WolfSSL
/
wolfssl
mirror of https://github.com/wolfSSL/wolfssl.git
1
0
Fork 0
Code Issues Releases Wiki Activity
11,635 Commits
27 Branches
168 Tags
358 MiB
Commit Graph

3891 Commits (a90d6b2a5ebd4777401f86d495a142b6f2f94bdf)

Author SHA1 Message Date
toddouska a90d6b2a5e
Merge pull request #3039 from tmael/cov-fix2 
Coverity fix in wolfSSL 4.4.0 - part 2
 2020-07-10 13:06:22 -07:00
Tesfa Mael 890500c1b1 Fix Coverity 2020-07-08 08:20:43 -07:00
Guido Vranken 7f66671449 In wc_PKCS12_PBKDF_ex, break out of outer loop on error 2020-07-08 01:38:02 +02:00
Guido Vranken 43e1eee55d Return MEMORY_E from wc_scrypt if allocation fails 2020-07-08 01:04:37 +02:00
toddouska c8dcd59565
Merge pull request #3082 from JacobBarthelmeh/Testing 
restrict the cert version allowed
 2020-07-07 15:37:01 -07:00
toddouska 301e5c03b9
Merge pull request #3097 from SparkiDev/sp_int_mul_of 
Fix SP int size of result checks
 2020-07-06 11:17:01 -07:00
toddouska b8314a70f9
Merge pull request #3089 from kaleb-himes/ZD10539_LICENSING 
Add or later verbage to LICENSING and sync header license versions
 2020-07-06 11:11:11 -07:00
toddouska 514254e294
Merge pull request #3069 from SparkiDev/gnu-stack 
Add section to asm files to avoid exe stack
 2020-07-06 11:08:24 -07:00
Sean Parkinson 0e79943a5c Fix SP int size of result checks 
sp_lshb: Only put values in extra word id necessary
 2020-07-03 09:12:27 +10:00
kaleb-himes 970391319b Add or later verbage to LICENSING and sync header license versions 2020-06-30 12:13:13 -06:00
Sean Parkinson 4e584595f0 Fix normalization in all SP C divs 2020-06-30 08:32:42 +10:00
David Garske 7a2384deaf
Merge pull request #3071 from kojo1/user-mutex 
User defined mutex
 2020-06-28 21:45:30 -07:00
Sean Parkinson a10500e5a7
Merge pull request #3079 from tmael/sp_mod 
Correct SP mod calculation
 2020-06-26 08:38:07 +10:00
Sean Parkinson f6d26b4e81
Merge pull request #3072 from kaleb-himes/SANITY_CHECKS 
ed25519 and ed448 check sigLen against expected
 2020-06-26 08:31:55 +10:00
Jacob Barthelmeh 0c7b851bd3 restrict the cert version allowed 2020-06-25 15:45:18 -06:00
Tesfa Mael 60d6f616c2 Fix typo 2020-06-25 08:06:14 -07:00
Tesfa Mael a8f5602e10 Correct mod calculation 2020-06-25 08:01:05 -07:00
toddouska 07c5f36d6d
Merge pull request #3068 from SparkiDev/modexp-cr 
Use temp with mont mul in constant time exptmod
 2020-06-24 13:19:06 -07:00
toddouska 9cd6f92d19
Merge pull request #3058 from JacobBarthelmeh/Certs 
Fix and test case for malformed name constraint
 2020-06-24 10:15:08 -07:00
kaleb-himes 722961f55c ed25519 and ed448 check sigLen against expected 2020-06-23 17:32:00 -06:00
Sean Parkinson 582240a84d
Merge pull request #3051 from embhorn/zd10451 
Sanity check wc_ecc_import_raw x, y, and key
 2020-06-24 08:52:10 +10:00
Takashi Kojo 55bb95823c coding template 2020-06-24 07:31:20 +09:00
Eric Blankenhorn 7cc64377d0 Sanity check wc_ecc_import_raw x, y, and key 2020-06-23 08:54:47 -05:00
Sean Parkinson e8e455bf39 Add section to asm files to avoid exe stack 
For Linux ELF need a note section for GNU to indicate stack is not
executable.
 2020-06-23 11:58:46 +10:00
Sean Parkinson 7c615967a9 Use temp with mont mul in constant time exptmod 
For cache attack resistance.
