wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-29 22:02:14 +01:00
Code Issues Packages Projects Releases Wiki Activity
22,366 Commits 12 Branches 184 Tags
fa08e2cb623e27ceab6d7244582aae602c84d609
Commit Graph

7781 Commits

Author SHA1 Message Date
gasbytes
2f24b35ab1 added check that checks if the SEQ's length is > than the buff's length 2024-05-15 18:20:33 +02:00
Andras Fekete
a59a3d109f Explicit cast 2024-05-14 11:03:20 -04:00
Andras Fekete
12768cdf57 Fix conversion tls13.c 2024-05-14 11:02:28 -04:00
Andras Fekete
692a7d55ff Fix conversion error in wolfio.c 2024-05-14 11:02:28 -04:00
Andras Fekete
affd0a318e Fix sign conversion errors 2024-05-14 11:02:28 -04:00
Sean Parkinson
b7eca574bb SSL/TLS: blind private key DER 
When WOLFSSL_BLIND_PRIVATE_KEY is defined, blind the private key DER
encoding so that stored private key data is always changing.
 2024-05-14 09:47:51 +10:00
Daniel Pouzzner
009ea6640b Merge pull request #7493 from SparkiDev/sm3_benchmark_fix 
Benchmark, SM3: fix full hash testing
 2024-05-13 19:22:22 -04:00
David Garske
6b79e5380d Merge pull request #7525 from bandi13/fixCDTDisableOptionsTest 
Unused variable error
 2024-05-13 13:13:06 -07:00
David Garske
29f7578a61 Merge pull request #7446 from julek-wolfssl/hostap 
hostap update
 2024-05-13 10:35:01 -07:00
Andras Fekete
e5a0c0d5bf Unused variable error 2024-05-13 13:18:20 -04:00
David Garske
4eab5267f1 Merge pull request #7511 from julek-wolfssl/ec-meth 
Stub EC_KEY_METHOD
 2024-05-13 09:22:23 -07:00
David Garske
568fda0e8b Merge pull request #7517 from bandi13/bugFixes 
Bug fixes
 2024-05-13 09:01:00 -07:00
Andras Fekete
c5773f5f26 Make the function flow better 
Will return 0 on failure.
 2024-05-10 15:56:56 -04:00
Andras Fekete
f73a9f0d4f Fix function logic 2024-05-10 15:03:17 -04:00
Sean Parkinson
add7428d1c TLS, SM2: fixes to get SM handshakes working 
Pass around the algorithm id from the private key so that the WOLFSSL or
WOLFSSL_CTX get the correct key format set.
Use different verification context when self-signed certificate with SM2
and SM3 signature but public key OID is ECC.
 2024-05-10 10:15:47 +10:00
Daniel Pouzzner
cb689104d1 Merge pull request #7466 from julek-wolfssl/gh/7273 
Mark all record sequence numbers before stateful parsing as read
 2024-05-09 13:57:13 -04:00
Daniel Pouzzner
f7e1e370a0 Merge pull request #7438 from julek-wolfssl/zephr-no-malloc 
zephyr no malloc
 2024-05-09 02:57:20 -04:00
Daniel Pouzzner
10b31cc481 Merge pull request #7507 from rizlik/update_err_code_cert 
tls13: update error code to NO_CERT_ERROR when no cert is set
 2024-05-09 01:38:26 -04:00
Daniel Pouzzner
d53abc2e37 Merge pull request #7441 from kareem-wolfssl/zd17857 
Allow using wolfSSL_CTX_set_default_verify_paths without WOLFSSL_SYS_CA_CERTS defined.
