WolfSSL
/
wolfssl
mirror of https://github.com/wolfSSL/wolfssl.git
1
0
Fork 0
Code Issues Releases Wiki Activity
25,515 Commits
27 Branches
168 Tags
358 MiB
Commit Graph

25515 Commits (master)

Author SHA1 Message Date
Juliusz Sosinowicz 2ec6b92b41 tls13: handle malformed CCS and CCS before CH 
- fix incorrect alert type being sent
- error out when we receive a CCS before a CH
- error out when we receive an encrypted CCS
 2025-05-23 15:04:22 +02:00
Sean Parkinson 999641d9b1
Merge pull request #8642 from rizlik/dtls_no_span_records 
DTLS: drop records that span datagrams
 2025-05-23 14:57:24 +10:00
David Garske db0b0e28d2 Fix issue with CSharp and Windows CE with conversion of ASCII->Unicode and Unicode->ASCII with odd length and extra null terminator. 2025-05-22 16:34:54 -07:00
Sean Parkinson d1312c87bb
Merge pull request #8792 from rlm2002/coverity-src 
Coverity: remove dead code issue in ssl.c
 2025-05-23 09:27:39 +10:00
Sean Parkinson 2ecd4d75e3
Merge pull request #8795 from dgarske/stm32_aes_gcm_oldcube 
Fix for STM32 AES GCM and older STM32Cube HAL that does not support `HeaderWidthUnit`
 2025-05-23 08:00:35 +10:00
Sean Parkinson fb6f0c8b73
Merge pull request #8797 from douzzer/20250522-FIPS-v5-no-implicit-DES 
20250522-FIPS-v5-no-implicit-DES
 2025-05-23 07:50:34 +10:00
David Garske 607d7489bc Add no malloc support for Dilithium tests. Fixes for `WOLFSSL_DILITHIUM_NO_ASN1`. 2025-05-22 14:34:34 -07:00
Ruby Martin 5352e100db Add NO_OLD_TLS macroguard, remove dead code 2025-05-22 14:21:38 -06:00
Daniel Pouzzner b06a921697 tests/api.c: add missing NO_SHA gates in test_wc_PKCS12_create(). 2025-05-22 14:56:31 -05:00
David Garske d0085834cd Fix for ML-DSA with `WOLFSSL_DILITHIUM_NO_SIGN`. ZD 19948. 2025-05-22 12:36:46 -07:00
Daniel Pouzzner 7e9460c377 configure.ac: remove implicit enablements of DES/DES3 on FIPS v5+. 2025-05-22 14:19:28 -05:00
jordan 402ebec3b7 linuxkm rsa: comments, cleanup work buffer useage. 2025-05-22 11:07:36 -05:00
Sean Parkinson 807e95f35f
Merge pull request #8785 from julek-wolfssl/checkGroup 
TLSX_UseSupportedCurve: Check group correctness outside of TLS 1.3 too
 2025-05-22 14:10:14 +10:00
David Garske cc78e3f5d1 Fix for older STM32Cube HAL that does not support `hcryp->Init.HeaderWidthUnit`. ZD 19926. 2025-05-21 16:42:52 -07:00
Sean Parkinson 9fdb40caa4
Merge pull request #8790 from philljj/fix_coverity 
coverity: misc fixes
 2025-05-22 08:40:59 +10:00
Sean Parkinson 85a4e34705
Merge pull request #8782 from kojiws/support_aes_cbc_pkcs12_export 
Support PBE_AES(256|128)_CBC key encryptions on wc_PKCS12_create()
 2025-05-22 08:39:11 +10:00
Sean Parkinson 2398a94cf8
Merge pull request #8784 from rlm2002/coverity 
coverity: init dgst variable test_sha3.c and issues in api.c
 2025-05-22 08:34:11 +10:00
Sean Parkinson 005ce08380
Merge pull request #8794 from kareem-wolfssl/multiFixes 
Add missing DH_MAX_SIZE define for FIPS, correct wolfssl.rc FILETYPE to VFT_DLL
 2025-05-22 08:26:24 +10:00
jordan 54104887ca linuxkm rsa: clean up duplicate code. 2025-05-21 16:59:02 -05:00
jordan d396987863 linuxkm rsa: don't forget to unregister pkcs1pad akcipher. 2025-05-21 16:32:39 -05:00
jordan 8fef82cc59 linuxkm rsa: linux 6.13 support. 2025-05-21 16:07:46 -05:00
Kareem 08f063d8b3 Correct wolfssl.rc FILETYPE to VFT_DLL. It was previously set to 0x7L which is VFT_STATIC_LIB. 2025-05-21 12:34:09 -07:00
Kareem 4d63d7dedf Fix missing DH_MAX_SIZE define when building FIPS 140-3 with OpenSSL compatibility layer dh.h. 2025-05-21 12:33:37 -07:00
philljj be5b62b1a1
Merge pull request #8791 from douzzer/20250521-fix-WC_SIPHASH_NO_ASM 
20250521-fix-WC_SIPHASH_NO_ASM
 2025-05-21 12:23:46 -05:00
Daniel Pouzzner e2def987d4 wolfcrypt/src/siphash.c: for WC_SIPHASH_NO_ASM, don't define WOLFSSL_NO_ASM if it's already defined. 2025-05-21 10:03:10 -05:00
Ruby Martin a170624118 coverity: init dgst variable test_sha3.c 
improper use of neg val api.c

