wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-28 10:12:46 +01:00
Code Issues Packages Projects Releases Wiki Activity
15,759 Commits 12 Branches 184 Tags
6d4c067b729fed08d2e340f961272761423aa607
Commit Graph

5703 Commits

Author SHA1 Message Date
David Garske
6d4c067b72 Merge pull request #4607 from anhu/wolfcrypt_pq_benchmarks 
Use wolfCrypt's benchmarking app to run the PQ algorithms.
 2021-11-30 10:09:48 -08:00
David Garske
d3d73f7a4e Merge pull request #4614 from SparkiDev/sp_exp_nct 
SP math all: fix exponent bit count
 2021-11-30 08:26:41 -08:00
David Garske
37df78b082 Merge pull request #4615 from SparkiDev/mp_mulx 
TFM: fix Intel MULX multiply
 2021-11-30 08:26:17 -08:00
David Garske
5a55baddad Merge pull request #4617 from SparkiDev/ecc_point_on_curve 
ECC wc_ecc_point_is_on_curve: validate oridinates against prime
 2021-11-30 08:25:47 -08:00
David Garske
7a41089b12 Merge pull request #4618 from douzzer/wc-port-h-linuxkm-XSNPRINTF-XATOI 
linuxkm wc_port.h macro scoping fix
 2021-11-30 08:25:06 -08:00
David Garske
78f4c84ee0 Merge pull request #4586 from SparkiDev/sp_gen_ecc_order 
SP: fix range of k to be 1..n-1
 2021-11-30 08:23:46 -08:00
Daniel Pouzzner
a33ae21801 whitespace cleanups and portability/pedantic fixes 2021-11-29 23:58:39 -06:00
Sean Parkinson
567cd155ea ECC wc_ecc_point_is_on_curve: validate oridinates against prime 2021-11-30 14:17:41 +10:00
Sean Parkinson
9f6fd6abf9 TFM: fix Intel MULX multiply 
Carry wasn't being handled properly.
 2021-11-30 12:07:44 +10:00
Sean Parkinson
e5e280b175 SP math all: fix exponent bit count 
Only when using non-constant time implementation and modulus even.
 2021-11-30 10:28:42 +10:00
Chris Conlon
7221e06ff7 Merge pull request #4588 from miyazakh/sce_protect_mode_e2studio 2021-11-29 15:32:48 -07:00
David Garske
80c16745c4 Merge pull request #4602 from embhorn/zd13296 
Initialize global in TSIP port
 2021-11-29 13:01:03 -08:00
Anthony Hu
8a2945fe66 More braces. 2021-11-29 15:56:44 -05:00
Anthony Hu
5aa8bc2983 Drop a brace. 2021-11-29 15:47:53 -05:00
David Garske
c104ab2206 Merge pull request #4572 from SparkiDev/ecc_pub_decode 
mp_sqrt: TonelliShanks algorithm doesn't handle zero
 2021-11-29 12:27:36 -08:00
Anthony Hu
fea438d07f Use wolfCrypt's benchmarking app to run the PQ algorithms. 2021-11-26 15:15:23 -05:00
Hideki Miyazaki
fb4e39f00a addressed review comments prt1 2021-11-26 16:03:42 +09:00
Tesfa Mael
b2c0bacb06 Fix Cryptocell ecc 2021-11-24 19:22:40 -08:00
Eric Blankenhorn
6d7e50d2ae Initialize global in TSIP port 2021-11-24 09:22:14 -06:00
Hideki Miyazaki
89ed811e23 fix compile error when disabled SCEPROTECT 2021-11-22 21:36:02 +09:00
David Garske
5182e2a8c8 Merge pull request #4580 from kareem-wolfssl/minor_fixes 
Check ssl->arrays in SendClientHello to avoid null dereference.  Allow building with fallthrough defined.
 2021-11-19 16:55:01 -08:00
David Garske
f6c48bf7dc Merge pull request #4560 from kaleb-himes/OE30-OE31-non-fips-changes 
OE30 and OE31 changes external to FIPS module for NetBSD builds
 2021-11-19 15:49:30 -08:00
David Garske
34346bab4f Merge pull request #4579 from JacobBarthelmeh/PKCS7 
BER size adjustment with PKCS7
 2021-11-19 14:49:03 -08:00
Kareem
72d4dcce0f Fix updated FALL_THROUGH macro. Fix a couple of case statements and remove a trailing whitespace. 2021-11-19 14:13:02 -07:00
Hideki Miyazaki
f50fcd918e support Renesas RA SCE protect mode on RA6M4 evaluation board 2021-11-19 14:22:16 +09:00
Sean Parkinson
7e81372131 Merge pull request #4583 from dgarske/zd13242 
Improve `ret` handling in the `ProcessPeerCerts` verify step.
 2021-11-19 10:22:08 +10:00
Sean Parkinson
af097401f2 SP: fix range of k to be 1..n-1 
Was checking less than order - 2 then adding one.
i.e. 0..order-3 => 1..order-2
 2021-11-19 09:40:26 +10:00
David Garske
3054f20c6a Improve ret handling in the ProcessPeerCerts verify step. 2021-11-18 14:51:09 -08:00
kaleb-himes
4324cf8f0a Correct cast from uint to uchar 2021-11-18 10:18:25 -07:00
David Garske
e33156d0dc Merge pull request #4578 from kaleb-himes/OE33_NON_FIPS_CHANGES 
OE33: Fix issues found by XCODE and add user_settings.h
 2021-11-18 06:59:43 -08:00
Sean Parkinson
370570d19b ASN: DH private key encoding 
Proper fix for sequence length when small keys.
 2021-11-18 08:28:49 +10:00
kaleb-himes
38ec0bb31f Merge branch 'master' of github.com:wolfssl/wolfssl into OE33_NON_FIPS_CHANGES 2021-11-17 14:02:56 -07:00
Jacob Barthelmeh
ddf06b8161 BER size adjustment with PKCS7 2021-11-17 12:03:32 -07:00
kaleb-himes
f638df3575 Fix issues found by XCODE and add user_settings.h 
Disable internal test settings by default
 2021-11-17 11:00:56 -07:00
John Safranek
ef62fab4ea Update 
1. WIN10 FIPS build should use version 5,2 now.
2. Update the v5-ready build ot use version 5,2.
3. Remove eol-whitespace from the benchmark source.
 2021-11-17 09:19:34 -08:00
David Garske
e8e0bc0d49 Merge pull request #4552 from SparkiDev/sp_mod_exp_zero 
SP: mod_exp with exponent of 0 is invalid
 2021-11-16 08:29:13 -08:00
Sean Parkinson
33a6b8c779 Merge pull request #4531 from dgarske/cryptocb_aesccm 
Added crypto callback support for AES CCM
 2021-11-16 22:45:11 +10:00
Sean Parkinson
8606788198 SP: mod_exp with exponent of 0 is invalid 
Don't allow exponenetiation by 0 as it is cryptographically invalid and
not supported by the implementation.
Also check for even modulus in mod_exp.
 2021-11-16 11:27:26 +10:00
Masashi Honma
6086728968 Fix possible segfault occurs when mp_clear() is executed for uninitialized mp_int 
If NULL is passed as the digest argument of wc_DsaSign(), mp_clear() will be
called before mp_init() is called. This can cause segmentation fault.

