mirrors/wolfssl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
22,990 Commits 5 Branches 162 Tags
Commit Graph

22990 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
David Garske
1d9b86e2b0 Fix for TLS v1.2 secret callback, incorrectly detecting bad master secret. API test cleanups (no sleep needed). 2024-07-30 11:54:17 -07:00
András Fekete
50d60bf0e7
Code sonar cleanup (#7782) 
* Fix Warning 826814.9284764
* Fix Warning 826836.9285316
Co-authored-by: Andras Fekete <andras@wolfssl.com>
 2024-07-30 09:42:43 -07:00
Daniel Pouzzner
f4c16d22a1
Merge pull request #7806 from SparkiDev/dilithium_der_fix 
Dilithium: DER encoding fix
 2024-07-30 09:43:39 -05:00
Sean Parkinson
7da6149250
Merge pull request #7792 from dgarske/sprintf 
Fix for using sprintf in test.h
 2024-07-30 09:18:50 +10:00
Sean Parkinson
1681cb2d7e Dilithium: DER encoding fix 
Underlying function SetAsymKeyDer() changed semantics.
Update tests to reflect new behaviour.
 2024-07-30 09:09:26 +10:00
David Garske
f9dc5e9f4d Fixes for uses of deprecated sprintf. If C89 remap XSNPRINTF to use sprintf. 2024-07-29 14:03:44 -07:00
David Garske
6d39a78dba Fix for using sprintf. 
Resolves warning:

```
./configure CC="gcc -fsanitize=address" && make
In file included from ./wolfclu/clu_header_main.h:71:
/usr/local/include/wolfssl/test.h:1103:18: error: 'sprintf' is deprecated: This function is provided for compatibility reasons only.  Due to security concerns inherent in the design of sprintf(3), it is highly recommended that you use snprintf(3) instead. [-Werror,-Wdeprecated-declarations]
        strLen = sprintf(serialMsg, " %s", words[3]);
                 ^
```
 2024-07-29 11:22:32 -07:00
David Garske
3fc7be8e3b
Merge pull request #7793 from gojimmypi/pr-platformio-update 
Update PlatformIO examples to wolfssl 5.7.2
 2024-07-29 11:09:30 -07:00
Sean Parkinson
034af8d99c
Merge pull request #7787 from dgarske/stm32u5a 
Fix STM32 Hash FIFO and add support for STM32U5A9xx
 2024-07-29 17:36:52 +10:00
Sean Parkinson
3b74a64029
Merge pull request #7791 from aidangarske/privkeytoder_fix2 
`api.c` and `asn.c` changes to allow 0 to be passed in and expanded coverage on test cases.
 2024-07-29 09:40:20 +10:00
András Fekete
b1765ca6b4
Merge pull request #7785 from dgarske/asn_original 
Fixes for ASN original
 2024-07-26 14:49:13 -04:00
David Garske
5e58affd5d
Merge pull request #7789 from SparkiDev/test_ssl_load 
SSL loading of keys/certs: testing and fixes
 2024-07-26 11:48:13 -07:00
Sean Parkinson
f7094ff3c4
Dilithium: add option to precalc with small sign (#7744) 
WOLFSSL_DILITHIUM_SIGN_SMALL_MEM_PRECALC added.
It allocates memory for and pre-calculates s1, s2 and t0.
This saves decoding the vectors repeatedly in each signature trial.
 2024-07-26 11:46:55 -07:00
David Garske
c3b5322f86
Merge pull request #7753 from SparkiDev/cortexm_label_fix_2 
Cortex-M/Thumb2 ASM: fix label
 2024-07-26 11:45:09 -07:00
Sean Parkinson
caab2c2dca SSL loading of keys/certs: testing and fixes 
Added tests to cover ssl_load.c functions.
Fixes from testing.
pk.c: renamed wolfssl_dh_load_key to wolfssl_dh_load_params as it
