WolfSSL
/
wolfssl
mirror of https://github.com/wolfSSL/wolfssl.git
1
0
Fork 0
Code Issues Releases Wiki Activity
25,693 Commits
27 Branches
168 Tags
358 MiB
Commit Graph

25693 Commits (edacf0434c0e729d6d9af417f38edc00903a78d8)

Author SHA1 Message Date
Anthony Hu 43df11c9c1 Add gate on having DH 2025-06-24 10:37:26 -04:00
Anthony Hu 8c1298a1d8 Check if DH's P and G are set 2025-06-24 09:59:12 -04:00
Sean Parkinson d05790ed89 LMS: Allow state to be saved with private key 
Defining WOLFSSL_WC_LMS_SERIALIZE_STATE will have the state serialized
before the private key data.
Lots of memory used but means fast reload times. That means that the key
can be reloaded for each sign.
 2025-06-24 20:46:41 +10:00
Sean Parkinson fc1d281268 Green Hills compiler fixes 
internal.c: Move non-enumeration value out of switch.
ssl.c: Only declare globalRNGMutex when required.
x509.c: initialize ret

armv8-aes.c, armv8-chacha.c: fix branch instructions
armv8-mlkem*: ensure only required constants are input operands and move
constants closer to first use.
armv8-poly1305.c: remove POLY1305_BLOCK_SIZE from input operands.
armv8-sha3-asm_c.c, armv8-sha512-asm_c.c: use constraint ':' instead of
'S'.
armv8-sha512.c: initialize initfp. Is always used.
 2025-06-24 19:39:40 +10:00
Sean Parkinson f8bb889712 Armv8 (Aarch64) ASM fixes for Green Hills compiler 
Change branch instructions to proper form.
Use constant value rather than POLY1305_BLOCK_SIZE.
Remove duplicate clobber registers - both w and x versions.
Make clamp unconditionally compiled.
 2025-06-24 19:39:39 +10:00
David Garske 978a29da0b
Merge pull request #8898 from cconlon/getpidOptionsH 
Add HAVE_GETPID to options.h if getpid detected
 2025-06-23 17:11:55 -07:00
JacobBarthelmeh 9ee212cacc fix for free'ing memory with test case 2025-06-23 17:33:52 -06:00
David Garske c4428a432f
Merge pull request #8912 from SparkiDev/lms_sha256_192_w_fix 
LMS SHA-256_192: fix parameters
 2025-06-23 15:35:02 -07:00
Anthony Hu d45e42e2e6 keySz is only in Buffers if NO_CERTS not defined. 2025-06-23 18:29:39 -04:00
Anthony Hu 6385999ae9 Recalculate suites at ssl initialization. 2025-06-23 18:29:39 -04:00
Anthony Hu aec13923a7
Merge pull request #8913 from dgarske/pq_verifyonly 
Fix for building LMS with verify only
 2025-06-23 16:37:32 -04:00
David Garske f1005c33fb
Merge pull request #8905 from gojimmypi/pr-vs-cmake 
Introduce CMakePresets.json and CMakeSettings.json
 2025-06-23 11:18:57 -07:00
David Garske caf8494d65
Merge pull request #8911 from gojimmypi/pr-allow-only-rsa 
Allow configuration with only RSA cipher suites
 2025-06-23 11:18:27 -07:00
David Garske d4c827bc5e Fix for building LMS with verify only. Added tests for LMS/XMSS verify only. New `wc_LmsKey_GetKid` references `key->priv_raw` that is not available. 2025-06-23 11:12:53 -07:00
Daniel Pouzzner b361c62372
Merge pull request #8903 from dgarske/cadate_calist 
Expose API to access "store" error code and depth for cert failure callback
 2025-06-23 10:08:41 -05:00
Daniel Pouzzner 47a8242093
Merge pull request #8868 from SparkiDev/dilithium_win_fixes_1 
Dilithium/ML-DSA: Fixes for casting down and uninit
 2025-06-23 09:02:35 -05:00
Daniel Pouzzner bcdce75b08
Merge pull request #8909 from dgarske/various_20250620 
Fixes with max size, openssl.test netcat and clang-tidy
 2025-06-23 08:15:17 -05:00
Sean Parkinson f36f86ee98 LMS SHA-256_192: fix parameters 
Winternitz bits needs to be one larger when only 192 bit hash.
