wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-31 02:49:16 +01:00
Code Issues Packages Projects Releases Wiki Activity
17,925 Commits 12 Branches 184 Tags
2571f65e85509a22ca2fea9cdee5828b6202b878
Commit Graph

17925 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sean Parkinson
2571f65e85 Check ECC signature in TLS 
Verifying gnerated ECC signature in TLS handshake code to mitigate when
an attacker can gain knowledge of the private key through fault
injection in the signing process.
Requires WOLFSSL_CHECK_SIG_FAULTS to be defined.
 2022-08-24 09:01:18 +10:00
David Garske
3b6124cf34 Merge pull request #5497 from douzzer/20220823-fixits 
20220823-fixits
 2022-08-23 13:45:02 -07:00
Daniel Pouzzner
8f70f98640 wolfcrypt/src/asn.c: refactor _SMALL_STACK code path in ParseCRL_Extensions() to fix memory leaks and heap-use-after-free. 2022-08-23 13:52:42 -05:00
Daniel Pouzzner
dcebd0d349 wolfssl/wolfcrypt/logging.h: when !WOLFSSL_VERBOSE_ERRORS, define WOLFSSL_ERROR_VERBOSE(e) as (void)(e) to avert clang-analyzer-deadcode.DeadStores, and avert bare semicolons. 2022-08-23 13:50:56 -05:00
David Garske
769fb7cbee Merge pull request #5453 from rizlik/dtls_cid 
Support ConnectionID Extension DTLS Negotiation
 2022-08-23 11:29:25 -07:00
David Garske
cab6ecd130 Merge pull request #5404 from JacobBarthelmeh/PKCS7 
fix for not having default pkcs7 signed attributes
 2022-08-23 11:04:17 -07:00
David Garske
5c65974170 Fix for dynamic type macro typo. 2022-08-23 09:32:11 -07:00
David Garske
9d5305ad07 Merge pull request #5495 from julek-wolfssl/ticket-alignment 
Remove WOLFSSL_GENERAL_ALIGNMENT from WOLFSSL_TICKET_ENC_SZ calculation
 2022-08-23 08:13:42 -07:00
Marco Oliverio
3a8e6f2280 fix: add explicit cast to abide g++ compiler 2022-08-23 16:58:24 +02:00
Marco Oliverio
f3262005e4 add basic ConnectionID DTLS tests 2022-08-23 16:58:24 +02:00
Marco Oliverio
90fcd95f9b server/client: add --cid option to use ConnectionID extension 2022-08-23 16:58:24 +02:00
Marco Oliverio
cfbd061625 add initial support for ConnectionID DTLS extension 2022-08-23 16:58:24 +02:00
Juliusz Sosinowicz
ae049706c6 Remove WOLFSSL_GENERAL_ALIGNMENT from WOLFSSL_TICKET_ENC_SZ calculation 2022-08-23 11:57:41 +02:00
Marco Oliverio
171af05e96 tlsx: expose TLSX_Push 
To be able to implement extension in separate compilation unit
 2022-08-23 10:00:06 +02:00
David Garske
bf9f4b88e4 Merge pull request #5494 from douzzer/20220822-bugprone-macro-parentheses 
20220822-bugprone-macro-parentheses
 2022-08-22 17:16:48 -07:00
David Garske
48463f6d54 Merge pull request #5388 from lealem47/crlPrint 
Adding X509_CRL_print() function
 2022-08-22 17:16:19 -07:00
Lealem Amedie
f9ca944106 Addressing some more feedback 2022-08-22 14:47:11 -07:00
Daniel Pouzzner
1063090e38 fix bugprone-macro-parentheses in WOLFSSL_CRYPTO_EX_DATA_IGNORE_PARAMS() added in 8b2fcd0643. 2022-08-22 16:34:28 -05:00
JacobBarthelmeh
bd49d37aaf Merge pull request #5492 from embhorn/zd14694 
Fix for AddPacketInfo with WOLFSSL_CALLBACKS
 2022-08-22 14:59:29 -06:00
Lealem Amedie
91a7b8067c Addressing some PR feedback 2022-08-22 12:04:15 -07:00
David Garske
c7c6fd98d7 Merge pull request #5491 from icing/quic-doc-update 
Update of the QUIC documentation
 2022-08-22 12:00:12 -07:00
David Garske
b9d9dc02bb Merge pull request #5476 from julek-wolfssl/session-buffers 
Remove WOLFSSL_SESSION_TYPE_REF buffers from WOLFSSL_SESSION
 2022-08-22 11:59:39 -07:00
David Garske
c0815b3bc6 Merge pull request #5493 from kaleb-himes/openssl3_0_testing_supplemental 
Supplemental fix in addition to #5470
 2022-08-22 11:14:49 -07:00
David Garske
36facf52c9 Merge pull request #5490 from TakayukiMatsuo/no_rsa 
Fixed build errors raised when NO_RSA is defined
 2022-08-22 10:07:39 -07:00
David Garske
d50e740c97 Merge pull request #5488 from julek-wolfssl/get_ex_new_index-docs 
Add documentation explaining get_ex_new_index API limitations
 2022-08-22 09:51:36 -07:00
David Garske
a7e318a7ad Merge pull request #5484 from lealem47/allocators 
Adding allocator funcs for dtls peer (for wrappers)
 2022-08-22 09:29:54 -07:00
David Garske
ce5a749fcb Merge pull request #5489 from SparkiDev/aes_ctr_arm_asm 
AES-CTR ARM crypto ASM fix
 2022-08-22 09:28:22 -07:00
David Garske
1e5de8255e Merge pull request #5472 from satoshiyamaguchi/trial3 
Add/Extend PEM_read compatibility API's
 2022-08-22 09:24:39 -07:00
Lealem Amedie
8f4b467f47 Fixing line lengths and SMALL_STACK code path 2022-08-22 09:17:23 -07:00
David Garske
689d45eb59 Merge pull request #5425 from SparkiDev/ecc_sp_uncomp_ret 
ECC SP uncompress: use error return
 2022-08-22 09:00:52 -07:00
kaleb-himes
77dec16b3b Supplemental fix in addition to #5470 2022-08-22 08:00:40 -06:00
Eric Blankenhorn
22c44bd762 Fix for AddPacketInfo with WOLFSSL_CALLBACKS 2022-08-22 08:01:21 -05:00
Stefan Eissing
240c261772 Update of the QUIC documentation 
- explain what the QUIC support is
- examples of ngtcp2 use
- what is needed for HTTP/3
 2022-08-22 14:36:14 +02:00
Juliusz Sosinowicz
0dbd0ffb4e Merge pull request #5483 from embhorn/zd14659 2022-08-22 14:28:29 +02:00
Juliusz Sosinowicz
e565d0d7de Refactor and code review 
- Refactor object hashing into one function
- Allow multiple WOLFSSL_ASSERT_SIZEOF_GE in one function
 2022-08-22 14:19:48 +02:00
Juliusz Sosinowicz
8b2fcd0643 Add documentation explaining get_ex_new_index API limitations 2022-08-22 12:16:51 +02:00
Sean Parkinson
c7d28e3bb9 ECC SP uncompress: use error return 2022-08-22 16:21:30 +10:00
TakayukiMatsuo
48e7035af8 Fix build error when NO_RSA is defined 2022-08-22 14:03:19 +09:00
Sean Parkinson
f7a8d4a44a AES-CTR ARM crypto ASM fix 
Fix handling of counter to support incrementing across all bytes in ARM
crypto asm.
Added test cases for wrapping of counter.

