WolfSSL
/
wolfssl
mirror of https://github.com/wolfSSL/wolfssl.git
1
0
Fork 0
Code Issues Releases Wiki Activity
25,485 Commits
27 Branches
168 Tags
358 MiB
Commit Graph

25485 Commits (fbbb6b7707f7f8ae1c38ab68daec0af02ee0208a)

Author SHA1 Message Date
Daniel Pouzzner 91af9073b0
Merge pull request #8777 from rizlik/dtls_reject_v11 
Drop DTLS packets with bogus minor version number
 2025-05-16 14:45:25 -05:00
Daniel Pouzzner e67536cb15
Merge pull request #8775 from rlm2002/coverity 
Coverity: address uninitialized scalar variable issues
 2025-05-16 14:44:38 -05:00
Daniel Pouzzner 56b43e5948
Merge pull request #8776 from anhu/no_server_with_opensslall 
Allow tests to build with opensslall and no server.
 2025-05-16 13:28:48 -05:00
Daniel Pouzzner 5abe5df498
Merge pull request #8760 from miyazakh/benchmark_up 
Guard some benchmark tests by NO_SW_BENCH
 2025-05-16 12:42:59 -05:00
Kaleb Himes 25e3a2d34f
Merge pull request #8780 from douzzer/20250515-fips-armasm-fixes 
20250515-fips-armasm-fixes
 2025-05-16 11:12:16 -06:00
David Garske 69ae36a1b6
Merge pull request #8781 from night1rider/zephyr-mlkem-update 
updating kyber to mlkem arm file for zephyr
 2025-05-16 09:21:19 -07:00
Ruby Martin e998a4c2fc fix off-by-one error in asn.c 2025-05-16 08:26:19 -06:00
night1rider 229141fd51 updating kyber to mlkem arm file for zephyr 2025-05-15 21:55:36 -06:00
Daniel Pouzzner 77bebff341 fixes for armasm: 
configure.ac: set DEFAULT_ENABLED_ALL_ASM=no if FIPS <v6 and not on amd64 (i.e. if ARM);

tests/api/test_sha256.c: skip test_wc_Sha256_Flags() and test_wc_Sha224_Flags() if armasm and FIPS <v7;

wolfssl/wolfcrypt/settings.h: define WOLFSSL_SP_INT_DIGIT_ALIGN for ARM (needed on BE, and no effect on LE).
 2025-05-15 21:20:10 -05:00
Daniel Pouzzner 8a8a2b5bb1 .github/workflows/smallStackSize.yml: don't install multilib (not needed). 2025-05-15 21:13:50 -05:00
Ruby Martin 2940a16c10 coverity: initialize variables for api.c, test_digest.h, and test_sha3.c 2025-05-15 16:55:34 -06:00
David Garske 081b8397c0
Merge pull request #8779 from douzzer/20250515-smallstack-refactors-and-tests 
20250515-smallstack-refactors-and-tests
 2025-05-15 15:02:58 -07:00
Daniel Pouzzner 401868908a add .github/workflows/smallStackSize.yml; 
smallstack refactors in
* wolfcrypt/src/asn.c : wc_GetSubjectPubKeyInfoDerFromCert(),
* wolfcrypt/src/dilithium.c : dilithium_sign_with_seed_mu(),
* wolfcrypt/src/ecc.c : wc_ecc_mulmod_ex2(),
* wolfcrypt/src/wc_mlkem.c : mlkemkey_decapsulate(),
* and wolfcrypt/src/wc_mlkem_poly.c : mlkem_gen_matrix_k*_avx2() and mlkem_get_noise_k2_avx2();