 2025-06-23 08:16:05 +10:00
gojimmypi afa22dfc2b
Allow configuration with only RSA cipher suites 2025-06-21 14:54:10 -07:00
David Garske b9455bc94b Fixes issue with cert gen, no malloc and crypto callback causing `wolfssl/wolfcrypt/asn.h:1375:18: error: use of undeclared identifier 'WC_MAX_DIGEST_SIZE`. Fixed netcat issue in openssl.test causing server open check to fail on some platforms. Fixed clang-tidy report in benchmark.c where XFTELL could return negative (error) and wasn't handled. 2025-06-20 16:34:46 -07:00
David Garske 1be303866e
Merge pull request #8908 from douzzer/20250620-clang-tidy-and-cppcheck-fixes-and-workarounds 
20250620-clang-tidy-and-cppcheck-fixes-and-workarounds
 2025-06-20 15:07:09 -07:00
David Garske f30c54abdd
Merge pull request #8894 from SparkiDev/ppc32_sha256_asm 
PPC 32 ASM: SHA-256
 2025-06-20 14:29:47 -07:00
Daniel Pouzzner af78ed8b6f wolfcrypt/src/wc_xmss_impl.c: in wc_xmss_bds_state_treehash_complete(), add suppression for false positive clang-analyzer-core.NullDereference from LLVM-21 pre20250523+. 2025-06-20 15:31:31 -05:00
Daniel Pouzzner 7977a605c5 src/internal.c: in FreeSskeArgs(), move nullness check on args to the start, and make it unconditional, to resolve nullPointerRedundantChecks. 2025-06-20 15:04:07 -05:00
Daniel Pouzzner e1fe186753 wolfcrypt/src/sp_int.c: in _sp_prime_trials(), use DECL_SP_INT() not DECL_SP_INT_ARRAY() for n1 and r, to mollify a very confused clang-tidy (fixes false positive clang-analyzer-core.UndefinedBinaryOperatorResult and clang-analyzer-core.CallAndMessage). 2025-06-20 14:52:42 -05:00
David Garske 0f119ab8e2
Merge pull request #8906 from julek-wolfssl/libspdm-3.7.0 
libspdm 3.3.0 -> 3.7.0
 2025-06-20 11:44:53 -07:00
David Garske b98cf8882b Remove `HAVE_LIGHTY` from the client_ca_names feature. 2025-06-20 11:29:02 -07:00
gojimmypi 380e068df6
Introduce CMakePresets.json and CMakeSettings.json 2025-06-20 11:24:58 -07:00
Juliusz Sosinowicz 9f900d4b8a libspdm 3.3.0 -> 3.7.0 
3.3.0 pulls cmocka from https://git.cryptomilk.org/projects/cmocka.git. Update to 3.7.0 to pull from https://gitlab.com/cmocka/cmocka.git.
