wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-27 07:22:20 +01:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 77d9410aa0 Add missing API documentation for Doxygen: David Garske 2025-12-26 08:00:20 -08:00
  • 73ee89a2fc Improve no-void-functions rule David Garske 2025-12-26 08:06:37 -08:00
  • e70e7cb144 Merge pull request #9583 from kareem-wolfssl/gh8152_2 David Garske 2025-12-26 07:48:43 -08:00
  • 1744c11686 Merge pull request #9570 from kareem-wolfssl/variousFixes David Garske 2025-12-26 07:47:17 -08:00
  • c3e65153cc Improve the Devin lifeguard coding standard rules David Garske 2025-12-26 07:39:37 -08:00
  • 48d6811e04 Merge pull request #9582 from douzzer/20251224-wc_GenerateSeed-unreachable-code David Garske 2025-12-26 07:38:07 -08:00
  • 51d49658d4 Update Japanese RSA API document Koji Takeda 2025-12-19 17:35:26 +09:00
  • 0a02f5ef6b Code review feedback Kareem 2025-12-24 17:12:40 -07:00
  • 496d124736 Merge remote-tracking branch 'upstream/master' into gh7197 Kareem 2025-12-24 17:05:04 -07:00
  • f98229554b Update CMake logic to allow WOLFSSL_SYS_CA_CERTS without filesystem support on Windows/Mac. Kareem 2025-12-24 17:02:25 -07:00
  • f4f4c7cfae src/ssl.c: fix clang-analyzer-deadcode.DeadStores in check_cert_key(). Daniel Pouzzner 2025-12-24 17:49:33 -06:00
  • a944575e4b wolfcrypt/src/random.c: fix clang-diagnostic-unreachable-code in wc_GenerateSeed(). Daniel Pouzzner 2025-12-24 17:48:37 -06:00
  • ff14797c3a Merge pull request #9552 from tamasan238/pr9458 Takashi Kojo 2025-12-25 08:28:21 +09:00
  • 019a420187 Merge pull request #9568 from kareem-wolfssl/zd20947 Daniel Pouzzner 2025-12-24 17:03:26 -06:00
  • 09ce46e2d5 Merge pull request #9581 from tamasan238/pr9578 Takashi Kojo 2025-12-25 07:34:57 +09:00
  • 3e64c2f9be backport b2ef89b2db, cd88a8ae88, and b66f1b78a7 to wolfcrypt/src/rsa.c and wolfssl/wolfcrypt/rsa.h: make RsaKey.rng and wc_RsaSetRNG() available unconditionally, rather than only if WC_RSA_BLINDING, for use by wc_CheckRsaKey(). Daniel Pouzzner 2025-12-24 09:31:37 -06:00
  • ee8fcf9d36 [JA] Correct the API docs for wolfSSL_write_early_data() Masaki I. 2025-12-24 14:53:10 +09:00
  • b45bcd5d71 backport 5030484bcf to wolfcrypt/src/random.c and wolfssl/wolfcrypt/random.h: * add WC_DRBG_{NOT_INIT,OK,FAILED,CONT_FAILED} in public header file, and * move setup for RNG_SECURITY_STRENGTH, ENTROPY_SCALE_FACTOR, SEED_BLOCK_SZ, SEED_SZ, MAX_SEED_SZ, and RNG_HEALTH_TEST_CHECK_SIZE from random.c to random.h, with public WC_DRBG_SEED_SZ and WC_DRBG_MAX_SEED_SZ. Daniel Pouzzner 2025-12-23 22:32:37 -06:00
  • 4170d1ab09 backport b2ef89b2db, cd88a8ae88, and b66f1b78a7 to wolfcrypt/src/rsa.c and wolfssl/wolfcrypt/rsa.h: make RsaKey.rng and wc_RsaSetRNG() available unconditionally, rather than only if WC_RSA_BLINDING, for use by wc_CheckRsaKey(). Daniel Pouzzner 2025-12-23 22:00:15 -06:00
  • 72bf78b2f7 backport 5030484bcf to wolfcrypt/src/random.c and wolfssl/wolfcrypt/random.h: * add WC_DRBG_{NOT_INIT,OK,FAILED,CONT_FAILED} in public header file, and * move setup for RNG_SECURITY_STRENGTH, ENTROPY_SCALE_FACTOR, SEED_BLOCK_SZ, SEED_SZ, MAX_SEED_SZ, and RNG_HEALTH_TEST_CHECK_SIZE from random.c to random.h, with public WC_DRBG_SEED_SZ and WC_DRBG_MAX_SEED_SZ. Daniel Pouzzner 2025-12-23 20:50:45 -06:00
  • 2354ea196b Merge pull request #9513 from rizlik/dtls_header_fix David Garske 2025-12-23 17:20:12 -08:00
  • 0fae0a7ba6 Merge pull request #9397 from rizlik/earlydata_want_write_fixes David Garske 2025-12-23 17:19:39 -08:00