 2024-05-09 00:38:04 -04:00
Daniel Pouzzner
76b302381b Merge pull request #7484 from SparkiDev/mem_fail_fixes_1 
Mem fail fix: ProcessingBuffer()
 2024-05-08 18:36:45 -04:00
Juliusz Sosinowicz
0f06faf3d4 Stub EC_KEY_METHOD 2024-05-08 16:37:30 +02:00
Juliusz Sosinowicz
df425b306f Fix https://github.com/wolfSSL/wolfssl/issues/7391 2024-05-08 10:35:42 +02:00
Juliusz Sosinowicz
16ec3e52b7 Jenkins fixes 2024-05-08 10:35:42 +02:00
Juliusz Sosinowicz
a987e76677 Use uml for hostap tests 
Remove tests that fail with openssl
 2024-05-08 10:33:30 +02:00
Juliusz Sosinowicz
6b47ebd66a Expose *_set_groups for TLS < 1.3 
- Add test to make sure we fail on curve mismatch
 2024-05-08 10:33:20 +02:00
Juliusz Sosinowicz
020bcd0043 Advertise all supported sigalgs by default 2024-05-08 10:33:20 +02:00
Juliusz Sosinowicz
66f72a258f Remove unused internal API 2024-05-08 10:33:20 +02:00
Juliusz Sosinowicz
77a7297c42 Filter cipher list on TLS version change 2024-05-08 10:33:20 +02:00
Juliusz Sosinowicz
06798ab8bf EAP-FAST 
Implement PACs for EAP-FAST
- wolfSSL_set_session_ticket_ext_cb
- server side wolfSSL_set_session_secret_cb (tls <=1.2 only)
 2024-05-08 10:33:20 +02:00
Sean Parkinson
52861cbdbf Merge pull request #7476 from per-allansson/one-crl-to-rule-them-all 
An expired CRL should not override a successful match in other CRL
 2024-05-08 09:47:22 +10:00
Daniel Pouzzner
97110700b2 Merge pull request #7430 from jpbland1/check-session-setup 
Add `wolfSSL_SessionIsSetup`
 2024-05-07 13:51:33 -04:00
Juliusz Sosinowicz
14ce8ce198 Jenkins fixes 2024-05-07 11:46:36 +02:00
Marco Oliverio
b0c991eeb2 tls13: update error code to NO_CERT_ERROR when no cert is set 2024-05-07 10:55:48 +02:00
Juliusz Sosinowicz
cbd490d1d7 fixup! zephyr no malloc 2024-05-07 10:38:01 +02:00
Per Allansson
b88803cbb3 Fix formatting 2024-05-03 06:43:15 +02:00
Sean Parkinson
75b178f666 Merge pull request #7492 from JacobBarthelmeh/porting 
remove assumption of struct layout
 2024-05-02 07:14:06 +10:00
Sean Parkinson
1ddc552828 TLS, SM2: fix ecc key type 
Set the curve explicitly if it is SM2.
Set the key type to signature algorithm to handle SM2.
 2024-05-01 17:56:49 +10:00
Sean Parkinson
4594151588 Merge pull request #7418 from ejohnstown/generic-pool 
Generic Memory Pools
 2024-05-01 08:53:56 +10:00
JacobBarthelmeh
5aa39a6397 remove assumption of struct layout 2024-04-30 15:42:38 -06:00
Sean Parkinson
41eaa8466d Mem fail fix: ProcessingBuffer() 
When ProcessBufferCertTypes() is not called, 'der' is not freed.
 2024-04-29 23:05:29 +10:00
Per Allansson
e96a65a93d An expired CRL should not override a successful match in other CRL 2024-04-29 09:35:28 +02:00
Daniel Pouzzner
0566584191 implement full support for --enable-intelasm --enable-linuxkm. also add --enable-curve25519=noasm to allow use of the existing NO_CURVED25519_X64 code path by the linuxkm build (fe_x25519_asm.S is not kernel-compatible). 2024-04-27 12:35:23 -05:00
Kareem
c1f23cc505 Allow using wolfSSL_CTX_set_default_verify_paths without WOLFSSL_SYS_CA_CERTS defined. 2024-04-26 10:22:40 -07:00
Kareem
21058820fb Fix NO_WOLFSSL_STUB typo. 2024-04-26 10:22:40 -07:00
Juliusz Sosinowicz
2328270222 Code review 2024-04-26 15:56:20 +02:00
Juliusz Sosinowicz
49952a97d7 Fix quic header protect cipher return 2024-04-26 14:18:40 +02:00
Daniel Pouzzner
442d3f30cc src/ssl.c: refactor fix in wolfSSL_RAND_bytes() for race on initGlobalRNG to retain the initial check on initGlobalRNG, and just recheck it, to avoid possible access to uninitialized globalRNGMutex. 2024-04-25 23:47:39 -05:00
Daniel Pouzzner
59290cd066 src/quic.c: fix -Wunused-function for evp_cipher_eq(). 2024-04-25 22:09:28 -05:00
Daniel Pouzzner
963e14a1fe src/ssl.c: code style tweak from peer review. 2024-04-25 22:09:28 -05:00
Daniel Pouzzner
8e8e9bd0eb src/ssl.c: fix races in wolfSSL_Init() and wolfSSL_RAND_bytes(). 2024-04-25 22:09:28 -05:00