mirrors/wolfssl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
21,069 Commits 5 Branches 162 Tags
Commit Graph

21069 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Juliusz Sosinowicz
962c315447 Test curl releases too 2023-10-13 11:52:02 +02:00
JacobBarthelmeh
26cc785fbc
Merge pull request #6861 from douzzer/20231012-keylog-export-warning-fix 
20231012-keylog-export-warning-fix
 2023-10-12 17:04:39 -06:00
Sean Parkinson
0cc21a42f3 SP updates for SM2 
Allow wolfSSL to build with SP implementations of SM2.
Updates to SP implementation of other code.
 2023-10-13 08:14:15 +10:00
JacobBarthelmeh
38df4e2bd5
Merge pull request #6857 from kareem-wolfssl/zd16815 
Update documentation for wc_Shake256_Final to match function signature.
 2023-10-12 15:08:58 -06:00
JacobBarthelmeh
26ab3b109a
Merge pull request #6858 from anhu/FASCN_OID 
Support FASCN OID in wolfssl_dns_entry_othername_to_gn()
 2023-10-12 14:47:09 -06:00
JacobBarthelmeh
883fcfc11e
Merge pull request #6860 from douzzer/20231012-aes-xts-fixes 
20231012-aes-xts-fixes
 2023-10-12 14:41:17 -06:00
Lealem Amedie
0d53796284 Apply the same changes to FIPS project 2023-10-12 14:07:32 -06:00
Lealem Amedie
20cab7afe3 Remove cyaSSL from XCODE proj and small fix in chacha.c 2023-10-12 13:58:43 -06:00
David Garske
c05aea7c5a Improvements to the wolfCrypt FIPS Visual Studio project link settings to resolve ASLR (Randomized Base Address) issue on some platforms. ZD 16615 2023-10-12 12:05:14 -07:00
David Garske
3cebf35b1b Cleanups for IDE/WIN10 user_settings.h to allow for FIPS 140-2 3389 cert. Fixed compiler warning with possible use of uninitialized data. 2023-10-12 12:04:51 -07:00
Daniel Pouzzner
0549dba3db configure.ac and src/tls.c: fix --enable-keylog-export to warn at configure time, then build cleanly. 2023-10-12 13:09:43 -05:00
Daniel Pouzzner
3a195563f7 wolfcrypt/src/aes.c: fix zerodivcond and -Wconversion in wc_AesXtsEncryptConsecutiveSectors() and wc_AesXtsDecryptConsecutiveSectors(). 
wolfcrypt/test/test.c: add missing FIPS gating around AES-XTS testing.
 2023-10-12 12:08:16 -05:00
jordan
60fea5ee5c XMSS/XMSSMT hooks support: small update for requested changes. 2023-10-11 21:29:45 -05:00
Anthony Hu
f332995131 Support FASCN OID in wolfssl_dns_entry_othername_to_gn() 2023-10-11 20:33:13 -04:00
Kareem
66f4101569 Update documentation for wc_Shake256_Final to match function signature. 2023-10-11 16:12:34 -07:00
JacobBarthelmeh
0e35e9cbbe
Merge pull request #6806 from lealem47/XTS 
Add XTS API's required for VeraCrypt
 2023-10-11 13:35:45 -06:00
JacobBarthelmeh
653e5b01b1
Merge pull request #6646 from embhorn/gh5636_5637 
Fix RFC references and add WOLFSSL_ALLOW_CRIT_AIA
 2023-10-11 13:30:42 -06:00
Lealem Amedie
e7eec645b0 Sanity checks and correct comment 2023-10-11 12:03:02 -06:00
JacobBarthelmeh
f0bfcc50d7
Merge pull request #6748 from julek-wolfssl/dtls13-frag-ch2 
DTLS 1.3: allow fragmenting the second ClientHello message
 2023-10-11 11:13:57 -06:00
JacobBarthelmeh
5e4baf898c
Merge pull request #6786 from SparkiDev/aes_gcm_align_arm_fix 
AES GCM ARM32 alignment fix
 2023-10-11 10:18:11 -06:00
Chris Conlon
7f562f8259
Merge pull request #6851 from miyazakh/rnd_gen_updates_rx 
Update random generation on RX TSIP
 2023-10-11 09:10:34 -06:00
TakayukiMatsuo
a4f9ae90d0
Merge pull request #6845 from kojo1/jp-doc 
fix jp doc translations
 2023-10-11 07:00:16 +09:00
Hideki Miyazaki