wolfcrypt/test/test.c: in TEST_PASS(), fix STACK_SIZE_CHECKPOINT_WITH_MAX_CHECK to honor TEST_ALWAYS_RUN_TO_END.
 2025-05-15 15:28:11 -05:00
David Garske a1b644202c
Merge pull request #8759 from anhu/index_idx 
Rename variable index to idx to avoid conflicting declaration.
 2025-05-15 11:01:27 -07:00
David Garske 63c3c547b6
Merge pull request #8768 from lealem47/zd19853 
Add sniffer cleanup API's
 2025-05-15 11:01:19 -07:00
David Garske c13be21a90
Merge pull request #8755 from AlexLanzano/pqc-gcc-error 
Remove redefinition of MlKemKey and Fix build issue in benchmark
 2025-05-15 11:00:40 -07:00
Marco Oliverio 22f41a8dbb Drop DTLS packets with bogus minor version number 2025-05-15 19:50:36 +02:00
Andrew Hutchings 6790c95e94
Merge pull request #8745 from dgarske/stm32_crypt_header_width 
Fix edge case issue with STM32 AES GCM auth padding
 2025-05-15 16:51:52 +01:00
Anthony Hu a613fc28d6 Allow tests to build with opensslall and no server. 2025-05-15 11:18:15 -04:00
David Garske 2ac4be3f22
Merge pull request #8773 from douzzer/20250514-linuxkm-and-sp-tweaks 
20250514-linuxkm-and-sp-tweaks
 2025-05-14 19:54:48 -07:00
Daniel Pouzzner baaab4ccac
Merge pull request #8722 from anhu/undef_def 
Do not allow define of max to interfere with pthreads
 2025-05-14 18:44:57 -05:00
Daniel Pouzzner c201006a26 wolfcrypt/src/sp_int.c: move setup for -Wno-array-bounds when WOLFSSL_SP_DYN_STACK, to follow sp_int.h include. 2025-05-14 18:20:08 -05:00
Anthony Hu a814683684 Rename variable index to idx to avoid conflicting declaration. 2025-05-14 18:26:37 -04:00
Daniel Pouzzner c8b507d246 wolfssl/wolfcrypt/sp_int.h: refactor SP_WORD_SIZEOF as a simple numeric literal, and use them for XALIGNED() for Windows portability. 2025-05-14 16:54:49 -05:00
Daniel Pouzzner 55bbd84445 wolfssl/wolfcrypt/sp_int.h and wolfcrypt/src/sp_int.c: add WOLFSSL_SP_DYN_STACK macro to orthogonalize gnarly setup logic, and refactor to use it throughout; refactor several more sp_int stack-allocated data buffers as sp_int_digit[]s rather than char[]s. 2025-05-14 15:39:37 -05:00
Daniel Pouzzner f0f4084f94 linuxkm/lkcapi_dh_glue.c: never install DH/FFDHE on kernel <5.18 -- DH secrets have a different format before that version, and FFDHE (CONFIG_CRYPTO_DH_RFC7919_GROUPS) was introduced in 5.18 and is the only FIPS-allowed DH variant. 2025-05-14 15:39:37 -05:00
David Garske 49d9bfa160
Merge pull request #8758 from bigbrett/exportx509pubkey-api 
Added new ASN X509 API: `wc_GetSubjectPubKeyInfoDerFromCert`
 2025-05-14 12:28:45 -07:00
Lealem Amedie 4af0e14e7b Add ssl_RemoveSession API 2025-05-14 12:09:41 -06:00
Brett Nicholas 40c9a03ebe rename function args to match implementation 2025-05-14 11:31:36 -06:00
David Garske 6270429089 Fix STM32MP13x STM32 AES GCM. 2025-05-14 10:27:01 -07:00
David Garske 4fd76dae95 Add portability fix for new INT_MAX required on all TLS limit checking (added in 91aad90c59 Jan 24, 2025). 2025-05-14 10:27:01 -07:00
David Garske 7a936d731d Fix edge case issue with STM32 AES GCM auth padding. Issue introduced in PR #8584. Fixes ZD 19783 
Added way to override STM_CRYPT_HEADER_WIDTH.
 2025-05-14 10:27:01 -07:00
David Garske 813e36a823
Merge pull request #8770 from douzzer/20250514-WOLFSSL_DEBUG_PRINTF-C89 
20250514-WOLFSSL_DEBUG_PRINTF-C89
 2025-05-14 08:50:46 -07:00
Alex Lanzano 88ae4266cf Don't define PQC option strings in benchmark if WOLFSSL_BENCHMARK_ALL is defined 
This fixes the 'defined but not used' build issue in benchmark.c if any PQC algos are enabled
and WOLFSSL_BENCHMARK_ALL is defined.
 2025-05-14 08:54:59 -04:00
Daniel Pouzzner 8035667d9b wolfssl/wolfcrypt/logging.h and wolfcrypt/src/logging.c: add WOLFSSL_DEBUG_PRINTF_FN and WOLFSSL_DEBUG_PRINTF_FIRST_ARGS, and update refactored wolfssl_log(), for C89 compat. 2025-05-14 03:21:28 -05:00
Daniel Pouzzner c5021c0690 wolfcrypt/src/ecc.c: fix identicalInnerCondition in ecc_mulmod(). 2025-05-14 03:18:35 -05:00
Hideki Miyazaki 9b7a95e338 gurd tests NO_SW_BENCH 2025-05-14 14:52:51 +09:00
David Garske cd79be4928
Merge pull request #8769 from douzzer/20250513-WOLFSSL_DEBUG_PRINTF-WOLFSSL_DEBUG_CERTIFICATE_LOADS 
20250513-WOLFSSL_DEBUG_PRINTF-WOLFSSL_DEBUG_CERTIFICATE_LOADS
 2025-05-13 21:15:43 -07:00
Daniel Pouzzner 9d722b3a6c purge baltimore-cybertrust-root.pem from certs/external/include.am and scripts/. 2025-05-13 20:52:08 -05:00
Daniel Pouzzner 55460a5261 wolfssl/wolfcrypt/logging.h and wolfcrypt/src/logging.c: add 
WOLFSSL_DEBUG_PRINTF() macro adapted from wolfssl_log(), refactor
  wolfssl_log() to use it, and move printf setup includes/prototypes from
  logging.c to logging.h;