Signed-off-by: Masashi Honma <masashi.honma@gmail.com>
 2021-11-16 09:57:02 +09:00
Masashi Honma
f621defefe Fix the segfault occurs when mp_clear() is executed for uninitialized mp_int on i386 
test_wc_DsaSignVerify() passes the tests but causes an error.

free(): invalid pointer

If NULL is passed as the digest argument of wc_DsaVerify(), mp_clear() will be
called before mp_init() is called. On qemu-i386, the dp field of the mp_int
structure is non-null by default, which causes a segmentation fault when calling
mp_clear(). However, if WOLFSSL_SMALL_STACK is enabled, this problem does not
occur.

Signed-off-by: Masashi Honma <masashi.honma@gmail.com>
 2021-11-16 09:56:56 +09:00
David Garske
1559e92dca Add crypto callback AES CCM test case. 2021-11-15 16:22:10 -08:00
Sean Parkinson
d3fc8c229a mp_sqrt: TonelliShanks algorithm doesn't handle zero 
(0 * 0) mod p = 0.
Modular reduce n and shortcut when 0.
 2021-11-16 09:23:07 +10:00
Sean Parkinson
64407bbd7d Merge pull request #4564 from rizlik/unused_ret_value_fix 
woflcrypt/src/rsa.c: check memory allocation return value
 2021-11-16 08:56:47 +10:00
Sean Parkinson
79f18c7585 SP sync: Missing update 2021-11-15 08:33:14 +10:00
David Garske
a626a4fb02 Fixes for spelling errors. 2021-11-12 10:27:49 -08:00
David Garske
600d562168 Merge pull request #4558 from anhu/falcon_bench 
Add Falcon benchmarking.
 2021-11-12 09:14:08 -08:00
John Safranek
4e20b93e72 Merge pull request #4556 from douzzer/updateFipsHash 2021-11-11 14:23:01 -08:00
John Safranek
c702dab988 Merge pull request #4561 from haydenroche5/wc_prf_fix 2021-11-11 13:03:58 -08:00
Marco Oliverio
3ea4e35737 woflcrypt/src/rsa.c: check memory allocation return value 2021-11-11 16:25:03 +01:00
Hayden Roche
2f29ca1092 Make fixes/improvements to TLS PRF code. 
Make `wc_PRF` return an error if it doesn't find a corresponding hash for the
passed in hash type. Currently, if `wc_PRF_TLS` is called with `NO_OLD_TLS`
defined, it will do nothing but still return success. Make it return an error
instead. These problems were uncovered when running the wolfEngine unit tests
with wolfSSL 5.0.0 FIPS Ready, which defines `NO_MD5` and `NO_OLD_TLS`.
 2021-11-10 15:19:43 -08:00