Daniel Pouzzner
1c1c556e5e
Merge pull request #8915 from philljj/linuxkm_rsa_fix_sig_callbacks
...
linuxkm rsa: set sig_alg max_size and digest_size callbacks.
2025-06-25 08:28:04 -05:00
Daniel Pouzzner
e223da457c
Merge pull request #8922 from JacobBarthelmeh/rng
...
altering macro guards and test case for RNG test on alternate builds
2025-06-24 22:15:14 -05:00
Koji Takeda
d76386f38c
Add tests
2025-06-25 11:27:12 +09:00
Koji Takeda
05c8bc7514
Fix SetShortInt()
2025-06-25 11:27:11 +09:00
JacobBarthelmeh
6cf3b51333
guard test that uses pipe from running with mingw
2025-06-24 17:21:24 -06:00
Sean Parkinson
5c9ad359d1
Merge pull request #8904 from anhu/bigger_header
...
Fix missing dashes on the end of header and footer.
2025-06-25 08:26:59 +10:00
JacobBarthelmeh
fe7d458d29
random.c is also locked in FIPS v6
2025-06-24 16:08:25 -06:00
JacobBarthelmeh
1c5e531332
add new macro to known macro list
2025-06-24 14:57:17 -06:00
JacobBarthelmeh
c33035e6a6
add conditions to constant time mask functions
2025-06-24 13:52:40 -06:00
JacobBarthelmeh
838636c76b
add option to not use CT code with min/max
2025-06-24 13:52:40 -06:00
jordan
1e0e4932ca
linuxkm rsa: fix km_pkcs1_key_size callback.
2025-06-24 14:41:57 -05:00
David Garske
33972e3678
Disable system CA certs for msys2 test.
2025-06-24 10:28:42 -07:00
kaleb-himes
f5f0bdf61e
Update wolfEntropy checkout with AdPr update
2025-06-24 10:54:52 -06:00
David Garske
41591e7eb9
Fixes for TSIP AES CTR unit tests and handling of invalid cases.
2025-06-24 09:41:33 -07:00
David Garske
191165a021
Test case created by @miyazakh.
2025-06-24 09:41:33 -07:00
David Garske
dc57adcfed
Fix to increment IV for AES CTR with TSIP (allow encrypt to be called multiple times without having to manually reset the IV).
2025-06-24 09:41:33 -07:00
David Garske
c7ff3b99b7
Allow for calling the Renesas RX TSIP AES crypto callback without a user context.
2025-06-24 09:41:33 -07:00
David Garske
ad9d068174
Fix issues with crypto callbacks and HAVE_ECC_DHE. Fix issues with ecc_onlycb_test.
2025-06-24 09:41:33 -07:00
David Garske
111feedadc
Add build guards on the crypto callback ECC items.
2025-06-24 09:41:32 -07:00
David Garske
c7f6673e53
Fixup the .wolfssl_known_macro_extras
2025-06-24 09:41:32 -07:00
David Garske
ebe8816c2a
Code size reductions (check RX TSIP enables).
2025-06-24 09:41:32 -07:00
David Garske
78362bc346
Changes to support Renesas RX TSIP AES CTR.
2025-06-24 09:41:32 -07:00
David Garske
33584550e8
Cleanup to support override of HAL_CONSOLE_UART. Added support for STM32F439xx.
2025-06-24 09:41:01 -07:00
David Garske
803edb0fa4
Added support for STM32N6.
2025-06-24 09:41:01 -07:00
David Garske
bfebeae533
Revert PR #8911 . For TLS v1.2 RSA only is only supported with WOLFSSL_STATIC_RSA. For TLS v1.3 RSA only is not supported (must be PFS).
2025-06-24 09:40:15 -07:00
Daniel Pouzzner
b8aa4bd84b
Merge pull request #8919 from philljj/fix_linuxkm_getpid
...
linuxkm: add WOLFSSL_NO_GETPID to wolfcrypt settings.h.
2025-06-24 11:32:56 -05:00
jordan
5503ea8e6d
linuxkm: add WOLFSSL_NO_GETPID to wolfcrypt settings.h.
2025-06-24 11:12:00 -05:00
David Garske
5d7cb2ec07
Fix for new api.c test test_wolfSSL_check_domain_basic added in PR #8863 that fails with --disable-sys-ca-certs.