doesn't handle keys - just parameters.
 2024-07-26 11:43:10 +10:00
Daniel Pouzzner
92f1c6e339
Merge pull request #7794 from anhu/custom_ext_stop 
Stop testing custom extensions in dual alg cert tests.
 2024-07-25 16:33:56 -05:00
JacobBarthelmeh
56eed9e059
Merge pull request #7795 from douzzer/20240725-array_add-Wconversion 
20240725-array_add-Wconversion
 2024-07-25 15:19:25 -06:00
Daniel Pouzzner
b40913e80c wolfcrypt/src/random.c: restore outer cast in array_add() to avoid -Wconversion added in b28e22aef0, itself a fix for a defect added in ed11669f3c (root cause of warning is implicit type promotion). 2024-07-25 15:25:32 -05:00
Anthony Hu
73dc9baaf9 Stop testing custom extensions in dual alg cert tests. 2024-07-25 16:09:19 -04:00
gojimmypi
c2e8121462
Update PlatformIO examples to wolfssl 5.7.2 2024-07-25 12:04:58 -07:00
David Garske
42930b28f3
Merge pull request #7790 from JacobBarthelmeh/random 
fix for casting with add
 2024-07-25 09:13:23 -07:00
aidan garske
55540d03e7 fix for PR#7786 BUFFER_E bad case 2024-07-25 09:03:19 -07:00
JacobBarthelmeh
b28e22aef0 fix for casting with add 2024-07-25 09:16:05 -06:00
aidan garske
dace3acd4d api.c and asn.c changes to allow 0 to be passed in and expanded coverage on test cases 
(cherry picked from commit 8572f67e60d419ddd74d4a2b7051dcaa7d0ca6b4)
 2024-07-25 08:09:37 -07:00
David Garske
c4f73f5955 Peer review cleanups. 2024-07-24 16:57:51 -07:00
Sean Parkinson
324e714a6a
Merge pull request #7750 from space88man/wip-padding-refactor 
PKCS#11 RSA Padding Offload
 2024-07-25 09:20:01 +10:00
David Garske
42403a526e Fix to resolve STM32 hash FIFO. Simplify logic for ensuring FIFO gets filled before doing a save/restore. ZD 18294 2024-07-24 16:06:04 -07:00
Kaleb Himes
3a4788b7bb
Merge pull request #7783 from douzzer/20240723-AesGcmXcrypt-NULL-in-checks 
20240723-AesGcmXcrypt-NULL-in-checks
 2024-07-24 15:33:42 -06:00
David Garske
7f7d94abd5 Fixes for ASN original (old) to support checking int leading 0 and invalid OID. Disable invalid UTF8 test for old ASN (only supported with newer ASN template). 2024-07-24 12:35:37 -07:00
David Garske
97dcf123f0
Merge pull request #7780 from ColtonWilley/update_zephyr_readme 
Update zephyr readme
 2024-07-24 10:42:44 -07:00
David Garske
4b9d89d387 Fix autoconf issue with == 2024-07-24 09:10:25 -07:00
David Garske
3e2123f0b3 Disable the ECC custom curve tests for original (old) ASN. 2024-07-24 08:45:19 -07:00
David Garske
007f9ea39d Fix to restore --enable-asn=original. Fixes for building with ASN original (old). Add the new limit checks for alt names and subtree to the old ASN code. 2024-07-24 08:28:25 -07:00
S-P Chan
d2d71c276d wolfssl/wolfcrypt/pkcs11.h: RSA PKCS/PSS/OAEP related operations 2024-07-24 22:47:27 +08:00
David Garske
d0782a97ce
Merge pull request #7773 from Laboratory-for-Safe-and-Secure-Systems/kyber_compat 
Kyber fixes
 2024-07-24 07:37:10 -07:00
Tobias Frauenschläger
e2b642d4ab WolfSSL Kyber and CMake fixes 
* Make sure wc_kyber implementation is compiled using CMake (also for
  Zephyr)
* Fix compilation issue when Liboqs is also enabled
* Fix WOLFSSL_INTEL_ASM and WOLFSSL_ARM_ASM CMake options