 2020-06-23 10:45:31 +10:00
Sean Parkinson 5b07905818
Merge pull request #3065 from dgarske/sp_revert 
Fix SP cache resistant build (reverts part of PR 2970)
 2020-06-23 08:42:00 +10:00
toddouska 180439ca34
Merge pull request #3060 from dgarske/git3059_cryptocell 
Fixes for CryptoCell
 2020-06-22 13:37:37 -07:00
toddouska 93bd0dbfe1
Merge pull request #2980 from dgarske/psoc6 
Fix for `WOLFSSL_ALT_CERT_CHAINS` with long chain
 2020-06-22 13:36:35 -07:00
David Garske a29250e87d Revert SP changes in https://github.com/wolfSSL/wolfssl/pull/2970 that broke `--enable-sp CFLAGS="-DWOLFSSL_SP_CACHE_RESISTANT"`. This was generated with latest scripts. 2020-06-22 07:56:54 -07:00
JacobBarthelmeh 22d6774966
Merge pull request #2909 from SKlimaRA/SKlimaRA/crl-and-pkcb 
ParseCrl fix, GetPrivateKeySigSize moved from client only section and Coverity fixes.
 2020-06-19 10:51:50 -06:00
David Garske 6b1a6309ce Fixes for CryptoCell. Fix for signature wrapper signing to allow larger signing input buffer. Cleanup of some duplicate code. Fix for bad cryptocell ECC make key result check (-9628). Fixes #3059. Thanks Sylwester. 2020-06-18 13:40:30 -07:00
toddouska f8c6c783db
Merge pull request #3047 from SparkiDev/curve448_dox 
Add Doxygen documentation for Curve448/Ed448
 2020-06-18 13:05:59 -07:00
David Garske 823b3d90d8 Add braces around new debug message to avoid compiler warning. 2020-06-18 12:12:28 -07:00
toddouska 248b8c9b62
Merge pull request #3057 from kaleb-himes/FIPSv2_plus_OPENSSLALL 
Resolve issues with FIPSv2 when opensslall set
 2020-06-18 10:12:06 -07:00
toddouska 48cd6f36ff
Merge pull request #2967 from dgarske/ecc_null 
Fixes for ECC key import
 2020-06-18 10:10:49 -07:00
David Garske 667d9ca896 Fix to catch the issue in this PR with alt cert chains, which only happens if the verify callback is used and the chain is long enough. Cleanup of the myVerify callback to allow specific actions. Fix the suites.c to not crash if no newline at end of file. Added helpful debug message to show that a CA was found. 2020-06-18 09:26:50 -07:00
David Garske 13753d56bb Cleanup in `wc_ecc_sign_hash_ex` for blinding value to not call free twice (mp_clear already does mp_free). 2020-06-17 17:11:54 -07:00
toddouska f20a2de284
Merge pull request #3055 from dgarske/ocsp_resp 
Fix for possible use of NULL in the OCSP response nonce
 2020-06-17 16:45:53 -07:00
kaleb-himes e2fb4c55b8 Resolve issues with FIPSv2 when opensslall set 2020-06-17 14:03:02 -06:00
David Garske 0a38ab8ac2 Fix for possible use of NULL is the OCSP response nonce. This is optional and may not be provided in the OCSP response and should be skipped if not set in the response. ZD 10475. 2020-06-17 11:00:05 -07:00
Sean Parkinson 6bb73fb25d Fix ED448 calls to use context and correct variable name 
Added basic test of OpenSSL compatability APIs:
  - wolfSSL_ED25519_generate_key
  - wolfSSL_ED25519_sign
  - wolfSSL_ED25519_verify
  - wolfSSL_ED2448_generate_key
  - wolfSSL_ED448_sign
  - wolfSSL_ED448_verify
 2020-06-17 10:05:50 +10:00
Sean Parkinson 7a15639927 Add Doxygen documentation for Curve448/Ed448 
Update Curve25519/Ed25519 Doxygen documentation too.
Make public key is a public API - check pubKey pointer is not NULL.
