wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-05-05 10:44:13 +02:00
Code Issues Packages Projects Releases Wiki Activity
10,121 Commits 13 Branches 184 Tags
b2fb6d1a8182f22ff14be3697a7550fe89ebc0ee
Commit Graph

10121 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Tesfa Mael 5e28dd94a2 OpenSSL compatible APIs: 
ASN1_STRING_type
EVP_aes_128_gcm
EVP_CIPHER_CTX_ctrl
EVP_PKEY_sign
EVP_PKEY_sign_init
RSA_print
RSA_NO_PADDING
RSA_PKCS1_PSS_PADDING
 2019-08-26 12:20:18 -07:00
kaleb-himes ea4e7b2669 Resolve XSNPRINTF unconditional use in asn.c breaking mingw32 builds 2019-08-26 13:19:53 -06:00
Chris Conlon 256ac4a515 Merge pull request #2427 from miyazakh/fix_espbuild_failure 
fix uninitialized var for esp idf build failure fix
 2019-08-26 10:11:44 -06:00
Chris Conlon 61d01ab7f3 add unit test for PKCS7 invalid detached content 2019-08-26 09:43:20 -06:00
David Garske 76b9476b9a Remove debug printf. 2019-08-23 16:24:45 -07:00
David Garske 99329b0fc4 Improvements to the CRL verify handling. 2019-08-23 16:09:39 -07:00
Chris Conlon 12687e5a2a internally check PKCS7 content digest against messageDigest attribute 2019-08-23 16:40:12 -06:00
toddouska 2c97b040ff Merge pull request #2419 from dgarske/ctx_sec_reneg 
Adds use secure renegotiation at CTX level
 2019-08-23 12:55:30 -07:00
toddouska 1bad2bed3c Merge pull request #2404 from dgarske/strict_cipher 
Added strict cipher suite check on client server_hello processing
 2019-08-23 12:42:57 -07:00
toddouska 681de3e41a Merge pull request #2375 from dgarske/stm32_cubemx_halv2 
Fixes for STM32F7 and latest CubeMX HAL
 2019-08-23 12:28:51 -07:00
toddouska 6209e8ff24 Merge pull request #2412 from JacobBarthelmeh/PKCS12 
adjust wc_i2d_PKCS12 API
 2019-08-23 10:30:04 -07:00
Juliusz Sosinowicz 63538fedde Required additions for building fips-ready with speedups 2019-08-23 10:22:31 -07:00
toddouska 54fb08d6df Merge pull request #2426 from JacobBarthelmeh/Fuzzer 
sanity check on buffer size before reading short
 2019-08-23 10:17:31 -07:00
John Safranek 2ba6c66d44 Fix ECC key load test 
When using the configure options '--enable-certgen --enable-certext CPPFLAGS=-DWOLFSSL_VALIDATE_ECC_IMPORT', the ecc_decode_test() will fail the "good" test case. It is using the point (1, 1) in the test, and that fails the key validation. Changed the good key to one of the keys we have in the certs directory. The additional validation checks that the point is on the curve, and is validated in FIPS mode.
 2019-08-22 14:18:59 -07:00
Hideki Miyazaki 8b2a1f13c4 fix uninitialized ver for esp idf build failure fix 2019-08-23 06:08:11 +09:00
David Garske 0e6bb4717e Merge pull request #2425 from JacobBarthelmeh/SanityChecks 
sanity check on buffer size
 2019-08-22 12:30:06 -07:00
Jacob Barthelmeh b83aebafb1 help out static analysis tool 2019-08-22 11:49:10 -06:00
Jacob Barthelmeh 65aeb71d6c sanity check on buffer size before reading short 2019-08-22 11:36:35 -06:00
Jacob Barthelmeh c6e4aebcdf sanity check on buffer size 2019-08-22 09:23:02 -06:00
David Garske cf83561b64 Merge pull request #2417 from SparkiDev/sp_mod_exp_cast_fix 
SP Mod exp cast fix
 2019-08-22 05:55:27 -07:00
David Garske 6544b5df88 Merge pull request #2423 from SparkiDev/fe_math_mac 
Curve25519/Ed25519 x86_64 assembly working on Mac again
 2019-08-22 05:54:49 -07:00
Sean Parkinson 132f60e77f Curve25519/Ed25519 x86_64 assembly working on Mac again 2019-08-22 09:27:39 +10:00
Juliusz Sosinowicz 37f1522825 Changes to update stunnel support 2019-08-21 16:18:04 -07:00
Juliusz Sosinowicz 05d86ade20 Merge remote-tracking branch 'wolfSSL/master' 2019-08-21 16:17:55 -07:00
David Garske e298b3290d Fix to initialize hash flag. 2019-08-21 06:36:37 -07:00
Takashi Kojo 7deab4c54f add KDS sample project 2019-08-21 11:12:09 +09:00
David Garske 67c3751836 Adds new wolfSSL_CTX_UseSecureRenegotiation API for setting secure renegotiation at the WOLFSSL_CTX level. 2019-08-20 16:43:28 -07:00
David Garske a5d222a20e Make public the hash set/get flags functions. 2019-08-20 16:25:48 -07:00
David Garske 154930d128 Added support for older KECCAK256 used by Ethereum. Uses existing hash flag API's. 
