David Garske
c7ff3b99b7
Allow for calling the Renesas RX TSIP AES crypto callback without a user context.
2025-06-24 09:41:33 -07:00
David Garske
ad9d068174
Fix issues with crypto callbacks and HAVE_ECC_DHE. Fix issues with ecc_onlycb_test.
2025-06-24 09:41:33 -07:00
David Garske
111feedadc
Add build guards on the crypto callback ECC items.
2025-06-24 09:41:32 -07:00
David Garske
c7f6673e53
Fixup the .wolfssl_known_macro_extras
2025-06-24 09:41:32 -07:00
David Garske
ebe8816c2a
Code size reductions (check RX TSIP enables).
2025-06-24 09:41:32 -07:00
David Garske
78362bc346
Changes to support Renesas RX TSIP AES CTR.
2025-06-24 09:41:32 -07:00
David Garske
33584550e8
Cleanup to support override of HAL_CONSOLE_UART. Added support for STM32F439xx.
2025-06-24 09:41:01 -07:00
David Garske
803edb0fa4
Added support for STM32N6.
2025-06-24 09:41:01 -07:00
David Garske
bfebeae533
Revert PR #8911 . For TLS v1.2 RSA only is only supported with WOLFSSL_STATIC_RSA. For TLS v1.3 RSA only is not supported (must be PFS).
2025-06-24 09:40:15 -07:00
Daniel Pouzzner
b8aa4bd84b
Merge pull request #8919 from philljj/fix_linuxkm_getpid
...
linuxkm: add WOLFSSL_NO_GETPID to wolfcrypt settings.h.
2025-06-24 11:32:56 -05:00
jordan
5503ea8e6d
linuxkm: add WOLFSSL_NO_GETPID to wolfcrypt settings.h.
2025-06-24 11:12:00 -05:00
David Garske
5d7cb2ec07
Fix for new api.c test test_wolfSSL_check_domain_basic added in PR #8863 that fails with --disable-sys-ca-certs.
2025-06-24 08:25:01 -07:00
Anthony Hu
72ec4029d1
Correct the size for MLDSA PEM header
2025-06-24 11:12:27 -04:00
Anthony Hu
423ecf8b1f
Try harder not to make stack increases
2025-06-24 11:12:27 -04:00
Anthony Hu
a0f6b779a5
-----BEGIN SPHINCS_SMALL_LEVEL1 PRIVATE KEY----- is the longest one at length 48
2025-06-24 11:12:27 -04:00
Anthony Hu
bf928795b3
Fix missing dashes on the end of header and footer.
2025-06-24 11:12:27 -04:00
Anthony Hu
1dff76782b
Check for duplicate extensions in a CRL
2025-06-24 11:10:18 -04:00
Anthony Hu
43df11c9c1
Add gate on having DH
2025-06-24 10:37:26 -04:00
Anthony Hu
8c1298a1d8
Check if DH's P and G are set
2025-06-24 09:59:12 -04:00
Sean Parkinson
d05790ed89
LMS: Allow state to be saved with private key
...
Defining WOLFSSL_WC_LMS_SERIALIZE_STATE will have the state serialized
before the private key data.
Lots of memory used but means fast reload times. That means that the key
can be reloaded for each sign.
2025-06-24 20:46:41 +10:00
Sean Parkinson
fc1d281268
Green Hills compiler fixes
...
internal.c: Move non-enumeration value out of switch.
ssl.c: Only declare globalRNGMutex when required.
x509.c: initialize ret
armv8-aes.c, armv8-chacha.c: fix branch instructions
armv8-mlkem*: ensure only required constants are input operands and move
constants closer to first use.
armv8-poly1305.c: remove POLY1305_BLOCK_SIZE from input operands.
armv8-sha3-asm_c.c, armv8-sha512-asm_c.c: use constraint ':' instead of
'S'.
armv8-sha512.c: initialize initfp. Is always used.
2025-06-24 19:39:40 +10:00
Sean Parkinson
f8bb889712
Armv8 (Aarch64) ASM fixes for Green Hills compiler
...
Change branch instructions to proper form.
Use constant value rather than POLY1305_BLOCK_SIZE.
Remove duplicate clobber registers - both w and x versions.
Make clamp unconditionally compiled.
2025-06-24 19:39:39 +10:00
David Garske
978a29da0b
Merge pull request #8898 from cconlon/getpidOptionsH
...
Add HAVE_GETPID to options.h if getpid detected
2025-06-23 17:11:55 -07:00
JacobBarthelmeh
9ee212cacc
fix for free'ing memory with test case
2025-06-23 17:33:52 -06:00
David Garske
c4428a432f
Merge pull request #8912 from SparkiDev/lms_sha256_192_w_fix
...
LMS SHA-256_192: fix parameters
2025-06-23 15:35:02 -07:00
Anthony Hu
d45e42e2e6
keySz is only in Buffers if NO_CERTS not defined.
2025-06-23 18:29:39 -04:00
Anthony Hu
6385999ae9
Recalculate suites at ssl initialization.
2025-06-23 18:29:39 -04:00
Anthony Hu
aec13923a7
Merge pull request #8913 from dgarske/pq_verifyonly
...
Fix for building LMS with verify only
2025-06-23 16:37:32 -04:00
David Garske
f1005c33fb
Merge pull request #8905 from gojimmypi/pr-vs-cmake
...
