mirrors/wolfssl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
13,591 Commits 5 Branches 162 Tags
Commit Graph

13591 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sean Parkinson
e187a74b1c sp_lcm small stack: fix size of temporary 
Temporary sp_int needs to be allocated to be 1 digit larger than a or b
for the div operation.
Change sp_div to check sizes of r and rem when passed in.
Fix sp_invmod, sp_gcm, sp_submod to use temporary sp_int sizes that work
with calls to sp_div().
 2021-02-15 09:48:18 +10:00
Sean Parkinson
4b1c89ab38 DH SP math: return key size error with DH Agree 
SP math requires SP to support DH operations.
When SP doesn't support bit size, WC_KEY_SIZE_E must be returned.
 2021-02-15 09:04:43 +10:00
Sean Parkinson
505514415d
Merge pull request #3748 from JacobBarthelmeh/Testing 
always check index into certs
 2021-02-15 08:20:28 +10:00
David Garske
98b5900266 Revert of changes in PR #3289, which should not have removed the HAVE_SECRET_CALLBACK and WOLFSSL_PUBLIC_ECC_ADD_DBL. These are required for hostapd. 2021-02-12 14:11:17 -08:00
toddouska
fc005f941c
Merge pull request #3750 from embhorn/buffer_conflict 
Fix use of 'buffer' in test
 2021-02-12 13:59:18 -08:00
Elms
bde1a2209a tests: add include for ecc.h to fix compile error 
fix testsuite implicit definition of `wc_ecc_fp_free` with
`./configure --enable-fpecc --enable-ecc --enable-stacksize`
 2021-02-13 01:31:01 +07:00
David Garske
f311c9a038
Merge pull request #3751 from SparkiDev/aes_gcm_type 
AES-GCM type fixes: internal functions now have word32 type parameters
 2021-02-12 10:12:26 -08:00
Jacob Barthelmeh
1c852f60ab fix for g++ build 2021-02-12 23:26:54 +07:00
Jacob Barthelmeh
7e72fafd44 do not turn on FP_64BIT by default on Aarch64 2021-02-12 23:16:04 +07:00
Jacob Barthelmeh
a49c867b38 increase test buffer size for updated pkcs7 bundle 2021-02-12 23:16:04 +07:00
Jacob Barthelmeh
0938a0055d always use MAX_CHAIN_DEPTH for args->certs buffer 2021-02-12 15:18:14 +07:00
Sean Parkinson
3926ccd39b AES-GCM type fixes: internal functions now have word32 type parameters 
Lengths were signed int for decrypt while unsigned int for encrypt.
Use word32 across the board.
Also fix AES-NI code on Windows to cast lengths to word64 before
multiplying by 8 to avoid averflow.
 2021-02-12 08:30:08 +10:00
Eric Blankenhorn
2ac826c37e Fix use of 'buffer' in test 2021-02-11 15:58:26 -06:00
toddouska
ae073b7ce2
Merge pull request #3741 from elms/test/openssl_distcheck_fix 
testing: fix openssl test for `distcheck`
 2021-02-11 13:53:09 -08:00
toddouska
81dcf0d28b
Merge pull request #3640 from tmael/evp_rsa2 
Remove EVP_PKEY_RSA2
 2021-02-11 13:51:46 -08:00
toddouska
1283a4d9f0
Merge pull request #3686 from embhorn/zd11571 
Fix Free/SafeRTOS with XMALLOC_USER
 2021-02-11 13:50:55 -08:00
toddouska
d40ea03621
Merge pull request #3703 from SparkiDev/sp_int_malloc 
SP int: Rework allocation of temporaries
 2021-02-11 13:49:45 -08:00
toddouska
f0ce6ada0f
Merge pull request #3702 from guidovranken/zd11603 
Prevent dangling pointer in TLSX_Cookie_Use
 2021-02-11 12:31:02 -08:00
toddouska
3eeeb39fb7
Merge pull request #3711 from dgarske/ecc_encrypt_rng 
Fix for `--enable-eccencrypt` with timing resistance enabled
 2021-02-11 12:28:13 -08:00
toddouska
80b9949052
Merge pull request #3739 from kaleb-himes/FusionRTOS-Porting-R3 
Fusion RTOS porting round 3
 2021-02-11 12:25:55 -08:00
JacobBarthelmeh
e87e818c6e
Merge pull request #3749 from dgarske/zd11624_pkcs11 
Fix another PKCS11 case where the ECC key type is not set
 2021-02-12 01:36:41 +07:00
Eric Blankenhorn
2c2bdca200 Fix typo 2021-02-11 12:27:43 -06:00
toddouska
39cb84de25
Merge pull request #3697 from julek-wolfssl/openvpn-2.5-missing-stuff 
OpenVPN master additions
 2021-02-11 08:56:45 -08:00
David Garske
f006479645 Fix another PKCS11 case where the ECC key type is not set and causes failures. Broke in PR #3687. 2021-02-11 08:04:58 -08:00
Jacob Barthelmeh
90140fc5a4 always check index into certs 2021-02-11 21:50:51 +07:00
David Garske
d05dc921a7