Signed-off-by: Tobias Frauenschläger
<tobias.frauenschlaeger@oth-regensburg.de>
 2024-07-24 09:55:29 +02:00
Daniel Pouzzner
f8726148df wolfcrypt/src/aes.c: in wc_AesGcmEncrypt() and wc_AesGcmDecrypt(), check and return BAD_FUNC_ARG for nonzero sizes associated with null pointers. 2024-07-23 19:07:32 -05:00
Sean Parkinson
3284f53574 Cortex-M/Thumb2 ASM: fix label 
IAR doesn't like %=.
Fix code to be consistent in use of labels and branch instructions.
 2024-07-24 09:20:40 +10:00
Sean Parkinson
a34ea32f52
Merge pull request #7730 from anhu/unknownExtCallbackEx 
Extend the unknown extension callback.
 2024-07-24 08:37:44 +10:00
Colton Willey
e1995b8313 Update zephyr readme with link to new instructions for Zephyr TLS socket support 2024-07-23 09:56:17 -07:00
David Garske
140abe6c72
Merge pull request #7746 from douzzer/20240711-linuxkm-cross-compilation 
20240711-linuxkm-cross-compilation
 2024-07-23 09:26:39 -07:00
Daniel Pouzzner
6ee22de999 linuxkm: initial support for cross-compilation. 
also, additional backward-compatibility measures around cp and clean recipe in linuxkm/Makefile.

also, in sp_int.c, tweak DECL_DYN_SP_INT_ARRAY() to use an explicit XMEMSET() to clear n[], to avoid unshimmable implicit memset() from gcc on aarch64.
 2024-07-23 10:29:03 -05:00
David Garske
8f908e76f9
Merge pull request #7776 from douzzer/20240722-fixes 
20240722-fixes
 2024-07-23 06:46:38 -07:00
David Garske
7c6eb7c4a1
Merge pull request #7751 from SparkiDev/ecc_koblitz_ssl 
ECC key load: fixes
 2024-07-22 16:40:59 -07:00
Daniel Pouzzner
367508f498 wolfcrypt/src/asn.c: in EccSpecifiedECDomainDecode(), in calls to DataToHexString(), cast curve->size to word32 to resolve -Wconversion. 
wolfcrypt/src/dh.c: in GeneratePrivateDh186(), add explicit suppression of uninitvar for "cBuf" arg that isn't fully initialized.

wolfcrypt/test/test.c: in mp_test_param(), explicitly initialize "buffer" to avoid uninitvar warning.

configure.ac: in FIPS builds, don't include enable_cryptocb in --enable-all or --enable-all-crypto.  (they can still be enabled explicitly in FIPS builds with --enable-cryptocb, but the combination is not currently supported.)
 2024-07-22 18:21:36 -05:00
Sean Parkinson
a3b6ec4a13
Merge pull request #7716 from anhu/post-hs-auth-check 
Check the return code when calling post handshake auth functions
 2024-07-23 08:20:51 +10:00
Anthony Hu
b1dcdabcd4 Check the return code when calling post handshake auth functions 2024-07-22 17:10:59 -04:00
David Garske
6a26569ddc Support for STM32U5A9xx board. Fixes for building example with fast math (TFM) and CMSIS OS 2. 2024-07-22 14:09:15 -07:00
David Garske
604a1fe2da
Merge pull request #7774 from Laboratory-for-Safe-and-Secure-Systems/zephyr_v3_7 
Zephyr V3.7 warning fix
 2024-07-22 07:15:46 -07:00
Tobias Frauenschläger
bdfe2c3fdf Zephyr V3.7 warning fix 
The required feature flag CONFIG_PTHREAD_IPC is deprecated since Zephyr
version 3.7. The new option is CONFIG_POSIX_THREADS. This change clears
the warning.

Signed-off-by: Tobias Frauenschläger
<tobias.frauenschlaeger@oth-regensburg.de>
 2024-07-22 10:58:20 +02:00