wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-29 15:52:13 +01:00
Code Issues Packages Projects Releases Wiki Activity
18,036 Commits 12 Branches 184 Tags
ef7377d64cca54cb9d9b4e2f789536f7a3551aae
Commit Graph

18036 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Daniel Pouzzner
ef7377d64c fix whitespace and line length. 2022-09-07 15:30:32 -05:00
Daniel Pouzzner
57a7430b6a wolfcrypt/src/pkcs7.c: in wc_PKCS7_DecryptKtri(), refactor handling of OAEP keys to fix uninited value access detected by clang-analyzer-core.UndefinedBinaryOperatorResult; fix whitespace. 2022-09-07 15:14:26 -05:00
David Garske
9c88d8ac2c Merge pull request #5547 from JacobBarthelmeh/mcux 
Port to RT685 with FreeRTOS
 2022-09-07 12:54:54 -07:00
Jacob Barthelmeh
22bad7b06b fix spelling 2022-09-07 09:57:34 -06:00
David Garske
d75bb2de62 Merge pull request #5561 from SparkiDev/sp_math_openssl_fix 
SP math: fix build configuration with opensslall
 2022-09-07 07:12:13 -07:00
David Garske
bc1fca8c85 Merge pull request #5562 from SparkiDev/sp_int_521_fix 
SP int: fix for SP_INT_DIGITS calc
 2022-09-07 07:12:01 -07:00
Sean Parkinson
1fe9f2d894 SP int: fix for SP_INT_DIGITS calc 
Implementation of sp_mont_red needs words * 2 + 1.
 2022-09-07 17:22:22 +10:00
Sean Parkinson
05634e286d SP math: fix build configuration with opensslall 
./configure '--disable-shared' '--enable-keygen' '--enable-certgen'
'--enable-certreq' '--enable-certext' '--enable-ocsp' '--enable-crl'
'--enable-pwdbased' '--enable-opensslall' '--enable-pkcs7'
'--enable-pkcs12' '--enable-sp' '--enable-sp-math' '--disable-rsa'
'--disable-dh' '--enable-ecc'
 2022-09-07 15:42:33 +10:00
David Garske
12680a967a Merge pull request #5560 from douzzer/20220906-fixes 
20220906-fixes
 2022-09-06 17:56:33 -07:00
David Garske
602116c3f2 Merge pull request #5558 from embhorn/zd14776 
Fix warning in DecodeAltNames
 2022-09-06 16:00:02 -07:00
Chris Conlon
761fde31ad Merge pull request #5478 from miyazakh/rsaesoaep 2022-09-06 15:45:40 -06:00
Daniel Pouzzner
bf29d6b2c7 wolfcrypt/test/test.c: refactor shake256_absorb_test() and shake256_test() to use a single buffer for "large_input", malloc()ed when WOLFSSL_SMALL_STACK, to stay within stack limits of all-max-func-stack-2k; move a couple declarations in openssl_test() to resolve declaration-after-statement. 2022-09-06 13:28:57 -05:00
Daniel Pouzzner
14082ceeb9 CMakeLists.txt: add SHAKE128 coverage. 2022-09-06 13:28:45 -05:00
David Garske
d72b401e8e Merge pull request #5545 from icing/evp_chacha 
Add ChaCha20 as available cipher in the EVP API.
 2022-09-06 10:42:54 -07:00
Eric Blankenhorn
dcf215d52c Fix warning in DecodeAltNames 2022-09-06 11:33:30 -05:00
David Garske
e2de8f3b6c Merge pull request #5554 from rizlik/dtls_cid_fix 
fix: dtls13: do not negotiate ConnectionID in HelloRetryRequest
 2022-09-06 09:28:25 -07:00
David Garske
7b0128f9ac Merge pull request #5541 from SparkiDev/ecc_sign_k_nondyn 
ECC sign_k: don't have it dynamically allocated
 2022-09-06 07:52:45 -07:00
David Garske
1a3c34ea99 Merge pull request #5557 from SparkiDev/sp_rsa_max_fix 
RSA max and SP_INT_BITS: disabled RSA fix
 2022-09-06 07:52:18 -07:00
Juliusz Sosinowicz
a33368f314 Merge pull request #5516 from embhorn/zd14732 2022-09-06 13:51:58 +02:00
Stefan Eissing
5927c4063a Removing FIXME comments after the fixing has been done. doh. 2022-09-06 10:06:02 +02:00
Stefan Eissing
9b319b3782 Remove dependency on POLY1305 on testing CHACHA20 only. 2022-09-06 10:06:02 +02:00
Stefan Eissing
9f47999002 Add ChaCha20 as available cipher in the EVP API. 
- wire the wc_ChaCha_* implementation into the EVP API
  as `wolfSSL_EVP_chacha20`
- follow IV conversions of OpenSSL
- add test case
- have QUIC support use this for header protection when
  CHACHA20_POLY1305 has been negotiated in the handshake.
 2022-09-06 10:06:02 +02:00
Sean Parkinson
4b12d2f4ec RSA max and SP_INT_BITS: disabled RSA fix 
Checking WOLFSSL_MAX_RSA_BITS against SP_INT_BITS even though RSA is
disabled.

