ea8e9ee699
Merge pull request #5063 from kaleb-himes/ZD13349
...
Ensure supported curves and curve size(s) WIN FIPS
2022-04-28 11:50:19 -06:00
df4dd7d5b3
Merge pull request #5088 from dgarske/sniffer_async_2
...
Fix to properly trap errors in sniffer (broken after async additions)
2022-04-28 09:47:05 -06:00
2ec7951de6
Merge pull request #4803 from danielinux/tirtos-update-202201
...
Update TIRTOS support
2022-04-28 10:12:32 -05:00
9970b68e45
Add HAVE_TLS_EXTENSIONS
2022-04-28 09:10:13 -06:00
881b9e5b07
Merge pull request #5093 from SparkiDev/rsa_fermat_fix
...
Fix use of WC_RSA_NO_FERMAT_CHECK
2022-04-28 06:40:08 -07:00
f91936944d
Fix use of WC_RSA_NO_FERMAT_CHECK
2022-04-28 16:29:48 +10:00
67838e099d
Merge pull request #5092 from ejohnstown/cert-ext-gen-test
...
Certificate Extension Generation Test
2022-04-28 10:25:28 +10:00
3294a3f8f8
Certificate Extension Generation Test
...
The test for certificate extensions requires both the test certs option
and the certificate generation option to run. The certs for the test are
generated by wolfCrypt. This disables the extensions test if
certificate generation is disabled.
2022-04-27 13:08:28 -07:00
22802604c0
Merge pull request #5090 from dgarske/public_dh
...
Fix for DH public FFDHE incorrectly getting enabled
2022-04-27 13:08:46 -05:00
277d6dc5dd
Fix minor clang-tidy warnings for async.
2022-04-27 10:22:19 -07:00
93e8133453
Merge pull request #4896 from elms/compat/const_casting_fun
...
Casting away `const` for improved compatibility
2022-04-27 09:35:58 -07:00
7e803f346d
Merge pull request #5076 from JacobBarthelmeh/fuzzing
...
fix for sanity check on PKCS7 indef read
2022-04-27 09:34:34 -07:00
8bf228d346
Merge pull request #5083 from SparkiDev/d2i_ecpriv_der
...
d2i_ECPrivateKey() takes DER encoded data
2022-04-27 09:32:04 -07:00
1d64c735ce
Merge pull request #5086 from elms/cmake/ocsp_crl
...
cmake: Add CRL, OCSP, and OCSP stapling options
2022-04-27 09:31:51 -07:00
ad68bb9a7a
Merge pull request #5091 from SparkiDev/mrg_armv8_old_c
...
Can't declare variables in for statements
2022-04-27 09:31:19 -07:00
fbc2ccca1e
Fix to properly trap errors in sniffer SetupKeys after async changes. Fix minor scan-build warnings.
2022-04-27 08:28:36 -07:00
11bdb8550e
Correction
2022-04-27 08:33:56 -06:00
ac48438bd0
Can't declare variables in for statements
2022-04-27 11:10:53 +10:00
f86f4a8ca0
d2i_ECPrivateKey() takes DER encoded data
...
Code was incorrectly using data as a private key instead of DER
decoding.
Fixed i2d_EcPrivateKey() to output DER encoded data.
2022-04-27 09:39:50 +10:00
ec38048711
cmake: Add CRL, OCSP, and OCSP stapling options
2022-04-26 16:23:46 -07:00
25e8bd6b45
Merge pull request #5044 from SparkiDev/sp_read_radix_10_oob
...
SP Math
2022-04-26 16:21:11 -07:00
67029dc4e7
Fix to make sure the old public DH API's are not enabled unless FIPS v2 or older. Broken in PR #5018 .
2022-04-26 15:39:54 -07:00
321e44226a
Casting away const for improved compatibility
...
This is appears to be an existing pattern.
Fixes #4893
2022-04-26 14:31:40 -07:00
a6d019ecf9
Merge pull request #5073 from JacobBarthelmeh/PKCS7
2022-04-26 14:41:13 -06:00
cbc27f7de4
Merge pull request #5085 from douzzer/20220426-multi-test
...
20220426 multi-test fixups
2022-04-26 11:15:59 -07:00
7436a41bc7
Merge pull request #5046 from SparkiDev/cppcheck_fixes_8
...
cppcheck: fixes
2022-04-26 10:37:42 -07:00
7e8598f75b
Merge pull request #5081 from dgarske/sniffer_decrypt
...
Restore sniffer internal decrypt function. This allows decrypting TLS…
2022-04-26 09:37:32 -07:00
67a3326e6d
Merge pull request #5082 from SparkiDev/sp_c++
...
CPP protection for extern references to asm code
2022-04-26 08:33:15 -07:00
4e02d7e404
fix clang-tidy-Customer-CFG-7 readability-redundant-preprocessor.
2022-04-26 10:20:26 -05:00
704a18d103
Merge pull request #5079 from tmael/rsa_vfg
...
