wolfssl

Author	SHA1	Message	Date
JacobBarthelmeh	2bf583aa57	Merge pull request #5526 from miyazakh/qt_jenkins_fix Fix qt nightly test failure	2022-09-21 09:38:45 -06:00
David Garske	a36604079b	Merge pull request #5609 from philljj/master Fixes DTLS 1.3 client use-after-free error	2022-09-21 06:38:09 -07:00
David Garske	90c9363af8	Merge pull request #5538 from satoshiyamaguchi/trial5 Add wolfSSL_EVP_PKEY_new_CMAC_key to OpenSSL compatible API	2022-09-20 13:01:52 -07:00
jordan	427383233d	Fix formatting, add check to not support plain HTTP requests in DTLS	2022-09-20 14:41:11 -05:00
David Garske	624aca80dc	Merge pull request #5606 from julek-wolfssl/zd14813-cont 0 len sz is allowed	2022-09-20 09:49:17 -07:00
jordan	8336dbf366	Fixes DTLS 1.3 client use-after-free error	2022-09-20 09:17:08 -05:00
Satoshi Yamaguchi	c6ea68a118	Fix two not freed WOLFSSL_CMAC_CTX.	2022-09-20 23:10:22 +09:00
Kaleb Himes	43715d1bb5	Merge pull request #5607 from haydenroche5/140_3_version_fixes Clean up some FIPS versioning logic in configure.ac and WIN10 user_settings.h.	2022-09-19 20:48:25 -06:00
Hayden Roche	d212974d5e	Clean up some FIPS versioning logic in configure.ac and WIN10 user_settings.h. configure.ac: Get rid of v5-RC8, v5-RC9, v5-RC10, v5-RC11, v5-ready, and v5-dev. v5-ready is now just ready and v5-dev just dev. IDE/WIN10/user_settings.h: Make the FIPS blocks define HAVE_FIPS. Change WCv5.0 block to WCv5.0-RC12. Change FIPS Ready block to use HAVE_FIPS_VERSION_MINOR 3 instead of HAVE_FIPS_VERSION_MINOR 2.	2022-09-19 15:26:06 -07:00
David Garske	73dbc873bd	Merge pull request #5586 from julek-wolfssl/dtls-misc-security Add missing minor security checks	2022-09-19 09:47:00 -07:00
David Garske	cf3d9df443	Merge pull request #5605 from julek-wolfssl/gitignore Add async and fips test folders to gitignore	2022-09-19 09:36:06 -07:00
David Garske	0b81a584cc	Merge pull request #5604 from SparkiDev/mp_init_size_fizes_2 SP int: mp_init_size fixes when SP_WORD_SIZE == 8	2022-09-19 06:50:26 -07:00
Juliusz Sosinowicz	8ca4a6086e	0 len sz is allowed In async mode, we always store all handshake messages before processing them. The server hello done message has a length of 0 but we still need to store it to process it.	2022-09-19 14:00:13 +02:00
Juliusz Sosinowicz	9eac8bf5a9	Add async and fips test folders to gitignore	2022-09-19 11:42:45 +02:00
Juliusz Sosinowicz	23e9cf2dc1	Test AEAD limits only without WOLFSSL_TLS13_IGNORE_AEAD_LIMITS	2022-09-19 10:30:29 +02:00
Sean Parkinson	dd32f30306	Merge pull request #5601 from douzzer/20220917-fixes 20220917-fixes	2022-09-19 13:50:25 +10:00
Sean Parkinson	e7dba670d6	SP int: mp_init_size fix for sp_mont_norm sp_mont_norm should check wrong parameter when determining whether the calculation values will fit.	2022-09-19 10:04:30 +10:00
Sean Parkinson	02e51953fd	SP int: mp_init_size fixes when SP_WORD_SIZE == 8 Setting an integer may have a value larger than one word being set. Check size of SP int in this case.	2022-09-19 09:26:47 +10:00
Sean Parkinson	e43a7843b6	Merge pull request #5603 from kaleb-himes/scripts-update Address Issue pointed out in (now deleted) comment on an old merge	2022-09-19 09:06:39 +10:00
kaleb-himes	9a193a3e02	Address Issue pointed out in (now deleted) comment on an old merge	2022-09-18 08:45:18 -06:00
Hideki Miyazaki	001592a8a3	fix qt nightly test	2022-09-18 13:56:55 +09:00
Daniel Pouzzner	ac0d7f4d84	src/internal.c: in DtlsMsgNew(), iff WOLFSSL_ASYNC_CRYPT, allow sz==0 allocation, to fix infinite loop in ProcessReplyEx() around DoDtlsHandShakeMsg(); in DtlsMsgAssembleCompleteMessage() restore fix from 0603031362a for pointerOutOfBounds (undefined behavior) construct; in ProcessReplyEx(), in WOLFSSL_DTLS13 case ack, check and propagate error from DoDtls13Ack() (fix from @guidovranken).	2022-09-17 13:02:51 -05:00
Daniel Pouzzner	0fc80f5f85	wolfcrypt/src/sp_int.c: catch and propagate errors from sp_init_size() in sp_invmod() and sp_gcd() to fix clang-analyzer-core.UndefinedBinaryOperatorResult.	2022-09-17 12:55:48 -05:00
