wolfssl

Author	SHA1	Message	Date
Sean Parkinson	7baffd9cf1	Merge pull request #4512 from douzzer/fips-check-linuxv5-uses-tag-WCv5.0-RC9 fips-check.sh update for WCv5.0-RC9 tags	2021-10-28 14:15:55 +10:00
Sean Parkinson	0e18e9c404	Merge pull request #4502 from dgarske/async_test Fixes for async TLS v1.3	2021-10-28 14:13:32 +10:00
David Garske	55ee5e41db	Merge pull request #4510 from SparkiDev/sp_cmp_c64 SP: change to sp_c32.c now in scripts caused changes to sp_c64.c	2021-10-27 18:50:13 -07:00
Daniel Pouzzner	46ecf752b4	fips-check.sh: update wolfSSL remote & tag for linuxv5 aka linuxv5-RC9.	2021-10-27 18:17:57 -05:00
John Safranek	7cbfb27fa0	When adding cipherExtraData(), also account for TLSv1.3.	2021-10-27 15:12:31 -07:00
John Safranek	9f3f9c53fd	Remove debugging printfs. Added some guards around DTLS and AEAD only things.	2021-10-27 15:12:31 -07:00
Juliusz Sosinowicz	be3b6b47ef	DTLS MTU fixes	2021-10-27 15:12:31 -07:00
John Safranek	77ebd11781	Updating based on MTU. Debugging prints.	2021-10-27 15:12:31 -07:00
John Safranek	be2e7e25ac	Change the calculation for the extra data size in a DTLS message when checking to see if it'll fit in an MTU. (ZD12983)	2021-10-27 15:12:31 -07:00
David Garske	c16f0db1b5	Fixes for handling `WC_PENDING_E` async responses in API unit test and examples. Resolves all issues with `--enable-all --enable-asynccrypt --with-intelqa=`.	2021-10-27 15:08:39 -07:00
David Garske	a2ad01604f	Fix devId, which must be `-2` or `INVALID_DEVID` (not 0). Fix RSA doc typo.	2021-10-27 15:08:38 -07:00
David Garske	eb56b652ca	Fix for async TLS v1.3 with multiple `WC_PENDING_E` on client_hello and server_hello processing. Fix for not aligned NUMA.	2021-10-27 15:08:38 -07:00
Sean Parkinson	34095dfd38	Merge pull request #4509 from dgarske/fix_sesstick Fix for session ticket handling with error cases	2021-10-28 08:07:10 +10:00
David Garske	f14bd41733	Merge pull request #4359 from douzzer/fipsv3-rebased fips 140-3 linuxkm edition WCv5.0-RC9	2021-10-27 15:06:48 -07:00
Jacob Barthelmeh	f585dcd5ab	adjust inSz with BER PKCS7 parsing	2021-10-27 15:12:04 -06:00
Daniel Pouzzner	f413ff8b3a	tls.c: TLSX_SupportedFFDHE_Set(): add handling for malloc failures.	2021-10-27 15:11:04 -05:00
Jacob Barthelmeh	00249b70ae	fix for build with WOLFSSL_SGX	2021-10-27 13:22:45 -06:00
Daniel Pouzzner	3a80ba6744	configure.ac: fixes for --enable-fips logic.	2021-10-26 22:51:59 -05:00
Daniel Pouzzner	d105256330	fips-check.sh: remap fips-ready target to be ready flavor of 140-3, temporarily with FIPS_VERSION="master"; add fips-v3-ready target with FIPS_VERSION="v4.1.1"; add linuxv5\|linuxv5-RC9 target to be updated after merge with tags.	2021-10-26 20:24:29 -05:00
Daniel Pouzzner	d527b25034	configure.ac: FIPS: remap "ready" to be ready flavor of 140-3 (i.e. v5-ready); add v3-ready for ready flavor of 140-2.	2021-10-26 20:24:29 -05:00
Daniel Pouzzner	8ee49cd50c	linuxkm: in module_hooks.c:wolfssl_init(), add support for WC_RNG_SEED_CB.	2021-10-26 20:24:29 -05:00
Daniel Pouzzner	071be3171e	linuxkm: in module_hooks.c, fix logic+gating around CONFIG_MODULE_SIG and WOLFCRYPT_FIPS_CORE_DYNAMIC_HASH_VALUE.	2021-10-26 20:24:29 -05:00
John Safranek	9b5f8c84b0	Change the WIN10 project files to build for FIPS v5.	2021-10-26 20:24:29 -05:00
Daniel Pouzzner	073bef579b	linuxkm: add missing #ifdef OPENSSL_EXTRA around openssl includes in module_exports.c.template, and add an assert to configure.ac disallowing linuxkm+opensslextra.	2021-10-26 20:24:29 -05:00
Daniel Pouzzner	ac8fbe3fbd	ssl.c: fix a couple trivial rebase errors.	2021-10-26 20:24:29 -05:00
John Safranek	6e9f9c8fe8	Update the Windows user_settings for recent updates.	2021-10-26 20:24:29 -05:00
Daniel Pouzzner	7915f6acb0	linuxkm: add the remainder of known needed SAVE_VECTOR_REGISTERS() wrappers to PK algs, add DEBUG_VECTOR_REGISTERS_{EXIT,ABORT}_ON_FAIL options; add a slew of ASSERT_SAVED_VECTOR_REGISTERS() to sp_x86_64.c (autogenerated, separate scripts commit to follow).	2021-10-26 20:24:29 -05:00
John Safranek	75df6508e6	Add a read enable for private keys when in FIPS mode.	2021-10-26 20:24:29 -05:00
