mirrors/wolfssl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
20,624 Commits 5 Branches 162 Tags
Commit Graph

20624 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
David Garske
7ca6c129e5
Merge pull request #6755 from anhu/GetASNInt 
Expose GetASNInt as part of WOLFSSL_ASN_API
 2023-09-07 11:30:46 -07:00
Anthony Hu
fddda8f582 Expose GetASNHeader in both template and original. 2023-09-07 09:52:27 -04:00
András Fekete
fc4e4f1238
Merge pull request #6757 from julek-wolfssl/zephyr-ci 
Tie zephyr tests to a release
 2023-09-07 08:49:10 -04:00
Juliusz Sosinowicz
ec7ecba0fe Tie zephyr tests to a release 2023-09-07 13:21:24 +02:00
Anthony Hu
6665f240e0 Expose GetASNInt as part of WOLFSSL_ASN_API 2023-09-06 18:17:42 -04:00
JacobBarthelmeh
755c39b5fc
Merge pull request #6751 from ejohnstown/merge-fips-builds 
FIPS 140-3 Pilot Program Check-in
 2023-09-06 16:07:41 -06:00
Daniel Pouzzner
344e1661e1 wolfcrypt/src/{hmac.c,sha256.c,sha512.c,kdf.c}: ForceZero() smallstack buffers before freeing them, and ForceZero() the Hmac, wc_Sha512, wc_Sha384, wc_Sha256, and wc_Sha224 structures at the end of their respective freeing routines. also, remove superseded ForceZero() calls in wc_HKDF_Expand(), wc_SSH_KDF(), and wc_HKDF_Extract(). 2023-09-06 14:53:19 -05:00
JacobBarthelmeh
51cb80b865
Merge pull request #6753 from bandi13/disableZephyrTests 
Temporarily disable until we can figure out the issue
 2023-09-06 11:18:01 -06:00
Daniel Pouzzner
5540449315 wolfcrypt/src/port/arm/armv8-aes.c: add missing implementations of wc_AesCtrSetKey(), and add (void)dir in implementation to silence -Wunused. 2023-09-06 08:20:25 -07:00
Andras Fekete
f0743a70b4 Temporarily disable until we can figure out the issue 2023-09-06 09:24:34 -04:00
John Safranek
fb91f1c1fd
Update the ARM asm files with a missing initialization for SHA2-256 and 
the AesCtrSetKey function for AES-CTR.
 2023-09-05 17:07:08 -07:00
John Safranek
d866144fb1 Merge branch 'master' into merge-fips-builds 2023-09-05 16:52:36 -07:00
John Safranek
db858fd052 Merge tag 'v5.2.1-stable' into merge-fips-builds 
Check-in FIPS 140-3 PILOT
 2023-09-05 13:50:29 -07:00
JacobBarthelmeh
298b488bf1
Merge pull request #6749 from cconlon/jniCertReq 
Add WOLFSSL_CERT_EXT to --enable-jni, minor CSR items
 2023-09-01 16:15:10 -06:00
JacobBarthelmeh
0352b384a5
Merge pull request #6731 from SparkiDev/aes_arm32_thumb2 
AES ARM32 and Thumb2 ASM: fixup ARM32 and add Thumb2
 2023-09-01 15:56:12 -06:00
JacobBarthelmeh
cd02d5140f
Merge pull request #6738 from philljj/wolfcrypt_lms_verify_only 
Wolfcrypt LMS verify-only support
 2023-09-01 13:25:31 -06:00
Chris Conlon
a2e2a3e994 add --enable-certreq to --enable-jni, support extKeyUsage in X509_REQ_sign, add missing X509_REQ_print fields 2023-09-01 11:59:21 -06:00
Daniel Pouzzner
196f154c51 wolfcrypt/src/curve25519.c: use endian-conditional initializer for kCurve25519BasePoint. 2023-09-01 11:36:18 -05:00
jordan
b36c312ef3 LMS verify-only support: fix clang warning, rename define. 2023-08-31 21:46:00 -05:00
David Garske
136cb98412 Force 32-bit alignment on kCurve25519BasePoint 2023-09-01 12:14:55 +10:00
JacobBarthelmeh
efd08eadb8
Merge pull request #6746 from douzzer/20230831-ge_p3_dbl 
20230831-ge_p3_dbl
 2023-08-31 15:06:17 -06:00
Daniel Pouzzner
dc2905ce80 wolfssl/wolfcrypt/ge_operations.h: fix for bugprone-macro-parentheses in ge_p3_dbl() found by multi-test clang-tidy-all-intelasm. 2023-08-31 13:22:53 -05:00
JacobBarthelmeh
ffd6c2b859
Merge pull request #6625 from TakayukiMatsuo/jp6352 
Update Japanese API comments
 2023-08-31 10:03:09 -06:00
jordan
03088b2946 LMS verify-only support: tiny correction to INSTALL. 2023-08-30 21:02:50 -05:00
JacobBarthelmeh
927930c86e
Merge pull request #6740 from SparkiDev/ecies_kdf 
ECIES: add support for other KDFs
 2023-08-30 16:27:39 -06:00
Sean Parkinson
b546473495
Merge pull request #6739 from JacobBarthelmeh/fuzzing 
additional sanity check with GetIntPositive
 2023-08-31 07:11:05 +10:00
JacobBarthelmeh
2aefdfe9d5
Merge pull request #6737 from anhu/ignoreBadPath 
Add new feature macro WOLFSSL_IGNORE_BAD_CERT_PATH.