  • d885749c09 Merge pull request #9561 from miyazakh/renesas_ssp_upgrade David Garske 2025-12-23 15:15:45 -08:00
  • 57ef8a7caf Merge pull request #9574 from anhu/dtls_guard David Garske 2025-12-23 15:03:46 -08:00
  • 18176392fa Merge pull request #9576 from douzzer/20251222-linuxkm-PK-initrng-optimize David Garske 2025-12-23 15:02:53 -08:00
  • 149bf19b4c split overlong line Marco Oliverio 2025-12-23 23:41:52 +01:00
  • 2e63845531 use wolfssl_local as local functions prefix Marco Oliverio 2025-12-23 23:39:07 +01:00
  • 96e2e80108 Add new coding standard for local (internal) function names. David Garske 2025-12-23 14:32:08 -08:00
  • bafb8e56d5 use wolfssl_local_ as local functions prefix Marco Oliverio 2025-12-23 23:30:42 +01:00
  • 06d8f69dac Separate new /dev/urandom opening logic into a new section in wc_GenerateSeed. Kareem 2025-12-23 14:48:56 -07:00
  • cb81cc8ce6 Merge remote-tracking branch 'upstream/master' into gh7197 Kareem 2025-12-23 14:43:57 -07:00
  • ba63d81441 add .gitignore to include.am Hideki Miyazaki 2025-12-24 06:36:08 +09:00
  • 75fad16f20 addressed code review comments Hideki Miyazaki 2025-12-24 05:59:09 +09:00
  • 40327b7fe3 Binary consts to hexidecimal. C2X feature. Anthony Hu 2025-12-23 14:45:36 -05:00
  • b66f1b78a7 peer/Devin review: * in get_crypto_default_rng() (linuxkm/lkcapi_sha_glue.c), sanity check that crypto_default_rng isn't null; * in wc_InitRsaKey_ex(), remove frivolous NULL/zero assignments (XMEMSET clears them implicitly); * in wc_CheckRsaKey(), check ret from wc_InitRng() and short circuit return if failed. Daniel Pouzzner 2025-12-23 13:05:40 -06:00
  • da4fc4921e tests/api/test_ed25519.c: in test_wc_Ed25519PublicKeyToDer(), on old FIPS, tolerate old error code from wc_Ed25519PublicKeyToDer(). Daniel Pouzzner 2025-12-23 12:25:10 -06:00
  • cd88a8ae88 peer review -- add !WC_NO_RNG gates around WC_RNG changes in wolfcrypt/src/rsa.c and wolfssl/wolfcrypt/rsa.h. Daniel Pouzzner 2025-12-23 11:41:59 -06:00
  • d36bfabe18 Merge pull request #9560 from JacobBarthelmeh/clang David Garske 2025-12-23 08:54:50 -08:00
  • 9de98cee73 Merge pull request #9569 from kareem-wolfssl/gh8152 David Garske 2025-12-23 08:53:51 -08:00
  • c03c2dd541 Add tests Anthony Hu 2025-12-23 11:48:57 -05:00
  • 70165c517b Merge pull request #9571 from mattia-moffa/20251222-sniffer-uint-underflow-vuln David Garske 2025-12-23 08:37:50 -08:00
  • 776b31267c Merge pull request #9466 from SparkiDev/tls13_pt_alert_when_enc David Garske 2025-12-23 08:37:00 -08:00
  • 86808b8a9b Merge pull request #9578 from anhu/early_data_doc David Garske 2025-12-23 08:14:10 -08:00
  • 8f089cdcfe Merge pull request #9508 from SparkiDev/ppc32_sha256_asm_pic David Garske 2025-12-23 08:12:50 -08:00
  • 0b5e9c76ed Correct the API docs for wolfSSL_write_early_data() Anthony Hu 2025-12-23 10:08:02 -05:00
  • b087533fdf linuxkm/lkcapi_sha_glue.c: * add drbg_init_from() and fork_default_rng(), and * use the latter to define LKCAPI_INITRNG_FOR_SELFTEST() opportunistically (with fallback to plain wc_InitRng()); Daniel Pouzzner 2025-12-22 22:56:38 -06:00
  • 5030484bcf wolfcrypt/src/random.c and wolfssl/wolfcrypt/random.h: * add WC_DRBG_{NOT_INIT,OK,FAILED,CONT_FAILED} in public header file, and * move setup for RNG_SECURITY_STRENGTH, ENTROPY_SCALE_FACTOR, SEED_BLOCK_SZ, SEED_SZ, MAX_SEED_SZ, and RNG_HEALTH_TEST_CHECK_SIZE from random.c to random.h, with public WC_DRBG_SEED_SZ and WC_DRBG_MAX_SEED_SZ. Daniel Pouzzner 2025-12-22 22:56:07 -06:00