 2025-06-20 19:55:16 +02:00
David Garske 4c6279c6c7 Good feedback about adding wolfCrypt error codes to .cs layer. Partially added useful ones. 2025-06-20 09:41:35 -07:00
Kaleb Himes 17f3da11d2
Merge pull request #8899 from SparkiDev/entropy_cont_tests_fix_2 
Entropy: fix proportion health test
 2025-06-20 09:10:41 -06:00
David Garske 9b50708741 Fix to expose API to access "store" error code and error depth for cert failure callback (from set_verify). Useful for C# wrapper or clients that cannot directly dereference X509_STORE. Fixes for building with WOLFSSL_EXTRA and `WOLFSSL_NO_CA_NAMES` (and added new tests). Added example in CSharp TLS client for overriding a begin date error (useful if date is not set). 2025-06-19 14:49:00 -07:00
David Garske 7610b4e2f5
Merge pull request #8893 from SparkiDev/asm_omit_frame_pointer 
ARM32/Thumb2/RISC-V 64 ASM: omit frame pointer
 2025-06-19 10:48:23 -07:00
David Garske 96a3591f98
Merge pull request #8896 from holtrop/fix-asn-memory-leak 
Fix memory leak in ParseCRL_Extensions
 2025-06-19 06:18:41 -07:00
David Garske 8f0106a7fe
Merge pull request #8888 from julek-wolfssl/bind-v9.18.33 
Add bind v9.18.33 testing
 2025-06-19 06:08:13 -07:00
David Garske 64bc41a3c3
Merge pull request #8901 from SparkiDev/ecc_config_fixex_1 
ECC configuration fixes
 2025-06-19 06:02:33 -07:00
Sean Parkinson f7fb68dedc
Merge pull request #8884 from dgarske/enablecerts 
Fix to make sure ASN.1 is enabled if just building PQ algorithms
 2025-06-19 15:50:59 +10:00
Sean Parkinson 7289687b44 ECC configuration fixes 
When ECC verify only and with no RNG.
 2025-06-19 13:37:43 +10:00
Sean Parkinson 62721f4d51 PPC32 SHA-256 ASM: small code implementation 
Slower but smaller SHA-256 assembly code implementation enabled with:
WOLFSSL_PPC32_ASM_SMALL. (--enable-ppc32=small or
--enable-ppc32=inline,small)
 2025-06-19 10:51:12 +10:00
Sean Parkinson 16aab18ae9 Entropy: fix proportion health test 
Update the count of entries.
 2025-06-19 10:34:03 +10:00
Chris Conlon cdd02f9665 Add check for reseed in ssl.c for HAVE_SELFTEST, similar to old FIPS bundles that do not have older random.c files 2025-06-18 17:21:55 -06:00
Chris Conlon 9c35c0de65 Add HAVE_GETPID to options.h if getpid detected, needed for apps to correctly detect size of WC_RNG struct 2025-06-18 16:08:34 -06:00
Josh Holtrop 7dfb782c9e Fix memory leak in ParseCRL_Extensions 2025-06-18 16:47:15 -04:00
David Garske 74de689941
Merge pull request #8875 from kareem-wolfssl/zd20035 
Fix SRP wolfCrypt test on lower FP_MAX/SP_INT_BITS configs
 2025-06-18 08:59:09 -07:00
David Garske 27176a5eeb
Merge pull request #8870 from kareem-wolfssl/zd20030 
Various minor fixes.
 2025-06-18 08:55:07 -07:00
David Garske e5a9c7039c
Merge pull request #8889 from holtrop/remove-dtls-from-echo-examples 
Remove DTLS from echo examples
 2025-06-18 08:52:47 -07:00
David Garske 9528aaf238 Support `WOLFSSL_TRACK_MEMORY` with `SINGLE_THREADED`. 2025-06-18 08:37:27 -07:00
David Garske cdbc4cb3b3 Fix to make sure certs/asn are enabled for PQ algorithms 2025-06-18 08:32:49 -07:00
Sean Parkinson c39f1fe721 PPC 32 ASM: SHA-256 
Pure and inline  ASM for the PowerPC 32-bit.
 2025-06-18 21:23:15 +10:00
Sean Parkinson dc70cfa3b3 ARM32/Thumb2/RISC-V 64 ASM: omit frame pointer 
ARM32/Thumb2: Generated code now omits the frame pointer attribute on
each function. Remove global use in configure.ac.
RISC-V 64: Omit the frame pointer on the one function that uses the
register 's0'.
 2025-06-18 10:20:55 +10:00