mirrors/wolfssl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
18,989 Commits 5 Branches 162 Tags
Commit Graph

18989 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
John Bland
44ca98f5b3 add missing NULL checks and remove rng pointer when not needed 2023-01-23 16:03:58 -05:00
John Bland
a36276ca3a update hpke to not use rng with ecc when hardening is off 2023-01-23 11:27:23 -05:00
David Garske
a40da56f11
Merge pull request #5996 from douzzer/20230120-fixes 
20230120-fixes
 2023-01-21 08:32:14 -08:00
Daniel Pouzzner
aa776057ff fixes: shellcheck gripes on Docker/OpenWrt/runTests.sh; null pointer derefs and duplicate tests and assigns in src/tls.c and wolfcrypt/src/hpke.c found by cppcheck (nullPointerRedundantCheck, identicalInnerCondition, duplicateAssignExpression). 2023-01-21 00:51:57 -06:00
Daniel Pouzzner
d711e4b9f8
Merge pull request #5995 from jpbland1/ech-no-recursion 
stop ech from using a recursive function call
 2023-01-20 23:47:22 -06:00
tmael
9d73c197e6
Move X509_V errors from enums to defines for HAProxy CLI (#5901) 
* Move X509_V errors to openssl/ssl.h

* Have X509_V define errors in wolfssl/ssl.h

* Refactor X509_V errors

* Add wolfSSL_SESSION_set1_id_*

* Fix overlong line
 2023-01-20 17:50:26 -08:00
András Fekete
b9a544920d
Add open wrt test (#5985) 
* First test

* Don't forget to run autogen.sh!

* Add tools needed by automake

* Try additional platforms

* Add in qemu for other platforms

* No real support for arm containers

* Fix indentation

* Simplify container build with a testing script

* Simpler names for actions

* No need to distribute OpenWRT test files

* Better list to put ignore files onto

* Create an 'ignore_files' list after all

* Add in some documentation of how OpenWRT tests work

* Fix up naming of OpenWrt

Co-authored-by: Andras Fekete <andras@wolfssl.com>
 2023-01-20 16:59:36 -08:00
David Garske
6206ad320c
Merge pull request #5992 from tim-weller-wolfssl/zd15423-accepts-large-ivs 
Update AES-GCM stream decryption to allow long IVs (ZenDesk #15423)
 2023-01-20 16:10:13 -08:00
David Garske
d28bd08093
Merge pull request #5994 from bandi13/noAutoCancelActions 
Don't auto-cancel GitHub Workflows
 2023-01-20 16:09:56 -08:00
John Bland
d14d29e32a stop ech from using a recursive function call 
update bad return value for when retry_configs is returned, add locks around hkdf functions for private key use
 2023-01-20 18:37:19 -05:00
Andras Fekete
7e87623973 Don't auto-cancel GitHub Workflows 2023-01-20 16:17:20 -05:00
tim-weller-wolfssl
cf9b865e33 Update AES-GCM stream decryption setup to allow long IV values (already allowed by encryption APIs) 2023-01-20 20:35:39 +00:00
David Garske
8c3cad3e95
Merge pull request #5984 from embhorn/zd15493 
Fix Cmake to exclude libm when DH is not enabled
 2023-01-20 11:21:09 -08:00
David Garske
8d89d4a168
Merge pull request #5927 from SparkiDev/sp_math_clz 
SP math: use count leading zero instruction
 2023-01-20 10:33:18 -08:00
David Garske
c1e0115092
Merge pull request #5993 from anhu/quic_doc_switcharoo 
Move the wolfSSL Configuration section higher in QUIC.md
 2023-01-20 09:32:40 -08:00
Anthony Hu
9be01633d1 Move the wolfSSL Configuration section higher in QUIC.md because it is the first step. 2023-01-20 09:49:18 -05:00
Eric Blankenhorn
9f7e82a081 Add WOLFSSL_DH_CONST option to Cmake 2023-01-20 08:42:48 -06:00
Sean Parkinson
9adea94274 SP math: use count leading zero instruction 
To speed up counting bits, use the instruction that counts leading zeros
in a word.