Introduce CMakePresets.json and CMakeSettings.json
2025-06-23 11:18:57 -07:00
David Garske
caf8494d65
Merge pull request #8911 from gojimmypi/pr-allow-only-rsa
...
Allow configuration with only RSA cipher suites
2025-06-23 11:18:27 -07:00
David Garske
d4c827bc5e
Fix for building LMS with verify only. Added tests for LMS/XMSS verify only. New wc_LmsKey_GetKid references key->priv_raw that is not available.
2025-06-23 11:12:53 -07:00
Daniel Pouzzner
b361c62372
Merge pull request #8903 from dgarske/cadate_calist
...
Expose API to access "store" error code and depth for cert failure callback
2025-06-23 10:08:41 -05:00
Daniel Pouzzner
47a8242093
Merge pull request #8868 from SparkiDev/dilithium_win_fixes_1
...
Dilithium/ML-DSA: Fixes for casting down and uninit
2025-06-23 09:02:35 -05:00
Daniel Pouzzner
bcdce75b08
Merge pull request #8909 from dgarske/various_20250620
...
Fixes with max size, openssl.test netcat and clang-tidy
2025-06-23 08:15:17 -05:00
Sean Parkinson
f36f86ee98
LMS SHA-256_192: fix parameters
...
Winternitz bits needs to be one larger when only 192 bit hash.
2025-06-23 08:16:05 +10:00
gojimmypi
afa22dfc2b
Allow configuration with only RSA cipher suites
2025-06-21 14:54:10 -07:00
David Garske
b9455bc94b
Fixes issue with cert gen, no malloc and crypto callback causing wolfssl/wolfcrypt/asn.h:1375:18: error: use of undeclared identifier 'WC_MAX_DIGEST_SIZE. Fixed netcat issue in openssl.test causing server open check to fail on some platforms. Fixed clang-tidy report in benchmark.c where XFTELL could return negative (error) and wasn't handled.
2025-06-20 16:34:46 -07:00
David Garske
1be303866e
Merge pull request #8908 from douzzer/20250620-clang-tidy-and-cppcheck-fixes-and-workarounds
...
20250620-clang-tidy-and-cppcheck-fixes-and-workarounds
2025-06-20 15:07:09 -07:00
David Garske
f30c54abdd
Merge pull request #8894 from SparkiDev/ppc32_sha256_asm
...
PPC 32 ASM: SHA-256
2025-06-20 14:29:47 -07:00
Daniel Pouzzner
af78ed8b6f
wolfcrypt/src/wc_xmss_impl.c: in wc_xmss_bds_state_treehash_complete(), add suppression for false positive clang-analyzer-core.NullDereference from LLVM-21 pre20250523+.
2025-06-20 15:31:31 -05:00
Daniel Pouzzner
7977a605c5
src/internal.c: in FreeSskeArgs(), move nullness check on args to the start, and make it unconditional, to resolve nullPointerRedundantChecks.
2025-06-20 15:04:07 -05:00
Daniel Pouzzner
e1fe186753
wolfcrypt/src/sp_int.c: in _sp_prime_trials(), use DECL_SP_INT() not DECL_SP_INT_ARRAY() for n1 and r, to mollify a very confused clang-tidy (fixes false positive clang-analyzer-core.UndefinedBinaryOperatorResult and clang-analyzer-core.CallAndMessage).
2025-06-20 14:52:42 -05:00
David Garske
0f119ab8e2
Merge pull request #8906 from julek-wolfssl/libspdm-3.7.0
...
libspdm 3.3.0 -> 3.7.0
2025-06-20 11:44:53 -07:00
David Garske
b98cf8882b
Remove HAVE_LIGHTY from the client_ca_names feature.
2025-06-20 11:29:02 -07:00
gojimmypi
380e068df6
Introduce CMakePresets.json and CMakeSettings.json
2025-06-20 11:24:58 -07:00
Juliusz Sosinowicz
9f900d4b8a
libspdm 3.3.0 -> 3.7.0
...
3.3.0 pulls cmocka from https://git.cryptomilk.org/projects/cmocka.git . Update to 3.7.0 to pull from https://gitlab.com/cmocka/cmocka.git .
2025-06-20 19:55:16 +02:00
David Garske
4c6279c6c7
Good feedback about adding wolfCrypt error codes to .cs layer. Partially added useful ones.
2025-06-20 09:41:35 -07:00
Kaleb Himes
17f3da11d2
Merge pull request #8899 from SparkiDev/entropy_cont_tests_fix_2
...
Entropy: fix proportion health test
2025-06-20 09:10:41 -06:00
David Garske
9b50708741
Fix to expose API to access "store" error code and error depth for cert failure callback (from set_verify). Useful for C# wrapper or clients that cannot directly dereference X509_STORE. Fixes for building with WOLFSSL_EXTRA and WOLFSSL_NO_CA_NAMES (and added new tests). Added example in CSharp TLS client for overriding a begin date error (useful if date is not set).
2025-06-19 14:49:00 -07:00
David Garske
7610b4e2f5
Merge pull request #8893 from SparkiDev/asm_omit_frame_pointer
...
ARM32/Thumb2/RISC-V 64 ASM: omit frame pointer
2025-06-19 10:48:23 -07:00