469898aeeb
Merge pull request #2115 from dgarske/ecc_sign_hw
...
Fix for ECC sign with hardware to ensure the input is truncated
2019-02-27 14:41:57 -08:00
b830447690
Merge pull request #2113 from JacobBarthelmeh/Testing
...
EVP decrypt with padding fix
2019-02-27 14:35:57 -08:00
164eb30732
Fixes for STM32 AES GCM. Hardware does not correctly compute authTag if input is not a multiple of block size, so fall-back to software for tag only. Hardware also only supports IV of 12 or 16 bytes, so fall-back to software in those cases. ZD 4712
2019-02-27 11:07:03 -08:00
77ffeccb0b
Fixes to QAT enables for benchmark for HMAC. Adds new NO_HW_BENCH to support using multi-threaded software only benchmarks.
2019-02-26 14:34:03 -08:00
b33023df2f
fix setting outlen with wolfSSL_EVP_CipherUpdate decryption
2019-02-26 15:27:25 -07:00
1512f4da90
Correct the output for multi-threaded benchmark usign -base10 option.
2019-02-26 13:38:33 -08:00
326ee8c318
Revert change to PKCS12 tailList.
2019-02-26 11:27:08 -08:00
38303cf27b
More spelling fixes.
2019-02-26 10:47:42 -08:00
eecc823208
Fixes for scan-build warnings with ASN, PKCS12 and PKCS7.
2019-02-26 10:47:22 -08:00
8a47af0edc
Added benchmark tests to WICED wolfcrypt test app.
...
Updated the user_settings.h loc per David.
TLS13; SNI; MAX_FRAG
Configure for wolfCrypt bench.
Update README.
2019-02-26 10:37:58 -07:00
95658be0ce
WICED wolfCrypt-TLS_cli_srv-Https_cli
2019-02-26 10:37:48 -07:00
9a129e89c1
Fixes for building with no filesystem and --enable-testcert or WOLFSSL_TEST_CERT. Fixes nightly expected configurations test.
2019-02-26 09:36:31 -08:00
cb830a088f
Fix for configurations without specific algorithms
2019-02-26 09:22:03 +10:00
700e9896d4
PKCS #11 support for HMAC with MD5, SHA, SHA-2
2019-02-26 09:22:03 +10:00
2bb5dd710c
Fix for curve load failure leak.
2019-02-25 15:19:31 -08:00
b45241f6f8
Fix to use QAT for ECC sign and verify when SP is enabled and key was initialized with devId. Fixes issues with wolfCrypt test and QAT not properly calling "again" for the ECC sign, verify and shared secret.
2019-02-25 14:51:15 -08:00
efc1ab8c42
Merge pull request #2111 from SparkiDev/ed25519_fixes_1
...
Various improvements for testing
2019-02-25 13:55:28 -08:00
0360b38de4
Merge pull request #2116 from SparkiDev/pkcs11_id_fix_1
...
Fixes for PKCS #11 private key id and ECC
2019-02-25 13:09:15 -08:00
3785bafdf4
Merge pull request #2096 from kaleb-himes/ZD4707
...
Update for newer versions of the TI compiler
2019-02-25 13:05:43 -08:00
603a9b2e59
Merge pull request #2110 from dgarske/spelling
...
Fixes for various spelling errors
2019-02-25 13:04:12 -08:00
72a50b8d46
Merge pull request #2109 from dgarske/pkcs7_buf
...
Fix for proper detection of PKCS7 buffer overflow case
2019-02-25 13:02:09 -08:00
aa70ac0be2
Added defines to force OCSP nonce check and omit OCSP date before check.
2019-02-25 14:40:19 +01:00
0e914d81dc
Fixes for PKCS #11 private key id and ECC
2019-02-25 11:17:56 +10:00
712ecabf36
Fix for ECC sign with hardware to ensure the input is truncated to the key order.
2019-02-22 15:30:52 -08:00
9ff976a6e1
Fixes for wolfCrypt test with asynchronous support enabled and --enable-nginx.
2019-02-22 13:47:34 -08:00
b037334732
Merge pull request #2106 from dgarske/ecc_pubkey
...
Adds `ECC_PUBLICKEY_TYPE` to the support PEM header types
2019-02-22 12:09:10 -08:00
04e3c4414d
Merge pull request #2102 from SparkiDev/pkcs11_aes_cbc
...
Add support to PKCS #11 for AES-CBC and NO_PKCS11 defines
2019-02-22 12:07:23 -08:00
8b0bcdaf29
EVP decrypt with padding fix
2019-02-22 10:05:15 -07:00
8bb4e23f8d
Various improvements for testing
...
Fix wc_ecc_fp_free() to be called when using HAVE_STACK_SIZE.
Increase size of replyin client.c so all HTTP reply is displayed.
