05-20 17:55:06 +10:00
Sean Parkinson c1490bb91a TFM: get returned error to act on 2021-05-18 14:30:26 +10:00
Sean Parkinson ed3a0ae694 TFM prime checking: check for more errors 
Small stack can produce errors that were being ignored.
Checks for valid size in fp_exptmod was being ignored.
 2021-05-18 08:51:55 +10:00
David Garske 4a1907ae88 Merge pull request #3976 from rliebscher/Use_Renesas_RX_intrinsics_with_CC-RX_compiler 
Renesas RX: Use intrinsics for rot[rl], revl
 2021-05-17 11:05:01 -07:00
Daniele Lacamera b09df89200 NXP DCP: add explicit casts 2021-05-17 10:35:00 +02:00
Sean Parkinson 740f200156 SP ASM: x86_64 asm files - protect with WOLFSSL_SP_X86_64_ASM 2021-05-14 09:22:41 +10:00
Jacob Barthelmeh 82a2797b56 add macro guard on debug print 2021-05-13 23:58:51 +07:00
David Garske 263105abec Merge pull request #4033 from JacobBarthelmeh/CAAM 
set partition number on key import and use ocb address for free'ing d…
 2021-05-13 09:39:36 -07:00
David Garske 44a9346305 Merge pull request #4025 from danielinux/hdrbg_double_include_sha256 
Fix double include of sha256.h causing a build error
 2021-05-13 09:15:51 -07:00
Eric Blankenhorn 9eebaaf352 Fix declarations for EVP_VerifyFinal and RSA_private_encrypt 2021-05-13 10:48:49 -05:00
Juliusz Sosinowicz 5865dc08dd Code review changes 2021-05-13 15:21:33 +02:00
Jacob Barthelmeh 311c929fe2 set partition number on key import and use ocb address for free'ing dangling partitions on close 2021-05-13 17:34:30 +07:00
Daniele Lacamera 420a48a5aa Removed unnecessary headers 2021-05-13 07:40:22 +02:00
Daniele Lacamera 563c7391ed DCP: moved guards so code is not included when building *.c 2021-05-13 07:29:33 +02:00
Daniele Lacamera 6ea5254bb9 DCP refactor: do not override wc_Sha types 2021-05-12 17:11:09 +02:00
Daniele Lacamera 1dfde34852 Allow use of FREESCALE hw RNG without a specific port 2021-05-12 10:10:42 +02:00
Sean Parkinson 8a17e6c10e Merge pull request #4019 from dgarske/zd11435 
ECC, SP math all: Add `wc_ecc_gen_k` arg checking. Fix SP math debug support (mp_dump)
 2021-05-12 08:21:56 +10:00
Kareem Abuobeid cba029a436 PKCS7: Check size in wc_PKCS7_InitWithCert before XMEMCPY to avoid overflow. 2021-05-11 14:35:41 -07:00
David Garske 64330d468e Merge pull request #4023 from danielinux/dcp_rt1060_fixes_aes 
DCP port: Fixed AES, aligned key for the HW module
 2021-05-11 09:55:50 -07:00
Daniele Lacamera d9cc013fd2 DCP port: Fixed AES, aligned key for the HW module 2021-05-11 08:27:03 +02:00
David Garske f5509780c6 Add argument checking to wc_ecc_gen_k . Cleanup return codes for wc_ecc_mulmod_ex2. 2021-05-10 09:26:33 -07:00
Juliusz Sosinowicz ddbd26305f OpenVPN additions and fixes 
- `SSL_CTX_set_min_proto_version` now allows setting not compiled in protocols but checks that the constraints leave any compiled in protocol available
- wolfSSL_HmacCopy return already returns `WOLFSSL_SUCCESS` or `WOLFSSL_FAILURE`
 2021-05-10 12:00:18 +02:00
Sean Parkinson 0c1af66843 Fixes from nightly builds 
output not read.
g++ realloc cast.
curve25519 - no fix, only format changes
 2021-05-10 11:59:52 +10:00
John Safranek e247161b2e Merge pull request #3992 from embhorn/zd12169 
Allow parsing spaces in Base64_SkipNewline
 2021-05-07 14:30:24 -07:00
David Garske 3807304243 Fixes in additional places for incorrect point heap allocation size in SP ecc_mulmod with small stack or SP no malloc. 2021-05-07 09:43:17 -07:00
Eric Blankenhorn 0bc0e0f562 Fix XMALLOC of sp_point_256 array 2021-05-07 09:12:22 -05:00
toddouska 0b16b33de4 Merge pull request #3973 from SparkiDev/pkcs11_sign 
PKCS#11: rework RSA operations to be clearer
 2021-05-05 15:35:27 -07:00
David Garske 94c0bff839 Merge pull request #3997 from tmael/minor_fixes 
Fix test build
 2021-05-04 08:51:30 -07:00