wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-05-05 14:24:12 +02:00
Code Issues Packages Projects Releases Wiki Activity
23,186 Commits 13 Branches 184 Tags
a39f521f7f03d90e3cdbc02a20d8c3e984e04834
Commit Graph

7737 Commits

Author SHA1 Message Date
Andras Fekete eb0c64d79a Remove NULL test when there is a dereference 2024-08-06 10:29:02 -04:00
Andras Fekete d7a0f49906 Programmatically remove NULL test before XFREE 2024-08-06 10:20:45 -04:00
Sean Parkinson 4062b94fb3 RISC-V 64: Add assembly code for SHA-512 
Cleanup RISC-V 64 SHA-256 by removing unused rev_idx.
 2024-08-06 10:21:48 +10:00
JacobBarthelmeh cc2ed4a75b add w64Add for build with word64 2024-08-05 16:47:35 -06:00
Sean Parkinson fc19c36bf8 Dilithium: fix check hint 
When all indeces are 0, then don't check hints against indeces.
 2024-08-06 08:22:47 +10:00
Daniel Pouzzner d65be7af21 wolfcrypt/src/asn.c and wolfssl/wolfcrypt/asn.h: in SetDNSEntry(), defer XFREE(dnsEntry, ...) until end (fixes double free); add PBE_NONE to enum PBESTypes; in EncryptContent(), initialize id to PBE_NONE to fix a -Wmaybe-uninitialized (CheckAlgo() can leave it unchanged even when returning success). 2024-08-04 15:41:52 -05:00
Daniel Pouzzner 9aa0742baa Merge pull request #7798 from dgarske/asn_macros 
ASN macro simplification

merged with github CI tests failing due to unrelated upstream changes (same tests all previously succeeded on this PR, with only 25d14f1937 added in the meantime).

supplementary testing with `wolfssl-multi-test.sh ... super-quick-check` after rebase on then-current `master` 15e99c8eff.
 2024-08-02 16:36:50 -05:00
David Garske 25d14f1937 Fail with NOT_COMPILED_IN if someone tries to use ConfirmSignature with NO_ASN_CRYPT. Also default to signature failed. 2024-08-02 08:25:15 -07:00
Sean Parkinson 423c1d3e57 fixup 2024-08-02 11:58:50 +10:00
David Garske 65283fb9bb Improvement for the --enable-asn=nocrypt. Note: This option skips certificate signature checking, so make check TLS expected failures do not pass. Cleanup of the api.c headers / macros. 2024-08-01 10:27:22 -07:00
Sean Parkinson ebb49b6e68 RISC-V ChaCha20: assembly implementations 
ChaCha20:
  scalar and vector implementations
  vector implementations doing 6, 4, 2, 1 block at a time.
  scalar implemetations using roriw and pack
  vector implementations using VROR_VI and roriw.

