wolfssl

mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-26 17:42:49 +01:00

Author	SHA1	Message	Date
JacobBarthelmeh	7f5d02c36b	Merge pull request #9317 from SparkiDev/benchmark_asym_cc Benchmark: add cycle counts for asym ops	2025-10-23 09:31:30 -06:00
Daniel Pouzzner	b1f2ff73ed	wolfcrypt/src/sha256.c: in wc_Sha256HashBlock(), use ByteReverseWords() rather than a series of ByteReverseWord32() to get WOLFSSL_USE_ALIGN.	2025-10-22 22:54:20 -05:00
Daniel Pouzzner	be301f93da	fixes for autotools config around armasm AES/SHA refactor in #9284 : in configure.ac, add BUILD_FIPS_V5_PLUS and BUILD_FIPS_V6_PLUS conditionals, and fix BUILD_FIPS_V6 conditional to match v6 only; in src/include.am, add LEGACY_ARMASM_foo and NEW_ARMASM_foo helper variables, restore pre-PR9284 armasm clauses, and add or update several FIPS gates as needed; add empty wolfcrypt/src/port/arm/{armv8-aes.c,armv8-sha256.c,armv8-sha512.c} to mollify autotools, and in wolfcrypt/src/include.am, restore them to EXTRA_DIST if FIPS v5 or v6.	2025-10-22 22:52:24 -05:00
Sean Parkinson	dc45a6f340	Benchmark: add cycle counts for asym ops Added million of cycles per op information. Getting cycle count for Aarch64 now too.	2025-10-23 08:43:05 +10:00
JacobBarthelmeh	4daab8a813	Merge pull request #9284 from SparkiDev/aarch64_asm_gen Aarch64 asm: convert to generated	2025-10-22 11:10:27 -06:00
JacobBarthelmeh	520d9501af	Merge pull request #9322 from SparkiDev/crldist_reason_fix X.509 cert: crl distribution point reasons is IMPLICIT	2025-10-22 09:33:08 -06:00
Sean Parkinson	8533bc803b	AES: Improve CFB and OFB and add tests Improve performance of CFB and OFB. Only have one implementation that is used by OFB encrypt and decrypt. Update AES testing in unit.test. Update benchmarking of CFB and OFb to include decrypt.	2025-10-22 12:19:56 +10:00
philljj	7e6c86a6c3	Merge pull request #9326 from douzzer/20251021-KDF-FIPS-gate-tweaks 20251021-KDF-FIPS-gate-tweaks	2025-10-21 12:49:21 -05:00
David Garske	9c3a0e3a67	Merge pull request #9324 from douzzer/20251020-coverity-WC_SAFE_foo 20251020-coverity-WC_SAFE_foo	2025-10-21 09:41:25 -07:00
JacobBarthelmeh	936e350c63	Merge pull request #9325 from LinuxJedi/zp-fixes Fix things found with ZeroPath	2025-10-21 10:19:01 -06:00
Brett Nicholas	1134d246f7	Merge pull request #9309 from night1rider/CryptoCbCopy Add crypto callback support for copy/free operations (SHA-256)	2025-10-21 09:45:18 -06:00
Daniel Pouzzner	b07bc74a71	wolfcrypt/test/test.c: skip nist_sp80056c_kdf_test() and nist_sp800108_cmac() on FIPS <7.0.0.	2025-10-21 10:38:55 -05:00
David Garske	c1339abc05	Merge pull request #9323 from philljj/fix_coverity_onestep KDF onestep: hashOutSz err check.	2025-10-21 08:23:05 -07:00
David Garske	6f9ca6cb52	Merge pull request #9294 from LinuxJedi/benchmark-ram Benchmark memory tracking	2025-10-21 08:15:28 -07:00
Andrew Hutchings	be1428d108	Validate AF_ALG RSA inputs Require the ciphertext length to match the RSA modulus before copying into the AF_ALG Xilinx stack buffer, preventing oversized inputs from overflowing the aligned scratch space.	2025-10-21 13:57:36 +01:00
Sean Parkinson	9c1462a9ec	Aarch64 asm: convert to generated Algorithms now generated: SHA-256 SHA-512 ChaCha20 Poly1305 AES-ECB AES-CBC AES-CTR AES-GCM + streaming AES-XTS AES SetKey ARM32 asm algorithms generated now too: SHA-256 SHA-512 ChaCha20 AES-ECB AES-CBC AES-CTR AES-GCM AES-XTS AES SetKey Removed use of ARM specific implementations of algorithms. (armv8-aes.c)	2025-10-21 17:03:39 +10:00
