wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-28 00:02:20 +01:00
Code Issues Packages Projects Releases Wiki Activity
15,685 Commits 12 Branches 184 Tags
72bf78b2f79ea4e4bb712b5cd7cb11b0725cb024
Commit Graph

15685 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Daniel Pouzzner
72bf78b2f7 backport 5030484bcf to wolfcrypt/src/random.c and wolfssl/wolfcrypt/random.h: 
* add WC_DRBG_{NOT_INIT,OK,FAILED,CONT_FAILED} in public header file, and
* move setup for RNG_SECURITY_STRENGTH, ENTROPY_SCALE_FACTOR, SEED_BLOCK_SZ, SEED_SZ, MAX_SEED_SZ, and RNG_HEALTH_TEST_CHECK_SIZE from random.c to random.h, with public WC_DRBG_SEED_SZ and WC_DRBG_MAX_SEED_SZ.
 2025-12-23 20:50:45 -06:00
Daniel Pouzzner
200e6b6495 wolfcrypt/src/sha512.c: in wc_Sha512Transform(), fix sequence of check added by 3b768bcb5e, fix WOLFSSL_SMALL_STACK double-declaration of buffer, and fix gate on XFREE(buffer, ...). 2025-12-19 10:11:15 -06:00
Daniel Pouzzner
c44d421306 wolfcrypt/src/hmac.c: fix FIPS version gate on wc_HmacFree() in wc_HmacSetKey(). 2025-12-18 16:05:09 -06:00
Daniel Pouzzner
2cf1253c54 fix out-of-order ForceZero()s in wc_HKDF_Extract(), wc_HKDF_Expand(), and wc_SSH_KDF() (fixes 844e961ff5). 2025-12-18 15:35:10 -06:00
Daniel Pouzzner
9160ac04fd backport 2b28931855 "wolfcrypt/src/sha256.c and wolfcrypt/src/sha512.c: in WOLFSSL_SMALL_STACK_CACHE builds, allocate shafoo->W at init or context copy time, rather than in the transform function. for the SHA512 family, allocate additional space in W for "buffer" in wc_Sha512Transform()." 2025-12-18 14:09:43 -06:00
Daniel Pouzzner
f4e22afa68 backport HmacKeyCopyHash() from bfd52decb6 and wc_HmacCopy() from 50b51adc93. 2025-12-18 13:40:35 -06:00
Daniel Pouzzner
4bd0b3ef41 backport f771181e1a to wolfcrypt/src/ecc.c (smallstack refactor of ecc_mul2add()). 2025-12-17 13:07:49 -06:00
Daniel Pouzzner
481db6f1ac backport 401868908a (smallstack refactor of wc_ecc_mulmod_ex2()). 2025-12-17 13:04:57 -06:00
Daniel Pouzzner
4d0f78e7a4 backport random.c and random.h from #9545 "20251211-DRBG-SHA2-smallstackcache-prealloc", full replacement. 2025-12-17 12:11:39 -06:00
Daniel Pouzzner
0c27b69521 wolfcrypt/src/random.c: in wc_RNG_GenerateBlock(), when WC_RNG_SEED_CB, use seedCb rather than wc_GenerateSeed (crucial bug fix for linuxkm). WCv5.2.4-KRNL-CHKIN-r4 2025-12-05 14:54:36 -06:00
kaleb-himes
9951e96037 WCv5.2.3-ARMv8-PAA-r2 rework with pkcs7 fix WCv5.2.4-KRNL-CHKIN 2025-09-22 17:53:09 -05:00
kaleb-himes
f6fbe15b79 Update aes.h with function prototypes 2025-09-22 17:53:09 -05:00
kaleb-himes
da13fb29be Add ARMv8 PAA support to base v5.2.1 resulting in v5.2.3 2025-09-22 17:53:09 -05:00
Lealem Amedie
779f8e34cb Add ability to switch to STD RSA method 2025-09-22 16:57:38 -05:00
Lealem Amedie
25357e14eb Remove DH_GEN_PUB macro requirement WCv5.2.3-DHGENPUB-r2 2025-05-09 15:49:43 -06:00
Lealem Amedie
f82bcabb19 Pulling in wc_DhGeneratePublic API WCv5.2.3-DHGENPUB 2025-04-29 17:03:41 -06:00
kaleb-himes
6075b44e7e Module v5.2.3 STM32 PAA WCv5.2.3-STM32-PAA 2025-01-06 13:26:53 -07:00
kaleb-himes
844e961ff5 Check-in FIPS 140-3 PILOT changes v5.2.1-stable 2023-08-28 15:43:24 -07:00
Daniel Pouzzner
ceae7d56fa Merge pull request #4551 from ejohnstown/aes-ofb 
Add AES-OFB to FIPS boundary
WCv5.0-RC12 WCv5.0-RC11 WCv5.0-RC10 		2021-11-15 22:56:43 -06:00
Daniel Pouzzner
cae3fcb9ce Merge pull request #4569 from masap/i386-segfault 
dsa.c: fix error-path mp_clear()s on uninitialized mp_ints in wc_DsaSign() and wc_DsaVerify().
 2021-11-15 22:51:23 -06:00
Masashi Honma
6086728968 Fix possible segfault occurs when mp_clear() is executed for uninitialized mp_int 
If NULL is passed as the digest argument of wc_DsaSign(), mp_clear() will be
called before mp_init() is called. This can cause segmentation fault.