copy-paste error in test_wolfSSL_PEM_read_bio_ECPKParameters
 2025-05-21 08:29:44 -06:00
Sean Parkinson dfe0684bc7
Merge pull request #8789 from douzzer/20250520-WC_SIPHASH_NO_ASM 
20250520-WC_SIPHASH_NO_ASM
 2025-05-21 07:29:53 +10:00
Daniel Pouzzner a01fb2a61c wolfcrypt/src/siphash.c: honor WC_SIPHASH_NO_ASM; configure.ac: add -DWC_SIPHASH_NO_ASM when ENABLED_LINUXKM. 2025-05-20 13:03:58 -05:00
Juliusz Sosinowicz 5e7ef142e8 Refactor GetHandshakeHeader/GetHandShakeHeader into one 2025-05-20 13:23:14 +02:00
jordan c619c19a1d asn: add underflow check to idx. 2025-05-19 19:04:27 -05:00
Koji Takeda 3666851589 Support PBE_AES256_CBC and PBE_AES128_CBC key encryption on wc_PKCS12_create() 2025-05-19 22:26:46 +09:00
Juliusz Sosinowicz 83ce63ac1a TLSX_UseSupportedCurve: Check group correctness outside of TLS 1.3 too 2025-05-19 14:19:59 +02:00
Marco Oliverio cbe1fb2c62 dtls: drop DTLS messages that span across datagrams 
A new macro "WOLFSSL_DTLS_RECORDS_CAN_SPAN_DATAGRAMS" restores the old
behaviour.
 2025-05-19 10:28:13 +02:00
Marco Oliverio 23b73bb298 test_memio: preserve write boundaries in reads 2025-05-19 10:25:24 +02:00
Marco Oliverio 80bdd1736a internal: refactor out Decryption in DoDecrypt function 
To uniform error handling for the SanityCheckCipherText check.
 2025-05-19 10:25:24 +02:00
JacobBarthelmeh 05bc7e0d2f
Merge pull request #8783 from douzzer/20250516-remove-implicit-WOLFSSL_DEBUG_CERTIFICATE_LOADS 
20250516-remove-implicit-WOLFSSL_DEBUG_CERTIFICATE_LOADS
 2025-05-16 17:06:18 -06:00
Daniel Pouzzner 3ab16257b0 wolfssl/wolfcrypt/logging.h: don't define WOLFSSL_DEBUG_CERTIFICATE_LOADS just because defined(DEBUG_WOLFSSL). 2025-05-16 16:53:10 -05:00
Daniel Pouzzner 4495da457a
Merge pull request #8778 from rlm2002/ghi8772 
add NULL reference checks to RSA functions
 2025-05-16 16:41:43 -05:00
Ruby Martin 7ae2c24ac4 add NULL reference checks to RSA functions 2025-05-16 14:00:35 -06:00
Daniel Pouzzner 91af9073b0
Merge pull request #8777 from rizlik/dtls_reject_v11 
Drop DTLS packets with bogus minor version number
 2025-05-16 14:45:25 -05:00
Daniel Pouzzner e67536cb15
Merge pull request #8775 from rlm2002/coverity 
Coverity: address uninitialized scalar variable issues
 2025-05-16 14:44:38 -05:00
Daniel Pouzzner 56b43e5948
Merge pull request #8776 from anhu/no_server_with_opensslall 
Allow tests to build with opensslall and no server.
 2025-05-16 13:28:48 -05:00
Daniel Pouzzner 5abe5df498
Merge pull request #8760 from miyazakh/benchmark_up 
Guard some benchmark tests by NO_SW_BENCH
 2025-05-16 12:42:59 -05:00
Kaleb Himes 25e3a2d34f
Merge pull request #8780 from douzzer/20250515-fips-armasm-fixes 
20250515-fips-armasm-fixes
 2025-05-16 11:12:16 -06:00
David Garske 69ae36a1b6
Merge pull request #8781 from night1rider/zephyr-mlkem-update 
updating kyber to mlkem arm file for zephyr
 2025-05-16 09:21:19 -07:00
Ruby Martin e998a4c2fc fix off-by-one error in asn.c 2025-05-16 08:26:19 -06:00
night1rider 229141fd51 updating kyber to mlkem arm file for zephyr 2025-05-15 21:55:36 -06:00
Daniel Pouzzner 77bebff341 fixes for armasm: 
configure.ac: set DEFAULT_ENABLED_ALL_ASM=no if FIPS <v6 and not on amd64 (i.e. if ARM);

tests/api/test_sha256.c: skip test_wc_Sha256_Flags() and test_wc_Sha224_Flags() if armasm and FIPS <v7;

wolfssl/wolfcrypt/settings.h: define WOLFSSL_SP_INT_DIGIT_ALIGN for ARM (needed on BE, and no effect on LE).
 2025-05-15 21:20:10 -05:00
Daniel Pouzzner 8a8a2b5bb1 .github/workflows/smallStackSize.yml: don't install multilib (not needed). 2025-05-15 21:13:50 -05:00
Ruby Martin 2940a16c10 coverity: initialize variables for api.c, test_digest.h, and test_sha3.c 2025-05-15 16:55:34 -06:00