f8604da8e3 change to use a cutom random generation func for PRNG 2023-10-11 06:50:26 +09:00
Lealem Amedie
a27b49882d Add XTS API's required for VeraCrypt 2023-10-10 15:09:35 -06:00
Juliusz Sosinowicz
ca73a311cf Don't use /dev/null 2023-10-10 17:31:45 +02:00
Juliusz Sosinowicz
5372cd5026 Update openwrt script 2023-10-10 17:08:58 +02:00
Chris Conlon
210fff5569
Merge pull request #6849 from miyazakh/rnd_gen_updates 
Update random generation on RZ RSIP
 2023-10-10 08:52:22 -06:00
Juliusz Sosinowicz
53f14206d1 Increase curl timeout 2023-10-10 14:36:00 +02:00
Juliusz Sosinowicz
cb912219e4 Run only stable curl tests 2023-10-10 14:19:03 +02:00
Juliusz Sosinowicz
365fae8ac0 Add curl test dep 2023-10-10 11:37:48 +02:00
jordan
f32c6a0d25 XMSS/XMSSMT hooks support: fix build. 2023-10-09 10:13:32 -05:00
JacobBarthelmeh
d83f2fa126
Merge pull request #6850 from douzzer/20231008-Wconversion-and-Aes-Eax-FIPS-fixes 
20231008-Wconversion-and-Aes-Eax-FIPS-fixes
 2023-10-09 09:06:17 -06:00
Juliusz Sosinowicz
64ed7d57eb Add comment 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
275c0a0838 Update window in one place only when stateful 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
8ac72750bc Fix linting issues 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
948d7ae761 keyLog_callback: flush the descriptor to make sure it is written out 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
c1a49fef99 Fix unreachable code error 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
bec87e525f PQC TLS 1.3: test setting pqc with wolfSSL_CTX_set_groups 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
3a881079d3 Fix async 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
2c6c52078a test_dtls13_frag_ch_pq: make sure kyber5 is used 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
37c0d52fa8 Dump manual memio stream with WOLFSSL_DUMP_MEMIO_STREAM 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
c802193119 Simplify the pqc keyshare handling 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
0dbf97c867 fixup! Clear the keyshare instead of storing it 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
230f81712c fixup! Clear the keyshare instead of storing it 2023-10-09 12:54:11 +02:00
Anthony Hu
f640fdf91f Adding a post-quantum DTLS 1.3 test. 
This exercises the fragmenting of ClientHello via large post-quantum key share.

./configure --enable-dtls-mtu --enable-dtls-frag-ch --enable-dtls \
            --enable-dtls13 --with-liboqs
 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
ada785e115 Address code review 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
8da863184c Force DTLS 1.3 when accepting fragmented CH 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
df8ee69075 Clear the keyshare instead of storing it 2023-10-09 12:54:11 +02:00
Juliusz Sosinowicz
85a596e54a DTLS 1.3: allow fragmenting the second ClientHello message 
- DTLS 1.3 pqc support
- Add --enable-dtls-frag-ch option to enable CH fragmenting
- Send an alert when we get an empty keyshare with a cookie present to not allow for multiple HRR in one connection
- Only update the DTLS window when we have successfully processed or stored a message
- Call ssl->chGoodCb as soon as we have processed a verified full or fragmented ClientHello cookie
 2023-10-09 12:54:11 +02:00
Daniel Pouzzner
61371d403a minor fixes for AES-EAX implementation and test routines. 2023-10-08 18:02:52 -05:00