WolfSSL
/
wolfssl
mirror of https://github.com/wolfSSL/wolfssl.git
1
0
Fork 0
Code Issues Releases Wiki Activity
25,463 Commits
27 Branches
168 Tags
358 MiB
Commit Graph

9626 Commits (10b3cc8dd2bcb3dea2f9a5199cdeeac0dbac69c0)

Author SHA1 Message Date
JacobBarthelmeh ae7509e746
Merge pull request #8813 from gojimmypi/espressif-mlkem-support 
Adjust Espressif Examples for Post Quantum ML-KEM
 2025-06-06 11:41:59 -06:00
JacobBarthelmeh 9ffca6b39c
Merge pull request #8822 from kojiws/support_cert_aes_cbc_on_pkcs12_export 
Support PBE_AES(256|128)_CBC certificate encryptions on wc_PKCS12_create()
 2025-06-06 11:35:13 -06:00
Daniel Pouzzner 4572dcf9f9 tests/api/test_x509.c: in test_x509_rfc2818_verification_callback(), add dependency on HAVE_MANUAL_MEMIO_TESTS_DEPENDENCIES; 
wolfcrypt/test/test.c: in lms_test(), fix -Wdeclaration-after-statement;

add .github/workflows/no-tls.yml;

.github/workflows/pq-all.yml: add smallstack scenario.
 2025-06-06 17:18:50 +04:00
JacobBarthelmeh c207e2d198
Merge pull request #8838 from miyazakh/fsp_fix2 
Fix Renesas SCE on RA6M4
 2025-06-05 09:43:05 -06:00
Sean Parkinson 640b060792 LMS: Key ID fixup 
Fix implementation for extracting from private key data.
Add implementation that gets Key ID from wc_LmsKey.
 2025-06-05 10:25:47 +10:00
Koji Takeda 7c33096398 Support PBE_AES256_CBC and PBE_AES128_CBC cert encryption on wc_PKCS12_create() 2025-06-04 16:43:30 +09:00
Hideki Miyazaki e633dd7537 trailing whitespace 2025-06-04 13:41:01 +09:00
Hideki Miyazaki 6d2a8b3f4c ready-for-use flag fix 2025-06-04 13:41:01 +09:00
JacobBarthelmeh c1b683f307 add clang-tidy lint comment to avoid false positive 2025-06-03 14:44:01 -06:00
gojimmypi a9db6d08f7
Adjust Espressif Examples for Post Quantum ML-KEM 2025-06-02 15:11:53 -07:00
gojimmypi 1aa97a9070
Correct Espressif default time setting 2025-06-02 15:04:49 -07:00
Daniel Pouzzner a6e9bd73e4
Merge pull request #8803 from dgarske/csr_nomalloc 
Refactor to support CSR generation and signing with `WOLFSSL_NO_MALLOC`
 2025-05-30 18:05:25 -05:00
Daniel Pouzzner dd6e6015ea wolfcrypt/src/wc_mlkem.c: add setup for WC_MLKEM_NO_ASM. 2025-05-30 14:51:52 -05:00
Daniel Pouzzner 8f347e68f5 wolfcrypt/src/wc_mlkem_poly.c and configure.ac: add support for WC_MLKEM_NO_ASM, and add gates to support WC_SHA3_NO_ASM; 
wolfcrypt/src/sha3.c and wolfssl/wolfcrypt/sha3.h: BlockSha3() now always WOLFSSL_LOCAL (never static) to support calls from MLKEM implementation.
 2025-05-30 13:31:40 -05:00
David Garske 165f868be1 Fix for `warning: ‘free’ called on unallocated object ‘buf’`. 2025-05-29 17:15:55 -07:00
Daniel Pouzzner 245042a342 add WC_SHA3_NO_ASM, mainly for the benefit of linuxkm-defaults and KASAN compatibility. 2025-05-29 16:21:34 -05:00