Extracted ARM ASM for AES-CTR.
Use ASM to created encrypted temporary block.
 2022-08-22 10:36:48 +10:00
Sean Parkinson
26c61f8e0f Merge pull request #5473 from icing/quic-hello-retry 
Respect disabled curves on HelloRetryRequests
 2022-08-22 08:32:30 +10:00
Lealem Amedie
2059d05b7a checking some ret values, fix trailing whitespace 2022-08-19 12:40:42 -07:00
Lealem Amedie
2a65220527 Adding X509_CRL_print() function 2022-08-19 12:21:35 -07:00
Lealem Amedie
da136e0c49 Adding allocator funcs for dtls peer (for wrappers) 2022-08-19 10:59:55 -07:00
David Garske
b417f94435 Merge pull request #5485 from SparkiDev/tls13_state_string_long 
wolfSSL_state_string_long - update for TLS 1.3 and DTLS 1.3
 2022-08-19 10:09:09 -07:00
David Garske
f3b9cfa71c Merge pull request #5487 from icing/tls13_early_nr 
Improved EarlyData Indicator reply fix based on PR #5486
 2022-08-19 09:54:17 -07:00
Stefan Eissing
a7c0c4649e Fixing Handshake Hash update when Preshared Keys offered by client, 
but none of them was accepted.

- This applies to TLSv1.3 and QUIC
- QUIC test case to trigger the bug enabled
 2022-08-19 15:56:20 +02:00
David Garske
1d0e83bd1a Merge pull request #5474 from julek-wolfssl/zd14644-2 
Match OpenSSL self signed error return.
 2022-08-19 06:46:26 -07:00
Eric Blankenhorn
3d8562f07b Fixes for build and runtime issues 2022-08-19 08:12:04 -05:00
Stefan Eissing
6cb0caa0a0 Adding disabledCurves as a member of WOLFSSL in the OPENSSL_EXTRA case. 
- inheriting from WOLFSSL_CTX on creation
- enabling on WOLFSSL only when wolfSSL_set1_curves_list() is called
 2022-08-19 11:03:23 +02:00
Stefan Eissing
7a5170b6e1 Improved EarlyData Indicator reply fix based on PR #5486 
- PR #5486 had test failures in tls13.test and quit unit.test
- the extension was no longer added in SessionTicket messages
- added extra parameter to clarify how the TLSX is used
 2022-08-19 10:07:06 +02:00