0eb11ff466
Standard way to set defaults
2024-05-15 15:19:42 -04:00
b83d8f0cf6
Make sure MAX_ECC_BITS >= MIN_ECC_BITS
2024-05-15 15:19:13 -04:00
35ef7f4093
There is no default defined. Expected to be unset
2024-05-15 15:16:24 -04:00
4e5a98e65d
Fix from rebase
2024-05-15 14:03:12 -05:00
fa08e2cb62
Fix a long line in pbkdf2 test
2024-05-15 14:02:44 -04:00
6719909f4e
Add logging.h header in pwdbased.c when DEBUG_WOLFSSL
2024-05-15 14:02:44 -04:00
7047991cda
Log when iterations LT 1000 but take no action
2024-05-15 14:02:44 -04:00
a9511e118a
Add SP800-132 112 bit minimum applicable after stretch/strengthen
2024-05-15 14:02:44 -04:00
a365d38762
After careful evaluation deciding not to include mem-zero check (for now)
2024-05-15 14:02:43 -04:00
82d9a7bbae
Initialize scratch buffer
2024-05-15 14:02:43 -04:00
673c5993a7
Make the memzero check default with FIPS, fix benchmark app
2024-05-15 14:02:43 -04:00
766c3b5ad8
Comments and further relaxing of some other hmac restrictions
2024-05-15 14:02:43 -04:00
49e9c06679
(Has dependency PR) API Service update HmacSizeByType
2024-05-15 14:02:43 -04:00
fd4db1497f
Merge pull request #7536 from gasbytes/buffer_overflows_fix
...
added check that checks if the SEQ's length is > than the buff's length
2024-05-15 10:56:42 -07:00
ac7aea9674
Merge pull request #7478 from JacobBarthelmeh/staticmemory
...
add global heap hint setter function
2024-05-15 10:43:15 -07:00
4481f9b626
Add stub for wolfSSL_set_ecdh_auto.
2024-05-15 10:19:47 -07:00
9166c1aa1c
Various typo and copy/paste cleanups.
2024-05-15 10:01:40 -07:00
b156a51e82
Code cleanup per review comments
2024-05-15 09:51:00 -07:00
9aeef1d857
add void and remove rebase issue
2024-05-15 10:28:39 -06:00
2f24b35ab1
added check that checks if the SEQ's length is > than the buff's length
2024-05-15 18:20:33 +02:00
de0a492499
Remove trailing whitespace
2024-05-15 09:12:00 -07:00
c73e4333bf
Merge pull request #7535 from gojimmypi/PR-fix-sha512-endianness
...
Fix Espressif SHA512 SW fallback endianness
2024-05-15 09:04:07 -07:00
9c4c9234b1
Merge pull request #7532 from SparkiDev/wc_ecc_mulmod_zero
...
ECC: handle zero in wc_ecc_mulmod()
2024-05-15 09:02:02 -07:00
d522feb1cd
Free X509 object
2024-05-15 08:37:39 -07:00
958b5ac465
Clean up cast warning
2024-05-15 08:30:38 -07:00
eb24bce93f
Add test case for bad alternative name
2024-05-15 08:22:11 -07:00
b25a4f1082
Use zero, not Espressif macro for return code
2024-05-15 08:06:06 -07:00
1024d7a809
Fix Espressif SHA512 SW fallback endianness
2024-05-15 07:36:10 -07:00
92806a61c0
Merge pull request #7522 from douzzer/20240511-aes-xts-stream
...
20240511-aes-xts-stream
2024-05-15 06:22:20 -07:00
1469aab109
linuxkm/lkcapi_glue.c: add native test coverage for WOLFSSL_AESXTS_STREAM.
...
wolfcrypt/test/test.c:
* add WOLFSSL_AESXTS_STREAM testing to the LARGE_XTS_SZ exercise in aes_xts_128_test().
* add the LARGE_XTS_SZ exercise to aes_xts_256_test().
* add aes_xts_192_test().
* fix -Werror=frame-larger-than=2048 in ed25519_test().