Daniel Pouzzner b9ef6c583a wolfcrypt/test/test.c: in test_dilithium_decode_level(), on early malloc failure, stay in the flow to assure cleanup; 
.wolfssl_known_macro_extras: remove unneeded entry for WOLFSSL_DILITHIUM_VERIFY_NO_MALLOC.
 2025-05-28 12:48:36 -05:00
David Garske 482f2bdd2a Refactor to support CSR generation and signing with `WOLFSSL_NO_MALLOC`. Also for DSA. Don't test no malloc with ECC custom curves. 2025-05-27 14:51:16 -07:00
Daniel Pouzzner 8179367412
Merge pull request #8798 from dgarske/mldsa_nosign 
Fix for ML-DSA with `WOLFSSL_DILITHIUM_NO_SIGN`
 2025-05-27 14:44:44 -05:00
David Garske 607d7489bc Add no malloc support for Dilithium tests. Fixes for `WOLFSSL_DILITHIUM_NO_ASN1`. 2025-05-22 14:34:34 -07:00
David Garske d0085834cd Fix for ML-DSA with `WOLFSSL_DILITHIUM_NO_SIGN`. ZD 19948. 2025-05-22 12:36:46 -07:00
David Garske cc78e3f5d1 Fix for older STM32Cube HAL that does not support `hcryp->Init.HeaderWidthUnit`. ZD 19926. 2025-05-21 16:42:52 -07:00
Sean Parkinson 9fdb40caa4
Merge pull request #8790 from philljj/fix_coverity 
coverity: misc fixes
 2025-05-22 08:40:59 +10:00
Sean Parkinson 85a4e34705
Merge pull request #8782 from kojiws/support_aes_cbc_pkcs12_export 
Support PBE_AES(256|128)_CBC key encryptions on wc_PKCS12_create()
 2025-05-22 08:39:11 +10:00
Daniel Pouzzner e2def987d4 wolfcrypt/src/siphash.c: for WC_SIPHASH_NO_ASM, don't define WOLFSSL_NO_ASM if it's already defined. 2025-05-21 10:03:10 -05:00
Daniel Pouzzner a01fb2a61c wolfcrypt/src/siphash.c: honor WC_SIPHASH_NO_ASM; configure.ac: add -DWC_SIPHASH_NO_ASM when ENABLED_LINUXKM. 2025-05-20 13:03:58 -05:00
jordan c619c19a1d asn: add underflow check to idx. 2025-05-19 19:04:27 -05:00
Koji Takeda 3666851589 Support PBE_AES256_CBC and PBE_AES128_CBC key encryption on wc_PKCS12_create() 2025-05-19 22:26:46 +09:00
Ruby Martin 7ae2c24ac4 add NULL reference checks to RSA functions 2025-05-16 14:00:35 -06:00
Daniel Pouzzner e67536cb15
Merge pull request #8775 from rlm2002/coverity 
Coverity: address uninitialized scalar variable issues
 2025-05-16 14:44:38 -05:00
Daniel Pouzzner 5abe5df498
Merge pull request #8760 from miyazakh/benchmark_up 
Guard some benchmark tests by NO_SW_BENCH
 2025-05-16 12:42:59 -05:00
Ruby Martin e998a4c2fc fix off-by-one error in asn.c 2025-05-16 08:26:19 -06:00
Daniel Pouzzner 401868908a add .github/workflows/smallStackSize.yml; 
smallstack refactors in
* wolfcrypt/src/asn.c : wc_GetSubjectPubKeyInfoDerFromCert(),
* wolfcrypt/src/dilithium.c : dilithium_sign_with_seed_mu(),
* wolfcrypt/src/ecc.c : wc_ecc_mulmod_ex2(),
* wolfcrypt/src/wc_mlkem.c : mlkemkey_decapsulate(),
* and wolfcrypt/src/wc_mlkem_poly.c : mlkem_gen_matrix_k*_avx2() and mlkem_get_noise_k2_avx2();

