wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-30 08:22:12 +01:00
Code Issues Packages Projects Releases Wiki Activity
21,088 Commits 12 Branches 184 Tags
8e05b5a9ab12094d6d609e30c94de37f074f78a0
Commit Graph

1576 Commits

Author SHA1 Message Date
Daniel Pouzzner
263973bde9 src/wolfio.c: fix stack allocations for cookie digests on NO_SHA builds; 
configure.ac: fix dependencies for enable_dsa vs enable_sha in enable-all, enable-all-crypto, and ENABLED_DSA setup.
 2023-11-15 14:43:23 -06:00
Daniel Pouzzner
eaa66dc117 configure.ac: in enable-all, enable QUIC only if !ENABLED_LINUXKM_DEFAULTS, and enable aesgcm_stream only if enable_aesgcm. 2023-11-15 01:47:46 -06:00
Sean Parkinson
7eaff41e61 AES bitsliced, ARMASM: config needs WOLFSSL_AES_DIRECT defined 
AES bitsliced needs WOLFSSL_AES_DIRECT defined when compiling for ARMASM
as there are different APIs used.
 2023-11-13 07:40:40 +10:00
JacobBarthelmeh
c903a8c4a6 Merge pull request #6854 from SparkiDev/aes_bit_sliced 
AES bitsliced implementation added
 2023-11-10 17:10:19 -07:00
Lealem Amedie
e2bbacd548 Add QUIC to --enable-all 2023-11-09 14:44:02 -07:00
JacobBarthelmeh
b6e5b36f35 Merge pull request #6946 from dgarske/nooldtls_v1.1 
Turn off old TLS v1.1 by default
 2023-11-07 13:30:03 -07:00
David Garske
a46b6221b4 Turn off old TLS v1.1 by default (unless SSL v3.0 or TLS v1.0 enabled). 2023-11-07 09:23:59 -08:00
JacobBarthelmeh
8921a720a1 Merge pull request #6888 from SparkiDev/srtp_kdf 
SRTP/SRTCP KDF: add implementation
 2023-11-07 10:11:43 -07:00
Sean Parkinson
8c3e1dbf48 SRTP/SRTCP KDF: add implementation 
Add implementation of SRTP KDF and SRTCP KDF.
One shot APIs compatible with SP 800-135 and ACVP testing.
Tests added to test.c.
Benchmarking added.
Doxygen added.
 2023-11-07 10:33:14 +10:00
Sean Parkinson
5b863dcb12 AES bitsliced implementation added 
AES bitsliced implementation that is cache attack safe.
Configure with:
  --enable-aes-bitslice
or define:
  WC_AES_BITSLICE
  HAVE_AES_ECB
  HAVE_AES_DIRECT
Very slow for CBC, CFB, OFB and any mode that uses a previous encrypt
block to calculate current.
CTR, GCM, XTS can parallelize the data and be much faster.