 2023-08-30 13:37:56 -06:00
JacobBarthelmeh
944db2c2e5
Merge pull request #6726 from julek-wolfssl/dropped-ccs 
Server should not ignore plaintext packets as long as it has stuff to rtx
 2023-08-30 09:40:14 -06:00
Sean Parkinson
0638ec234b AES ARM32 and Thumb2 ASM: fixup ARM32 and add Thumb2 
Fix which functions and data are compiled in depending on defines.
Better handing of constants.
Also fix Aarch64 ed25519 inline assembly.
 2023-08-30 20:34:51 +10:00
Sean Parkinson
41d6afcfa1 ECIES: add support for other KDFs 2023-08-30 10:37:57 +10:00
JacobBarthelmeh
1ada2e6a43 additional sanity check with GetIntPositive 2023-08-29 15:43:01 -07:00
jordan
bbf105f8dc LMS verify-only support: update INSTALL. 2023-08-29 16:37:21 -05:00
jordan
8662312ecf LMS verify only support. 2023-08-29 15:46:18 -05:00
Anthony Hu
d7bb5aa367 Add new feature macro WOLFSSL_IGNORE_BAD_CERT_PATH. 2023-08-29 10:28:02 -04:00
Kaleb Himes
70c362f680
Merge pull request #6736 from ejohnstown/fips-update 
FIPS Update
 2023-08-29 08:21:47 -06:00
JacobBarthelmeh
c47600c52c update comment 2023-08-29 12:45:45 +02:00
Juliusz Sosinowicz
a0fef66c3b Add test case for dropped ccs 2023-08-29 12:45:45 +02:00
Juliusz Sosinowicz
357c9a68f2 Only drop plaintext msgs when we don't have stuff to rtx 2023-08-29 12:45:13 +02:00
Juliusz Sosinowicz
6e3c3577f5 Refactor the crazy conditional in VerifyForDtlsMsgPoolSend 2023-08-29 12:45:13 +02:00
John Safranek
b13294623b
FIPS Update 
1. Restore the linuxv5 option of fips-check.
2. Added option linuxv5.2.1 to fips-check.
 2023-08-28 16:41:47 -07:00
John Safranek
2380086209
FIPS Update 
1. Rename the error code for degraded mode so it matches what's in the
   fips repo.
2. Update the tag used for linuxv5 builds in the fips-check script.
 2023-08-28 15:11:13 -07:00
kaleb-himes
3a5e171636 Check-in fips_test.h changes to master as well 2023-08-28 14:22:37 -07:00
JacobBarthelmeh
c5c968aae3
Merge pull request #6722 from julek-wolfssl/zd/16550 
ZD16550
 2023-08-28 10:19:19 -06:00
JacobBarthelmeh
872551a5fc
Merge pull request #6734 from julek-wolfssl/curl-action-correct-name 
Correct name in curl github action
 2023-08-28 09:30:34 -06:00
Juliusz Sosinowicz
9bea33b598 Correct name in curl github action 2023-08-28 11:55:42 +02:00
Juliusz Sosinowicz
b02fe0853f CI fixes 2023-08-28 10:52:36 +02:00
Juliusz Sosinowicz
57ce894393 CRL refactor 
- CheckCertCRLList: check all entries in case a single issuer has multiple CRL's loaded
- test_multiple_crls_same_issuer: testing two different certificates forcing the client to check both CRL's from the same issuer
- CRL_Entry
  - use a lock instead of a mutex to allow multiple threads to access the same list simultaneously
  - add a verifyMutex when doing verification so that we don't have to release the crlLock
- Add allocation and free functions for CRL_Entry
- DupCRL_Entry: simplify copying by copying all static fields in one memcpy
 2023-08-28 10:52:36 +02:00
Juliusz Sosinowicz
abfcda8750 Decode the key usage extension as LE not BE 2023-08-28 10:52:36 +02:00
Juliusz Sosinowicz
e85901c8e5 Only list supported sigalgs in certreq 2023-08-28 10:52:36 +02:00
JacobBarthelmeh
5b5e66b55f
Merge pull request #6732 from billphipps/correct_cryptocb_debug 
Correct cryptocb cmd debug message
 2023-08-25 13:57:32 -06:00