wolfcrypt/test/test.c: in TEST_PASS(), fix STACK_SIZE_CHECKPOINT_WITH_MAX_CHECK to honor TEST_ALWAYS_RUN_TO_END.
 2025-05-15 15:28:11 -05:00
David Garske a1b644202c
Merge pull request #8759 from anhu/index_idx 
Rename variable index to idx to avoid conflicting declaration.
 2025-05-15 11:01:27 -07:00
David Garske c13be21a90
Merge pull request #8755 from AlexLanzano/pqc-gcc-error 
Remove redefinition of MlKemKey and Fix build issue in benchmark
 2025-05-15 11:00:40 -07:00
Andrew Hutchings 6790c95e94
Merge pull request #8745 from dgarske/stm32_crypt_header_width 
Fix edge case issue with STM32 AES GCM auth padding
 2025-05-15 16:51:52 +01:00
Daniel Pouzzner c201006a26 wolfcrypt/src/sp_int.c: move setup for -Wno-array-bounds when WOLFSSL_SP_DYN_STACK, to follow sp_int.h include. 2025-05-14 18:20:08 -05:00
Anthony Hu a814683684 Rename variable index to idx to avoid conflicting declaration. 2025-05-14 18:26:37 -04:00
Daniel Pouzzner 55bbd84445 wolfssl/wolfcrypt/sp_int.h and wolfcrypt/src/sp_int.c: add WOLFSSL_SP_DYN_STACK macro to orthogonalize gnarly setup logic, and refactor to use it throughout; refactor several more sp_int stack-allocated data buffers as sp_int_digit[]s rather than char[]s. 2025-05-14 15:39:37 -05:00
David Garske 49d9bfa160
Merge pull request #8758 from bigbrett/exportx509pubkey-api 
Added new ASN X509 API: `wc_GetSubjectPubKeyInfoDerFromCert`
 2025-05-14 12:28:45 -07:00
Brett Nicholas 40c9a03ebe rename function args to match implementation 2025-05-14 11:31:36 -06:00
David Garske 6270429089 Fix STM32MP13x STM32 AES GCM. 2025-05-14 10:27:01 -07:00
David Garske 7a936d731d Fix edge case issue with STM32 AES GCM auth padding. Issue introduced in PR #8584. Fixes ZD 19783 
Added way to override STM_CRYPT_HEADER_WIDTH.
 2025-05-14 10:27:01 -07:00
Alex Lanzano 88ae4266cf Don't define PQC option strings in benchmark if WOLFSSL_BENCHMARK_ALL is defined 
This fixes the 'defined but not used' build issue in benchmark.c if any PQC algos are enabled
and WOLFSSL_BENCHMARK_ALL is defined.
 2025-05-14 08:54:59 -04:00
Daniel Pouzzner 8035667d9b wolfssl/wolfcrypt/logging.h and wolfcrypt/src/logging.c: add WOLFSSL_DEBUG_PRINTF_FN and WOLFSSL_DEBUG_PRINTF_FIRST_ARGS, and update refactored wolfssl_log(), for C89 compat. 2025-05-14 03:21:28 -05:00
Daniel Pouzzner c5021c0690 wolfcrypt/src/ecc.c: fix identicalInnerCondition in ecc_mulmod(). 2025-05-14 03:18:35 -05:00
Hideki Miyazaki 9b7a95e338 gurd tests NO_SW_BENCH 2025-05-14 14:52:51 +09:00
Daniel Pouzzner 55460a5261 wolfssl/wolfcrypt/logging.h and wolfcrypt/src/logging.c: add 
WOLFSSL_DEBUG_PRINTF() macro adapted from wolfssl_log(), refactor
  wolfssl_log() to use it, and move printf setup includes/prototypes from
  logging.c to logging.h;

src/ssl_load.c: add source_name arg and WOLFSSL_DEBUG_CERTIFICATE_LOADS clauses
  to ProcessBuffer() and ProcessChainBuffer(), and pass reasonable values from
  callers;

remove expired "Baltimore CyberTrust Root" from certs/external/ca_collection.pem
  and certs/external/baltimore-cybertrust-root.pem.
 2025-05-13 20:30:48 -05:00
Brett Nicholas 2151a1b8a1 review comments 2025-05-12 11:43:56 -06:00
David Garske ed6f853b9c
Merge pull request #8763 from douzzer/20250511-fixes 
20250511-fixes
 2025-05-12 08:48:37 -07:00