Fix no malloc RSA test
2022-04-26 08:11:44 -07:00
e6d267ef16
src/ssl.c wolSSL_DH_new_by_nid(): fix cppcheck nullPointer report.
2022-04-26 09:58:07 -05:00
5e1a358dff
wolfcrypt/src/evp.c wolfSSL_EVP_PKEY_free(): fix clang-diagnostic-implicit-fallthrough.
2022-04-26 09:57:54 -05:00
2c5db7b64c
fix whitespace.
2022-04-26 09:57:25 -05:00
0be79a8629
CPP protection for extern references to asm code
2022-04-26 10:17:25 +10:00
8737d46bb1
Merge pull request #5018 from haydenroche5/libspdm
...
Make changes to compatibility layer to support libspdm.
2022-04-26 09:55:22 +10:00
d362b6dd08
Merge pull request #5033 from haydenroche5/ec_key_print_fp
...
Add wolfSSL_EC_KEY_print_fp to compat layer.
2022-04-26 09:51:37 +10:00
273ed1df76
Restore sniffer internal decrypt function. This allows decrypting TLS v1.2 traffic ignoring AEAD errors.
2022-04-25 16:28:09 -07:00
20e5e654a3
cppcheck: fixes
...
CBIORecv/Send are only assigned once.
IOCB_ReadCtx/WriteCtx only assigned once.
BuildMessage checks output and input wiht sizeOnly every call - state
machine doesn't cache these.
Renamed alias_tbl variables to something unique.
Other cppcheck fixes.
Also reworked pem_read_bio_key().
2022-04-26 09:26:41 +10:00
1181081c38
Merge pull request #5075 from dgarske/cryptocb
...
Fix for PKCS7 with Crypto Callbacks
2022-04-25 17:23:28 -06:00
3ab5ccd04f
Add support for EVP_PKEY_sign/verify functionality ( #5056 )
...
* Fix wolfSSL_RSA_public_decrypt() return value to match Openssl
* Add support for EVP_PKEY_verify_init() and EVP_PKEY_verify()
* wpa_supplicant SAE public key functionality requires this function.
* Add DSA support for EVP_PKEY_sign/verify()
* Add ECDSA support for EVP_PKEY_sign/verify()
* Add tests for EVP_PKEY_sign_verify()
* Fix "siglen = keySz" at error cases
* Fix wolfSSL_DSA_do_sign() usage
1. Check wolfSSL_BN_num_bytes() return value
2. Check siglen size
3. Double the siglen
* Check return code of wolfSSL_i2d_ECDSA_SIG() in wolfSSL_EVP_DigestSignFinal()
* Add size calculations to `wolfSSL_EVP_PKEY_sign`
* Add size checks to wolfSSL_EVP_PKEY_sign before writing out signature
* Use wc_ecc_sig_size() to calculate ECC signature size
Signed-off-by: Masashi Honma <masashi.honma@gmail.com >
Co-authored-by: Juliusz Sosinowicz <juliusz@wolfssl.com >
2022-04-25 14:19:56 -07:00
bfd24cfa23
Merge pull request #5071 from dgarske/scan-build
...
Fixes for various nightly scan-build errors and warnings
2022-04-25 13:30:43 -07:00
85ef91ce6d
Move up local variable at the beginning
2022-04-25 12:40:31 -07:00
34d541109d
Additional scan-build warning fixes.
2022-04-25 09:55:36 -07:00
18a6a7c4a7
Fix RSA nomalloc test
2022-04-25 09:50:50 -07:00
4013f83e4f
Add some missing logs and implement WOLFSSL_MSG_EX()
...
WOLFSSL_MSG_EX() uses XVSNPRINTF to allow for formatted strings to be printed. It uses a 100 byte internal stack buffer to format the log message.
2022-04-25 15:59:07 +02:00
70ad19467c
Merge pull request #5068 from cconlon/jniPKCallbacks
...
Don't enable PK Callbacks with JNI FIPS builds
2022-04-22 16:08:29 -07:00
4ecf3545d7
Improve scan-build fix for ProcessPeerCertParse checking of empty dCert. With WOLFSSL_SMALL_CERT_VERIFY it is NULL.
2022-04-22 16:07:24 -07:00
e9b80e53fa
Fix issue with InitX509Name.
2022-04-22 16:02:54 -07:00
74cd2fd910
Fix for integer.c possible uses of mp_int input with DP NULL.
2022-04-22 16:02:54 -07:00
ea2841fa7a
Make sure ASN1 isDynamic is always set to 0. SK Cipher doesn't have free (data is contained in the SK).
2022-04-22 16:02:54 -07:00
JacobBarthelmeh
Kaleb Himes
David Garske
Sean Parkinson
John Safranek
elms
Chris Conlon
Daniel Pouzzner
Masashi Honma
Tesfa Mael
Juliusz Sosinowicz