wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-05-05 15:34:13 +02:00
Code Issues Packages Projects Releases Wiki Activity
12,804 Commits 13 Branches 184 Tags
19f10cd382586fd0c8448bd27e206ded6237d350
Commit Graph

4386 Commits

Author SHA1 Message Date
Sean Parkinson fb2288c46d RSA-PSS: Handle edge case with encoding message to hash 
When the key is small relative to the digest (1024-bit key, 64-byte
hash, 61-byte salt length), the internal message to hash is larger than
the output size.
Allocate a buffer for the message when this happens.
 2020-10-27 12:39:06 +10:00
John Safranek f5f883597e RSA PSS Fix 
1. Change the utility function in wc_encrypt that returns the size of a
   hash to initialize the size to HASH_TYPE_E, like the other utility
   functions.
2. When getting the hash size returns an error, RSA-PSS verify inline
   should return a BAD_FUNC_ARG error.
 2020-10-24 13:06:42 -07:00
John Safranek 3f5620089e PKCS7: In EncodeEncryptedData, free the attribs and flattenedAttribs if 
they were allocated, not based on if they should be allocated.
 2020-10-24 12:41:10 -07:00
John Safranek bfccf35eaf Tautological Name Fix 
Depending on the build option WOLFSSL_ECC_CURVE_STATIC, the name in the
ecc_set may be a pointer (default) or an array. With the above set with
the CFLAG -Wtautological-pointer-compare you'll get a build error.
Changed the comparison in the for loop with this problem to check the
name's pointer only if appropriate.
 2020-10-23 15:23:16 -07:00
Chris Conlon e24ac4211d Merge pull request #3405 from kojo1/EVP-gcm-zero 
set tag including if(inl == 0) case
 2020-10-23 14:35:47 -06:00
David Garske 589057245f Improvement to ECC wc_ecc_rs_raw_to_sig to reduce memory use (avoid the mp_int). Additional test cases. Fixes for previous function changes. 2020-10-23 11:00:46 -07:00
Chris Conlon c27d5f57c4 check PKCS7 content length is not larger than bundle if not using separate header/footer 2020-10-23 09:56:34 -07:00
John Safranek a7b325f542 Merge pull request #3414 from kabuobeid/wolfrand_build_fix 
Fix wolfrand build failure.
 2020-10-22 22:54:05 -07:00
Sean Parkinson 24af0497b5 PKCS #11: changes for signing and loading RSA public key from private 2020-10-23 14:02:59 +10:00
David Garske ff092c02d2 Merge pull request #3396 from SparkiDev/fips_armasm 
FIPS ARMASM: get build working
 2020-10-22 15:26:24 -07:00
David Garske 05094460b2 Merge pull request #3353 from douzzer/XChaCha 
XChaCha
 2020-10-22 15:25:56 -07:00
Kareem Abuobeid 42583b5270 Fix wolfrand build failure, caused by defining NO_ASN without NO_CERTS. 2020-10-22 14:48:37 -07:00
David Garske 0065756efc Improvement to ECC wc_ecc_sig_to_rs to reduce memory use (avoid the mp_int). 2020-10-22 13:34:19 -07:00
David Garske cb8e625e32 Fix to allow import of private key with ATECC. Its okay to load private key material into ecc_key struct. 2020-10-22 13:26:00 -07:00
tmael 6265006553 Merge pull request #3403 from elms/cppcheck/cleaup_fixes 
Address some cppcheck issues
 2020-10-22 12:56:19 -07:00
David Garske be8e4d1949 Fix to reduce memory use with small stack on ECC key import. 2020-10-22 12:41:49 -07:00
Chris Conlon 1ced948391 check PKCS7 SignedData private key is valid before using it 2020-10-22 10:37:11 -07:00
Chris Conlon df382f382f fix case in PKCS7_VerifySignedData where pkiMsgSz may not be set correctly 2020-10-22 09:23:32 -07:00
Chris Conlon 5e78a0107d check Rc2EcbEncrypt/Decrypt returns during CBC ops 2020-10-22 09:57:34 -06:00
Daniel Pouzzner c910c94824 rename API wc_XChaCha20Poly1305_{encrypt,decrypt}_oneshot to wc_XChaCha20Poly1305_{Encrypt,Decrypt} for consistency; remove stray debugging printf in XChaCha20Poly1305_test(). 2020-10-21 14:36:46 -05:00
Daniel Pouzzner 299e88a993 minor fixes and commentary. 2020-10-21 14:08:41 -05:00
Daniel Pouzzner 99b76241bd wolfcrypt/test/test.c: remove debugging printf in XChaCha20Poly1305_test(). 2020-10-21 14:08:41 -05:00
Daniel Pouzzner e1d3f2c7b4 chacha20_poly1305.c: add _SMALL_STACK code in wc_XChaCha20Poly1305_crypt_oneshot(). 2020-10-21 14:08:41 -05:00
Daniel Pouzzner 1949378d61 wc_Chacha_purge_current_block(): init "scratch" buffer to zeros, to avoid "garbage value" warnings. 2020-10-21 14:08:41 -05:00
Daniel Pouzzner f65947ae09 rename wc_XChaCha_init() to wc_XChacha_SetKey() for consistency, and add a counter argument to provide for future random access scenarios; refactor wc_Chacha_purge_current_block() to use a dummy wc_Chacha_Process() call for intrinsically correct counter dynamics. 2020-10-21 14:08:41 -05:00
Daniel Pouzzner 6142c22948 add wc_XChaCha_init(), wc_XChaCha20Poly1305_Init(), wc_XChaCha20Poly1305_encrypt_oneshot(), wc_XChaCha20Poly1305_decrypt_oneshot(), and wc_Poly1305_EncodeSizes64(). also, remove redundant arg check (typo) in wc_Poly1305Update(). 2020-10-21 14:08:41 -05:00
Elms c3dba3f9af Add additional checks to sp_ecc_point_new 2020-10-21 09:59:39 -07:00
Sean Parkinson 00ee24b998 ECC Shamir's Trick: infinity in precomp 
Code now handles generating and having infinity in the precomp.