/configure --disable-shared --enable-sp --enable-sp-math --disable-rsa
--disable-dh --enable-ecc
 2022-09-06 17:15:22 +10:00
David Garske
483d7189c7 Merge pull request #5512 from SparkiDev/tls13_64bit_milli 
Make time in milliseconds 64-bits
 2022-09-05 16:19:03 -07:00
David Garske
31b8edd192 Merge pull request #5552 from SparkiDev/ed_make_key_fixes 
Ed make public key wasn't checking whether private key set
 2022-09-05 16:13:41 -07:00
Sean Parkinson
e7dbb5b375 Merge pull request #5548 from dgarske/whitespace 
Whitespace cleanup
 2022-09-06 07:54:29 +10:00
Marco Oliverio
aee81764f2 fix: dtls13: do not negotiate ConnectionID in HelloRetryRequest 2022-09-05 17:00:09 +02:00
Kaleb Himes
e76361d544 Merge pull request #5551 from SparkiDev/sha3_asm_fix 
SHA-3: check BMI1 availablity for ASM
 2022-09-05 05:03:52 -06:00
Sean Parkinson
f153e65102 SHA-3: check BMI1 availablity for ASM 
Added benchmarking of SHAKE128 and SHAK256.
 2022-09-05 14:11:02 +10:00
Sean Parkinson
f807c70637 Ed make public key wasn't checking whether private key set 
Ed25519 and Ed448 make public key APIs now check whether the private key
was set.
The private key and public key flags setting and clearing also updated.
Testing of unset private key and calling make public key added for
Ed25519 and Ed448.
 2022-09-05 12:21:51 +10:00
kaleb-himes
49065373aa Merge branch 'fix_sha256_debug' of github.com:gojimmypi/wolfssl 2022-09-04 19:26:38 -06:00
Sean Parkinson
4ac113d135 ECDSA sign_k allocated when not WOLFSSL_NO_MALLOC 
Fix up other WOLFSSL_NO_MALLOC issues.
 2022-09-05 10:56:17 +10:00
Sean Parkinson
b95df7529c Improve usage of 64-bit implementation of TimeNowInMilli 
Change to use 64-bits for types stored - use WOLFSSL_32BIT_MILLI_TIME if
a 64-bit type is not available.
TimeNowInMill() returns 0 on error instead of GETTIME_ERROR.
 2022-09-05 10:47:25 +10:00
David Garske
aa036b6ea4 Merge pull request #5532 from anhu/sphincs 
Add sphincs to wolfCrypt.
 2022-09-02 11:56:11 -07:00
David Garske
232a750cc2 Whitespace cleanup. 2022-09-02 09:54:17 -07:00
David Garske
4a8a11315b Merge pull request #5536 from SparkiDev/sha3_x64 
SHA-3 improvements
 2022-09-02 09:46:14 -07:00
JacobBarthelmeh
8ca63b93a4 Merge pull request #5539 from dgarske/ocsp_async 
Fix for async with OCSP non-blocking in `ProcessPeerCerts`
 2022-09-02 10:42:09 -06:00
David Garske
11bb8b3dc4 Merge pull request #5543 from SparkiDev/rsa_max_size_fix 
RSA max key size checks
 2022-09-02 09:26:19 -07:00
Anthony Hu
10ce703d71 Add sphincs to wolfCrypt. 
Note that we will not support sphincs in TLS so nothing above wolfcrypt changes.
 2022-09-02 11:53:55 -04:00
Sean Parkinson
daadd4a1b7 Merge pull request #5540 from dgarske/socksz 
Fixes for building with 32-bit and socket size sign/unsigned mismatch
 2022-09-02 16:33:41 +10:00
Sean Parkinson
3bf6baf596 RSA max key size checks 
Detect when certificate's RSA public key size is too big and fail on
loading of certificate.
Fix unit test to only attempt to use 3072 bit RSA-PSS keys when
RSA_MAX_SIZE supports it.
 2022-09-02 10:37:12 +10:00
Sean Parkinson
cef590131a ECC sign_k: don't have it dynamically allocated 2022-09-02 09:18:42 +10:00
Sean Parkinson
23fd6456c2 Merge pull request #5534 from dgarske/zd14420 
Fix for async session tickets
 2022-09-02 08:50:35 +10:00
Sean Parkinson
ef451d316c Make time in milliseconds 64-bits 
Allow for longer session ticket lives.
 2022-09-02 08:45:07 +10:00
David Garske
f530101ef1 Fix for async with OCSP non-blocking in ProcessPeerCerts. ZD 14754. 2022-09-01 14:39:52 -07:00
Stefan Eissing
65ca72c5a2 Improve EVP support for CHACHA20_POLY1305 (#5527) 
* Add test case for OpenSSLs capability to init a evp context partially in several calls.
* EVP handling of CHACHA20_POLY1305 improvment
- save key at ctx for Init()s without IV
- reuse stored key for Init()s with new IV, reusing ctx
- free and zero key on ctx clenaup
* Adding type cast to XMALLOC to force compiler compatibility.
* EVP: using same DYNAMIC_TYPE in alloc and free of chacha20_poly1305 key.
Co-authored-by: Stefan Eissing <stefan.eissing@greenbytes.de>
 2022-09-01 13:23:42 -07:00
David Garske
2695f36642 Fixes for building with 32-bit and socket size sign/unsigned mismatch. 
Tested with: `./configure --enable-all CFLAGS="-m32 -DXSOCKLENT=int" LDFLAGS="-m32" && make`
 2022-09-01 11:39:34 -07:00
David Garske
ba8ffc765d Merge pull request #5513 from rizlik/hrr_default 
DTLSv1.3: Do HRR Cookie exchange by default
 2022-09-01 07:45:18 -07:00
David Garske
0222833f7e Merge pull request #5535 from douzzer/20220831-analyzer-coddling 
20220831-analyzer-coddling
 2022-09-01 07:40:11 -07:00
Daniel Pouzzner
8ccef9f0d3 Merge pull request #5531 from embhorn/zd14665 
Check return from call to wc_Time
 2022-09-01 09:35:49 -05:00