src/ssl_load.c: add source_name arg and WOLFSSL_DEBUG_CERTIFICATE_LOADS clauses
  to ProcessBuffer() and ProcessChainBuffer(), and pass reasonable values from
  callers;

remove expired "Baltimore CyberTrust Root" from certs/external/ca_collection.pem
  and certs/external/baltimore-cybertrust-root.pem.
 2025-05-13 20:30:48 -05:00
Lealem Amedie 5a4c1d99a3 Expose RemoveStaleSessions sniffer API 2025-05-13 15:16:02 -06:00
JacobBarthelmeh 336b374b9c
Merge pull request #8753 from dgarske/gcc4_portability 
Improvements for portability using older gcc 4.8.2
 2025-05-13 13:12:31 -06:00
Daniel Pouzzner 5f2a43f01f
Merge pull request #8766 from dgarske/static_ephemeral 
Fix for Curve25519 and static ephemeral issue with blinding
 2025-05-12 15:18:37 -05:00
Brett Nicholas 2151a1b8a1 review comments 2025-05-12 11:43:56 -06:00
David Garske e09e3f6098 Fix for Curve25519 and static ephemeral issue with curve25519 blinding. Added new test case (used by wolfKeyMgr). 2025-05-12 10:26:31 -07:00
David Garske ed6f853b9c
Merge pull request #8763 from douzzer/20250511-fixes 
20250511-fixes
 2025-05-12 08:48:37 -07:00
David Garske 110504acd6
Merge pull request #8761 from douzzer/20250510-SP-dyn-stack-tweaks-and-workaround 
20250510-SP-dyn-stack-tweaks-and-workaround
 2025-05-12 08:48:10 -07:00
Anthony Hu af29a59325 Do not allow define of max to interfere with pthreads 2025-05-12 11:39:07 -04:00
Daniel Pouzzner e19295bb64 wolfssl/wolfcrypt/settings.h: #define WOLFSSL_CURVE25519_BLINDING if defined(NO_CURVED25519_X64); 
wolfcrypt/src/curve25519.c: if defined(NO_CURVED25519_X64), #undef USE_INTEL_SPEEDUP;

wolfcrypt/src/fe_operations.c: fixes for -m32 -Wconversions;

.github/workflows/wolfCrypt-Wconversion.yml: add -m32 scenario;

.wolfssl_known_macro_extras: remove unneeded entry for WOLFSSL_CURVE25519_BLINDING.
 2025-05-11 12:06:23 -05:00
David Garske b1cf5df2c2
Merge pull request #8762 from douzzer/20250510-testwolfcrypt-fix-exit-status 
20250510-testwolfcrypt-fix-exit-status
 2025-05-10 11:54:36 -07:00