wolfssl

Author	SHA1	Message	Date
John Safranek	771647615a	Merge pull request #4669 from douzzer/rehab-configure-fips FIPS configure cleanup	2021-12-17 08:58:44 -08:00
Anthony Hu	9cc1624023	Fix unitialized usage	2021-12-17 11:55:08 -05:00
Kaleb Himes	2f0b451545	Merge pull request #4673 from julek-wolfssl/should-retry-fix Fix `test_wolfSSL_BIO_should_retry` test	2021-12-17 08:16:16 -07:00
Juliusz Sosinowicz	21a5a571e8	Fix `test_wolfSSL_BIO_should_retry` test When `OPENSSL_COMPATIBLE_DEFAULTS` is defined then `SSL_MODE_AUTO_RETRY` is set on context creation. For this test we need to clear this mode so that the `WOLFSSL_CBIO_ERR_WANT_READ` can propagate up to the user.	2021-12-17 12:32:25 +01:00
David Garske	bd515cd3a6	Merge pull request #4637 from SparkiDev/sp_c32_rsa SP C RSA: normalize tmpa after conditionally adding p	2021-12-16 18:54:28 -08:00
Sean Parkinson	6cac0ea5a9	SP C: specific Montgomery reduction code for P256 and P384 Improves performance of 32-bit and 64-bit SP C code.	2021-12-17 12:00:16 +10:00
Daniel Pouzzner	5c6bd8c2c9	configure.ac: in fips v5 setup, consider HAVE_AES{CCM,CTR,GCM,OFB}_PORT when auto-setting -DWOLFSSL_AES_DIRECT -DHAVE_AES_ECB; refactor KCAPI options for readability and correctness.	2021-12-16 17:03:01 -06:00
Sean Parkinson	0b2b218de7	ECC: better protection when using encrypted memory Added new ECC scalar multiplication implementation.	2021-12-17 08:30:45 +10:00
Lealem Amedie	a79440b95a	Removing extra \n from WOLFSSL_LEAVE and WOLFSSL_ENTER	2021-12-16 13:30:43 -07:00
Daniel Pouzzner	f889916fae	ssl.c: fix C++ invalid conversion in wolfSSL_sk_X509_INFO_value().	2021-12-16 13:29:17 -06:00
Daniel Pouzzner	e35c3c0d71	wolfcrypt/src/wc_port.c: fix whitespace.	2021-12-16 13:01:01 -06:00
Daniel Pouzzner	cf16480c85	configure.ac: fix hard tabs, and fix fips "v5-ready" that should have been "v5-dev".	2021-12-16 13:00:10 -06:00
Daniel Pouzzner	b7307e0ca5	ecc.c: small stack refactor for mp_int on the stack in wc_ecc_gen_deterministic_k().	2021-12-16 13:00:10 -06:00
Daniel Pouzzner	fed5eb1d94	ecc.c: fix a deadcode.DeadStores warning in wc_ecc_gen_deterministic_k().	2021-12-16 13:00:10 -06:00
Daniel Pouzzner	b6b12fe946	configure.ac: fips cleanup: drop flavor keys "v5-REL" (confusing); drop "v3" aka "v3-ready" (no longer buildable); add flavor "v5-dev" aka "dev"; refactor the "v5*" case of the FIPS setup switch to impose feature locks for v5 and v5-ready, but allow feature overrides with the new v5-dev; fix a debugging echo in the v2 case added in 1c27654300.	2021-12-16 13:00:10 -06:00
David Garske	dec78169bf	Merge pull request #4658 from julek-wolfssl/apache-2.4.51 Add Apache 2.4.51 support	2021-12-16 08:52:10 -08:00
David Garske	ea2245c4d1	Merge pull request #4656 from JacobBarthelmeh/SanityChecks sanity check before reading policy constraint	2021-12-16 08:42:19 -08:00
David Garske	424bd2d73d	Merge pull request #4599 from julek-wolfssl/issue-4593 Add WOLFSSL_FORCE_AUTO_RETRY option: force retrying of network reads	2021-12-16 08:42:07 -08:00
Chris Conlon	3bd737b9ef	Merge pull request #4665 from miyazakh/sce_fsp_update_v3p5	2021-12-16 09:39:13 -07:00
David Garske	7699d92935	Merge pull request #4664 from anhu/Fix_ENCRYPT_LEN Do not let anything override HAVE_LIBOQS when setting ENCRYPT_LEN	2021-12-16 07:51:32 -08:00
Eric Blankenhorn	44cc9e4824	Fix - wolfSSL_init should cleanup on failure of a component	2021-12-16 09:50:50 -06:00
Juliusz Sosinowicz	afa6237f56	Add WOLFSSL_FORCE_AUTO_RETRY option: force retrying of network reads	2021-12-16 15:33:30 +01:00
Juliusz Sosinowicz	d5783d1eaa	Missing config for krb5 1.16.1	2021-12-16 14:35:39 +01:00
Juliusz Sosinowicz	017d6cf464	Simplify error queue macros	2021-12-16 12:39:58 +01:00