Signed-off-by: Masashi Honma <masashi.honma@gmail.com>
 2021-11-16 09:57:02 +09:00
Masashi Honma
f621defefe Fix the segfault occurs when mp_clear() is executed for uninitialized mp_int on i386 
test_wc_DsaSignVerify() passes the tests but causes an error.

free(): invalid pointer

If NULL is passed as the digest argument of wc_DsaVerify(), mp_clear() will be
called before mp_init() is called. On qemu-i386, the dp field of the mp_int
structure is non-null by default, which causes a segmentation fault when calling
mp_clear(). However, if WOLFSSL_SMALL_STACK is enabled, this problem does not
occur.

Signed-off-by: Masashi Honma <masashi.honma@gmail.com>
 2021-11-16 09:56:56 +09:00
Sean Parkinson
64407bbd7d Merge pull request #4564 from rizlik/unused_ret_value_fix 
woflcrypt/src/rsa.c: check memory allocation return value
 2021-11-16 08:56:47 +10:00
Daniel Pouzzner
c80e63a822 Merge pull request #4566 from ejohnstown/fips-check 
fips-check script update
 2021-11-15 13:23:54 -06:00
John Safranek
13871cf547 Set RC10 to be the default v5 FIPS build. 2021-11-15 10:03:50 -08:00
John Safranek
0d465cf42f Add AES-OFB to FIPSv5 build as v5-RC10 (5,2) 2021-11-15 10:03:49 -08:00
David Garske
ab74bbcfee Merge pull request #4567 from SparkiDev/sp_scripts_sync_1 
SP sync: Missing update
 2021-11-15 07:04:08 -08:00
Sean Parkinson
79f18c7585 SP sync: Missing update 2021-11-15 08:33:14 +10:00
Sean Parkinson
d6219567c1 Merge pull request #4565 from dgarske/spelling 
Fixes for spelling errors
 2021-11-15 08:20:41 +10:00
John Safranek
3384159cb9 Add WCv5.0-RC10 to fips-check script. Remove some new whitespace from sniffer. 2021-11-12 14:10:58 -08:00
David Garske
25054bd87f Merge pull request #4538 from julek-wolfssl/sk_free-refactor 
Refactor sk_*_free functions and stack type
 2021-11-12 10:30:14 -08:00
David Garske
a626a4fb02 Fixes for spelling errors. 2021-11-12 10:27:49 -08:00
David Garske
600d562168 Merge pull request #4558 from anhu/falcon_bench 
Add Falcon benchmarking.
 2021-11-12 09:14:08 -08:00
Juliusz Sosinowicz
4112cd4b99 Make stack type an enum 2021-11-12 14:48:17 +01:00
Juliusz Sosinowicz
361975abbc Refactor sk_*_free functions 
Use a single `wolfSSL_sk_pop_free` and `wolfSSL_sk_free` function that free's the stack and optionally free's the node content as well.
 2021-11-12 13:55:37 +01:00
John Safranek
2501aef34e Merge pull request #4562 from SparkiDev/cert_suite_check 2021-11-11 15:36:12 -08:00
John Safranek
af67692e4a Merge pull request #4559 from dgarske/sniffer_ht 2021-11-11 14:44:01 -08:00
John Safranek
4e20b93e72 Merge pull request #4556 from douzzer/updateFipsHash 2021-11-11 14:23:01 -08:00
John Safranek
c702dab988 Merge pull request #4561 from haydenroche5/wc_prf_fix 2021-11-11 13:03:58 -08:00
Marco Oliverio
3ea4e35737 woflcrypt/src/rsa.c: check memory allocation return value 2021-11-11 16:25:03 +01:00
Sean Parkinson
b5fd899113 TLS 1.2: check signature algo in ServerKeyExchange 2021-11-11 18:54:30 +10:00
Hayden Roche
2f29ca1092 Make fixes/improvements to TLS PRF code. 
Make `wc_PRF` return an error if it doesn't find a corresponding hash for the
passed in hash type. Currently, if `wc_PRF_TLS` is called with `NO_OLD_TLS`
defined, it will do nothing but still return success. Make it return an error
instead. These problems were uncovered when running the wolfEngine unit tests
with wolfSSL 5.0.0 FIPS Ready, which defines `NO_MD5` and `NO_OLD_TLS`.
 2021-11-10 15:19:43 -08:00
David Garske
607a3bfaa7 Merge pull request #4554 from SparkiDev/mp_test_32bit 
mp_test: when SP_INT_DIGITS is even calc was wrong
 2021-11-10 15:07:43 -08:00
David Garske
3c1deff611 Fix falcon bench cleanup case (should not free if init fails). Fix RSA key gen keySz with ./wolfcrypt/benchmark/benchmark -asym. 2021-11-10 15:03:44 -08:00
Anthony Hu
f2465e5688 include.am 2021-11-10 18:01:40 -05:00
Anthony Hu
242847760a More appropriate file names. 2021-11-10 17:55:46 -05:00
Anthony Hu
453404a864 Get the falcon keys into wolfssl/certs_test.h 2021-11-10 17:33:24 -05:00
Anthony Hu
5fe078d7db sig1, sig5 --> sig 2021-11-10 16:52:05 -05:00
Anthony Hu
246d470956 Refactor to do proper memory management. 2021-11-10 16:42:48 -05:00
David Garske
1cadf88f26 Fixes for sniffer and handling of out-of-order situations that can occur with a saturated link. 2021-11-10 13:37:21 -08:00