Added AES-ECB test to test.c.
 2023-11-03 14:19:58 +10:00
JacobBarthelmeh
15fdf6eccc Merge pull request #6910 from bigbrett/ios-ca-api 
exercise --sys-ca-certs optionin external.test
 2023-11-01 14:09:24 -06:00
JacobBarthelmeh
6cf75a7d42 prepare for release 5.6.4 2023-10-30 07:59:00 -06:00
Brett
60f75ea5a8 simplified apple header detection used in code 2023-10-25 15:13:06 -06:00
David Garske
22ab21749c Merge pull request #6869 from bigbrett/ios-ca-api 
Add support for new Apple trust APIs with WOLFSSL_SYS_CA_CERTS
 2023-10-18 10:29:41 -07:00
Brett
0244c2a254 Add support for new Apple trust APIs with WOLFSSL_SYS_CA_CERTS 2023-10-16 14:37:21 -06:00
JacobBarthelmeh
d35112064b Merge pull request #6840 from philljj/xmss_hooks_support 
Add XMSS/XMSSMT wolfCrypt hooks.
 2023-10-16 10:58:12 -06:00
JacobBarthelmeh
7afd9810de Merge pull request #6867 from cconlon/jniConfigExpand 
Update "--enable-jni" to include additional defines
 2023-10-13 15:13:32 -06:00
JacobBarthelmeh
79a6e1eb04 Merge pull request #6808 from SparkiDev/sp_sm2 
SP updates for SM2
 2023-10-13 10:17:17 -06:00
Chris Conlon
8cd89884ce update --enable-jni with KEEP_PEER_CERT, WOLFSSL_ALT_CERT_CHAINS, WOLFSSL_KEY_GEN 2023-10-13 10:07:04 -06:00
Sean Parkinson
0cc21a42f3 SP updates for SM2 
Allow wolfSSL to build with SP implementations of SM2.
Updates to SP implementation of other code.
 2023-10-13 08:14:15 +10:00
Daniel Pouzzner
0549dba3db configure.ac and src/tls.c: fix --enable-keylog-export to warn at configure time, then build cleanly. 2023-10-12 13:09:43 -05:00
jordan
f32c6a0d25 XMSS/XMSSMT hooks support: fix build. 2023-10-09 10:13:32 -05:00
Juliusz Sosinowicz
85a596e54a DTLS 1.3: allow fragmenting the second ClientHello message 
- DTLS 1.3 pqc support
- Add --enable-dtls-frag-ch option to enable CH fragmenting
- Send an alert when we get an empty keyshare with a cookie present to not allow for multiple HRR in one connection
- Only update the DTLS window when we have successfully processed or stored a message
- Call ssl->chGoodCb as soon as we have processed a verified full or fragmented ClientHello cookie
 2023-10-09 12:54:11 +02:00
JacobBarthelmeh
fd2d098566 Merge pull request #6821 from bigbrett/aes-eax 
AES EAX mode
 2023-10-06 14:14:28 -06:00
Brett Nicholas
fafb9e81c0 Add support for AES EAX mode, as described in https://eprint.iacr.org/2003/069 2023-10-06 11:10:06 -06:00
jordan
33d4b331fb Add XMSS/XMSSMT wolfCrypt hooks. 2023-10-05 09:18:50 -05:00
Juliusz Sosinowicz
8ce8359bd7 Add option to disable OPENSSL_COMPATIBLE_DEFAULTS 2023-10-05 10:30:44 +02:00
Daniel Pouzzner
71649388a0 configure.ac: in options.h generation, fix order of flags to match Makefile order. 2023-10-03 21:11:59 -05:00
Sean Parkinson
3ea0fb30dd AES XTS x64 ASM: add AVX1 and AESNI implementations 
Adding AES-XTS AVX1 and AESNI implementations.
Fix name in comment at top of x64 assembly files.
 2023-09-28 14:44:23 -05:00
Andras Fekete
ad9779cdc1 Explicitly define code with WOLFCRYPT_ASYNC_CRYPT_SW 2023-09-19 13:10:16 -04:00
Sean Parkinson
114c8cc681 SP ASM: improve performance 
Thumb2/ARM32: use umaal instruction to speed up mulitplication, squaring
and reduction. umaal not always available so use umlal instead.
Implementations for architectures less than 4 still kept - no umull.
Cleanup point arithmetic to not take shortcuts.
Make masking for constant time faster.
Add alternate asm for different compilers.
Get ARMv4 and ARMv6 compiling.
Remove whitespace at end of lines.
 2023-09-13 21:13:53 +10:00
JacobBarthelmeh
298b488bf1 Merge pull request #6749 from cconlon/jniCertReq 
Add WOLFSSL_CERT_EXT to --enable-jni, minor CSR items
 2023-09-01 16:15:10 -06:00
JacobBarthelmeh
0352b384a5 Merge pull request #6731 from SparkiDev/aes_arm32_thumb2 
AES ARM32 and Thumb2 ASM: fixup ARM32 and add Thumb2
 2023-09-01 15:56:12 -06:00
Chris Conlon
a2e2a3e994 add --enable-certreq to --enable-jni, support extKeyUsage in X509_REQ_sign, add missing X509_REQ_print fields 2023-09-01 11:59:21 -06:00
jordan
b36c312ef3 LMS verify-only support: fix clang warning, rename define. 2023-08-31 21:46:00 -05:00
David Garske
136cb98412 Force 32-bit alignment on kCurve25519BasePoint 2023-09-01 12:14:55 +10:00
Sean Parkinson
0638ec234b AES ARM32 and Thumb2 ASM: fixup ARM32 and add Thumb2 
Fix which functions and data are compiled in depending on defines.
Better handing of constants.
Also fix Aarch64 ed25519 inline assembly.
 2023-08-30 20:34:51 +10:00
jordan
8662312ecf LMS verify only support. 2023-08-29 15:46:18 -05:00
gojimmypi
8803510375 ARIA no longer needs OpenSSL enabled 2023-08-24 15:57:14 -07:00
JacobBarthelmeh
6b09b5c0cf Merge pull request #6690 from julek-wolfssl/packaging 
Init deb packaging
 2023-08-24 10:28:24 -06:00
Sean Parkinson
36b92a4cef Thumb2 ASM, Curve25519 
Add support for compiling ASM for Thumb2
Add Curve25519 ASM for Thumb2
Limit assembly code compiled when Ed25519 not required.
Rework all assembly implementations to replace ge_*() functions instead
of having fe_ge_*() versions that take many parameters.
Get ARM32 inline asm working.
 2023-08-24 17:43:03 +10:00
Juliusz Sosinowicz
7a12202675 Init deb packaging 
- rpm: Simplify script and list wolfSSL as packager
- add packaging github action
 2023-08-23 22:01:12 +02:00
JacobBarthelmeh
3033371abc Merge pull request #6717 from bigbrett/sniffer-keylogfile 
sniffer keylog file support
 2023-08-22 14:06:27 -06:00
Brett Nicholas
2ee6a01d91 Initial sniffer keylog file support for TLS 1.2 2023-08-22 11:23:46 -06:00
Anthony Hu
507ec9f7d2 Bring compat layer logic from configure.ac into settings.h 2023-08-11 00:11:36 -04:00
JacobBarthelmeh
6ea1e7d824 Merge pull request #6683 from dgarske/tpm_ecc 
Enable math API's for wolfTPM
 2023-08-09 17:11:33 -06:00
Anthony Hu
958113c070 Correct configure defaults for SM4-GCM and SM4-CCM (disabled) 2023-08-08 13:06:00 -04:00
David Garske
75f81db084 New TPM ECC encrypt needs access to the mp_ math functions. 2023-08-07 15:06:58 -07:00
JacobBarthelmeh
7f0cfcb27d Merge pull request #6667 from bandi13/byebyeCyaSSL 
Byebye cya ssl
 2023-08-03 15:43:01 -06:00
Andras Fekete
25f542adb4 Clean up compile errors 2023-08-01 15:46:18 -04:00