Juliusz Sosinowicz	e78f7f734e	Add Apache 2.4.51 support - Define `OPENSSL_COMPATIBLE_DEFAULTS` and `WOLFSSL_NO_OCSP_ISSUER_CHECK` for Apache config - Fix `SSL_set_timeout` to match OpenSSL signature - Implement `pkey` in `X509_INFO` - Detect attempt to connect with plain HTTP - Implement `wolfSSL_OCSP_request_add1_nonce` - Set `ssl->cipher.bits` when calling `wolfSSL_get_current_cipher` - Use custom flush method in `wolfSSL_BIO_flush` when set in BIO method - Set the TLS version options in the `ssl->options` at the end of ClientHello parsing - Don't modify the `ssl->version` when in a handshake (`ssl->msgsReceived.got_client_hello` is set) - `wolfSSL_get_shutdown` returns a full bidirectional return when the SSL object is cleared. `wolfSSL_get_shutdown` calls `wolfSSL_clear` on a successful shutdown so if we detect a cleared SSL object, assume full shutdown was performed.	2021-12-16 12:39:38 +01:00
Marco Oliverio	fa913f797a	Merge pull request #4657 from SparkiDev/sakke_cond_add SAKKE: fixup cond add to use all words	2021-12-16 07:40:13 +01:00
Hideki Miyazaki	63ade421c1	fix redundat #ifdef	2021-12-16 09:30:21 +09:00
Sean Parkinson	bd7e19b8fe	Merge pull request #4639 from JacobBarthelmeh/ECC deterministic ECC sign edge case fix and add variant	2021-12-16 08:48:37 +10:00
David Garske	abe8696852	Merge pull request #4642 from cconlon/pubKeyDerFromX509 Add wc_GetPubKeyDerFromCert()	2021-12-15 14:30:58 -08:00
Anthony Hu	7975ead1af	Do not let anything override HAVE_LIBOQS when setting ENCRYPT_LEN because oqs wants biggest value.	2021-12-15 14:48:50 -05:00
John Safranek	e1cee463b6	Merge pull request #4662 from douzzer/20211214-fixits 20211214 fixits	2021-12-15 10:47:50 -08:00
Daniel Pouzzner	463118005f	Merge pull request #4663 from ejohnstown/revert-pr Revert configure.ac PR	2021-12-15 12:33:19 -06:00
John Safranek	8688bd43f1	Revert "Swap v5-ready (exception) and v5, add the wildcard back in for all non-ready cases" This reverts commit 23fbf2e786b6914b84232ad0c4c57782890a8699.	2021-12-15 10:24:05 -08:00
John Safranek	1b6e0c45d0	Merge pull request #4660 from kaleb-himes/FIPS_READY_KCAPI_FOLLOWUP Swap v5-ready (exception) and v5, add the wildcard back in for all non-ready cases	2021-12-15 10:16:33 -08:00
Chris Conlon	5172130287	add wc_GetPubKeyDerFromCert(), get pub key DER from DecodedCert	2021-12-15 11:04:52 -07:00
Hideki Miyazaki	9af9d96cc7	Update README for FSP v3.5.0 fix tyo	2021-12-15 15:46:16 +09:00
Daniel Pouzzner	a773cdfd5d	pkcs12.c wc_d2i_PKCS12_fp(): mollify Visual Studio (false positives C4701 and C4703).	2021-12-14 18:33:24 -06:00
Daniel Pouzzner	242eb2dcf1	wolfcrypt/src/pkcs12.c: fix scan-build deadcode.DeadStores gripe.	2021-12-14 18:08:54 -06:00
Daniel Pouzzner	eb032e0266	configure.ac: refactor changes of 7cccaa98b7 around FIPS v5*.	2021-12-14 18:08:12 -06:00
kaleb-himes	23fbf2e786	Swap v5-ready (exception) and v5, add the wildcard back in for all non-ready cases	2021-12-14 13:28:35 -07:00
David Garske	a6c7d56c32	Merge pull request #4655 from haydenroche5/wc_pkcs12_from_file Add wc_d2i_PKCS12_fp to parse a PKCS #12 file directly in wolfCrypt.	2021-12-14 08:58:57 -08:00
Sean Parkinson	994e370db3	SAKKE: fixup cond add to use all words	2021-12-14 12:02:59 +10:00
John Safranek	2359045b28	Merge pull request #4649 from kaleb-himes/KCAPI_FIPS_READY The minimal changes needed to add KCAPI support with fips-ready	2021-12-13 17:33:03 -08:00
Hayden Roche	92d207a1cd	Add wc_d2i_PKCS12_fp to parse a PKCS #12 file directly in wolfCrypt.	2021-12-13 15:28:34 -08:00
JacobBarthelmeh	a2cf234100	sanity check before reading policy constraint	2021-12-13 14:32:46 -08:00
Sean Parkinson	f5cd61e4f9	Merge pull request #4654 from embhorn/zd13375 Fix _sp_exptmod_base_2 to init vars.	2021-12-14 07:38:20 +10:00
David Garske	7fd1b7aa51	Merge pull request #4650 from anhu/changelog Mention falcon in the changelog	2021-12-13 10:37:07 -08:00
kareem-wolfssl	638d00f593	Merge pull request #4634 from danielinux/iotsafe-16bit-id IoT-SAFE module: improvements and bug fixes	2021-12-13 11:33:19 -07:00
David Garske	caf9024984	Merge pull request #4652 from douzzer/no-rsa-no-dh-no-dsa WOLFSSL_ECC_NO_SMALL_STACK etc	2021-12-13 10:12:14 -08:00
David Garske	9a85638ac3	Merge pull request #4647 from anhu/evp_pkey_dummy_falcon In d2iGenericKey(), if a falcon key is encountered, make a dummy pkey.	2021-12-13 10:12:07 -08:00

1 2 3 4 5 ...

15962 Commits