Fix api.c to support only Ed25519 (not RSA and ECC)
Fix suites.c to detect when CA for client won't work (Ed25519 only)
For Static Memory add debugging and small profile.
Also allow realloc to be called with NULL.
Add more Ed25519 certs and keys.
Fix names of Ed25519 filenames for client and server.
Do NOT turn on ECC_SHAMIR by default with lowresource.
Enable WOLFSSL_STATIC_MEMORY_SMALL if low resource and no RSA.
2019-02-22 17:14:19 +10:00
ee3eb8fb4c
Fix for proper detection of buffer overflow case when calling wc_PKCS7_EncodeSignedData.
2019-02-21 13:32:28 -08:00
289f51a77d
Fixes for various spelling errors.
2019-02-21 13:29:44 -08:00
55ca2c2da7
Added build-time override for benchmark thread count WC_ASYNC_BENCH_THREAD_COUNT.
2019-02-21 10:45:09 -08:00
b0957c68fb
ForceZero the devKey field of Aes in PKCS#11
...
Don't memset the key field of AES in PKCS#11.
2019-02-21 08:22:56 +10:00
b8dc772ef8
Merge pull request #2105 from dgarske/fix_stm_aesgcm
...
Fix for STM32 AES GCM
2019-02-20 09:23:11 -08:00
3013cdd925
Merge pull request #2095 from SparkiDev/asm_macosx
...
Get Mac OS X working with the x86_64 assembly files
2019-02-20 09:19:29 -08:00
025fba8ec6
Merge pull request #2093 from dgarske/tls13_async_dh
...
Fix for TLSv1.3 with DH key share when using QAT
2019-02-20 09:16:54 -08:00
d81fb727a3
Adds ECC_PUBLICKEY_TYPE to the support PEM header types. Fixes #2097 .
2019-02-20 08:40:57 -08:00
ba14564c49
Fix for STM32 AES GCM, which was incorrectly using software crypto when authInSz != 16. The wc_AesGcmEncrypt_STM32 and wc_AesGcmDecrypt_STM32 functions correctly handle all variations of authInSz.
2019-02-19 15:38:09 -08:00
dc1f0d7822
Fix for DH with QuickAssist to only use hardware for supported key sizes. Fix in random.c for seed devId when building async without crypto callbacks.
2019-02-19 11:57:55 -08:00
161e815c03
remove hard tab
2019-02-20 04:14:17 +09:00
520ae52ece
Add support to PKCS #11 for AES-CBC and NO_PKCS11 defines
...
Added PKCS #11 specific defines to turn off support for algorithms.
2019-02-19 13:50:12 +10:00
e3997558a9
Fixes from review and added REAMEs and setup.sh
...
Add README.md and setup.sh.
Add READMEs with license information.
2019-02-19 11:47:45 +10:00
5e1eee091a
Add threaded samples using buffers and sockets
2019-02-19 11:47:45 +10:00
2c447b24cd
Fixes from review and add IDE files
2019-02-19 11:47:44 +10:00
3366acc9ce
Zephyr port of crypto
2019-02-19 11:47:44 +10:00
c7f8f9fc90
Declarations have to come before executable statements
...
WOLFSSL_MDK5_COMPLv5: mdk5 compiler ver 5 regards macro with args as executable statement (This seems to be fixed with v6)
2019-02-18 06:39:06 +09:00
d806134cbf
Update for newer versions of the TI compiler
2019-02-15 13:05:37 -07:00
16f31cf8c6
Get Mac OS X working with the x86_64 assembly files
2019-02-15 15:08:47 +10:00
a9f29dbb61
Adds strict checking of the ECDSA signature DER encoding length. With this change the total signature size should be (sequence + r int + s int) as ASN.1 encoded. While I could not find any "must" rules for the signature length I do think this is a good change.
...
If the old length checking method is desired `NO_STRICT_ECDSA_LEN` can be used. This would allow extra signature byes at the end (unused and not altering verification result). This is kept for possible backwards compatibility.
Per RFC6979: `How a signature is to be encoded is not covered by the DSA and ECDSA standards themselves; a common way is to use a DER-encoded ASN.1 structure (a SEQUENCE of two INTEGERs, for r and s, in that order).`
ANSI X9.62: ASN.1 Encoding of ECDSA:
```
ECDSA-Sig-Value ::= SEQUENCE {
r INTEGER,
s INTEGER
}
```
Fixes #2088
2019-02-14 12:05:34 -08:00
5856d6b3dc
Fix PKCS #11 AES-GCM and handling of unsupported algorithms
2019-02-14 17:06:15 +10:00
toddouska
David Garske
Jacob Barthelmeh
jrblixt
Kiwamu Okabe
Sean Parkinson
Max
Takashi Kojo
kaleb-himes