Merge pull request #3745 from douzzer/enable-reproducible-build 2021-02-11 06:39:28 -08:00
Daniel Pouzzner
d64315a951 configure.ac: add --enable-reproducible-build: put ar and ranlib in deterministic mode, and leave LIBWOLFSSL_CONFIGURE_ARGS and LIBWOLFSSL_GLOBAL_CFLAGS out of the generated config.h. relates to PR #3417 . 2021-02-11 00:12:05 -06:00
Sean Parkinson
b330196c28 SP int: Rework allocation of temporaries 
Allocate only as much is as needed.
Use macros to simplify code.
Don't use an sp_int if you can use an array of 'sp_int_digit's.
 2021-02-11 10:34:40 +10:00
toddouska
acdc267104
Merge pull request #3718 from SparkiDev/sp_int_fast_nct 
SP int: allow faster NCT exptmod to be compiled in
 2021-02-10 16:14:39 -08:00
toddouska
032cc1645c
Merge pull request #3713 from SparkiDev/tls_def_sess_ticket_cb 
TLS Session Ticket: default encryption callback
 2021-02-10 16:13:33 -08:00
toddouska
389a5e0301
Merge pull request #3684 from SparkiDev/sp_fixes_5 
SP fixes: even mod testing, ECC compilation with SP
 2021-02-10 16:10:21 -08:00
toddouska
6983aa9331
Merge pull request #3700 from SparkiDev/sp_math_lshb 
SP math lshb: check space for result
 2021-02-10 16:01:27 -08:00
toddouska
67b1280bbf
Merge pull request #3545 from kabuobeid/smime 
Added support for reading S/MIME messages via SMIME_read_PKCS7.
 2021-02-10 15:59:32 -08:00
Sean Parkinson
0403f5f18d
Merge pull request #3744 from JacobBarthelmeh/Certs 
run renewcerts.sh script
 2021-02-11 09:43:49 +10:00
Sean Parkinson
5151e1f749
Merge pull request #3715 from JacobBarthelmeh/Testing 
openssl x509 small with req cert gen
 2021-02-11 09:39:15 +10:00
Sean Parkinson
7efaf14fce
Merge pull request #3727 from JacobBarthelmeh/Prime 
check prime is prime with ecc compressed keys
 2021-02-11 09:22:40 +10:00
Elms
d67934f6b8 scripts: remove use of realpath and fix external.test 
`external.test` could fail quietly for not finding `ping.test` for
out-of-tree builds. Make it look relative to the script location.
 2021-02-10 14:18:32 -08:00
JacobBarthelmeh
ac96e58928
Merge pull request #3743 from dgarske/zd11624 
Fix for copy/paste error for ECC key type
 2021-02-11 04:02:54 +07:00
Jacob Barthelmeh
41e5e547c4 run renewcerts.sh script 2021-02-11 03:12:54 +07:00
kaleb-himes
223ba43c2c Add debug message regarding failure 2021-02-10 12:15:43 -07:00
kaleb-himes
9e6ab4ab70 Address indendation, fix return on stub, remove warning 2021-02-10 11:26:29 -07:00
David Garske
c9c4a7ee68 Fix spelling errors. 2021-02-10 10:17:51 -08:00
David Garske
0c75099111 Fix for copy/paste error in PR 3728, which makes sure the ECC key type is specified. 2021-02-10 10:14:31 -08:00
kaleb-himes
4c171524dd Address missed CloseSocket item and revert some white space changes 2021-02-10 09:14:54 -07:00
Elms
9b6f382b2c testing: fix openssl test for distcheck 
Previously missed case of cert locations for out-of-tree build. Use
relative path from script location for certificate path
 2021-02-10 07:15:22 -08:00
Jacob Barthelmeh
3c0563908f openssl x509 small with req cert gen 
add test for build case with x509small and add back in function

adjust macro guard for i2d_X509_NAME implementation

add macro guard on test case
 2021-02-10 21:48:29 +07:00
kaleb-himes
7e428f90f2 Revert zero return, to be handled in stand-alone PR 2021-02-10 05:31:57 -07:00
kaleb-himes
15f9902e94 Address new file issue by Jenkins and peer feedback on return val of time 2021-02-10 04:16:34 -07:00
Sean Parkinson
64bc4b663d SP fixes: even mod testing, ECC compilation with SP 
Even mod inversion will sometimes work with integer.c.
Don't call SP code to perform ECC ops unless WOLFSSL_HAVE_SP_ECC is
defined.
 2021-02-10 14:38:58 +10:00
Sean Parkinson
794cb5c7a9 TLS Session Ticket: default encryption callback 
Encrypts with ChaCha20-Poly1305 or AES-GCM.
Two keys in rotation.
Key used for encryption until ticket lifetime goes beyond expirary
(default 1 hour). If key can still be used for decryption, encrypt with
other key.
Private random used to generate keys.
 2021-02-10 14:31:54 +10:00