RISC-V SHA-256: avoid using s0 if it can be helped.
 2024-08-01 17:51:59 +10:00
Sean Parkinson 1bc085358a Merge pull request #7817 from dgarske/wildcard_c 
Fix for .c files to ensure macro guards for wildcard
 2024-08-01 08:46:35 +10:00
David Garske 1dd94bb0cb Fix for .c files to ensure macro guards for wildcard. 2024-07-31 14:23:05 -07:00
Daniel Pouzzner 6017c86e5d wolfcrypt/src/wc_port.c: fix -Wconversions in wc_strdup_ex(). 2024-07-31 19:36:59 +00:00
David Garske 548a2c6d8e Fixed issues building with nocrypt. Improved logic on ASN_BER_TO_DER. Improved logic on unknown extension callback (new WC_ASN_UNKNOWN_EXT_CB gate). 2024-07-31 09:42:46 -07:00
David Garske 6a1139a6ee Merge pull request #7758 from SparkiDev/riscv-sha256-asm 
RISC-V 64: Add assembly code for SHA-256
 2024-07-30 16:23:57 -07:00
David Garske bbbc1e074c Fixes for clang-tidy. 2024-07-30 10:35:21 -07:00
David Garske afb6fe6c5f Fixes for building due to missing OCSP and DecodePolicyOID (--enable-curl and --enable-openssh). 2024-07-30 10:35:21 -07:00
David Garske 20f7d6f9f4 ASN macro simplification. Added new --enable-asn=all and WOLFSSL_ASN_ALL option. Added granular macros for ASN features like: WOLFSSL_ASN_CA_ISSUER, WOLFSSL_ASN_PARSE_KEYUSAGE, WOLFSSL_ASN_TIME_STRING, WOLFSSL_OCSP_PARSE_STATUS. 2024-07-30 10:35:20 -07:00
András Fekete 50d60bf0e7 Code sonar cleanup (#7782) 
* Fix Warning 826814.9284764
* Fix Warning 826836.9285316
Co-authored-by: Andras Fekete <andras@wolfssl.com>
 2024-07-30 09:42:43 -07:00
Sean Parkinson f1e01e4636 RISC-V 64: Add assembly code for SHA-256 
Move common defines out of AES file to header file.
 2024-07-30 12:21:13 +10:00
David Garske f9dc5e9f4d Fixes for uses of deprecated sprintf. If C89 remap XSNPRINTF to use sprintf. 2024-07-29 14:03:44 -07:00
Sean Parkinson 034af8d99c Merge pull request #7787 from dgarske/stm32u5a 
Fix STM32 Hash FIFO and add support for STM32U5A9xx
 2024-07-29 17:36:52 +10:00
Sean Parkinson 3b74a64029 Merge pull request #7791 from aidangarske/privkeytoder_fix2 
`api.c` and `asn.c` changes to allow 0 to be passed in and expanded coverage on test cases.
 2024-07-29 09:40:20 +10:00
András Fekete b1765ca6b4 Merge pull request #7785 from dgarske/asn_original 
Fixes for ASN original
 2024-07-26 14:49:13 -04:00
Sean Parkinson f7094ff3c4 Dilithium: add option to precalc with small sign (#7744) 
WOLFSSL_DILITHIUM_SIGN_SMALL_MEM_PRECALC added.
It allocates memory for and pre-calculates s1, s2 and t0.
This saves decoding the vectors repeatedly in each signature trial.
 2024-07-26 11:46:55 -07:00
David Garske c3b5322f86 Merge pull request #7753 from SparkiDev/cortexm_label_fix_2 
Cortex-M/Thumb2 ASM: fix label
 2024-07-26 11:45:09 -07:00
Daniel Pouzzner b40913e80c wolfcrypt/src/random.c: restore outer cast in array_add() to avoid -Wconversion added in b28e22aef0, itself a fix for a defect added in ed11669f3c (root cause of warning is implicit type promotion). 2024-07-25 15:25:32 -05:00
aidan garske 55540d03e7 fix for PR#7786 BUFFER_E bad case 2024-07-25 09:03:19 -07:00
JacobBarthelmeh b28e22aef0 fix for casting with add 2024-07-25 09:16:05 -06:00
aidan garske dace3acd4d api.c and asn.c changes to allow 0 to be passed in and expanded coverage on test cases 
(cherry picked from commit 8572f67e60d419ddd74d4a2b7051dcaa7d0ca6b4)
 2024-07-25 08:09:37 -07:00
David Garske c4f73f5955 Peer review cleanups. 2024-07-24 16:57:51 -07:00
David Garske 42403a526e Fix to resolve STM32 hash FIFO. Simplify logic for ensuring FIFO gets filled before doing a save/restore. ZD 18294 2024-07-24 16:06:04 -07:00
Kaleb Himes 3a4788b7bb Merge pull request #7783 from douzzer/20240723-AesGcmXcrypt-NULL-in-checks 
20240723-AesGcmXcrypt-NULL-in-checks
 2024-07-24 15:33:42 -06:00
David Garske 7f7d94abd5 Fixes for ASN original (old) to support checking int leading 0 and invalid OID. Disable invalid UTF8 test for old ASN (only supported with newer ASN template). 2024-07-24 12:35:37 -07:00
David Garske 007f9ea39d Fix to restore --enable-asn=original. Fixes for building with ASN original (old). Add the new limit checks for alt names and subtree to the old ASN code. 2024-07-24 08:28:25 -07:00
David Garske d0782a97ce Merge pull request #7773 from Laboratory-for-Safe-and-Secure-Systems/kyber_compat 
Kyber fixes
 2024-07-24 07:37:10 -07:00
Tobias Frauenschläger e2b642d4ab WolfSSL Kyber and CMake fixes 
* Make sure wc_kyber implementation is compiled using CMake (also for
  Zephyr)
* Fix compilation issue when Liboqs is also enabled
* Fix WOLFSSL_INTEL_ASM and WOLFSSL_ARM_ASM CMake options