 2020-10-21 11:58:31 +10:00
toddouska 7c38be407c Merge pull request #3398 from dgarske/async_test 
Fixes for `--enable-asynccrypt` tests
 2020-10-20 15:13:51 -07:00
toddouska a1afc6ca4f Merge pull request #3389 from tmael/ocsp_status 
Process multiple OCSP responses
 2020-10-20 15:11:42 -07:00
Takashi Kojo 6767646e54 set tag for zero len case 2020-10-20 19:11:35 +09:00
Sean Parkinson ebde736ee7 Merge pull request #3400 from ejohnstown/dh-fix 
DH Fix
 2020-10-20 11:45:18 +10:00
Elms 86b2118550 Address some cppcheck issues 2020-10-19 11:47:53 -07:00
Takashi Kojo a87f7c9185 cipher_tbl for EVP_get_cipherbyname 2020-10-19 06:17:15 +09:00
John Safranek 4f8c2b971f Move the binSz check variable to a spot where it is only declared in the same condition it is used and initialize it to zero. 2020-10-17 19:07:44 -07:00
David Garske fbd98be7af Fixes for --enable-asynccrypt tests after PR #3244. 2020-10-16 15:55:17 -07:00
John Safranek 4364700c01 DH Fix 
These changes fix several fuzz testing reports. (ZD 11088 and ZD 11101)
1. In GetDhPublicKey(), the DH Pubkey is owned by the SSL session. It
   doesn't need to be in the check for weOwnDh before freeing. There
   could be a chance it leaks.
2. In GeneratePublicDh() and GeneratePrivateDh(), the size of the
   destination buffer should be stored at the location pointed to by the
   size pointer. Check that before writing into the destination buffer.
3. Ensure the size of the private and public key values are in the size
   value before generating or getting the DH keys.
 2020-10-16 15:35:23 -07:00
Chris Conlon d4bbe529fb switch RC2 struct name to Rc2 for consistent camel case across algorithms 2020-10-16 15:19:47 -06:00
Chris Conlon 2c0f4b619e add RC2-40-CBC support to PKCS#12 parsing 2020-10-16 12:02:20 -06:00
Chris Conlon a6923ff100 initial implementation of RC2-CBC 2020-10-16 12:02:16 -06:00
Chris Conlon 4c75037bdb initial implementation of RC2-ECB 2020-10-16 12:00:56 -06:00
David Garske b58ea5842a wolfSSL RC2 template. 2020-10-16 11:46:40 -06:00
Sean Parkinson aeb44c5352 FIPS ARMASM: get build working 2020-10-16 16:41:18 +10:00
David Garske 9793414d78 Merge pull request #3381 from SparkiDev/ecc_ct_fix 
ECC mulmod: some curves can't do order-1
 2020-10-15 14:46:46 -07:00
toddouska f69fa13e02 Merge pull request #3357 from guidovranken/StoreECC_DSA_Sig-fix 
Improve StoreECC_DSA_Sig bounds checking
 2020-10-14 16:53:46 -07:00
David Garske b18d43abb9 Fix for possible uninitialized use of prev. 2020-10-14 15:52:51 -07:00
toddouska 026ba4e750 Merge pull request #3368 from dgarske/zd11057 
Fix for possible malformed encrypted key with DES3 causing negative length
 2020-10-14 15:32:48 -07:00
David Garske 751f64b4aa Fix for OCSP single response last optional part handling and restore original size arg since its required for the ASN elements. 2020-10-14 14:55:18 -07:00
David Garske 10b1884993 Added support for handling an OCSP response with multiple status responses. 2020-10-14 14:47:24 -07:00
toddouska 3f4bf9144b Merge pull request #3366 from SparkiDev/pkcs11_lookup 
PKCS #11: improve key lookup
 2020-10-14 14:22:56 -07:00