To use add build flag `CFLAGS="-DWOLFSSL_HASH_FLAGS"`.

Example:

```c
wc_Sha3_SetFlags(&sha, WC_HASH_SHA3_KECCAK256);
```
 2019-08-20 16:14:37 -07:00
David Garske 24bfea1ad2 Fixes for various build options (!NO_RSA, HAVE_ECC, NO_PKCS8, NO_PKCS12). Added new NO_CHECK_PRIVATE_KEY to allow reduce code size when not required. 2019-08-20 10:38:08 -07:00
David Garske 644e7a8f45 Fixes for PKCS8 w/wo encryption as DER/ASN.1. Fixes for building with --disable-oldnames. Fix to enable the PKCS8 enc test without openssl comat. Added additional PKCS8 tests. 2019-08-19 16:27:46 -07:00
Sean Parkinson 5530336617 SP Mod exp cast fix 2019-08-20 08:50:57 +10:00
Takashi Kojo fd0390430d Give error code resolution to wolfSSL_CertManagerCheckOCSPResponse 2019-08-20 07:22:54 +09:00
Jacob Barthelmeh 01a3b59e28 fix cast and initialization of variable 2019-08-19 14:54:53 -06:00
David Garske 3e1c103c78 Added support for loading a PKCS8 ASN.1 formatted private key (not encrypted). 2019-08-16 16:09:00 -07:00
David Garske 586b74b05f Refactor of the verify option for processing X.509 files. Adds support for ignoring date checks when loading a CA using the WOLFSSL_LOAD_FLAG_DATE_ERR_OKAY flag on wolfSSL_CTX_load_verify_buffer_ex and wolfSSL_CTX_load_verify_locations_ex. 2019-08-16 15:19:55 -07:00
toddouska 7d4023f6a1 Merge pull request #2408 from dgarske/coverity 
Minor fixes to resolve Coverity static analysis checks
 2019-08-16 14:45:13 -07:00
Jacob Barthelmeh 487e66394e adjust wc_i2d_PKCS12 API 2019-08-16 15:19:33 -06:00
David Garske 3f992ce39d Additional STM32F7 fixes with HALv2. 2019-08-16 12:31:28 -07:00
David Garske eb68ad162b Enable strict cipher suite checking by default. Changed to enable by default and can be disabled using WOLFSSL_NO_STRICT_CIPHER_SUITE. 2019-08-16 10:20:25 -07:00
John Safranek e8986f389f wolfRand 
1. Updated fips-check.sh to make an archive for wolfRand.
2. Updated configure.ac to provide a wolfRand build.
wolfRand-RC2 		2019-08-16 09:33:41 -07:00
toddouska dea4f2fb1a Merge pull request #2410 from SparkiDev/poly1305_x64_fix 
Fix Poly1305 on Intel AVX2
 2019-08-16 09:08:27 -07:00
Sean Parkinson 8454bd1077 Fix Poly1305 on Intel AVX2 
Fix define checks for other x86_64 assembly code files
 2019-08-16 17:42:19 +10:00
David Garske 0d13b385ab Fixes for possible cases where DerBuffer is not free'd in AddCA error cases. 2019-08-15 17:01:30 -07:00
David Garske aee766e11b Minor fixes for AES GCM with GMAC and STM32 HALv2. 2019-08-15 16:57:38 -07:00
John Safranek e7f0ed4b98 wolfRand 
1. Excluded wc_encrypt.c from the wolfRand build.
 2019-08-15 16:22:16 -07:00
John Safranek 9d53e9b6d5 wolfRand 
1. Add fips.h to the install if doing a wolfRand build.
 2019-08-15 16:22:16 -07:00
John Safranek 63fe2a219e wolfRand 
In configure.ac,
1. Change some whitespace in the FIPS enable section.
2. Reorganize the FIPS section a little bit.
3. When enabling wolfRand, also force cryptonly.
4. Treat wolfRand like FIPSv2 at build time.
In the source include.am,
5. Add checks against BUILD_FIPS_RAND as appropriate.
6. Add the SHA-256 assembly to the wolfRand source list.
 2019-08-15 16:22:16 -07:00
John Safranek a229e1e8e4 wolfRand 
1. Rearrange some of the macros in the FIPS section to separate out the
different flavors of FIPS with their own flags to set them apart.
2. Add automake flags for FIPSv1 and wolfRand.
 2019-08-15 16:22:16 -07:00
John Safranek 0931b574a7 wolfRand 
1. Refactored src/include.am to use the new changes in configure for
multiple FIPS versions.
2. Added conditions for wolfRand.
 2019-08-15 16:22:16 -07:00