Signed-off-by: Tobias Frauenschläger
<tobias.frauenschlaeger@oth-regensburg.de>
 2024-07-24 09:55:29 +02:00
Daniel Pouzzner f8726148df wolfcrypt/src/aes.c: in wc_AesGcmEncrypt() and wc_AesGcmDecrypt(), check and return BAD_FUNC_ARG for nonzero sizes associated with null pointers. 2024-07-23 19:07:32 -05:00
Sean Parkinson 3284f53574 Cortex-M/Thumb2 ASM: fix label 
IAR doesn't like %=.
Fix code to be consistent in use of labels and branch instructions.
 2024-07-24 09:20:40 +10:00
Sean Parkinson a34ea32f52 Merge pull request #7730 from anhu/unknownExtCallbackEx 
Extend the unknown extension callback.
 2024-07-24 08:37:44 +10:00
Daniel Pouzzner 6ee22de999 linuxkm: initial support for cross-compilation. 
also, additional backward-compatibility measures around cp and clean recipe in linuxkm/Makefile.

also, in sp_int.c, tweak DECL_DYN_SP_INT_ARRAY() to use an explicit XMEMSET() to clear n[], to avoid unshimmable implicit memset() from gcc on aarch64.
 2024-07-23 10:29:03 -05:00
David Garske 8f908e76f9 Merge pull request #7776 from douzzer/20240722-fixes 
20240722-fixes
 2024-07-23 06:46:38 -07:00
David Garske 7c6eb7c4a1 Merge pull request #7751 from SparkiDev/ecc_koblitz_ssl 
ECC key load: fixes
 2024-07-22 16:40:59 -07:00
Daniel Pouzzner 367508f498 wolfcrypt/src/asn.c: in EccSpecifiedECDomainDecode(), in calls to DataToHexString(), cast curve->size to word32 to resolve -Wconversion. 
wolfcrypt/src/dh.c: in GeneratePrivateDh186(), add explicit suppression of uninitvar for "cBuf" arg that isn't fully initialized.

wolfcrypt/test/test.c: in mp_test_param(), explicitly initialize "buffer" to avoid uninitvar warning.

configure.ac: in FIPS builds, don't include enable_cryptocb in --enable-all or --enable-all-crypto.  (they can still be enabled explicitly in FIPS builds with --enable-cryptocb, but the combination is not currently supported.)
 2024-07-22 18:21:36 -05:00
David Garske 575df43889 Merge pull request #7768 from JacobBarthelmeh/copyright 
update copyright to 2024
 2024-07-19 14:27:39 -07:00
JacobBarthelmeh f5ed2460df cast to larger type for multiplication 2024-07-19 13:59:05 -06:00
Daniel Pouzzner e13a8ddcfb fixes for null derefs in native Dilithium and Kyber implementations, detected by unit.test and cppcheck. 2024-07-19 14:35:39 -05:00
Daniel Pouzzner 0aa0f26289 wolfcrypt/src/dilithium.c: fix null deref in wc_dilithium_init_ex(). 2024-07-19 14:25:53 -05:00
JacobBarthelmeh 31a6a2bf59 update copyright to 2024 2024-07-19 13:15:05 -06:00