 2020-06-16 22:16:13 +10:00
toddouska aa7168df0b
Merge pull request #3045 from SparkiDev/aes_small_fix 
AES small table fix
 2020-06-15 14:19:09 -07:00
toddouska 9d932d09bf
Merge pull request #3042 from dgarske/xcode_updates 
Updates to Xcode projects to add new files / features
 2020-06-15 14:16:14 -07:00
Jacob Barthelmeh f020b0f24a add check on decode subtree return value 2020-06-15 14:41:05 -06:00
Sean Parkinson 3f344b7d89 AES small table fix 
Symbol not needed when only compiling AES algorithms (AES-GCM, AES-CCM,
AES-CTR) not using AES decrypt.
Allow AES-CCM to be compiled without AES-GCM.
 2020-06-15 14:46:39 +10:00
Takashi Kojo 8ff1b474bc Tentative: User defined mutex 2020-06-14 07:12:13 +09:00
David Garske d43d75bf81 Updates to xcode projects to add new files. 
Ran updated iPhone X benchmarks:

```
RNG                330 MB took 1.010 seconds,  326.879 MB/s
AES-128-CBC-enc    920 MB took 1.005 seconds,  915.507 MB/s
AES-128-CBC-dec   6095 MB took 1.000 seconds, 6092.130 MB/s
AES-192-CBC-enc    820 MB took 1.000 seconds,  819.644 MB/s
AES-192-CBC-dec   4860 MB took 1.001 seconds, 4855.794 MB/s
AES-256-CBC-enc    710 MB took 1.005 seconds,  706.419 MB/s
AES-256-CBC-dec   3935 MB took 1.001 seconds, 3930.830 MB/s
AES-128-GCM-enc   1245 MB took 1.003 seconds, 1241.589 MB/s
AES-128-GCM-dec    575 MB took 1.001 seconds,  574.547 MB/s
AES-192-GCM-enc   1235 MB took 1.001 seconds, 1234.343 MB/s
AES-192-GCM-dec    570 MB took 1.003 seconds,  568.521 MB/s
AES-256-GCM-enc   1230 MB took 1.003 seconds, 1226.034 MB/s
AES-256-GCM-dec    570 MB took 1.001 seconds,  569.199 MB/s
3DES                10 MB took 1.386 seconds,    7.213 MB/s
MD5                 95 MB took 1.037 seconds,   91.629 MB/s
SHA                 80 MB took 1.013 seconds,   78.943 MB/s
SHA-256           1625 MB took 1.000 seconds, 1624.565 MB/s
SHA3-224            60 MB took 1.010 seconds,   59.399 MB/s
SHA3-256            60 MB took 1.073 seconds,   55.921 MB/s
SHA3-384            45 MB took 1.042 seconds,   43.195 MB/s
SHA3-512            35 MB took 1.164 seconds,   30.063 MB/s
HMAC-MD5            95 MB took 1.044 seconds,   91.014 MB/s
HMAC-SHA            80 MB took 1.007 seconds,   79.480 MB/s
HMAC-SHA256       1705 MB took 1.001 seconds, 1703.126 MB/s
RSA     2048 public      32800 ops took 1.003 sec, avg 0.031 ms, 32716.405 ops/sec
RSA     2048 private      1200 ops took 1.041 sec, avg 0.868 ms, /33 ops/sec
DH      2048 key gen      2354 ops took 1.000 sec, avg 0.425 ms, 2353.254 ops/sec
DH      2048 agree        2500 ops took 1.013 sec, avg 0.405 ms, 2467.525 ops/sec
ECC      256 key gen     46503 ops took 1.000 sec, avg 0.022 ms, 46502.069 ops/sec
ECDHE    256 agree       14100 ops took 1.005 sec, avg 0.071 ms, 14034.697 ops/sec
ECDSA    256 sign        29600 ops took 1.003 sec, avg 0.034 ms, 29500.554 ops/sec
ECDSA    256 verify      11000 ops took 1.007 sec, avg 0.092 ms, 10921.516 ops/sec
```
 2020-06-12 10:39:26 -07:00
toddouska f30eb0197b
Merge pull request #3032 from JacobBarthelmeh/PKCS12 
fix error checking when parsing a PKCS12 DER into an internal structure
 2020-06-12 09:57:40 -07:00
David Garske 255cc016b3
Merge pull request #3034 from kaleb-himes/FORUM_DSA_ISSUE 
Seperate QT and DSA dependencies
 2020-06-11 15:40:12 -07:00