Daniel Pouzzner	279238ce63	wolfssl/wolfcrypt/types.h: * fix WC_MIN_SINT_OF(). * add outer cast back to target type in WC_MAX_UINT_OF() and WC_MAX_SINT_OF(). * rename WC_SAFE_SUM__NO_WUR to WC_SAFE_SUM__CLIP(). * remove clipping assignments from failure paths in WC_WUR_INT() variants. * add WC_SAFE_SUB_UNSIGNED_CLIP(), WC_SAFE_SUB_UNSIGNED(), WC_SAFE_SUB_SIGNED_CLIP(), and WC_SAFE_SUB_SIGNED(). * add Coverity-specific annotations in WC_SAFE_() to suppress false-positive overflow warnings. wolfcrypt/test/test.c: implement macro_test(). * fix stray uint32_t's in crypto_ecc_verify() and crypto_ecc_sign() arg lists. wolfssl/wolfcrypt/ext_xmss.h: fix stray uint32_t.	2025-10-20 23:27:09 -05:00
jordan	c1032a8cb6	KDF onestep: hashOutSz err check.	2025-10-20 22:05:41 -05:00
Sean Parkinson	3f9e2e5baa	X.509 cert: crl distribution point reasons is IMPLICIT The reasons field is IMPLICIT meaning that the value is directly under the context-specific tag. That is context-specific tag is not constructed.	2025-10-21 09:30:45 +10:00
Andrew Hutchings	00c936c29e	Only change WC_BENCH_MAX_LINE_LEN when we need to	2025-10-20 18:58:16 +01:00
night1rider	f1faefed91	Added callbacks for copy and free to SHA, 224, 384, 512, and SHA3. Also split macros for FREE and COPY Callbacks, and add configure.ac option.	2025-10-20 11:09:35 -06:00
David Garske	d86575c766	Merge pull request #9312 from night1rider/FixCallbackRngInit Refactor wc_rng_new to use wc_rng_new_ex, and to use WC_USE_DEVID as the devId if set at compile time	2025-10-20 09:19:17 -07:00
night1rider	0dca3bc24d	Setup to be opt-in for copy callback, and also added a outline for a free callback	2025-10-20 10:07:24 -06:00
night1rider	4d6418f31a	Add crypto callback support for copy operations (SHA-256)	2025-10-20 10:06:30 -06:00
night1rider	bd4099d2d7	Update test.c tests to use global devId instead of INVALID_DEVID	2025-10-20 09:16:23 -06:00
night1rider	28c78b5c0c	Use global devId for RNG initialization in tests: mlkem_test, dilithium_test, xmss_test, lms_test	2025-10-20 09:16:23 -06:00
night1rider	fba8cab200	Refactor wc_rng_new to use wc_rng_new_ex, and to use WC_USE_DEVID as the devId if set at compile time	2025-10-20 09:16:23 -06:00
jordan	525c212d1c	cmac kdf: add NIST SP 800-108, and NIST SP 800-56C two-step.	2025-10-20 08:20:23 -05:00
Daniel Pouzzner	2bbc3a0ae2	wolfcrypt/test/test.c: fixes for --disable-sha256, --disable-hmac, --disable-rng, and FIPS gating on RSA-PSS.	2025-10-18 02:05:55 -05:00
Andrew Hutchings	d87ca70048	Fix mixed declaration / code	2025-10-18 06:18:29 +01:00
Andrew Hutchings	01dc28ad31	Seperate AES alloc / dealloc phases	2025-10-18 06:13:40 +01:00
Andrew Hutchings	65bb68b6c0	Move heap/stack tracking to before init phase Start tracking during the setup of the algo, so we can capture the memory usage of the algo init functions.	2025-10-18 06:13:36 +01:00
Andrew Hutchings	036c66c777	Benchmark memory tracking This adds heap and stack tracking to wolfCrypt bench so that it is possible to see RAM usage. It also adds support for stack tracking in microcontrollers (tested on STM32).	2025-10-18 06:09:01 +01:00
lealem47	5280bfb89a	Merge pull request #9297 from douzzer/20251011-more-fips-optest-tweaks 20251011-more-fips-optest-tweaks	2025-10-17 12:44:25 -06:00
