wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-04-28 23:43:22 +02:00
Code Issues Packages Projects Releases Wiki Activity
9,873 Commits 13 Branches 184 Tags
5f77627857b7fa07f26ec0efb671def1f1b95fcc
Commit Graph

9873 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
toddouska ab01cd9be1 Merge pull request #2354 from ejohnstown/fixes 
Fixes for FIPS
 2019-07-19 09:59:21 -07:00
David Garske 2abcffd4a7 Revert changes to fe_x25519_asm.S. 2019-07-18 12:15:55 -07:00
David Garske 0bcae86038 Fixes for wolfCrypt benchmark and test Visual Studio projects. Fixes for benchmark.c compile errors in bench_hmac with Visual Studio. Added README.md files for benchmark and test. 2019-07-18 11:39:59 -07:00
toddouska 45abd67bd1 Merge pull request #2362 from SparkiDev/chacha20_asm_fix 
Fix chacha20 AVX1 assembly to not use register RBX
 2019-07-18 08:43:44 -07:00
toddouska b73c53471c Merge pull request #2363 from JacobBarthelmeh/Testing 
Fixes for builds
 2019-07-18 08:38:50 -07:00
David Garske 6fd623248e Add macro checks around new .c/.S files to allow wildcard include of source files (such as in Eclipse). 2019-07-18 06:49:36 -07:00
David Garske 7db3f8e2c6 Fixes for STM32 CubeMX AES GCM crypto hardware where less than a block size (16) is used. 2019-07-18 06:09:07 -07:00
Sean Parkinson b399b08df7 Fix for TLS 1.3 to always send Key Share 
Even if resuming or using PSK and not performing DHE key exchange, send
key share extension in case full handshake is required.
 2019-07-18 11:01:43 +10:00
toddouska d1700d3739 Merge pull request #2358 from ejohnstown/rsa-keygen-speedup 
RSA Key Generation Speedup
 2019-07-17 18:01:38 -07:00
Sean Parkinson 7fe4521083 Fix chacha20 AVX1 assembly to not use register RBX 2019-07-18 09:42:52 +10:00
Sean Parkinson 0555668f2c Merge pull request #2356 from JacobBarthelmeh/OCSP 
revert early free of OCSP buffer after finding it is revoked
 2019-07-18 08:38:10 +10:00
John Safranek 3aad9a2673 FIPS Macro Fix 
In a couple places the label WOLFSSL_FIPS was getting checked. Changed
to the correct HAVE_FIPS instead.
 2019-07-17 15:35:12 -07:00
John Safranek 9c245b7fc5 Fixes 
When building with GCC-8 and enable-intelasm set, GCC reported a memcpy
from and two the same pointer being possible. Added a check for the same
pointer and skipped the copy if the same.
 2019-07-17 15:35:12 -07:00
John Safranek c3c705f82b FIPS, HMAC, and PKCS8 
One of the tests for PKCS8 depended on keys encrypted with a password
that has only 8 letters. HMAC in FIPS mode requires a minimum of 12
bytes. Disabled that test case when FIPS is enabled. All components do
get tested just not all together in that case.
 2019-07-17 15:35:12 -07:00
Jacob Barthelmeh 7e79e3a6bf fix for build with disable filesystem 2019-07-17 16:28:58 -06:00
Jacob Barthelmeh f63656f18b macro guard on test case with disable AES 2019-07-17 15:22:29 -06:00
John Safranek dc71f957f3 RSA-Key Gen Speedup 
1. When doing the test divides on the first few primes, short circuit
out of the loop if the prospective possible prime divides evenly.
 2019-07-17 13:43:15 -07:00
toddouska 8b6e66f095 Merge pull request #2353 from SparkiDev/ecc_nonce 
Improve nonce use in ECC mulmod
 2019-07-17 11:23:12 -07:00
John Safranek 9a2f4bb8f8 Merge pull request #2333 from kaleb-himes/WCv4.0.1-stable-master 
WCv4.0.1-stable changes
 2019-07-17 10:14:40 -07:00
Jacob Barthelmeh af8395b17b revert early free of OCSP buffer after finding it is revoked 2019-07-17 11:08:28 -06:00
JacobBarthelmeh 8bf8fcca60 Merge pull request #2352 from dgarske/async_v4.1 
Fixes for Asynchronous support in v4.1
 2019-07-16 17:32:18 -06:00
Sean Parkinson 483f6a5acd Improve nonce use in ECC mulmod 2019-07-17 09:27:29 +10:00
toddouska 5f3fd3ae86 Merge pull request #2348 from cconlon/scepchanges 
Changes to support SCEP Expansion
 2019-07-16 15:26:15 -07:00
kaleb-himes fdeb65dec8 WCv4.0.1-stable changes 
CHAR_BIT to 8, simplify logic from peer review

Update build script
 2019-07-16 15:58:56 -06:00
JacobBarthelmeh cb2ed60305 Merge pull request #2351 from ejohnstown/watch-chain-deux 
Sniffer Watch Cert Chain Part 2
 2019-07-16 15:04:32 -06:00
David Garske 7b021d68c3 Fixes for asynchronous support in v4.1: 
* Fixes PK callback null dereference.