  • b2ef89b2db wolfcrypt/src/rsa.c and wolfssl/wolfcrypt/rsa.h: make RsaKey.rng and wc_RsaSetRNG() available unconditionally, rather than only if WC_RSA_BLINDING, for use by wc_CheckRsaKey(). Daniel Pouzzner 2025-12-22 22:55:40 -06:00
  • 21c86682e0 MLDSA/Dilithium: fix 16-bit int issues Sean Parkinson 2025-12-23 09:51:38 +10:00
  • b766f11e7b TLS 1.3, plaintext alert: ignore when expecting encrypted Sean Parkinson 2025-11-24 12:47:40 +10:00
  • 59f84355a5 Merge pull request #9573 from night1rider/aes-free-callbacks Sean Parkinson 2025-12-23 08:47:05 +10:00
  • c8f2cc5b43 Merge pull request #9566 from dgarske/ca_skid_cert_akid Sean Parkinson 2025-12-23 08:40:14 +10:00
  • cb2a80bf53 Guard a bit of DTLS code. Anthony Hu 2025-12-22 17:05:47 -05:00
  • afbc65a6c3 Aes Free callback support night1rider 2025-12-22 10:48:49 -07:00
  • 8de470b436 Add new WOLFSSL_RNG_USE_FULL_SEED macro to known macros. Kareem 2025-12-22 11:49:27 -07:00
  • fe45b74921 Add trailing newline back to ssl.h. Kareem 2025-12-22 11:45:25 -07:00
  • ca78994298 Add missing length check in sniffer for AES-GCM/AES-CCM/ARIA-GCM Mattia Moffa 2025-12-22 16:13:27 +01:00
  • 29d8fa7cb6 tls13: fix indentation alignment Marco Oliverio 2025-12-22 13:45:34 +01:00
  • 540fae80ab test_dtls: test payload split when WOLFSSL_NO_DTLS_SIZE_CHECK Marco Oliverio 2025-12-22 13:40:31 +01:00
  • 8cbc4047df internal: rename to use wolfssl internal prefix Marco Oliverio 2025-12-22 12:47:51 +01:00
  • aa4fb5d3e5 internal: GetMaxPlainTextSize: precise pad size when adjusting for MTU Marco Oliverio 2025-12-22 12:46:20 +01:00
  • 1200efdeb3 internal: GetRecordSize: precise header computation on fallback path Marco Oliverio 2025-12-22 12:45:26 +01:00
  • 75e7d5e9bd fix: split message > MTU on WOLFSSL_NO_DTLS_SIZE_CHECK Marco Oliverio 2025-12-22 11:30:29 +01:00
  • da06e1aeea Merge pull request #9558 from kareem-wolfssl/zd20944_2 Sean Parkinson 2025-12-22 19:38:42 +10:00
  • 7a326ef43f Merge pull request #9553 from julek-wolfssl/ed25519-export-key-check Sean Parkinson 2025-12-22 19:31:14 +10:00
  • 14b124769a use wolfssl internal prefix for MaybeCheckAlertOnErr Marco Oliverio 2025-12-22 10:04:50 +01:00
  • 12c2cdafaf rename wolfSSL_MaybeCheckAlertOnErr in wolfMaybeCheckAlertOnErr Marco Oliverio 2025-12-18 16:52:58 +01:00
  • f4c48c19c1 fix: abide unused arguments when WOLFSSL_CHECK_ALER_ON_ERR is disabled Marco Oliverio 2025-12-17 16:31:33 +01:00
  • 38d8eb6f0d address reviewer's comments Marco Oliverio 2025-12-17 16:28:46 +01:00
  • 950c074c25 test: fix typo in structure field Marco Oliverio 2025-12-04 19:05:03 +01:00
  • 8de68decd2 test: tls13_early_data: test WANT_WRITE in early data Marco Oliverio 2025-12-02 11:59:12 +01:00
  • 609e30a69c test: tls13_early_data: refactor splitEarlyData test option Marco Oliverio 2025-12-02 11:02:12 +01:00
  • 57282140a9 WOLFSSL_CHECK_ALERT_ON_ERR: ignore non fatal errors Marco Oliverio 2025-12-04 11:02:33 +01:00
  • 093d77727b early_data: avoid resetting ssl->earlyData after WANT_WRITE retry Marco Oliverio 2025-12-02 17:58:23 +01:00
  • a1c8790039 wolfssl: preserve early-data handling across WANT_WRITE retries Marco Oliverio 2025-11-06 12:18:00 +01:00
  • fc583d068f add SK-S7G2 support Hideki Miyazaki 2025-12-19 12:03:33 +09:00
  • adf38007f4 Document wolfSSL_CTX_New's behavior on failure around WOLFSSL_METHOD. Kareem 2025-12-19 17:19:45 -07:00