David Garske	f492abfe9e	Merge pull request #9314 from SparkiDev/silabs_no_hash_raw SHA-2: No hash raw	2025-10-17 10:19:01 -07:00
Daniel Pouzzner	581e86c178	wolfcrypt/test/test.c: fix error-path uninitialized access defect in ecc_test_buffers().	2025-10-16 18:50:05 -05:00
Sean Parkinson	d0909991fb	SHA-2: No hash raw Implementation of FinalRaw for SE050 was not usable - TLS_hmac did not produce valid results. Removed implementations and defining WOLFSSL_NO_HASH_RAW to compile to not require FinalRaw APIs.	2025-10-17 07:46:50 +10:00
Daniel Pouzzner	0c4feb0aa6	wolfcrypt/src/asn.c: revert earlier changes in EncodeName(), and add local S390-specific pragma to inhibit false-positive -Wnull-dereference.	2025-10-16 16:10:54 -05:00
Daniel Pouzzner	6ee660841b	fixes/workarounds for -Wnull-dereferences, some true positive, some false positive: * src/pk.c:wolfSSL_RSA_meth_new() * tests/api.c:test_wolfSSL_PKCS7_certs() * tests/api.c:test_wolfSSL_X509V3_EXT_get() * wolfcrypt/src/asn.c:EncodeName() * wolfcrypt/src/pkcs12.c:wc_i2d_PKCS12() * wolfcrypt/src/port/af_alg/afalg_aes.c	2025-10-16 15:10:16 -05:00
David Garske	0727bae09e	Merge pull request #9310 from SparkiDev/lms_cast_16bit LMS: Cast constants before shifting left	2025-10-16 12:16:05 -07:00
David Garske	d88ab84b9f	Merge pull request #9311 from SparkiDev/regression_fixes_19 Regression testing	2025-10-16 10:56:27 -07:00
Sean Parkinson	c111c5bacc	Regression testing x509.c: realloc may fail and therefore need to store result in a temporary so the old pointer is not lost. tls.c: free the name if it is not pushed on to the stack of peer CA names. Failure to push can be from memory allocation failure. aes.c: Don't compile XTS decrypt functions without HAVE_AES_DECRYPT. Fix tests to have better pre-processor protection.	2025-10-16 12:13:32 +10:00
Sean Parkinson	36c953dd8f	LMS: Cast constants before shifting left Compiling for 16-bit results in some constants type being too small for shift amount without cast.	2025-10-16 09:24:48 +10:00
David Garske	0c4f5879d8	Fix for benchmark with key gen and "out" not being allocated because of typo between `WOLFSSL_RSA_VERIFY_INLINE` and `WOLFSSL_RSA_VERIFY_ONLY`. Reproduced with: `./configure --enable-keygen CFLAGS="-DWOLFSSL_RSA_VERIFY_INLINE" --disable-examples && make && ./wolfcrypt/benchmark/benchmark -rsa`	2025-10-15 11:25:49 -07:00
Daniel Pouzzner	250e19a682	Merge pull request #9299 from dgarske/bench_rsasz Fix for improper sizing on `bench_rsa_helper`	2025-10-15 11:55:48 -05:00
David Garske	75097f3e09	Fix for improper sizing on `bench_rsa_helper`	2025-10-14 16:41:27 -07:00
Daniel Pouzzner	1602ed2f3a	wolfcrypt/src/asn.c: rearrange check for null cname in EncodeName() to fix false positive -Wnull-dereference. src/internal.c: suppress -Wnull-dereference locally in ProcessPeerCertParse() to fix false positive.	2025-10-14 18:27:02 -05:00
Daniel Pouzzner	014f55fe10	wolfssl/wolfcrypt/types.h: add WC_WUR_INT(), MAX_UINT_OF(), MAX_SINT_OF(), MIN_SINT_OF(), WC_SAFE_SUM_UNSIGNED(), and WC_SAFE_SUM_SIGNED().	2025-10-14 16:28:32 -05:00
Sean Parkinson	77dcbb5603	Merge pull request #9293 from dgpighin/docstrings_update Some updates to the docstrings	2025-10-14 16:14:15 +10:00
Daniel Pouzzner	b2c105d5f7	Merge pull request #9292 from embhorn/zd20626 Fix GCC warnings	2025-10-13 23:17:13 -05:00

1 2 3 4 5 ...

10102 Commits