wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-26 18:52:25 +01:00
Code Issues Packages Projects Releases Wiki Activity
27,004 Commits 12 Branches 184 Tags
5b7480486eb2cc8a00fd2de7797301a4ea492964
Commit Graph

27004 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
JacobBarthelmeh
5b7480486e Merge pull request #9487 from dgarske/qathash 
Fix QAT hash final with no update and fix g++ warnings
 2025-12-04 11:35:46 -07:00
David Garske
f01c4f10fa Merge pull request #9454 from SparkiDev/rsa_dec_too_small_output_fix 
RSA decrypt: don't write past buffer end on error
 2025-12-04 10:06:37 -08:00
David Garske
1dfa4d1bcf Merge pull request #9488 from SparkiDev/aes_gcm_4bit_be 
AES-GCM, 4-bit table, Big Endian: fast impl of GMULT
 2025-12-04 10:06:06 -08:00
David Garske
003f2385b9 Merge pull request #9491 from SparkiDev/sha256_armasm_small 
ARM32/Thumb2 ASM SHA-256: provide small code size option
 2025-12-04 10:05:01 -08:00
David Garske
1ebecb68c8 Merge pull request #9484 from holtrop/add-rust-wrapper-build-configs 
Add several library configurations from os-check.yml to the Rust wrapper CI build
 2025-12-04 08:00:24 -08:00
Josh Holtrop
10a12b76e6 Rust wrapper: support more wolfcrypt build configurations 2025-12-04 09:09:04 -05:00
Sean Parkinson
bff29a8535 ARM32/Thumb2 ASM SHA-256: provide small code size option 
WOLFSSL_ARMASM_SHA256_SMALL for Thumb2 and ARM32 using base instructions
compiles implementations that are smaller but slower.
 2025-12-04 16:44:37 +10:00
Sean Parkinson
2b726ebf0b Merge pull request #9386 from sebastian-carpenter/oss-fuzz-fix-442261624 
fixed oss-fuzz warnings
 2025-12-04 15:28:18 +10:00
David Garske
0aa789a289 Merge pull request #9458 from LinuxJedi/doc_fixes 
Fix issues with the API documentation
 2025-12-03 09:23:23 -08:00
David Garske
45b7fb9e39 Merge pull request #9489 from julek-wolfssl/zd/20860 
Fix AKID CA lookup
 2025-12-03 08:16:51 -08:00
Andrew Hutchings
2376e484d8 Fix return values 2025-12-03 15:21:11 +00:00
Andrew Hutchings
590a02e541 Fix Doxygen parameters 2025-12-03 15:15:32 +00:00
Andrew Hutchings
c4e9ca4eca Fix some errors in the doc edits 2025-12-03 14:56:52 +00:00
Juliusz Sosinowicz
22eedeea86 fixup! tests: add unit coverage for GetCAByAKID 2025-12-03 13:26:12 +01:00
Juliusz Sosinowicz
32c6f8f2a0 Fix prefix errors 2025-12-03 11:36:39 +01:00
Juliusz Sosinowicz
995e63f6e1 Fix AKID CA lookup 
The `authorityCertIssuer` field refers to the Issuer field of the CA being looked up and not its Subject field.
 2025-12-03 10:47:40 +01:00
Juliusz Sosinowicz
7b82224462 tests: add unit coverage for GetCAByAKID 2025-12-03 10:47:40 +01:00
Sean Parkinson
697bc47d8e AES-GCM, 4-bit table, Big Endian: fast impl of GMULT 
Add fast implementation GMULT for big-endian platforms like PowerPC and
PowerPC64.
Speeds up AES-GCM.
 2025-12-03 11:22:49 +10:00
Daniel Pouzzner
3062d15240 Merge pull request #9485 from philljj/bsdkm_cleanup 
bsdkm: return cleanup.
 2025-12-02 16:47:26 -06:00
David Garske
628c1e5225 Fix g++ compiler implicit cast warnings 2025-12-02 10:54:16 -08:00
David Garske
6deef7c14a QAT fix to properly handle a finish with no update 2025-12-02 09:57:12 -08:00
David Garske
6d55b42cf6 Merge pull request #9483 from josepho0918/mqx 
Enhance MQX platform support and integration
 2025-12-02 07:58:49 -08:00
David Garske
dd40417fca Merge pull request #9479 from josepho0918/aes-cbc-mmcau 
Prefer ARMASM over MMCAU for AES CBC when both enabled
 2025-12-02 07:58:17 -08:00
Josh Holtrop
08f2b36678 Add several library configurations from os-check.yml to the Rust wrapper CI build 2025-12-02 10:52:05 -05:00
Daniel Pouzzner
bc615a26e9 Merge pull request #9478 from sameehj/fix-tegra 
linuxkm: Fix spinlock initialization on Tegra kernels for __SPIN_LOCK…
 2025-12-02 09:24:00 -06:00
David Garske
2f1be0f0d4 Merge pull request #9486 from julek-wolfssl/hostap-sha-cert-update 
Update sha384 and sha512 certs
 2025-12-02 06:55:35 -08:00
Juliusz Sosinowicz
c63df82f0d Update sha384 and sha512 certs 
- Print errors in logs on failure
 2025-12-02 10:46:43 +01:00
David Garske
8741805e9d Merge pull request #9476 from embhorn/zd20515 
Fix Coverity dead code report
 2025-12-01 13:59:21 -08:00
David Garske
a2f46cd9b0 Merge pull request #9470 from lealem47/MLKEM_PUB_HASH_E 
ML-KEM: Add check for Pubkey hash mismatch on decoding the dk
 2025-12-01 12:49:48 -08:00
jordan
cd99aa2f0e bsdkm: return cleanup. 2025-12-01 09:43:15 -06:00
Sameeh Jubran
9a699c04ea linuxkm: Fix spinlock initialization on Tegra kernels for __SPIN_LOCK_UNLOCKED macro incompatibility 
Tegra vendor kernels (L4T / NVIDIA Yocto BSP) fail to compile the
wolfSSL Linux kernel module due to the use of the legacy assignment form
of the spinlock initializer:

    m->lock = __SPIN_LOCK_UNLOCKED(m);

On Tegra, __SPIN_LOCK_UNLOCKED() expands to a braced-struct initializer
that is *not* valid as an assignment expression, causing:

    error: expected expression before '{' token

This patch applies a Tegra-specific workaround by replacing the
assignment with the stable kernel API:

    spin_lock_init(&m->lock);

This is guarded behind CONFIG_ARCH_TEGRA so that non-Tegra platforms
retain the current initialization behavior until further validation is
completed.

This fix restores successful kernel module builds on NVIDIA Tegra-based
Yocto images without modifying behavior on other architectures.

Signed-off-by: Sameeh Jubran <sameeh@wolfssl.com>
 2025-11-27 10:08:55 +02:00
Joseph Chen
10efcd9787 Enhance MQX platform support and integration 2025-11-27 10:03:04 +08:00
Sean Parkinson
93944d289f Merge pull request #9482 from anhu/move_the_sigalg_check 
Need to move sigalg check down because it does not consider hybrids.
 2025-11-27 09:42:18 +10:00
Sean Parkinson
e30e9b7e09 Merge pull request #9473 from holtrop/rust-cargo-clippy 
Rust wrapper: enable cargo clippy and fix several clippy warnings
 2025-11-27 09:18:51 +10:00
Sean Parkinson
6c8b9054a0 Merge pull request #9443 from holtrop/report-rsa_pss_pss-sig-algo 
TLSv1.3 certificate verify: report rsa_pss_pss_* signature algorithm when supported
 2025-11-27 09:12:58 +10:00
Sean Parkinson
6a5e29e21d Merge pull request #9477 from douzzer/20251125-linuxkm-arm-fips-tweaks 
20251125-linuxkm-arm-fips-tweaks
 2025-11-27 09:03:36 +10:00
Anthony Hu
a02b61a9db Merge pull request #9475 from douzzer/20251125-aes-arm-fixes 
20251125-aes-arm-fixes
 2025-11-26 14:11:23 -05:00
Anthony Hu
a765bbdb79 Need to move sigalg check down because it does not consider hybrids. 2025-11-26 13:31:21 -05:00
Josh Holtrop
36418aca76 Set useRsaPss flag in both SSL and CTX structures 2025-11-26 10:30:38 -05:00
Joseph Chen
26206821ff Prefer ARMASM over MMCAU for AES CBC when both enabled 2025-11-26 16:05:05 +08:00
Daniel Pouzzner
be1f916028 wolfcrypt/src/aes.c: in the WOLFSSL_ARMASM && GCM_SMALL && !__aarch64__ static C implementation of GCM_gmult_len(), rename to GCM_gmult_len_armasm_C() (incompatible with other implementations); 
wolfcrypt/src/aes.c: move FREESCALE_MMCAU implementations later (minimum precedence) for wc_AesEncrypt(), wc_AesDecrypt(), wc_AesSetKeyLocal(), wc_AesSetKey(), and wc_AesSetKeyDirect() (fixes ZD#20862).
 2025-11-25 23:01:05 -06:00
Daniel Pouzzner
f5543f6b95 wolfcrypt/test/test.c: in wolfcrypt_test_main(), install myFipsCb if applicable, and save failed wolfCrypt retvals to args.return_code to assure error exit. fixes FIPS integrity failure message with wolfEntropy. 2025-11-25 20:21:37 -06:00
Daniel Pouzzner
4fda0883a4 globally rename WC_PIE_RELOC_TABLES to WC_SYM_RELOC_TABLES; 
globally replace defined(__PIE__) with defined(WC_CONTAINERIZE_THIS) to decouple containerization from -fPIE;