Fix _sp_div_3 to use registers with 0 in them for multiplication result.
 2023-01-20 11:56:07 +10:00
David Garske
cfe92aa330
Merge pull request #5983 from SparkiDev/sp_int_read_radix_neg 
SP int negative: handle negative character properly with read radix
 2023-01-19 17:51:07 -08:00
David Garske
e72ec4e876
Merge pull request #5976 from SparkiDev/eccsi_hash_check 
ECCSI: hash function must have output size as curve size
 2023-01-19 17:50:44 -08:00
András Fekete
f0c9f5f9f0
Multi compiler test (#5991) 
* First attempt with GCC only

* Make the test run on every push temporarily

Also clean up the description of the workflow

* Fix invalid job name

* Missing hunks added

* Try out matrix actions

* Fix missing 'runs-on'

* Only needs to run on Ubuntu

* Use local installations of gcc/clang instead of containers

* Explicitly list out compilers to test

* Clean up names and concurrency group

* Only need to run on PRs and important branches

Co-authored-by: Andras Fekete <andras@wolfssl.com>
 2023-01-19 14:56:16 -08:00
David Garske
f6ecc6ce4c
Merge pull request #5990 from philljj/gcmstream_kcapi_errmsg 
Don't allow aesgcm-stream option with kcapi
 2023-01-19 12:00:36 -08:00
David Garske
02178b9013
Merge pull request #5988 from bandi13/parallelOSBuilds 
Parallel os builds
 2023-01-19 09:59:07 -08:00
JacobBarthelmeh
fc19aed8c8
Merge pull request #5623 from dgarske/hpke 
Adds support for TLS v1.3 Encrypted Client Hello (ECH) and HPKE (Hybrid Public Key Encryption)
 2023-01-19 10:03:28 -07:00
jordan
04383bfb34 Don't allow aesgcm-stream option with kcapi 2023-01-19 10:54:48 -06:00
David Garske
f0212fef3e
Merge pull request #5986 from bandi13/fixNonStandarBaseImages 
Fix when a base image leaves non-root user
 2023-01-19 07:55:19 -08:00
Andras Fekete
2276fca0f4 Cancel runs on subsequent push to PR but not to branches 2023-01-19 10:12:08 -05:00
Andras Fekete
d955768744 Only run on important branches 2023-01-19 10:03:26 -05:00
Andras Fekete
ac8951c4e2 Fix typo 2023-01-19 09:54:20 -05:00
Andras Fekete
4d5dbe9b90 Give a better name to the workflow 2023-01-19 09:44:38 -05:00
Andras Fekete
b1f423be38 Kill off previous run if another commit happens 2023-01-19 09:41:18 -05:00
Andras Fekete
cb601bdf64 Combine ubuntu and macos tests to ensure the same thing is run 2023-01-19 09:33:26 -05:00
David Garske
e1d9b37f84
Merge pull request #5932 from julek-wolfssl/zd15346 
ssl->suites: use ssl->ctx->suites when possible
 2023-01-18 15:20:21 -08:00
Andras Fekete
283ebd5afe Remove base job 2023-01-18 17:17:15 -05:00
Andras Fekete
bb88c8fbfa Add in 'runs-on' 2023-01-18 17:13:08 -05:00
Andras Fekete
caa7c9e8b5 One more missing keyword 2023-01-18 17:07:36 -05:00
Andras Fekete
0d73074718 Missing keyword 2023-01-18 17:00:47 -05:00
Andras Fekete
ffee4edcf5 Fix dependency command 2023-01-18 16:22:06 -05:00
Andras Fekete
6ac09b5c66 Fix spacing 2023-01-18 16:12:54 -05:00
Andras Fekete
cd0b3b4eb9 Separate out steps to individual jobs 2023-01-18 16:10:58 -05:00
David Garske
6b6ad38e4f Adds support for TLS v1.3 Encrypted Client Hello (ECH) draft-ietf-tls-esni) and HPKE (Hybrid Public Key Encryption) RFC9180. 2023-01-18 11:37:27 -08:00
David Garske
41c35b1249 Fix line length and whitespace issues. Fix macro argument missing parentheses. 2023-01-18 11:10:19 -08:00
Juliusz Sosinowicz
50cb3a7b8c Address code review 2023-01-18 09:55:33 -08:00
Juliusz Sosinowicz
0e662dea6e TLSX_SetSignatureAlgorithms: free sa when TLSX_Push fails 2023-01-18 09:55:33 -08:00
Juliusz Sosinowicz
281bb32edf DtlsMsgCreateFragBucket: heap param might be unused 2023-01-18 09:55:33 -08:00
Juliusz Sosinowicz
a58e83847e Don't allocate Suites object on renegotiation 2023-01-18 09:55:33 -08:00
Juliusz Sosinowicz
2f63fdc6ce Allocate CTX->suites in InitSSL when not already allocated 2023-01-18 09:55:33 -08:00
Juliusz Sosinowicz
1cb4615435 Add SCR reconnect test 2023-01-18 09:55:32 -08:00
Juliusz Sosinowicz
5b8026899b Refactor SigAlgs to use a custom struct that can override ssl->suites 2023-01-18 09:55:32 -08:00
Juliusz Sosinowicz
e431688ca6 ssl->suites: use ssl->ctx->suites when possible 
- Allocate ssl->suites when necessary for the WOLFSSL object to have its own instance. Use AllocateSuites() to allocate the object.
- Move cipher negotiation options from Suites into Options

ZD15346
 2023-01-18 09:55:32 -08:00