  • ac98505204 Document wolfSSL_CTX_set_default_passwd_cb and wolfSSL_CTX_set_default_passwd_cb_userdata. Kareem 2025-12-19 17:18:45 -07:00
  • 7c4feb5e87 Improve the error message returned by BAD_KEY_SHARE_DATA. Kareem 2025-12-19 17:17:33 -07:00
  • 5b473f6b9b Add SSL_get_rfd and SSL_get_wfd. Kareem 2025-12-19 17:16:35 -07:00
  • b6766106c8 Add documentation for Base16_Encode and Base64_Encode's behavior of adding a NULL terminator byte. Kareem 2025-12-19 17:15:44 -07:00
  • a1999d29ed Only enforce !NO_FILESYSTEM for WOLFSSL_SYS_CA_CERTS on non Windows/Mac systems. Kareem 2025-12-19 16:37:50 -07:00
  • 0a0c43054f Merge pull request #9564 from douzzer/20251219-fixes JacobBarthelmeh 2025-12-19 16:24:20 -07:00
  • 3e59b83727 Only keep /dev/urandom open, close /dev/random after each use. Improve logic for opening RNG seed FD. Kareem 2025-12-19 15:57:49 -07:00
  • fe105d4b48 Add a flag which allows requesting exactly SEED_SZ and using the full seed to instantiate the DRBG during RNG init. This flag can not be used with FIPS. Kareem 2025-12-19 15:25:15 -07:00
  • 1cb2231ff5 Added build option to allow certificate CA matching using AKID with signers SKID ( WOLFSSL_ALLOW_AKID_SKID_MATCH). Fixed issue with cert->extAuthKeyIdSz not being set with ASN template code. David Garske 2025-12-19 13:21:11 -08:00
  • a7550346dd wolfcrypt/test/test.c: in rng_seed_test(), fix gates for FIPS 5.2.4. Daniel Pouzzner 2025-12-19 15:50:27 -06:00
  • d3f74557fe wolfcrypt/src/wolfentropy.c: add volatile attribute to entropy_memuse_initialized declaration; in wc_Entropy_Get(), if HAVE_FIPS, call Entropy_Init() if necessary, to accommodate FIPS KATs; in Entropy_Init(), add thread safety. Daniel Pouzzner 2025-12-19 15:45:17 -06:00
  • d5723d0d89 Merge pull request #9544 from julek-wolfssl/gh/9362 JacobBarthelmeh 2025-12-19 14:36:31 -07:00
  • 1825bd86f5 Merge pull request #9550 from JacobBarthelmeh/caam David Garske 2025-12-19 11:03:40 -08:00
  • d26c11c626 Merge pull request #9551 from josepho0918/iar JacobBarthelmeh 2025-12-19 11:36:33 -07:00
  • 8153ea6189 Merge pull request #9559 from cconlon/pkcs7SignedNonOctet JacobBarthelmeh 2025-12-19 11:12:06 -07:00
  • 6f95a9c58e wolfcrypt/src/random.c: in _InitRng(), remove "drbg_instantiated" conditional cleanup logic (Coverity true-benign-positive: DEADCODE because drbg_instantiated is always false when ret != DRBG_SUCCESS). Daniel Pouzzner 2025-12-19 10:30:14 -06:00
  • 200e6b6495 wolfcrypt/src/sha512.c: in wc_Sha512Transform(), fix sequence of check added by 3b768bcb5e, fix WOLFSSL_SMALL_STACK double-declaration of buffer, and fix gate on XFREE(buffer, ...). Daniel Pouzzner 2025-12-19 10:11:15 -06:00
  • fb26b2dfe1 wolfcrypt/test/test.c: in HMAC tests, initialize ret, to silence uninitvar from cppcheck-force-source. Daniel Pouzzner 2025-12-19 09:07:14 -06:00
  • 96c47cd18c wolfcrypt/test/test.c: in _rng_test(), inhibit the WC_RESEED_INTERVAL subtest if an rng callback is installed. Daniel Pouzzner 2025-12-19 08:55:35 -06:00
  • dd35f10b57 ed25519: validate presence of keys in export functions Juliusz Sosinowicz 2025-12-18 13:44:11 +01:00
  • a3072c7a8d fix for shadows global declaration warning JacobBarthelmeh 2025-12-18 17:18:39 -07:00
  • 350a37f85c backport missed prototype for wc_HmacCopy() from 50b51adc93. Daniel Pouzzner 2025-12-18 17:49:36 -06:00
  • 97244920bb wolfcrypt/src/hmac.c: fix FIPS version gate on wc_HmacFree() in wc_HmacSetKey(). Daniel Pouzzner 2025-12-18 17:38:46 -06:00