* Fixes `DoCertificateVerify` verify handling.
* Fixes build issue with API tests.
 2019-07-16 11:56:02 -07:00
David Garske 5067d1fc10 Merge pull request #2328 from kaleb-himes/ZD-5373-TIRTOS 
Updating for TI hardware offload with latest version of wolfSSL
 2019-07-16 11:43:56 -07:00
toddouska 8b8ff2ac34 Merge pull request #2336 from kaleb-himes/ZD-5388-OCSP-STATUS-UNHONORED 
Honor the status from peer and do not do internal OCSP lookup regardless
 2019-07-16 11:32:34 -07:00
toddouska 99d3ea9e56 Merge pull request #2350 from SparkiDev/rsa_pss_fix 
Don't pick RSA PSS if not compiled in
 2019-07-16 11:28:50 -07:00
John Safranek 4b0bb75909 Sniffer Watch Cert Chain Part 2 
1. Check the sizes picked up out of the message against the expected
size of the record when looking at the certificate messages.
2. Renamed the cert and certSz in the watch callback with it being a
certChain.
 2019-07-16 09:54:45 -07:00
Chris Conlon 2e308ea82c Merge pull request #2260 from JacobBarthelmeh/PKCS7 
PKSC7 firmware revision + callback / get SID
 2019-07-16 10:51:38 -06:00
JacobBarthelmeh 9f1aa1a27c Merge pull request #2349 from ejohnstown/watch-chain 
Sniffer Watch Cert Chain
 2019-07-16 10:43:37 -06:00
Chris Conlon d51b958334 use ForceZero instead of MEMSET in PKCS7 signed attribute handling 2019-07-16 08:13:47 -07:00
Sean Parkinson 8112c1236d Don't pick RSA PSS if not compiled in 2019-07-16 14:59:01 +10:00
Sean Parkinson 9af9941b90 Fixes for TLS 1.3 and OCSP Stapling 
Create the OCSP Response for Stapling and TLS 1.3 when parsing.
When parsing OCSP stapling extension with TLS 1.3, use a new extension
object if it was created.
Set the extension size to 0 before writing extensions when sending a TLS
1.3 Certificate message.
 2019-07-16 13:52:36 +10:00
toddouska d620433d1d Merge pull request #2209 from tmael/maintenanceDefects 
Increased ciphers buffer size for testsuite and ECC API for getting curve from dp
 2019-07-15 16:49:13 -07:00
toddouska 4e648dd35f Merge pull request #2347 from JacobBarthelmeh/HardwareAcc 
adjust time.h for port due to tm struct change
 2019-07-15 15:27:58 -07:00
John Safranek 3cdb4f8bf0 Sniffer Watch Cert Chain 
Modifed the sniffer watch callback so it provides a SHA-256 hash of the
peer certificate, as before, and the entire certificate chain sent by
the server in the Certificate handshake message. The chain is taken
directly from the message payload, unprocessed. It'll be a list of pairs
of 24-bit certificate length and a DER encoded certificate, all in
network byte order.
 2019-07-15 14:07:22 -07:00
Chris Conlon 7367da3fb6 sort PKCS7 signed attributes when generating bundle 2019-07-15 13:27:49 -07:00
Jacob Barthelmeh 6e6c93624a free test RSA key after use 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh cba8a7f155 free buffer when using small stack 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh 4362ce5f6b fix expected size and add sanity checks 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh a25d04044a save rid for kari callback 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh 60fc9b3a1d add test for manual verify 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh d33a95352a fix check on ret value and add test case 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh f79a119c82 add storing sig/digest if no certs in bundle 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh d7a86de969 add wrap CEK callback, test, and adjustment for fwWrappedFirmwareKey 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh 84653a7fb5 improvements on test code 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh a7a51d8f33 scan-build warnings / fixes 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh ab0029f9ac add setter function for ctx and pkcs7 callback, add test cases 2019-07-15 12:32:19 -06:00