Daniel Pouzzner	02cc7bf82e	fix whitespace/linelength/indentation.	2022-09-17 12:53:37 -05:00
Satoshi Yamaguchi	64f2a0cafe	Extend wolfSSL_EVP_PKEY_free for freing EVP_PKEY of CMAC. Fix EVP_PKEY not freed in unit test (test_wolfSSL_EVP_PKEY_new_CMAC_key).	2022-09-17 14:44:45 +09:00
Chris Conlon	e6bd6a94a0	Merge pull request #5521 from TakayukiMatsuo/clientverify	2022-09-16 16:55:38 -06:00
JacobBarthelmeh	7a728c0c48	Merge pull request #5569 from SparkiDev/kyber Kyber: Add option to build Kyber API	2022-09-16 14:56:02 -06:00
JacobBarthelmeh	c6f6086b15	Merge pull request #5576 from julek-wolfssl/dtls-windows Fix build errors and warnings for MSVC with DTLS 1.3	2022-09-16 11:11:46 -06:00
JacobBarthelmeh	b780ad6da0	Merge pull request #5594 from julek-wolfssl/zd14813 Do not allow 0 size DtlsMsg	2022-09-16 10:21:54 -06:00
John Safranek	43b16f67b9	Merge pull request #5596 from SparkiDev/mac_m1_arm_sha256_fix Aarch64 SHA-256 Mac M1 fix	2022-09-16 09:13:23 -07:00
David Garske	24d0112d2c	Merge pull request #5581 from SparkiDev/sp_int_size_fix SP int: mp_init_size() fix	2022-09-16 08:29:06 -07:00
Hideki Miyazaki	a948c78ac7	addressed review comments. remove Qt case guard	2022-09-16 21:25:42 +09:00
Juliusz Sosinowicz	9ef10b5435	Check return of DtlsMsgCreateFragBucket()	2022-09-16 12:13:12 +02:00
Juliusz Sosinowicz	bf4be901e4	Add prototypes for w64wrapper functions	2022-09-16 11:28:29 +02:00
Sean Parkinson	4b3718543e	Aarch64 SHA-256 Mac M1 fix Inline assembly is told K when finished is not important but K is changing. Take a local copy of K and mark as a changing value.	2022-09-16 13:20:48 +10:00
Sean Parkinson	e52730d008	SP int: mp_init_size() and check size fixes Check size passed to mp_init_size() 1..SP_INT_DIGITS. More checks of parameters to SP int functions to ensure result is big enough to hold value calculated.	2022-09-16 10:13:33 +10:00
Hideki Miyazaki	a98cda3516	fix qsscertificate test failure	2022-09-16 07:48:05 +09:00
Sean Parkinson	523c16130d	Merge pull request #5579 from douzzer/20220911-fixes-re-multi-test 20220911-fixes-re-multi-test	2022-09-16 08:29:41 +10:00
Daniel Pouzzner	d18a654f74	wolfcrypt/src/sp_int.c: address peer review around _sp_zero(), sp_init(), and sp_init_size(), re sp_int_minimal.	2022-09-15 14:33:45 -05:00
Daniel Pouzzner	5d2610c96d	wolfssl/wolfcrypt/sp_int.h and wolfcrypt/src/sp_int.c: add struct sp_int_minimal, with same structure as struct sp_int but only one digit, to allow error-free access to sp_ints allocated with ALLOC_SP_INT() with fewer than SP_INT_DIGITS digits, and use the new type in _sp_zero() and sp_init_size() to eliminate -Werror=array-bounds on _sp_zero() under gcc-13.	2022-09-15 13:16:27 -05:00
Daniel Pouzzner	23b16c09d7	linuxkm/Makefile: add support for $KBUILD_EXTRA_FLAGS.	2022-09-15 13:16:27 -05:00
David Garske	2a96d62e43	Merge pull request #5573 from embhorn/zd14802 Add WOLFSSL_ATECC_TFLXTLS for Atmel port	2022-09-15 08:59:40 -07:00
Juliusz Sosinowicz	4b3f6ada8a	Do not allow 0 size DtlsMsg	2022-09-15 16:18:24 +02:00
Juliusz Sosinowicz	1941fb2b35	Keep a separate drop counter for each epoch	2022-09-15 15:49:05 +02:00
Juliusz Sosinowicz	67473bac28	Code review fixes - Mark old epochs as invalid so we don't attempt to decrypt with them - Return a non-zero value if possible in unit tests - Move Dtls13CheckAEADFailLimit to dtls13.c - Reset state in processreply	2022-09-15 14:39:33 +02:00
Juliusz Sosinowicz	63ba2f7b8f	TLS 1.3: Check maximum records encrypted with one key set	2022-09-15 12:17:46 +02:00
Juliusz Sosinowicz	4e9106c355	Enforce maximum amount of failed decryptions in DTLS 1.3	2022-09-15 12:17:46 +02:00
TakayukiMatsuo	c7de58ebaf	Add code to fallback to S/W if TSIP cannot handle	2022-09-15 11:16:37 +09:00
Sean Parkinson	ad39e8f77d	Kyber: fix OQS memory leak	2022-09-15 09:18:47 +10:00
JacobBarthelmeh	37adf0ff06	Merge pull request #5592 from douzzer/20220914-fix-quic-test-default-build 20220914-fix-quic-test-default-build	2022-09-14 14:15:46 -06:00

1 2 3 4 5 ...

18164 Commits