2025-06-24 08:25:01 -07:00
Anthony Hu
72ec4029d1
Correct the size for MLDSA PEM header
2025-06-24 11:12:27 -04:00
Anthony Hu
423ecf8b1f
Try harder not to make stack increases
2025-06-24 11:12:27 -04:00
Anthony Hu
a0f6b779a5
-----BEGIN SPHINCS_SMALL_LEVEL1 PRIVATE KEY----- is the longest one at length 48
2025-06-24 11:12:27 -04:00
Anthony Hu
bf928795b3
Fix missing dashes on the end of header and footer.
2025-06-24 11:12:27 -04:00
Anthony Hu
1dff76782b
Check for duplicate extensions in a CRL
2025-06-24 11:10:18 -04:00
Anthony Hu
43df11c9c1
Add gate on having DH
2025-06-24 10:37:26 -04:00
Anthony Hu
8c1298a1d8
Check if DH's P and G are set
2025-06-24 09:59:12 -04:00
Sean Parkinson
d05790ed89
LMS: Allow state to be saved with private key
...
Defining WOLFSSL_WC_LMS_SERIALIZE_STATE will have the state serialized
before the private key data.
Lots of memory used but means fast reload times. That means that the key
can be reloaded for each sign.
2025-06-24 20:46:41 +10:00
Sean Parkinson
fc1d281268
Green Hills compiler fixes
...
internal.c: Move non-enumeration value out of switch.
ssl.c: Only declare globalRNGMutex when required.
x509.c: initialize ret
armv8-aes.c, armv8-chacha.c: fix branch instructions
armv8-mlkem*: ensure only required constants are input operands and move
constants closer to first use.
armv8-poly1305.c: remove POLY1305_BLOCK_SIZE from input operands.
armv8-sha3-asm_c.c, armv8-sha512-asm_c.c: use constraint ':' instead of
'S'.
armv8-sha512.c: initialize initfp. Is always used.
2025-06-24 19:39:40 +10:00
Sean Parkinson
f8bb889712
Armv8 (Aarch64) ASM fixes for Green Hills compiler
...
Change branch instructions to proper form.
Use constant value rather than POLY1305_BLOCK_SIZE.
Remove duplicate clobber registers - both w and x versions.
Make clamp unconditionally compiled.
2025-06-24 19:39:39 +10:00
David Garske
978a29da0b
Merge pull request #8898 from cconlon/getpidOptionsH
...
Add HAVE_GETPID to options.h if getpid detected
2025-06-23 17:11:55 -07:00
JacobBarthelmeh
9ee212cacc
fix for free'ing memory with test case
2025-06-23 17:33:52 -06:00
David Garske
c4428a432f
Merge pull request #8912 from SparkiDev/lms_sha256_192_w_fix
...
LMS SHA-256_192: fix parameters
2025-06-23 15:35:02 -07:00
Anthony Hu
d45e42e2e6
keySz is only in Buffers if NO_CERTS not defined.
2025-06-23 18:29:39 -04:00
Anthony Hu
6385999ae9
Recalculate suites at ssl initialization.
2025-06-23 18:29:39 -04:00
Anthony Hu
aec13923a7
Merge pull request #8913 from dgarske/pq_verifyonly
...
Fix for building LMS with verify only
2025-06-23 16:37:32 -04:00
David Garske
f1005c33fb
Merge pull request #8905 from gojimmypi/pr-vs-cmake
...
Introduce CMakePresets.json and CMakeSettings.json
2025-06-23 11:18:57 -07:00
David Garske
caf8494d65
Merge pull request #8911 from gojimmypi/pr-allow-only-rsa
...
Allow configuration with only RSA cipher suites
2025-06-23 11:18:27 -07:00
David Garske
d4c827bc5e
Fix for building LMS with verify only. Added tests for LMS/XMSS verify only. New wc_LmsKey_GetKid references key->priv_raw that is not available.
2025-06-23 11:12:53 -07:00
Daniel Pouzzner
b361c62372
Merge pull request #8903 from dgarske/cadate_calist
...
Expose API to access "store" error code and depth for cert failure callback
2025-06-23 10:08:41 -05:00
Daniel Pouzzner
47a8242093
Merge pull request #8868 from SparkiDev/dilithium_win_fixes_1
...
Dilithium/ML-DSA: Fixes for casting down and uninit
2025-06-23 09:02:35 -05:00
Daniel Pouzzner
bcdce75b08
Merge pull request #8909 from dgarske/various_20250620
...
Fixes with max size, openssl.test netcat and clang-tidy
2025-06-23 08:15:17 -05:00