Daniel Pouzzner	1d07034fb9	linuxkm: fix line length in types.h, and add #ifdef _MSC_VER #pragma warning(disable: 4127) to work around MSC bug re "conditional expression is constant"; fix flub in ecc.c.	2021-10-26 20:24:29 -05:00
Daniel Pouzzner	62c1bcae8a	linuxkm: {SAVE,RESTORE}_VECTOR_REGISTERS() wrappers around RSA, DH, and ECC routines that might use sp-asm.	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	0eb76bcfd8	linuxkm: add missing RESTORE_VECTOR_REGISTERS() in wolfcrypt/src/poly1305.c:wc_Poly1305Update().	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	85a8c06062	linuxkm: add DEBUG_VECTOR_REGISTER_ACCESS (debug feature switch), ASSERT_SAVED_VECTOR_REGISTERS, and ASSERT_RESTORED_VECTOR_REGISTERS macros, and move the fallback no-op definitions of the SAVE_VECTOR_REGISTERS and RESTORE_VECTOR_REGISTERS to types.h. also fixed several ASCII TAB characters in types.h.	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	e0395c6441	linuxkm: in wolfcrypt/src/sha{256,512}.c, remove {SAVE,RESTORE}_VECTOR_REGISTERS() wrappers around AVX implementations, as this needs to be refactored for efficiency and the underlying assembly is not yet kernel-compatible.	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	ad4c200cd2	linuxkm: wolfcrypt/src/memory.c: in {save,restore}_vector_registers_x86(), allow for recursive calls (some crypto calls are recursive).	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	fc73c6dbea	linuxkm: fix Makefile to properly pivot module signature on CONFIG_MODULE_SIG==y; remove not-yet-kernel-compatible asm files from the ASFLAGS_FPU_DISABLE_SIMD_ENABLE list, matching the OBJECT_FILES_NON_STANDARD list, for clarity.	2021-10-26 20:24:28 -05:00
John Safranek	40e3cac695	Use correct value for pSz when setting the dhKeySize in the session.	2021-10-26 20:24:28 -05:00
John Safranek	f2c4567164	Like the public key, zero pad the front of the private key.	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	bc91187063	tls.c:TLSX_KeyShare_GenDhKey(): fix typo.	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	aca43cfe52	linuxkm/Kbuild: include -fno-omit-frame-pointer in HOST_EXTRACFLAGS, in case the target kernel has profiling enabled; remove the "always := $(hostprogs)" rule, as it doesn't work and causes warnings on kernel 5.10.	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	8bdae98a93	fips-check.sh: temporarily arrange for "linuxv5" to be an alias of "linuxv5-ready", to arrange for Jenkins testing of wolfcrypt code in the PR in FIPS mode.	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	a3435ca062	fips-check.sh: exit (fatal error) if git fails.	2021-10-26 20:24:28 -05:00
John Safranek	f1d43f6891	Add error code for the private key read lockout.	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	31f13a7f41	wolfcrypt/test/test.c: when HAVE_FIPS, wrap wc_MakeRsaKey() calls in infinite iteration while ret == PRIME_GEN_E, to inhibit nondeterministic failure mode from FIPS-limited _CheckProbablePrime() iteration.	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	490a1238a8	configure.ac: refactor AC_CHECK_FILES brought in by rebase, to fix warning.	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	b577984574	rsa.c: fix whitespace.	2021-10-26 20:24:28 -05:00
David Garske	3fcdcbc1f9	Fix for RSA `_ifc_pairwise_consistency_test` to make the async blocking.	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	e61d88657d	WOLFSSL_ASYNC_CRYPT: in EccSharedSecret(), don't try to wolfSSL_AsyncInit() if there's no priv_key to supply an asyncDev; in RSA _ifc_pairwise_consistency_test(), disable async to force blocking crypto.	2021-10-26 20:24:28 -05:00
David Garske	303aa312a8	Fix the TLS v1.3 async key share support. Added `WOLFSSL_NO_PUBLIC_FFDHE` option to test without public FFDHE API's.	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	75e4c0869e	DH: move declaration of wc_DhPublicKeyDecode() from dh.h to asn.h (it is defined in asn.c).	2021-10-26 20:24:28 -05:00
Daniel Pouzzner	10304c9143	linuxkm: portability fix in aes.c for SAVE_VECTOR_REGISTERS() call ("embedding a directive within macro arguments is not portable").	2021-10-26 20:24:28 -05:00

1 2 3 4 5 ...

15613 Commits