WolfSSL
/
wolfssl
mirror of https://github.com/wolfSSL/wolfssl.git
1
0
Fork 0
Code Issues Releases Wiki Activity
19,182 Commits
27 Branches
168 Tags
358 MiB
Commit Graph

19182 Commits (5ec62c8d48d6e2b51c537949f62d7eae184ddacd)

Author SHA1 Message Date
David Garske 5ec62c8d48
Merge pull request #6096 from SparkiDev/armv7a_neon_config 
ARMv7a neon configure.ac
 2023-02-20 15:22:20 -08:00
András Fekete c055740e6a
Merge pull request #6100 from julek-wolfssl/stunnel-github-action-test 
Add OSP github action
 2023-02-20 15:41:58 -05:00
Juliusz Sosinowicz 261054896c Actions fix 
Fix for `workflows must be defined at the top level of the .github/workflows/ directory` error.
 2023-02-20 18:42:47 +01:00
Juliusz Sosinowicz 8b7ea9e820 Refactor os-check.yml 2023-02-20 18:42:47 +01:00
Juliusz Sosinowicz 04cc85b31e Separate out into different files 2023-02-20 18:29:41 +01:00
Juliusz Sosinowicz d3551acc2b Code review 2023-02-20 18:29:41 +01:00
Juliusz Sosinowicz 36df1e1ae9 Add OSP github action 2023-02-20 18:29:41 +01:00
Daniel Pouzzner 6cc5c1a428
Merge pull request #6102 from dgarske/non_const 
Fix for "expression must have a constant value" in tls13.c
 2023-02-17 21:07:27 -06:00
David Garske 1bae1ef63e
Merge pull request #6101 from kaleb-himes/invalid-pp-macro 
Fix invalid PP macro logic, guard under same conditions as internal.h
 2023-02-17 17:05:50 -08:00
Chris Conlon 588b694c7d
Merge pull request #5709 from TakayukiMatsuo/ccv 2023-02-17 17:02:04 -07:00
David Garske c476dd6e28
Merge pull request #6103 from SparkiDev/sp_ecdsa_sig_r0 
SP ECC sign: reject random k when r is 0
 2023-02-17 13:58:53 -08:00
David Garske 8a6483f13a
Merge pull request #6080 from tim-weller-wolfssl/zd15632-oob-in-cert-parsing 
zd15632 - OSS-Fuzz #55810: Out-of-bounds read in certificate parsing
 2023-02-17 12:08:11 -08:00
David Garske 4edb7e26b9
Merge pull request #6104 from douzzer/20230216-readability-redundant-preprocessor 
20230216-readability-redundant-preprocessor
 2023-02-17 10:31:27 -08:00
David Garske 24fd561bf8
Merge pull request #6099 from bandi13/ocsp-cleanup 
Be more aggressive in killing processes
 2023-02-17 09:28:14 -08:00
Daniel Pouzzner 21645460cd src/tls13.c: fix a readability-redundant-preprocessor in CheckPreSharedKeys(). 2023-02-16 23:37:43 -06:00
Sean Parkinson 26b7052b3f SP ECC sign: reject random k when r is 0 
SP ECC signing code was generating signatures with r of 0.
This is not allowed by the algorithm description.
Retry sig gen when r is 0 like when s is 0.
 2023-02-17 08:55:59 +10:00
David Garske d488693f15 Allow `#define HAVE_LIBZ` support in `user_settings.h`. 2023-02-16 14:20:57 -08:00
David Garske 82d65481bb Fix for "expression must have a constant value" in tls13.c with GreenHills compiler. 2023-02-16 13:58:48 -08:00
kaleb-himes b2caa5c5ae Fix invalid PP macro logic, guard under same conditions as internal.h 2023-02-16 14:40:43 -07:00
David Garske 0b31d5577c
Merge pull request #6098 from bandi13/moreDockerprograms 
Some tests need these utilities
 2023-02-16 13:28:02 -08:00
Andras Fekete fdb0338473 Be more aggressive in killing processes 2023-02-16 09:55:52 -05:00
Andras Fekete ff96150404 Some tests need these utilities 2023-02-16 09:51:46 -05:00
tim-weller-wolfssl dea123f88e Minimal changes to avoid Out-of-Bounds write in ASN.1 parsing logic. Add unit tests for ParseCert() API passing badly formed ASN data (should error out gracefully). 2023-02-16 07:49:08 -06:00
David Garske 0a6dedab03
Merge pull request #6094 from SparkiDev/aes_gcm_stream_bench 
AES GCM benchmark: separate aes-gcm streaming runs
 2023-02-15 21:10:48 -08:00
David Garske 464c2d19dc
Merge pull request #6006 from SparkiDev/tls13_only_psk_dhe_ke 
TLS 1.3 PSK: add option to require only PSK with DHE
 2023-02-15 21:10:27 -08:00
Daniel Pouzzner 859b1ff398
Merge pull request #6093 from dgarske/fix_async 
Fix issue with async and `WOLFSSL_CHECK_ALERT_ON_ERR`
 2023-02-15 19:49:56 -06:00
Sean Parkinson aaed553311
Merge pull request #6092 from dgarske/various 
Various cleanups (STM docs, include case, make dist small script)
 2023-02-16 11:23:51 +10:00
Sean Parkinson 85314e6ba5 ARMv7a neon configure.ac 
Support other CPUs that start with armv7a.
 2023-02-16 10:36:38 +10:00
Sean Parkinson 195ca1a20a AES GCM benchmark: separate aes-gcm streaming runs 
Always to AES-GCM one-shot benchmark.
When WOLFSSL_AESGCM_STREAM, always perform AES-GCM streaming benchmark.
 2023-02-16 09:37:00 +10:00
Sean Parkinson b624fc8377 TLS 1.3 PSK: add option to require only PSK with DHE 
Can specify only PSK without DHE.
Add only PSK with DHE.
 2023-02-16 09:21:29 +10:00
David Garske 18bee3142d Fix to use the right cert/key in the API unit test if overridden. 2023-02-15 14:57:43 -08:00
David Garske e8a26c673a Fix for async with `WOLFSSL_CHECK_ALERT_ON_ERR`. 2023-02-15 14:57:34 -08:00
David Garske 47801107da Fix to make sure API unit test always calls init/cleanup when not running all tests. 2023-02-15 14:24:22 -08:00
David Garske 5481a059c4 Fix `wincrypt.h` include header case when used with case sensitive file system. 2023-02-15 11:44:34 -08:00
David Garske 6ea3fe2f7a
Merge pull request #6089 from kaleb-himes/stunnel-5_67_support_fix 
Fix unused variable warning when configuring with --enable-apachehttpd
 2023-02-15 08:39:30 -08:00
Sean Parkinson 089ef86587
Merge pull request #6090 from douzzer/20230214-mollify-iso-c-pedantic 
20230214-mollify-iso-c-pedantic
 2023-02-15 17:04:07 +10:00
Daniel Pouzzner ca87a99646 src/ssl.c and src/x509.c: use the customary function pointers (WOLFSSL_CRYPTO_EX_*()), not void *, in the arg lists of wolfSSL_CTX_get_ex_new_index() and wolfSSL_X509_get_ex_new_index(), to avoid "ISO C forbids passing argument ... between function pointer and ‘void *’"; 
move typedefs for WOLFSSL_CRYPTO_EX_*() from wolfssl/openssl/compat_types.h to wolfssl/wolfcrypt/types.h, grouped with the other EX_DATA-related typedefs, as they are needed whenever defined(HAVE_EX_DATA) regardless of openssl compatness;