2024-05-15 00:45:51 -05:00
4331bc092b
configure.ac: on armasm, disable ENABLED_AESXTS_STREAM by default (not implemented).
2024-05-14 19:24:27 -05:00
2fe366cc74
wolfcrypt/test/test.c: add test coverage for WOLFSSL_AESXTS_STREAM.
...
linuxkm/lkcapi_glue.c: typographic cleanups, and failsafe error return constructs when skcipher_walk_virt() returns zero walk.nbytes.
wolfcrypt/src/aes.c: additional comments and inline documentation.
.github/workflows/openvpn.yml: disable test on master branch.
2024-05-14 19:11:39 -05:00
8392748cda
wolfcrypt/src/aes.c: de-deduplicate code, AesXts{En,De}crypt_sw() vs AesXts{En,De}cryptUpdate_sw().
2024-05-14 19:11:39 -05:00
4f1f7b3a4d
linuxkm/lkcapi_glue.c: update names of wc_AesXts{En,De}cryptInit().
...
wolfcrypt/src/aes.c: activate _AesXtsHelper() in AesXts{En,De}cryptUpdate_sw().
2024-05-14 19:11:39 -05:00
643f472cfb
AES-XTS ASM x64: Add Intel x64 implementation of streaming
...
Changed APIs from wc_AesXts*Start -> wc_AesXts*Init.
Enabled ASM for x64 in aes.c.
AesXtsDecryptStart_sw same as AesXtsEncryptStart_sw so changed them to
AesXtsInit_sw.
2024-05-14 19:11:39 -05:00
f874d8753d
AES-XTS-streaming: refactor API to eliminate caller-supplied tweak_block. instead, caller-supplied iv is used as a readwrite buffer.
2024-05-14 19:11:39 -05:00
9e06524c6f
wolfcrypt/src/aes.c: add prototypes and linkages for AES_XTS_{encrypt,decrypt}_{start,update}_{avx1,aesni}.
2024-05-14 19:11:39 -05:00
3ad5ec4e0a
make --enable-linuxkm-lkcapi-register require --enable-experimental, except for the known-good --enable-linuxkm-lkcapi-register="xts(aes)".
2024-05-14 19:11:39 -05:00
70d7b6e48b
add WOLFSSL_AESXTS_STREAM, --enable-aesxts-stream, wc_AesXtsEncryptStart(), wc_AesXtsDecryptStart(), wc_AesXtsEncryptUpdate(), wc_AesXtsDecryptUpdate(), and implement fixes in linuxkm/lkcapi_glue.c to use the streaming API when needed. also added support for 2*192 bit AES-XTS, needed for Linux kernel.
2024-05-14 19:11:38 -05:00
676dfb7edb
Do not allow NULL terminators in the middle of alt name for pattern matching. ZD 17987
2024-05-14 16:59:28 -07:00
b63f308812
fixup
2024-05-15 09:07:04 +10:00
36754683d6
ECC: handle zero in wc_ecc_mulmod()
...
Public API needs to handle multiplying by zero as the underlying code
doesn't and needn't.
2024-05-15 09:05:31 +10:00
6d1416d006
addressing PR comments
2024-05-14 16:02:56 -04:00
28bd4ebeea
Merge pull request #7520 from bandi13/fixConversion
...
Fix conversion
2024-05-14 11:26:37 -07:00
7526f527d1
Merge pull request #7526 from lealem47/addCast
...
Fix for type conversion error
2024-05-14 10:30:08 -07:00
a1797f0d0d
Fix casts depending on OS
2024-05-14 11:03:20 -04:00
a59a3d109f
Explicit cast
2024-05-14 11:03:20 -04:00
12768cdf57
Fix conversion tls13.c
2024-05-14 11:02:28 -04:00
bf92797cbc
Fix conversion error in client.c
2024-05-14 11:02:28 -04:00
0bf69e240a
Fix build failures
2024-05-14 11:02:28 -04:00
Andras Fekete
Eric Blankenhorn
kaleb-himes
David Garske
Kareem
Colton Willey
JacobBarthelmeh
gasbytes
gojimmypi
Daniel Pouzzner
Sean Parkinson