configure.ac:
* add --enable-kernel-reloc-tables as an alias for --enable-linuxkm-pie;
* always activate ENABLED_ENTROPY_MEMUSE_DEFAULT when KERNEL_MODE_DEFAULTS and not RDSEED/RDRAND, regardless of FIPS presence/version;

linuxkm/Kbuild:
* add -DWC_CONTAINERIZE_THIS to PIE_FLAGS;
* add support for NO_PIE_FLAG, which inhibits -fPIE on ENABLED_LINUXKM_PIE builds, and adds -DWC_NO_PIE_FLAG to PIE_FLAGS;

linuxkm/linuxkm_wc_port.h: add setup for WC_LINUXKM_WOLFENTROPY_IN_GLUE_LAYER;

linuxkm/module_hooks.c: add wc_linuxkm_GenerateSeed_wolfEntropy().
 2025-11-25 18:01:25 -06:00
David Garske
0aaa31c438 Merge pull request #9459 from JacobBarthelmeh/async 
fix small stack define and warnings for g++ build with async
 2025-11-25 14:22:24 -08:00
David Garske
6fc99ac6d8 Merge pull request #9431 from Pushyanth-Infineon/psoc6_aes_support 
Enable hardware acceleration for AES on PSoC6.
 2025-11-25 13:31:23 -08:00
Eric Blankenhorn
6de31e95fc Fix Coverity dead code report 2025-11-25 13:53:36 -06:00
Josh Holtrop
bfce171836 Rust wrapper: enable cargo clippy and fix several clippy warnings 2025-11-25 08:22:02 -05:00
Sean Parkinson
0afbc1ef08 Merge pull request #9471 from douzzer/20251124-memory_test-wolfSSL_Atomic_Ptr_CompareExchange 
20251124-memory_test-wolfSSL_Atomic_Ptr_CompareExchange
 2025-11-25 19:22:22 +10:00
JacobBarthelmeh
a83fb4fc42 revert 6bda10a forcing small stack with async 2025-11-25 00:43:04 -07:00
Daniel Pouzzner
e459b21744 wolfcrypt/src/wc_port.c and wolfssl/wolfcrypt/wc_port.h: add volatile attribute to wolfSSL_Atomic_Uint_CompareExchange() first arg, for pedantic accuracy; 
wolfssl/internal.h and src/ssl.c: add volatile attribute to WOLFSSL_CTX.privateKeyPKey pointer, for pedantic accuracy;

wolfcrypt/test/test.c: in memory_test(), use compatible pointers for all operands in the wolfSSL_Atomic_Ptr_CompareExchange() test, to avoid undefined behavior.
 2025-11-24 18:21:09 -06:00