properly gate wolfSSL_CTX_get_ex_new_index() and wolfSSL_X509_get_ex_new_index() prototypes on defined(HAVE_EX_DATA).
 2023-02-14 19:28:40 -06:00
David Garske 7e582932f3 Improve documentation for STM32 PKA support. 2023-02-14 14:27:05 -08:00
David Garske 100ec1e7e6 Fix `./scripts/makedistsmall.sh` for `Docker` and `RTOS`. 2023-02-14 14:25:40 -08:00
Kaleb Himes dead56b3cb
Merge pull request #6086 from julek-wolfssl/explicit-rwlock 
Make rwlock an explicit enable option
 2023-02-14 15:04:13 -07:00
kaleb-himes 2719943ffd Fix unused variable warning when configuring with --enable-apachehttpd 2023-02-14 14:25:57 -07:00
Juliusz Sosinowicz 0cedc4e1ac
stunnel 5.67 support (#6020) 
* stunnel 5.67 support

- ssl->session->ticketAdd may be set when parsing a ticket before PSK
- PSK binders should be calculated based on ciphersuite associated with PSK
- Add option to prioritise PSK order instead of ciphersuite order
- Update ctx->method->version when using Set_CTX_max_proto_version API
- Simplify wolfSSL_parse_cipher_list
  - Keep copy of old list and then add in the previous ciphersuites depending on whether we are doing only TLS 1.3 ciphersuites or not
- Specify CRL revocation in alert
  - Match reason string to match OpenSSL
- Add support for external data callbacks for WOLFSSL_SESSION

* Upref the session for stunnel instead of duplicating it

* Add small stack option for wolfSSL_parse_cipher_list
 2023-02-14 09:38:28 -08:00
tmael c4fa013800
Fix for BIO_reset() (#5887) 
* Fix for BIO_reset
* Introduced BIO_FLAGS_MEM_RDONLY
 2023-02-14 08:54:25 -08:00
Juliusz Sosinowicz bcfd5fb66b Make rwlock an explicit enable option 2023-02-14 13:55:59 +01:00
Sean Parkinson 2fe34facba
Merge pull request #6084 from philljj/zd15607 
Check keyLen matches cipher in wolfSSL_CMAC_Init.
 2023-02-14 12:51:20 +10:00
David Garske 6e21b8c907
Merge pull request #6085 from anhu/env_shell 
Invoke shell for shell scripts.
 2023-02-13 14:53:47 -08:00
gojimmypi ed79545a27
Espressif examples run with local wolfSSL (no setup!) (#6018) 
* Espressif examples run with local wolfSSL (no setup!)
* include.am Espressif local no-setup component files
* cleanup Espressif Example CMakeLists.txt, use function
* multiple wolfSSL installs is now a fatal Espressif build error
* Examples no longer need setup
* CompileAll builds local examples, not IDF_PATH ones
* Espressif compileAllExamples both local & ESP-IDF components
* add wolfssl_test_idf test project
* move VisualGDB projects to subdirectories
* move VisualGDB wolfssl_server to subdirectory
* update include.am for moved VisualGDB project files
 2023-02-13 14:37:56 -08:00
David Garske 6877c98d82
Merge pull request #6081 from douzzer/20230211-wolfcrypttest-fixes 
20230211-wolfcrypttest-fixes
 2023-02-13 14:28:43 -08:00
Anthony Hu eedc8fa0b3 Invoke shell for shell scripts. 2023-02-13 15:58:15 -05:00
Daniel Pouzzner a945017a88 wolfcrypt/test/test.c: around ecc_ctx_kdf_salt_test(): fix fips gating, fix length handling for "message", fix memory leaks; 
in crypto_ecc_verify(), crypto_ecc_sign(), ecc_test_nonblock_dhe(), and ecc_test_nonblock_ecdsa(), add codepoint-specific retvals.
 2023-02-13 14:21:50 -06:00